$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS134127.roa File: AS134127.roa (raw, json) Hash identifier: t5jJNWaiGiWbHyLpWhD/HcaYubj9XbOQnkZt+qqQg70= Subject key identifier: 8A:82:23:EA:91:64:B2:56:C2:09:9E:54:05:E4:44:9F:4C:19:06:ED Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 3170028209308D9722AE9F99B73D386BAFAD2DAD Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS134127.roa Signing time: Sat 02 May 2026 09:25:06 +0000 ROA not before: Sat 02 May 2026 09:20:06 +0000 ROA not after: Sat 01 May 2027 09:25:06 +0000 asID: 134127 IP address blocks: 165.99.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:70:02:82:09:30:8d:97:22:ae:9f:99:b7:3d:38:6b:af:ad:2d:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:20:06 2026 GMT Not After : May 1 09:25:06 2027 GMT Subject: CN=8A8223EA9164B256C2099E5405E4449F4C1906ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:58:6d:68:c5:7a:9a:49:d3:88:a2:f9:b0:f9: 73:76:15:e3:a0:53:61:f2:4a:74:9c:52:b0:f9:d6: b4:e5:36:65:24:93:ba:21:86:ac:b0:aa:0c:4b:34: 73:8d:ca:f6:f9:53:1f:a6:62:e2:c9:9e:fd:66:0f: 8a:4a:ce:4b:0e:e5:8e:59:4b:ff:37:69:d9:33:54: 91:13:b0:ec:ef:9e:dd:ec:e1:af:44:d0:b6:94:28: cc:9d:80:91:70:6b:53:46:e4:e8:f9:2c:6e:ff:ad: 41:47:22:b5:48:69:a6:c9:28:6e:5d:f2:b3:06:5d: 8a:f4:fc:5d:2f:78:fd:d7:ef:5a:44:54:0c:35:0c: f2:25:d4:1e:e1:a4:de:63:97:81:84:e5:b1:b0:c5: 4e:a2:41:18:8b:92:dd:d4:a2:04:f8:a5:e6:74:54: 6c:05:37:fc:1e:8e:81:d0:cb:eb:01:e8:58:93:eb: b2:f6:1f:07:a6:ac:b6:87:bc:73:65:86:2c:48:1d: 19:de:82:18:21:a2:9c:2e:3e:c6:44:b5:b3:fe:f8: c8:69:3f:d5:68:bd:f8:0f:67:cc:37:34:4c:61:87: 4c:58:ab:3a:9c:3e:1c:49:14:6a:a9:12:4b:c3:45: 32:b0:c9:1e:88:6a:69:58:42:b7:f9:ae:af:ee:94: c7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:82:23:EA:91:64:B2:56:C2:09:9E:54:05:E4:44:9F:4C:19:06:ED X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS134127.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.99.5.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:66:6e:d2:e8:64:81:6f:36:9d:fb:9e:3b:c9:b1:33:51:2c: 34:43:d7:d5:3c:a1:71:5c:49:1a:50:36:1c:a3:d8:f8:2e:a0: 54:54:9d:7e:f1:03:6f:a9:f5:e9:bd:68:d8:a8:e3:d5:d2:74: da:01:6e:6b:95:61:e3:2c:cc:bd:b8:bb:03:83:9f:91:1c:7b: 73:25:e6:4f:2b:4c:af:b8:c9:c8:3a:e2:c0:48:8b:23:37:27: cb:e8:e5:98:36:51:d0:87:c0:38:e6:94:d1:84:11:c5:19:dd: 40:43:f7:33:45:6b:86:e6:a8:f1:6d:d1:0b:fd:e3:ce:c6:67: 3d:53:04:ec:c9:63:5b:5a:1b:3d:8b:6f:ab:3d:1d:e9:5c:fe: 7e:99:56:e3:dc:77:10:31:74:8d:ed:97:4e:08:40:e8:62:c3: 4c:3b:35:97:87:84:b5:b0:20:a0:6a:a6:67:05:ee:88:d9:0b: 07:03:ab:53:97:dc:97:7a:18:6c:67:c4:58:91:c2:2d:45:a2: a3:4d:85:19:dc:8b:86:c6:26:5e:2d:35:e5:9b:a6:fc:cf:4a: 4c:58:4e:cd:3e:d7:7e:b9:6a:ce:53:d3:8c:01:fc:4e:f5:5c: 35:1c:b4:bf:fa:cd:9f:5c:e5:69:bd:ec:25:07:48:8d:39:9c: 35:06:65:66 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUMXACggkwjZcirp+Ztz04a6+tLa0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MjAwNloX DTI3MDUwMTA5MjUwNlowMzExMC8GA1UEAxMoOEE4MjIzRUE5MTY0QjI1NkMyMDk5 RTU0MDVFNDQ0OUY0QzE5MDZFRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALxYbWjFeppJ04ii+bD5c3YV46BTYfJKdJxSsPnWtOU2ZSSTuiGGrLCqDEs0 c43K9vlTH6Zi4sme/WYPikrOSw7ljllL/zdp2TNUkROw7O+e3ezhr0TQtpQozJ2A kXBrU0bk6Pksbv+tQUcitUhppskobl3yswZdivT8XS94/dfvWkRUDDUM8iXUHuGk 3mOXgYTlsbDFTqJBGIuS3dSiBPil5nRUbAU3/B6OgdDL6wHoWJPrsvYfB6astoe8 c2WGLEgdGd6CGCGinC4+xkS1s/74yGk/1Wi9+A9nzDc0TGGHTFirOpw+HEkUaqkS S8NFMrDJHohqaVhCt/mur+6Ux4sCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSKgiPq kWSyVsIJnlQF5ESfTBkG7TAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTM0MTI3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQApWMFMA0GCSqGSIb3DQEBCwUAA4IBAQAqZm7S6GSBbzad+547ybEzUSw0 Q9fVPKFxXEkaUDYco9j4LqBUVJ1+8QNvqfXpvWjYqOPV0nTaAW5rlWHjLMy9uLsD g5+RHHtzJeZPK0yvuMnIOuLASIsjNyfL6OWYNlHQh8A45pTRhBHFGd1AQ/czRWuG 5qjxbdEL/ePOxmc9UwTsyWNbWhs9i2+rPR3pXP5+mVbj3HcQMXSN7ZdOCEDoYsNM OzWXh4S1sCCgaqZnBe6I2QsHA6tTl9yXehhsZ8RYkcItRaKjTYUZ3IuGxiZeLTXl m6b8z0pMWE7NPtd+uWrOU9OMAfxO9Vw1HLS/+s2fXOVpvewlB0iNOZw1BmVm -----END CERTIFICATE-----Generated at Sat May 2 21:05:39 2026 by rpki-client