$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS135649.roa File: AS135649.roa (raw, json) Hash identifier: 3OTl9lAJq6KUdAeGjmwroQ6HmeUZ3/JBH9ZyzWXCHZ4= Subject key identifier: 5A:CD:E1:CD:94:C8:91:20:9F:6D:80:50:36:7F:37:75:F2:80:4F:D4 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 417304E5A4C2F56F4FED8652E3A7B1C15C9E1ADB Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS135649.roa Signing time: Sat 02 May 2026 09:24:15 +0000 ROA not before: Sat 02 May 2026 09:19:15 +0000 ROA not after: Sat 01 May 2027 09:24:15 +0000 asID: 135649 IP address blocks: 160.250.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:73:04:e5:a4:c2:f5:6f:4f:ed:86:52:e3:a7:b1:c1:5c:9e:1a:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:19:15 2026 GMT Not After : May 1 09:24:15 2027 GMT Subject: CN=5ACDE1CD94C891209F6D8050367F3775F2804FD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e4:09:95:ad:ce:74:1b:f6:f7:d3:18:8f:45: c5:c4:52:eb:6b:11:38:28:59:70:af:8b:fa:2b:db: 63:c6:10:bb:7e:0a:77:e6:c4:33:5c:28:28:13:7e: ca:43:83:f0:9a:2e:82:0d:ee:d5:98:38:b0:ba:74: 70:d6:d9:02:06:a0:00:fb:6b:57:9a:75:9c:8c:3d: cc:c5:c2:76:b3:33:84:3b:36:90:e5:73:69:0f:9c: 42:51:ba:b7:c8:7e:0c:11:6b:b0:3b:b5:ec:e7:93: 8f:03:f7:a4:36:52:ac:74:47:d6:29:40:c1:86:64: fa:c3:d9:ac:69:30:85:20:52:42:be:d5:52:67:f3: ae:d3:97:a9:01:14:97:96:4a:26:4e:df:09:ba:91: e2:b4:53:c2:d3:2e:21:b4:c1:24:5e:f7:42:75:72: 9c:e2:4a:1a:6d:1c:11:33:2d:40:41:de:c7:6f:60: 58:0b:cf:b8:1d:21:5d:f8:a2:00:7b:e1:36:09:a4: 40:d1:71:0b:a5:79:d8:3f:c1:bb:f7:a9:51:24:ac: 57:9a:e7:17:57:2f:9d:91:a1:f1:f9:07:f6:3a:64: 7d:97:61:5d:95:b5:11:20:66:ef:83:b8:a8:d5:a3: ac:68:76:36:09:be:41:13:2e:d7:45:ac:eb:b9:95: 8e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CD:E1:CD:94:C8:91:20:9F:6D:80:50:36:7F:37:75:F2:80:4F:D4 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS135649.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.250.226.0/24 Signature Algorithm: sha256WithRSAEncryption 56:f5:2f:fc:27:ff:03:8a:0e:d3:cb:cd:c0:48:ad:dd:9b:7d: 5e:09:18:5e:98:b6:17:99:65:3e:9a:2e:25:78:68:69:a0:f0: 9b:59:05:22:df:38:f8:93:34:a7:d7:77:02:1f:19:0e:cd:57: a5:62:9d:a9:75:3d:c8:69:f3:75:da:d7:fa:87:9f:1f:7a:c0: af:1a:58:d4:dd:c2:0b:10:c3:d6:de:ea:86:71:79:c5:33:27: 10:2a:03:72:d6:bf:a1:72:6d:6d:3a:22:85:9d:4f:2d:e8:70: ba:65:05:10:15:39:f8:1b:0f:5d:70:29:ee:b3:77:aa:1e:e3: df:87:86:f4:ac:93:6d:0c:c2:93:a3:03:1d:f6:f4:d3:cb:f1: 75:00:85:ce:e0:f3:88:82:2d:05:3b:38:42:29:d6:c1:5e:da: 63:4a:60:eb:7a:78:4e:c6:bd:ba:69:b0:0b:9d:4d:25:99:c1: b2:1b:d8:92:24:3f:6a:3b:83:de:39:19:1e:1d:9b:41:fc:fd: b8:d6:8e:49:ff:a0:9d:6c:f3:c7:96:32:f4:b2:bc:4c:ff:ec: 1a:d3:82:e8:3a:16:09:52:28:bc:ac:01:c3:16:d8:ab:a4:4f: 99:5e:e1:62:4b:45:12:5a:d2:67:df:be:83:e4:38:f8:40:6a: 81:3a:c6:ed -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUQXME5aTC9W9P7YZS46exwVyeGtswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTkxNVoX DTI3MDUwMTA5MjQxNVowMzExMC8GA1UEAxMoNUFDREUxQ0Q5NEM4OTEyMDlGNkQ4 MDUwMzY3RjM3NzVGMjgwNEZENDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANbkCZWtznQb9vfTGI9FxcRS62sROChZcK+L+ivbY8YQu34Kd+bEM1woKBN+ ykOD8Jougg3u1Zg4sLp0cNbZAgagAPtrV5p1nIw9zMXCdrMzhDs2kOVzaQ+cQlG6 t8h+DBFrsDu17OeTjwP3pDZSrHRH1ilAwYZk+sPZrGkwhSBSQr7VUmfzrtOXqQEU l5ZKJk7fCbqR4rRTwtMuIbTBJF73QnVynOJKGm0cETMtQEHex29gWAvPuB0hXfii AHvhNgmkQNFxC6V52D/Bu/epUSSsV5rnF1cvnZGh8fkH9jpkfZdhXZW1ESBm74O4 qNWjrGh2Ngm+QRMu10Ws67mVjpUCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRazeHN lMiRIJ9tgFA2fzd18oBP1DAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTM1NjQ5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAoPriMA0GCSqGSIb3DQEBCwUAA4IBAQBW9S/8J/8Dig7Ty83ASK3dm31e CRhemLYXmWU+mi4leGhpoPCbWQUi3zj4kzSn13cCHxkOzVelYp2pdT3IafN12tf6 h58fesCvGljU3cILEMPW3uqGcXnFMycQKgNy1r+hcm1tOiKFnU8t6HC6ZQUQFTn4 Gw9dcCnus3eqHuPfh4b0rJNtDMKTowMd9vTTy/F1AIXO4POIgi0FOzhCKdbBXtpj SmDrenhOxr26abALnU0lmcGyG9iSJD9qO4PeORkeHZtB/P241o5J/6CdbPPHljL0 srxM/+wa04LoOhYJUii8rAHDFtirpE+ZXuFiS0USWtJn376D5Dj4QGqBOsbt -----END CERTIFICATE-----Generated at Sat May 2 21:05:30 2026 by rpki-client