$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS131711.roa File: AS131711.roa (raw, json) Hash identifier: noumQqenXraC56af+/CacgLxJPzCiPG4TtoVDH6diXg= Subject key identifier: FC:F0:B0:AC:83:08:29:84:9D:B5:44:D3:7C:15:30:95:CC:D7:94:40 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5414E2252E7A7FF1BEA54F29139AF05FE330E853 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131711.roa Signing time: Sat 02 May 2026 21:33:03 +0000 ROA not before: Sat 02 May 2026 21:28:03 +0000 ROA not after: Sat 01 May 2027 21:33:03 +0000 asID: 131711 IP address blocks: 2402:1d20::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:14:e2:25:2e:7a:7f:f1:be:a5:4f:29:13:9a:f0:5f:e3:30:e8:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:28:03 2026 GMT Not After : May 1 21:33:03 2027 GMT Subject: CN=FCF0B0AC830829849DB544D37C153095CCD79440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:5e:72:ea:1d:83:13:3c:6c:17:06:5a:16:4a: 9b:21:df:be:89:60:b7:23:db:72:ee:7a:22:ee:87: d6:7f:e3:b2:1f:2a:14:7e:4c:30:57:5f:28:29:f7: 74:0b:ed:76:b5:f8:4a:93:14:6c:5c:ec:69:f9:02: cf:c3:6c:6b:3d:e6:01:9d:5b:d8:34:22:b4:ac:ad: 70:fa:fc:4e:80:ef:2b:9b:cd:4f:7a:d8:9e:22:ee: 8c:d7:3d:26:41:5e:f6:a4:f7:00:1c:c0:41:37:00: c7:66:0e:9b:19:a2:f6:a9:6a:d6:95:be:25:6e:14: 7f:14:b5:21:65:1a:9a:55:67:2b:33:94:5e:be:fd: fc:b6:41:bb:ec:05:b7:9c:48:27:fc:88:06:c3:f0: 49:da:a5:4f:47:2a:88:d7:1f:af:f0:d9:a6:cc:da: ec:5d:d6:c8:17:20:87:de:c8:b1:06:ca:df:2b:f3: 55:20:94:e0:16:a8:7a:a1:66:01:8d:8a:96:6b:4f: 9f:38:e4:88:02:d0:f2:83:5e:55:cc:ef:10:4f:21: f3:48:ec:64:9d:e9:5a:75:c2:d0:6f:6c:44:25:b8: fe:79:1f:31:2f:7b:03:da:a8:1f:02:ca:d3:ee:36: b3:f0:db:b3:84:99:25:a2:8e:9a:46:e0:fa:f7:36: bc:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:F0:B0:AC:83:08:29:84:9D:B5:44:D3:7C:15:30:95:CC:D7:94:40 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131711.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:1d20::/32 Signature Algorithm: sha256WithRSAEncryption 54:84:c0:ed:b0:08:2a:96:a4:52:a0:79:ab:48:a6:fc:8a:bc: 52:28:17:1d:b6:59:0b:10:9a:d0:d9:ca:d7:8e:be:ca:aa:47: ff:6f:ec:67:1c:10:a9:50:f3:2e:64:ba:10:3b:b7:99:1a:0f: ca:a7:2a:03:c0:92:8a:fd:bd:17:a8:fc:b5:99:3d:4b:c2:b0: 89:4d:40:65:f2:9d:2d:17:69:30:44:8a:28:4e:67:3f:3f:fc: 6c:ea:46:cc:e8:91:a7:87:39:64:23:cd:ab:8f:d6:0a:d1:22: 53:a7:ff:38:96:04:33:c8:1e:1d:db:13:1d:04:39:3a:34:7e: 74:e2:b1:10:56:ed:fe:d5:5d:2b:3e:cb:20:13:5d:36:26:d9: f0:e0:3c:5b:2f:9f:af:e2:06:f6:15:b8:ac:9b:49:3b:37:75: 25:b9:db:4d:25:cc:1f:be:9d:55:62:58:46:2d:95:cc:ef:1b: 89:73:7d:e7:2f:25:ba:68:64:6b:21:e3:56:ea:ac:32:14:d7: 05:b0:0d:c1:06:14:b1:fe:fc:5c:92:0b:bc:61:42:0e:7a:d8: a9:7d:e8:bb:7c:1c:d6:ee:9c:80:9b:07:70:06:a7:3c:d8:c4: dd:d8:25:09:77:b3:40:58:f0:56:81:eb:44:4b:a4:9d:1c:1e: e0:4b:6c:9a -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIUVBTiJS56f/G+pU8pE5rwX+Mw6FMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjgwM1oX DTI3MDUwMTIxMzMwM1owMzExMC8GA1UEAxMoRkNGMEIwQUM4MzA4Mjk4NDlEQjU0 NEQzN0MxNTMwOTVDQ0Q3OTQ0MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJhecuodgxM8bBcGWhZKmyHfvolgtyPbcu56Iu6H1n/jsh8qFH5MMFdfKCn3 dAvtdrX4SpMUbFzsafkCz8Nsaz3mAZ1b2DQitKytcPr8ToDvK5vNT3rYniLujNc9 JkFe9qT3ABzAQTcAx2YOmxmi9qlq1pW+JW4UfxS1IWUamlVnKzOUXr79/LZBu+wF t5xIJ/yIBsPwSdqlT0cqiNcfr/DZpsza7F3WyBcgh97IsQbK3yvzVSCU4BaoeqFm AY2KlmtPnzjkiALQ8oNeVczvEE8h80jsZJ3pWnXC0G9sRCW4/nkfMS97A9qoHwLK 0+42s/Dbs4SZJaKOmkbg+vc2vL8CAwEAAaOCAc0wggHJMB0GA1UdDgQWBBT88LCs gwgphJ21RNN8FTCVzNeUQDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTMxNzExLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJAIdIDANBgkqhkiG9w0BAQsFAAOCAQEAVITA7bAIKpakUqB5q0im/Iq8 UigXHbZZCxCa0NnK146+yqpH/2/sZxwQqVDzLmS6EDu3mRoPyqcqA8CSiv29F6j8 tZk9S8KwiU1AZfKdLRdpMESKKE5nPz/8bOpGzOiRp4c5ZCPNq4/WCtEiU6f/OJYE M8geHdsTHQQ5OjR+dOKxEFbt/tVdKz7LIBNdNibZ8OA8Wy+fr+IG9hW4rJtJOzd1 JbnbTSXMH76dVWJYRi2VzO8biXN95y8lumhkayHjVuqsMhTXBbANwQYUsf78XJIL vGFCDnrYqX3ou3wc1u6cgJsHcAanPNjE3dglCXezQFjwVoHrREuknRwe4Etsmg== -----END CERTIFICATE-----Generated at Sun May 3 00:42:35 2026 by rpki-client