$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS59132.roa File: AS59132.roa (raw, json) Hash identifier: 8osf7FmUFraISqyBRXlJN4N1O5hRW427Fo9pU9LT0AE= Subject key identifier: C6:B9:D3:9E:A2:84:26:24:E8:BF:41:D4:3A:F8:B7:B5:13:01:06:E4 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 322E568FBB3E69E52F70123D2A9394EB14CBDD2D Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS59132.roa Signing time: Sat 02 May 2026 09:24:01 +0000 ROA not before: Sat 02 May 2026 09:19:01 +0000 ROA not after: Sat 01 May 2027 09:24:01 +0000 asID: 59132 IP address blocks: 157.85.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:2e:56:8f:bb:3e:69:e5:2f:70:12:3d:2a:93:94:eb:14:cb:dd:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:19:01 2026 GMT Not After : May 1 09:24:01 2027 GMT Subject: CN=C6B9D39EA2842624E8BF41D43AF8B7B5130106E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:96:0e:e5:e9:bd:bb:da:45:b6:b0:3b:90:46: d8:76:0d:cb:5f:e5:29:4e:d3:f7:9e:05:62:6b:b8: 81:41:be:20:5e:9c:ee:01:ea:a9:52:f9:01:73:32: ff:ff:a2:ca:b2:2b:6b:cf:d9:87:44:e2:ba:83:41: 5c:56:20:74:eb:d6:4a:a2:c7:f9:ac:09:f0:6f:f8: e1:7f:1a:7c:38:2b:ba:98:db:9d:06:0c:ee:5a:67: 90:07:24:da:b3:5b:f4:87:ea:1b:d2:d5:5c:02:7c: c0:13:1c:5f:cb:72:e2:ae:55:cd:07:c2:19:f4:52: 34:77:b9:2c:38:41:e9:be:24:3b:32:db:00:30:a9: 4a:f0:c9:94:b9:0d:b6:c2:4c:f4:b5:aa:f8:ab:81: bf:9a:c6:47:3f:06:fe:0f:63:ed:0a:c6:a4:87:d3: d7:3e:cd:2e:c8:c7:0c:f4:1e:29:4b:18:6c:78:4a: 32:73:07:d0:52:0a:d0:c6:58:bd:cc:6e:33:cb:76: 92:26:a4:09:77:78:51:a6:a7:a6:a5:0c:c3:55:5d: b0:73:77:02:55:3f:70:5d:28:14:f9:ec:99:ae:1a: b8:4c:a6:99:0c:4b:82:1a:68:51:ad:d9:14:12:d9: cf:36:c7:38:fd:f8:8b:89:60:ea:b9:5b:fb:1e:22: c5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:B9:D3:9E:A2:84:26:24:E8:BF:41:D4:3A:F8:B7:B5:13:01:06:E4 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS59132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.85.223.0/24 Signature Algorithm: sha256WithRSAEncryption 17:4c:e6:af:9c:66:65:ba:67:6a:27:38:74:d6:41:a0:4b:b9: f5:dd:8a:91:4d:08:8c:82:95:f5:ff:d8:19:1d:eb:25:39:a3: 67:a8:e7:d5:52:44:2e:c4:71:b5:3b:9e:2a:e7:f1:19:04:22: b2:f3:e4:c5:00:3b:29:16:80:b4:3a:69:d3:77:61:22:89:5f: 74:a4:9f:45:eb:d8:85:27:3f:f1:16:23:a7:31:ed:38:97:44: f3:07:bc:1e:d5:24:9e:62:97:fa:ab:b3:83:3d:3c:b4:9e:43: 3c:9a:a7:93:90:47:87:8c:e7:a6:67:0d:2a:f8:4c:a1:59:5a: 6d:12:c8:51:99:e7:29:a6:4b:6d:4d:8d:51:15:00:64:ef:fd: 5b:1e:da:40:04:ec:47:33:1f:9e:54:4c:84:28:9d:c5:b8:a1: 77:fe:e6:2e:ad:1d:ef:b0:2d:37:05:57:66:f2:fb:ea:c7:72: f7:eb:75:df:a3:51:3a:8e:3d:d2:86:a6:35:2f:16:9a:5b:37: b1:b3:3a:2d:30:a1:5a:bc:59:a7:c1:27:fb:97:b6:85:f3:06: 1e:c5:e5:95:89:75:72:aa:c3:23:57:f1:af:31:2f:b9:dc:e6: 26:45:f1:db:c6:d7:a7:28:48:dd:4b:30:56:91:1a:85:da:47: 78:ed:50:18 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUMi5Wj7s+aeUvcBI9KpOU6xTL3S0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTkwMVoX DTI3MDUwMTA5MjQwMVowMzExMC8GA1UEAxMoQzZCOUQzOUVBMjg0MjYyNEU4QkY0 MUQ0M0FGOEI3QjUxMzAxMDZFNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMeWDuXpvbvaRbawO5BG2HYNy1/lKU7T954FYmu4gUG+IF6c7gHqqVL5AXMy //+iyrIra8/Zh0TiuoNBXFYgdOvWSqLH+awJ8G/44X8afDgrupjbnQYM7lpnkAck 2rNb9IfqG9LVXAJ8wBMcX8ty4q5VzQfCGfRSNHe5LDhB6b4kOzLbADCpSvDJlLkN tsJM9LWq+KuBv5rGRz8G/g9j7QrGpIfT1z7NLsjHDPQeKUsYbHhKMnMH0FIK0MZY vcxuM8t2kiakCXd4UaanpqUMw1VdsHN3AlU/cF0oFPnsma4auEymmQxLghpoUa3Z FBLZzzbHOP34i4lg6rlb+x4ixVsCAwEAAaOCAcswggHHMB0GA1UdDgQWBBTGudOe ooQmJOi/QdQ6+Le1EwEG5DAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTNTkxMzIucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACdVd8wDQYJKoZIhvcNAQELBQADggEBABdM5q+cZmW6Z2onOHTWQaBLufXd ipFNCIyClfX/2Bkd6yU5o2eo59VSRC7EcbU7nirn8RkEIrLz5MUAOykWgLQ6adN3 YSKJX3Skn0Xr2IUnP/EWI6cx7TiXRPMHvB7VJJ5il/qrs4M9PLSeQzyap5OQR4eM 56ZnDSr4TKFZWm0SyFGZ5ymmS21NjVEVAGTv/Vse2kAE7EczH55UTIQoncW4oXf+ 5i6tHe+wLTcFV2by++rHcvfrdd+jUTqOPdKGpjUvFppbN7GzOi0woVq8WafBJ/uX toXzBh7F5ZWJdXKqwyNX8a8xL7nc5iZF8dvG16coSN1LMFaRGoXaR3jtUBg= -----END CERTIFICATE-----Generated at Sat May 2 21:05:07 2026 by rpki-client