$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142360.roa File: AS142360.roa (raw, json) Hash identifier: m1+EfMNPh4JVoT3+P8LVgOD9SUdje+94C64UzMjJmE4= Subject key identifier: B9:24:86:0C:C3:53:C5:CE:33:7C:AC:63:25:31:F2:91:90:20:1C:66 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 39DA44CBFC9E5726CCFB2EA85BADEA5CC4813AF9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142360.roa Signing time: Tue 12 Aug 2025 08:00:00 +0000 ROA not before: Tue 12 Aug 2025 07:55:00 +0000 ROA not after: Tue 11 Aug 2026 08:00:00 +0000 asID: 142360 IP address blocks: 43.240.227.0/24 maxlen: 24 103.85.54.0/23 maxlen: 24 103.248.216.0/24 maxlen: 24 2401:2620::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 23:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:da:44:cb:fc:9e:57:26:cc:fb:2e:a8:5b:ad:ea:5c:c4:81:3a:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 12 07:55:00 2025 GMT Not After : Aug 11 08:00:00 2026 GMT Subject: CN=B924860CC353C5CE337CAC632531F29190201C66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:21:9d:35:a8:35:3a:95:f7:69:4b:8e:f2:e6: 23:8a:9d:11:fe:c3:f6:bf:17:47:64:f7:70:64:5b: 2c:bb:61:0d:7e:ce:32:66:3b:53:58:4c:06:e0:fd: bc:75:c2:9e:3d:99:9d:b6:6e:b9:37:a7:b9:82:68: c6:d4:b6:b5:07:d2:72:08:2c:99:bd:96:2f:77:93: 30:20:79:43:1c:c3:ab:68:60:0e:1f:54:ec:54:3b: 68:f3:a9:69:c4:3e:d9:45:34:9e:f4:1f:40:ec:2d: b3:56:b2:66:a7:50:7d:34:14:52:93:59:84:b9:85: af:85:03:1f:a9:c3:2b:ec:93:99:c9:df:f9:7b:ca: b4:00:d1:98:50:0b:d2:99:5f:fa:4c:b8:9a:7c:83: 83:4e:08:42:27:eb:f0:3c:27:39:29:07:ab:94:d2: ee:fc:89:01:41:9c:f9:d9:48:ef:ab:9f:89:53:ee: c0:10:ab:14:43:53:37:0a:a0:e4:1d:34:ee:89:c7: 22:19:2d:8a:34:46:1b:af:5c:48:c4:32:62:7e:9c: 90:7c:21:e9:df:f6:c3:1f:ae:e7:48:13:75:82:23: c1:31:3a:dc:8a:10:9a:d9:83:8a:2e:bd:4a:b7:4e: 1f:35:61:3c:ee:c1:d6:34:f9:f9:8d:1d:c8:f1:2b: 04:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:24:86:0C:C3:53:C5:CE:33:7C:AC:63:25:31:F2:91:90:20:1C:66 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142360.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.227.0/24 103.85.54.0/23 103.248.216.0/24 IPv6: 2401:2620::/32 Signature Algorithm: sha256WithRSAEncryption 03:da:5f:15:e7:56:ca:29:fa:45:a2:67:df:6d:ec:0f:df:95: 04:a2:ad:a4:c3:47:21:6e:06:3a:cf:01:ef:c8:30:f3:19:69: be:99:9f:58:05:fc:a9:6f:aa:13:09:9c:b1:e6:3e:93:1d:ed: 38:8f:a8:99:f1:11:8c:73:9c:84:3c:86:44:a1:a2:33:aa:2a: 2a:e4:6a:cc:4e:c4:b7:cf:3c:7b:04:68:44:46:c4:fc:7a:6d: 90:15:79:ca:f3:46:7a:32:62:6e:2a:6f:7a:df:35:01:0f:ae: 1a:33:2c:9d:a9:61:c7:43:82:41:27:13:27:54:5f:2f:bf:83: e5:92:0a:e7:17:ba:d7:81:6f:54:3a:23:b9:78:f1:ee:a3:b2: e2:55:b5:e4:d3:03:d7:4a:bb:f5:51:e9:2e:c0:a7:6c:97:3a: 10:a3:f3:e9:dc:a1:b6:ed:31:90:f6:32:e2:70:53:c5:9d:47: 43:07:66:97:e3:79:61:15:0b:9f:9c:53:67:65:74:95:0c:94: 32:86:89:81:e8:2d:79:9f:36:4b:ca:3d:28:68:7f:52:bf:dd: 63:e9:88:9d:8d:21:d8:53:ad:bb:51:2a:ab:e1:83:a3:b5:bc: 2e:e0:65:19:1f:0f:2e:ef:67:42:55:1a:ca:4d:d6:67:59:00: 56:3b:94:a2 -----BEGIN CERTIFICATE----- MIIE+DCCA+CgAwIBAgIUOdpEy/yeVybM+y6oW63qXMSBOvkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgxMjA3NTUwMFoX DTI2MDgxMTA4MDAwMFowMzExMC8GA1UEAxMoQjkyNDg2MENDMzUzQzVDRTMzN0NB QzYzMjUzMUYyOTE5MDIwMUM2NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO8hnTWoNTqV92lLjvLmI4qdEf7D9r8XR2T3cGRbLLthDX7OMmY7U1hMBuD9 vHXCnj2ZnbZuuTenuYJoxtS2tQfScggsmb2WL3eTMCB5QxzDq2hgDh9U7FQ7aPOp acQ+2UU0nvQfQOwts1ayZqdQfTQUUpNZhLmFr4UDH6nDK+yTmcnf+XvKtADRmFAL 0plf+ky4mnyDg04IQifr8DwnOSkHq5TS7vyJAUGc+dlI76ufiVPuwBCrFENTNwqg 5B007onHIhktijRGG69cSMQyYn6ckHwh6d/2wx+u50gTdYIjwTE63IoQmtmDii69 SrdOHzVhPO7B1jT5+Y0dyPErBBsCAwEAAaOCAeswggHnMB0GA1UdDgQWBBS5JIYM w1PFzjN8rGMlMfKRkCAcZjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM2MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6BggrBgEFBQcBBwEB/wQrMCkw GAQCAAEwEgMEACvw4wMEAWdVNgMEAGf42DANBAIAAjAHAwUAJAEmIDANBgkqhkiG 9w0BAQsFAAOCAQEAA9pfFedWyin6RaJn323sD9+VBKKtpMNHIW4GOs8B78gw8xlp vpmfWAX8qW+qEwmcseY+kx3tOI+omfERjHOchDyGRKGiM6oqKuRqzE7Et888ewRo REbE/HptkBV5yvNGejJibipvet81AQ+uGjMsnalhx0OCQScTJ1RfL7+D5ZIK5xe6 14FvVDojuXjx7qOy4lW15NMD10q79VHpLsCnbJc6EKPz6dyhtu0xkPYy4nBTxZ1H Qwdml+N5YRULn5xTZ2V0lQyUMoaJgegteZ82S8o9KGh/Ur/dY+mInY0h2FOtu1Eq q+GDo7W8LuBlGR8PLu9nQlUayk3WZ1kAVjuUog== -----END CERTIFICATE-----Generated at Sat Aug 23 18:32:09 2025 by rpki-client