$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS131705.roa File: AS131705.roa (raw, json) Hash identifier: mvwUmP7/zwIkiorGD6LyFPJ9F6k7g5783AUzuxmPiAA= Subject key identifier: 49:FB:BB:88:19:C7:D5:22:29:82:7C:D1:F9:8C:BB:EC:92:F6:C1:52 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1035E1BA5AE2B319F9EB1D96CA948853A2B5EB05 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131705.roa Signing time: Sat 02 May 2026 21:16:17 +0000 ROA not before: Sat 02 May 2026 21:11:17 +0000 ROA not after: Sat 01 May 2027 21:16:17 +0000 asID: 131705 IP address blocks: 103.23.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:35:e1:ba:5a:e2:b3:19:f9:eb:1d:96:ca:94:88:53:a2:b5:eb:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:11:17 2026 GMT Not After : May 1 21:16:17 2027 GMT Subject: CN=49FBBB8819C7D52229827CD1F98CBBEC92F6C152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:51:4d:a0:47:98:68:86:50:8b:b2:55:c2:9e: 88:69:78:ae:6d:83:1b:8f:8c:78:35:7f:ee:66:78: c8:2a:08:d6:7b:44:87:5a:0d:be:65:13:aa:45:f4: d1:67:58:15:08:2c:f2:bf:a8:a4:9c:34:15:d8:38: 69:04:e9:6a:4d:92:7a:c9:44:ef:c3:3b:2f:8d:f1: 1c:91:4d:92:6f:08:f6:c7:1a:b5:f9:3c:d7:63:b3: fc:2a:6c:71:c1:aa:14:41:31:75:a4:0a:bb:b3:98: 12:31:11:f0:68:c8:52:c3:68:10:1d:51:42:d7:e9: 3d:36:78:6c:e4:7e:4e:3e:63:33:20:e6:4e:41:fa: 98:03:65:ff:b6:67:5b:17:e6:36:b3:72:c2:05:fc: 91:4b:99:df:19:cc:f0:e4:8e:15:6f:3d:06:1e:bf: 56:f8:d9:38:94:80:7c:bb:dd:5d:ff:f7:a1:aa:11: 19:18:62:64:13:1a:4a:a4:51:2f:99:46:01:12:87: 97:ea:de:c9:9d:74:0f:a1:d4:df:4a:8e:25:7b:de: aa:9b:d4:84:d0:0e:63:0e:cf:d4:86:6b:83:42:a2: 94:41:36:a7:d0:df:1c:16:0a:ab:25:03:f5:7a:56: 11:29:37:aa:00:51:d2:39:9d:b4:a1:cb:d8:5f:13: eb:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:FB:BB:88:19:C7:D5:22:29:82:7C:D1:F9:8C:BB:EC:92:F6:C1:52 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131705.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.196.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:59:07:8d:09:26:06:c6:6d:86:c9:b2:35:02:54:bc:a7:08: 1c:b6:a8:de:37:b9:b6:1f:a1:80:27:52:38:bf:5e:d6:fb:6e: 3b:98:d4:b7:2a:9b:32:30:7d:ec:25:aa:5f:f0:68:5a:85:a4: 7d:29:6c:1e:7b:f2:b6:98:c9:45:bf:0b:54:55:50:9d:35:46: 59:b4:bc:30:f9:56:52:6f:f1:6a:ac:e1:ba:dd:06:b8:ac:53: 91:de:7b:74:cc:24:11:a7:42:da:64:de:76:14:1f:89:c9:04: c1:58:51:3b:9e:15:bd:64:07:30:c4:18:f1:60:c6:b2:9d:50: 93:3f:84:51:a8:70:ad:40:db:1b:30:c5:1a:97:5c:b4:9e:0c: df:44:4c:ff:5b:43:67:2a:f2:5c:41:97:14:80:5e:bc:40:0d: b1:42:fb:a2:42:6d:a7:a8:bd:0b:3a:9f:a9:e2:af:c4:bb:06: 68:3e:f4:f7:ac:26:65:67:75:6f:9f:1f:50:c6:78:85:49:17: 25:1b:05:13:1a:7a:bb:88:7e:6b:96:1a:90:48:53:13:2d:5a: 29:05:0d:df:4a:b2:88:f0:0d:cc:7d:6a:98:d0:d5:12:dd:9d: fe:c3:c6:da:ed:14:47:b6:b4:f4:71:f6:2b:6a:5c:46:76:0b: a3:64:89:ec -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUEDXhulrisxn56x2WypSIU6K16wUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTExN1oX DTI3MDUwMTIxMTYxN1owMzExMC8GA1UEAxMoNDlGQkJCODgxOUM3RDUyMjI5ODI3 Q0QxRjk4Q0JCRUM5MkY2QzE1MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALJRTaBHmGiGUIuyVcKeiGl4rm2DG4+MeDV/7mZ4yCoI1ntEh1oNvmUTqkX0 0WdYFQgs8r+opJw0Fdg4aQTpak2SeslE78M7L43xHJFNkm8I9scatfk812Oz/Cps ccGqFEExdaQKu7OYEjER8GjIUsNoEB1RQtfpPTZ4bOR+Tj5jMyDmTkH6mANl/7Zn WxfmNrNywgX8kUuZ3xnM8OSOFW89Bh6/VvjZOJSAfLvdXf/3oaoRGRhiZBMaSqRR L5lGARKHl+reyZ10D6HU30qOJXveqpvUhNAOYw7P1IZrg0KilEE2p9DfHBYKqyUD 9XpWESk3qgBR0jmdtKHL2F8T65cCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRJ+7uI GcfVIimCfNH5jLvskvbBUjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTMxNzA1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZxfEMA0GCSqGSIb3DQEBCwUAA4IBAQB+WQeNCSYGxm2GybI1AlS8pwgc tqjeN7m2H6GAJ1I4v17W+247mNS3KpsyMH3sJapf8GhahaR9KWwee/K2mMlFvwtU VVCdNUZZtLww+VZSb/FqrOG63Qa4rFOR3nt0zCQRp0LaZN52FB+JyQTBWFE7nhW9 ZAcwxBjxYMaynVCTP4RRqHCtQNsbMMUal1y0ngzfREz/W0NnKvJcQZcUgF68QA2x QvuiQm2nqL0LOp+p4q/EuwZoPvT3rCZlZ3Vvnx9QxniFSRclGwUTGnq7iH5rlhqQ SFMTLVopBQ3fSrKI8A3MfWqY0NUS3Z3+w8ba7RRHtrT0cfYralxGdgujZIns -----END CERTIFICATE-----Generated at Sun May 3 00:42:26 2026 by rpki-client