$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS133637.roa File: AS133637.roa (raw, json) Hash identifier: 9OUBK/DeqkFgfRP34xWblKSugT5k8vZxDhDXsCW9+hM= Subject key identifier: B2:47:C3:65:E7:BF:DD:6F:66:5B:77:35:8D:DE:96:CF:E2:31:2B:7A Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 22D084C2903FD96B7697DB37FE9CAEAE0068516D Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS133637.roa Signing time: Sat 02 May 2026 09:24:11 +0000 ROA not before: Sat 02 May 2026 09:19:11 +0000 ROA not after: Sat 01 May 2027 09:24:11 +0000 asID: 133637 IP address blocks: 160.250.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:d0:84:c2:90:3f:d9:6b:76:97:db:37:fe:9c:ae:ae:00:68:51:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:19:11 2026 GMT Not After : May 1 09:24:11 2027 GMT Subject: CN=B247C365E7BFDD6F665B77358DDE96CFE2312B7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:52:3e:74:7a:fc:5d:1b:79:2f:ad:04:e8:3a: 94:4a:d9:4b:72:68:48:6f:2e:be:35:ad:42:fb:ef: ad:65:4e:53:a0:6f:f0:52:95:13:65:02:07:2e:35: 9d:15:bb:5e:89:d4:0f:7f:f5:c4:36:10:db:ee:5d: 67:09:c0:70:f2:82:f0:79:4f:60:fe:68:00:77:ad: df:05:7a:fb:aa:20:f1:e9:66:ab:0d:83:72:cc:0e: a4:2c:be:91:1d:7f:1f:59:33:99:81:7e:05:80:9d: 75:47:40:f8:d8:3e:18:b3:16:2b:15:5f:c5:5c:39: bc:bf:0e:e5:54:ef:a3:dd:77:6d:19:88:3a:d0:3d: 82:c2:28:3c:8d:d4:67:cb:61:97:43:5a:dc:9e:25: d1:da:6b:c8:e7:ca:d9:b8:ac:8b:66:e5:ee:9e:8e: 3e:34:c0:e0:ac:2a:29:e2:44:ff:e3:0d:e7:d8:19: 49:59:e7:82:9e:aa:21:20:b5:8a:47:f9:6f:d6:d3: 71:94:88:44:e3:52:e1:f0:27:81:5f:33:cc:0f:aa: 53:08:3e:1e:f8:36:3c:05:b9:2c:56:d8:38:bd:cd: d0:ca:4d:52:99:5a:eb:d8:c2:f4:2c:16:21:63:6a: e2:d1:83:e6:71:77:49:ca:cf:d4:3d:8b:80:ee:ea: 83:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:47:C3:65:E7:BF:DD:6F:66:5B:77:35:8D:DE:96:CF:E2:31:2B:7A X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS133637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.250.238.0/24 Signature Algorithm: sha256WithRSAEncryption a5:13:95:18:c0:84:f4:fe:ec:5a:50:16:aa:42:83:92:f3:46: 24:94:00:d3:35:03:a6:38:e4:e0:98:e7:53:85:e1:b4:ce:11: 99:6d:59:83:ae:9e:24:98:06:62:7b:66:99:6d:7e:0b:97:82: 08:99:9a:6c:5f:1a:f8:ac:81:eb:cf:a6:5b:e3:11:18:20:5f: 37:7f:65:4d:15:19:7a:40:b2:93:a1:a6:e9:ad:e4:9e:e7:73: 65:cd:05:db:54:12:32:60:8e:5d:7d:ff:d0:07:aa:84:66:61: 3f:5a:7f:4d:fd:a2:cc:50:6e:a1:ac:35:91:2e:11:d1:57:d2: 94:2e:69:70:9b:45:0e:cb:64:b5:f3:95:ba:83:4b:85:3a:6e: 40:03:fc:2b:de:e0:84:b9:8e:a6:e4:40:f9:41:96:99:7f:47: 7d:a5:64:75:e5:d0:17:ea:0a:35:d0:ba:3b:ee:e0:40:89:e0: b5:32:40:fe:4f:23:e2:7e:b1:e6:73:37:dd:4f:82:ee:f8:9e: 0a:e1:70:5a:a8:26:7b:d0:5a:6c:c5:5f:d7:01:c0:a9:ba:1e: ed:dd:4c:5e:0e:07:34:c8:ab:cd:7e:4f:d6:0b:02:d4:fe:57: 48:b9:d0:cc:bb:92:e9:a6:eb:e4:70:9d:d1:a8:b7:3f:85:ac: 1c:d4:06:84 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUItCEwpA/2Wt2l9s3/pyurgBoUW0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTkxMVoX DTI3MDUwMTA5MjQxMVowMzExMC8GA1UEAxMoQjI0N0MzNjVFN0JGREQ2RjY2NUI3 NzM1OERERTk2Q0ZFMjMxMkI3QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKVSPnR6/F0beS+tBOg6lErZS3JoSG8uvjWtQvvvrWVOU6Bv8FKVE2UCBy41 nRW7XonUD3/1xDYQ2+5dZwnAcPKC8HlPYP5oAHet3wV6+6og8elmqw2DcswOpCy+ kR1/H1kzmYF+BYCddUdA+Ng+GLMWKxVfxVw5vL8O5VTvo913bRmIOtA9gsIoPI3U Z8thl0Na3J4l0dpryOfK2bisi2bl7p6OPjTA4KwqKeJE/+MN59gZSVnngp6qISC1 ikf5b9bTcZSIRONS4fAngV8zzA+qUwg+Hvg2PAW5LFbYOL3N0MpNUpla69jC9CwW IWNq4tGD5nF3ScrP1D2LgO7qgyMCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSyR8Nl 57/db2ZbdzWN3pbP4jErejAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTMzNjM3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAoPruMA0GCSqGSIb3DQEBCwUAA4IBAQClE5UYwIT0/uxaUBaqQoOS80Yk lADTNQOmOOTgmOdTheG0zhGZbVmDrp4kmAZie2aZbX4Ll4IImZpsXxr4rIHrz6Zb 4xEYIF83f2VNFRl6QLKToabpreSe53NlzQXbVBIyYI5dff/QB6qEZmE/Wn9N/aLM UG6hrDWRLhHRV9KULmlwm0UOy2S185W6g0uFOm5AA/wr3uCEuY6m5ED5QZaZf0d9 pWR15dAX6go10Lo77uBAieC1MkD+TyPifrHmczfdT4Lu+J4K4XBaqCZ70FpsxV/X AcCpuh7t3UxeDgc0yKvNfk/WCwLU/ldIudDMu5LppuvkcJ3RqLc/hawc1AaE -----END CERTIFICATE-----Generated at Sat May 2 21:05:31 2026 by rpki-client