$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS131075.roa File: AS131075.roa (raw, json) Hash identifier: NTFhQFjL20tyMtHX10ciaMejreqbTKC9nciCTriW+JY= Subject key identifier: CB:1F:2A:5A:D1:F5:D5:42:4D:F2:1A:63:4D:55:FB:39:96:F2:FB:17 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 0FB84AE536E9E5A8C7D85BFA5147BC5BB4A6B455 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131075.roa Signing time: Sat 02 May 2026 09:27:00 +0000 ROA not before: Sat 02 May 2026 09:22:00 +0000 ROA not after: Sat 01 May 2027 09:27:00 +0000 asID: 131075 IP address blocks: 2001:df6:9240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b8:4a:e5:36:e9:e5:a8:c7:d8:5b:fa:51:47:bc:5b:b4:a6:b4:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:22:00 2026 GMT Not After : May 1 09:27:00 2027 GMT Subject: CN=CB1F2A5AD1F5D5424DF21A634D55FB3996F2FB17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:93:2d:4a:06:71:79:22:f8:5b:33:27:c6:88: b5:0b:7d:bb:b4:58:f0:87:58:4d:3d:8f:88:17:26: 58:d1:5f:fc:4f:25:38:c3:9f:7e:ec:04:07:9c:c4: 6e:23:a9:f2:c1:70:55:0d:5c:f6:6e:b8:d2:2e:a7: f2:10:4a:98:95:e5:8c:29:b6:62:84:91:09:ea:90: d0:80:59:f6:d8:0f:ff:82:10:a4:15:1e:4c:3b:51: 0a:13:b5:c0:09:3a:ea:72:76:d0:50:f5:71:6a:34: f1:e6:14:86:f3:19:b9:7a:94:cd:90:e3:60:ba:3d: 91:c8:05:f5:a1:cc:0a:1a:0c:6a:67:da:83:aa:c7: 99:3f:a0:5c:cd:f3:59:29:3e:5b:23:d4:c2:19:33: 4b:dd:49:30:dc:cf:fa:33:09:2f:fd:93:cd:79:eb: da:83:e3:70:fa:d5:8f:bd:49:1d:b7:6f:6a:eb:dd: ab:8a:44:2c:74:f0:57:04:72:41:d3:93:66:7b:ae: 94:bb:c8:97:64:48:ef:3d:a2:26:f6:11:5f:4f:2b: 09:05:0c:d9:4e:7e:6c:b1:f7:61:65:2b:a9:4b:b6: 27:3f:d3:bd:ae:82:cf:5c:e0:7b:22:98:7b:7b:7a: 68:04:e5:42:95:4b:0b:bb:58:8a:02:79:14:26:4f: 4b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:1F:2A:5A:D1:F5:D5:42:4D:F2:1A:63:4D:55:FB:39:96:F2:FB:17 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131075.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:9240::/48 Signature Algorithm: sha256WithRSAEncryption 5e:b7:74:82:ed:98:62:29:65:42:b4:d7:41:a1:86:91:31:b5: a7:09:83:70:9c:5e:70:fe:11:12:31:54:94:01:59:85:75:92: 59:27:17:0c:f3:11:59:c4:2c:41:ae:ca:7c:a5:1a:b6:51:8c: 70:06:6d:7d:3a:ee:bc:d1:f9:60:e2:ea:c8:3a:8c:2e:0f:01: 76:fa:e8:d8:6d:0c:ca:a2:49:93:b1:1e:74:d9:a9:f4:a0:bb: 95:79:d5:fc:1d:f2:24:0c:bd:a0:08:95:cf:dd:43:69:e8:de: d5:47:3f:05:58:b1:ed:30:ed:4c:c5:69:91:50:c9:17:ec:bd: 05:43:f4:f9:c6:e2:bd:19:f5:7f:60:73:be:f4:1a:29:77:eb: b1:2f:a6:8c:aa:bc:5c:0f:4d:67:72:e2:d2:06:5e:66:ab:de: fb:eb:96:06:aa:ad:07:07:00:71:10:f4:96:ef:05:5e:65:5a: ea:6a:be:86:66:14:86:76:c1:50:4d:f1:f1:b1:04:b6:65:a6: e8:e5:0d:86:f2:a7:31:82:c8:aa:ea:ae:02:47:48:de:8c:91: c9:a8:d3:27:b6:ba:78:35:dc:a4:c8:92:91:ea:12:41:10:b6: 47:2c:13:2c:c0:31:f8:05:e5:0c:b5:37:8a:f2:09:55:a0:61: 03:51:21:12 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUD7hK5Tbp5ajH2Fv6UUe8W7SmtFUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjIwMFoX DTI3MDUwMTA5MjcwMFowMzExMC8GA1UEAxMoQ0IxRjJBNUFEMUY1RDU0MjRERjIx QTYzNEQ1NUZCMzk5NkYyRkIxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALWTLUoGcXki+FszJ8aItQt9u7RY8IdYTT2PiBcmWNFf/E8lOMOffuwEB5zE biOp8sFwVQ1c9m640i6n8hBKmJXljCm2YoSRCeqQ0IBZ9tgP/4IQpBUeTDtRChO1 wAk66nJ20FD1cWo08eYUhvMZuXqUzZDjYLo9kcgF9aHMChoMamfag6rHmT+gXM3z WSk+WyPUwhkzS91JMNzP+jMJL/2TzXnr2oPjcPrVj71JHbdvauvdq4pELHTwVwRy QdOTZnuulLvIl2RI7z2iJvYRX08rCQUM2U5+bLH3YWUrqUu2Jz/Tva6Cz1zgeyKY e3t6aATlQpVLC7tYigJ5FCZPS08CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBTLHypa 0fXVQk3yGmNNVfs5lvL7FzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTMxMDc1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN9pJAMA0GCSqGSIb3DQEBCwUAA4IBAQBet3SC7ZhiKWVCtNdBoYaR MbWnCYNwnF5w/hESMVSUAVmFdZJZJxcM8xFZxCxBrsp8pRq2UYxwBm19Ou680flg 4urIOowuDwF2+ujYbQzKokmTsR502an0oLuVedX8HfIkDL2gCJXP3UNp6N7VRz8F WLHtMO1MxWmRUMkX7L0FQ/T5xuK9GfV/YHO+9Bopd+uxL6aMqrxcD01ncuLSBl5m q97765YGqq0HBwBxEPSW7wVeZVrqar6GZhSGdsFQTfHxsQS2Zabo5Q2G8qcxgsiq 6q4CR0jejJHJqNMntrp4NdykyJKR6hJBELZHLBMswDH4BeUMtTeK8glVoGEDUSES -----END CERTIFICATE-----Generated at Sun May 3 01:44:16 2026 by rpki-client