$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS59796.roa File: AS59796.roa (raw, json) Hash identifier: ieg8RRX0WLLjDmHlY83caT8o68AyDZPWAk7Vo3IFIEc= Subject key identifier: 04:A9:6D:A4:65:C6:A6:7C:C6:08:A4:A8:BB:31:7A:42:EF:07:01:DF Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 53F1C3769CC1FA500FE0E49A9D65385EA5312EED Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS59796.roa Signing time: Sat 02 May 2026 09:24:09 +0000 ROA not before: Sat 02 May 2026 09:19:09 +0000 ROA not after: Sat 01 May 2027 09:24:09 +0000 asID: 59796 IP address blocks: 160.25.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:f1:c3:76:9c:c1:fa:50:0f:e0:e4:9a:9d:65:38:5e:a5:31:2e:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:19:09 2026 GMT Not After : May 1 09:24:09 2027 GMT Subject: CN=04A96DA465C6A67CC608A4A8BB317A42EF0701DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:9c:67:6c:b6:ba:b2:47:87:b4:c6:ab:04:21: d5:47:f6:0b:b6:03:09:f7:2e:a7:4b:45:43:45:2c: 21:f2:19:ce:6d:ba:61:29:c4:81:df:31:a4:10:07: a0:b9:da:e2:6f:7f:b6:0d:52:ab:ba:bf:d9:64:4d: ca:ea:e9:c9:4c:29:d9:80:bc:95:54:8a:9e:75:17: 9c:3f:bf:44:0c:23:56:56:1f:41:e4:f3:00:79:28: 53:1c:c8:4e:61:71:ff:55:80:b4:d5:9a:08:c8:d1: 85:4b:4c:21:dd:94:5d:ce:a6:6a:20:65:af:e7:f0: 9b:70:b0:0a:80:94:66:29:e5:01:20:16:12:e1:82: 3c:19:7f:51:32:1c:0d:23:94:a9:0f:e4:ae:ba:00: 32:18:b1:6c:45:58:e2:2f:52:67:b2:77:2c:d0:77: d5:62:3b:eb:ca:a7:67:36:33:72:ae:6c:73:64:dd: d5:8c:fd:09:3d:57:06:a0:53:86:d8:aa:70:14:26: ec:c4:7b:35:95:e9:7f:fd:09:e6:4d:59:9d:02:95: 79:f2:d8:dd:7f:4b:0e:97:c8:70:1a:72:4f:dc:cf: 9c:f3:a6:02:c6:2a:db:f1:40:a1:c6:9d:49:54:5b: e6:42:58:75:77:a0:30:46:6e:6e:3b:70:0f:41:b5: 9a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:A9:6D:A4:65:C6:A6:7C:C6:08:A4:A8:BB:31:7A:42:EF:07:01:DF X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS59796.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.252.0/23 Signature Algorithm: sha256WithRSAEncryption 95:3e:49:25:a5:c8:1c:3a:89:d2:58:02:53:e9:ad:3d:21:b8: ee:19:21:e9:44:48:3d:f2:b0:cd:bc:b6:85:ed:ee:95:48:50: ff:4d:2e:4a:19:bb:43:f6:c7:6a:7f:1f:00:e5:94:fc:82:62: e0:20:3f:8d:8c:78:ce:ba:4a:3e:e9:7c:ef:5a:44:b5:f4:fd: 8d:14:fe:88:d2:e4:cd:2b:64:e9:9e:14:71:8c:2d:b2:f0:f3: d2:b5:f3:97:f3:77:02:0a:7c:12:0c:ab:1d:85:47:3f:e8:0e: 30:91:c5:61:45:6a:5b:5b:75:d9:5d:35:9b:00:1f:91:a8:15: e8:8f:b5:85:15:91:ec:02:05:5b:35:9c:e0:0f:c0:b5:90:7b: ed:06:c9:63:e4:fb:01:4c:6e:14:18:7a:d3:21:98:b5:19:7f: 29:3b:4f:2f:bb:f4:6e:2c:fb:5e:d8:37:8f:47:33:ab:2e:e4: 95:77:70:f9:54:da:0f:5a:a8:87:88:d2:34:8b:d3:15:b3:6f: 83:8c:e3:59:93:ae:c3:f2:92:9e:26:e4:ae:4d:f5:36:bb:4b: d6:a9:55:79:7a:10:cf:cf:ce:e7:5a:ee:a6:fd:cd:3c:28:59: 60:76:6d:c7:1a:52:7f:cb:20:79:59:82:de:df:a4:6c:fb:ed: d6:aa:6a:35 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUU/HDdpzB+lAP4OSanWU4XqUxLu0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTkwOVoX DTI3MDUwMTA5MjQwOVowMzExMC8GA1UEAxMoMDRBOTZEQTQ2NUM2QTY3Q0M2MDhB NEE4QkIzMTdBNDJFRjA3MDFERjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJacZ2y2urJHh7TGqwQh1Uf2C7YDCfcup0tFQ0UsIfIZzm26YSnEgd8xpBAH oLna4m9/tg1Sq7q/2WRNyurpyUwp2YC8lVSKnnUXnD+/RAwjVlYfQeTzAHkoUxzI TmFx/1WAtNWaCMjRhUtMId2UXc6maiBlr+fwm3CwCoCUZinlASAWEuGCPBl/UTIc DSOUqQ/krroAMhixbEVY4i9SZ7J3LNB31WI768qnZzYzcq5sc2Td1Yz9CT1XBqBT htiqcBQm7MR7NZXpf/0J5k1ZnQKVefLY3X9LDpfIcBpyT9zPnPOmAsYq2/FAocad SVRb5kJYdXegMEZubjtwD0G1mlUCAwEAAaOCAcswggHHMB0GA1UdDgQWBBQEqW2k ZcamfMYIpKi7MXpC7wcB3zAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTNTk3OTYucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGgGfwwDQYJKoZIhvcNAQELBQADggEBAJU+SSWlyBw6idJYAlPprT0huO4Z IelESD3ysM28toXt7pVIUP9NLkoZu0P2x2p/HwDllPyCYuAgP42MeM66Sj7pfO9a RLX0/Y0U/ojS5M0rZOmeFHGMLbLw89K185fzdwIKfBIMqx2FRz/oDjCRxWFFaltb ddldNZsAH5GoFeiPtYUVkewCBVs1nOAPwLWQe+0GyWPk+wFMbhQYetMhmLUZfyk7 Ty+79G4s+17YN49HM6su5JV3cPlU2g9aqIeI0jSL0xWzb4OM41mTrsPykp4m5K5N 9Ta7S9apVXl6EM/Pzuda7qb9zTwoWWB2bccaUn/LIHlZgt7fpGz77daqajU= -----END CERTIFICATE-----Generated at Sat May 2 19:23:59 2026 by rpki-client