$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS135659.roa File: AS135659.roa (raw, json) Hash identifier: oNfFTJ98SAwF/0fotrDvTvex8sDJ0pkjNtmy+vMQHuU= Subject key identifier: 28:28:EC:55:4B:40:C4:62:C2:AC:42:DF:D0:FA:0D:77:58:CD:CE:DB Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 0CCC32F49D323FA12D6DE1B1FD6E35DC110A1EE7 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS135659.roa Signing time: Sat 02 May 2026 09:24:20 +0000 ROA not before: Sat 02 May 2026 09:19:20 +0000 ROA not after: Sat 01 May 2027 09:24:20 +0000 asID: 135659 IP address blocks: 160.250.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:cc:32:f4:9d:32:3f:a1:2d:6d:e1:b1:fd:6e:35:dc:11:0a:1e:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:19:20 2026 GMT Not After : May 1 09:24:20 2027 GMT Subject: CN=2828EC554B40C462C2AC42DFD0FA0D7758CDCEDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:29:35:01:d7:6d:56:7a:05:d4:3b:d4:86:31: 5f:b2:15:d4:c3:75:32:80:30:ae:14:cb:04:8a:a6: 95:8d:2c:09:b3:8d:bb:3f:64:f1:31:65:54:58:e5: 14:84:e3:7c:30:a4:79:43:46:ed:62:41:f3:30:b2: 30:20:19:a7:81:72:30:cf:c9:66:60:6b:e7:b7:9a: 5d:3a:e5:37:76:53:db:b2:e0:ca:cb:5b:05:cc:b2: 13:05:83:6f:26:12:ab:cd:35:3f:8f:66:c4:7a:f5: f0:8d:93:b8:4e:2f:3d:64:aa:f0:14:3a:e6:ce:40: 2e:53:a5:4c:d3:45:01:30:c4:2a:46:0f:27:a7:b1: b2:82:2b:80:c0:6a:aa:04:c3:7b:31:88:60:36:85: 04:12:5e:bc:79:7c:5a:cc:60:d5:65:4e:01:85:f0: f3:ee:29:48:6b:7e:08:10:20:d4:72:4f:47:05:f8: 68:90:d4:9e:9a:7a:52:77:0f:ae:d3:17:39:55:59: 1d:db:23:b8:c3:c1:92:b4:b0:ae:d6:fd:98:0a:de: 81:c2:c0:76:da:28:4f:7b:2c:54:e8:19:3d:5e:28: 9d:51:47:42:f1:c5:76:03:d2:fe:f6:07:58:58:09: de:3e:f0:f4:1d:89:07:d4:30:9a:9b:d6:b6:f4:a1: 9e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:28:EC:55:4B:40:C4:62:C2:AC:42:DF:D0:FA:0D:77:58:CD:CE:DB X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS135659.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.250.227.0/24 Signature Algorithm: sha256WithRSAEncryption 57:64:79:27:2a:5a:9a:f1:fc:7d:bb:b1:b9:aa:84:92:23:cc: ce:30:ac:be:4b:6c:1b:b7:03:ad:93:ab:e6:97:8e:35:f5:3f: 07:b6:60:50:d9:01:1a:5f:34:1a:cf:4b:63:ae:90:6e:68:65: 47:b3:c0:f4:2e:76:22:1e:8e:00:23:52:3e:88:a1:97:a1:f5: b5:ed:96:17:04:d7:f5:34:80:66:1f:f6:ef:76:a6:d6:39:ff: cc:f7:7b:a3:b8:24:32:dd:6e:27:ed:97:06:5a:11:72:20:c9: a2:9e:61:1b:4d:40:61:ae:88:cb:80:20:f1:67:75:45:7c:bb: f0:de:98:d6:05:12:13:6e:f9:d1:4c:c6:79:f2:7c:02:ee:5a: 9e:42:3e:50:13:82:50:1e:f3:09:2c:f6:2b:79:30:77:7e:57: fa:54:8d:8c:1d:f9:af:00:3a:c8:a2:30:29:de:0e:c6:a2:8b: 64:0d:1f:7d:71:7f:e6:6f:6c:fa:12:74:54:bd:a4:07:50:26: 4c:50:c4:f5:ca:fa:2d:74:6f:50:02:9c:49:8b:1f:33:b3:25: ea:3a:28:62:b5:77:e6:43:ab:2e:db:95:38:f6:c4:b5:86:e9: f4:af:ac:d5:db:b2:85:08:46:f3:f6:e1:15:7f:1b:a4:a2:42: 3c:64:5d:7c -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUDMwy9J0yP6EtbeGx/W413BEKHucwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTkyMFoX DTI3MDUwMTA5MjQyMFowMzExMC8GA1UEAxMoMjgyOEVDNTU0QjQwQzQ2MkMyQUM0 MkRGRDBGQTBENzc1OENEQ0VEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKYpNQHXbVZ6BdQ71IYxX7IV1MN1MoAwrhTLBIqmlY0sCbONuz9k8TFlVFjl FITjfDCkeUNG7WJB8zCyMCAZp4FyMM/JZmBr57eaXTrlN3ZT27LgystbBcyyEwWD byYSq801P49mxHr18I2TuE4vPWSq8BQ65s5ALlOlTNNFATDEKkYPJ6exsoIrgMBq qgTDezGIYDaFBBJevHl8Wsxg1WVOAYXw8+4pSGt+CBAg1HJPRwX4aJDUnpp6UncP rtMXOVVZHdsjuMPBkrSwrtb9mAregcLAdtooT3ssVOgZPV4onVFHQvHFdgPS/vYH WFgJ3j7w9B2JB9QwmpvWtvShnokCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQoKOxV S0DEYsKsQt/Q+g13WM3O2zAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTM1NjU5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAoPrjMA0GCSqGSIb3DQEBCwUAA4IBAQBXZHknKlqa8fx9u7G5qoSSI8zO MKy+S2wbtwOtk6vml4419T8HtmBQ2QEaXzQaz0tjrpBuaGVHs8D0LnYiHo4AI1I+ iKGXofW17ZYXBNf1NIBmH/bvdqbWOf/M93ujuCQy3W4n7ZcGWhFyIMminmEbTUBh rojLgCDxZ3VFfLvw3pjWBRITbvnRTMZ58nwC7lqeQj5QE4JQHvMJLPYreTB3flf6 VI2MHfmvADrIojAp3g7GootkDR99cX/mb2z6EnRUvaQHUCZMUMT1yvotdG9QApxJ ix8zsyXqOihitXfmQ6su25U49sS1hun0r6zV27KFCEbz9uEVfxukokI8ZF18 -----END CERTIFICATE-----Generated at Sat May 2 21:05:39 2026 by rpki-client