$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS131736.roa File: AS131736.roa (raw, json) Hash identifier: 5nz1SKzVTwNbTf09saekcyRNIiK60mTlYEtoNxRX5sY= Subject key identifier: 0C:81:0B:B0:85:A7:6A:A2:91:88:E8:66:12:AA:C5:FF:B2:D1:D2:05 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5874C050F5D2538DE010BB019C808D152C3D3DFF Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131736.roa Signing time: Sat 02 May 2026 21:33:48 +0000 ROA not before: Sat 02 May 2026 21:28:48 +0000 ROA not after: Sat 01 May 2027 21:33:48 +0000 asID: 131736 IP address blocks: 103.132.12.0/22 maxlen: 24 202.183.0.0/20 maxlen: 24 202.183.16.0/20 maxlen: 24 2404:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:74:c0:50:f5:d2:53:8d:e0:10:bb:01:9c:80:8d:15:2c:3d:3d:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:28:48 2026 GMT Not After : May 1 21:33:48 2027 GMT Subject: CN=0C810BB085A76AA29188E86612AAC5FFB2D1D205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7e:e6:a4:3e:0c:38:b0:3c:b8:7a:c4:f5:64: 00:66:dd:0c:50:b3:f2:e3:09:14:ab:10:76:30:02: 44:cf:f5:36:50:8a:19:18:79:fd:88:0b:ba:f9:4d: fd:76:23:ca:ef:39:fa:d9:ac:3d:5a:98:2d:83:ab: 92:1b:e9:f6:24:63:15:ef:7f:42:d5:16:d4:be:3d: fa:90:45:04:fb:82:41:7a:2c:52:ff:18:68:29:56: df:1f:b5:18:a7:dc:36:d3:48:4b:d5:f1:ff:5b:08: 27:7f:2f:da:55:11:02:e2:2b:a6:fd:26:61:42:62: f2:d3:e1:d0:e2:30:fa:e9:8e:ac:f8:a4:0f:1f:34: ee:4b:f0:a4:ff:68:ff:61:0d:d6:dd:4b:f9:e4:b0: d8:c8:52:56:e4:57:85:06:2e:c9:1a:7f:ed:76:7d: 58:dd:c2:83:de:d0:e4:1b:8e:f2:0c:66:70:f2:ff: 44:cd:f9:ed:35:4a:24:9c:25:31:b9:91:5c:d8:5a: 5c:9a:fc:3c:73:71:c2:81:4d:2b:f5:ad:22:6c:f5: a3:7a:21:59:0a:f5:82:6a:07:ca:cd:f0:d8:a2:bc: b0:22:5d:83:bd:f4:47:84:1a:7a:ed:66:2e:00:3d: ad:49:a1:0e:77:61:d5:90:8b:a8:99:ad:11:f8:cb: 85:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:81:0B:B0:85:A7:6A:A2:91:88:E8:66:12:AA:C5:FF:B2:D1:D2:05 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.12.0/22 202.183.0.0/19 IPv6: 2404:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 26:e5:91:ba:64:06:75:b7:7d:b5:d0:d4:b9:cf:d8:37:6a:44: 8b:d8:68:fe:66:95:ee:91:70:9d:26:78:ac:3d:48:3e:b6:9f: 31:59:fc:9e:01:51:72:6c:2a:8d:74:91:c5:4d:de:6e:27:29: 80:42:ba:c1:ba:cb:f1:e1:71:31:69:89:8a:7b:de:64:cc:10: 08:36:9b:b6:89:0b:0a:47:49:e2:08:25:85:06:36:73:c4:8e: a6:5f:cf:4c:cf:ce:f4:e9:25:0a:92:90:07:28:8a:c7:02:35: cc:b6:f6:05:35:9d:ca:0c:86:00:7a:ea:c3:9b:1f:67:39:6c: 98:34:f2:c4:c9:06:af:83:7e:87:1f:4f:b2:7c:8f:df:cc:1f: b0:0f:79:c4:29:4c:91:d6:45:4d:aa:02:f7:0b:f9:2f:98:a4: 3b:e7:24:cc:4d:ce:5c:81:26:f0:ce:07:67:41:a7:68:61:68: 5a:0a:be:b0:91:79:7c:e1:29:d5:93:f1:b8:d3:29:25:f9:a6: ad:7c:f6:4e:d5:08:99:65:71:82:c4:85:83:32:72:72:6b:a2: c4:29:be:56:8d:70:74:d2:8e:e1:0d:24:94:fa:5c:95:93:5f: 85:6f:2d:41:15:74:fa:83:3f:65:07:d1:5b:f6:25:ee:c4:48: e5:6b:f6:36 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUWHTAUPXSU43gELsBnICNFSw9Pf8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjg0OFoX DTI3MDUwMTIxMzM0OFowMzExMC8GA1UEAxMoMEM4MTBCQjA4NUE3NkFBMjkxODhF ODY2MTJBQUM1RkZCMkQxRDIwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMB+5qQ+DDiwPLh6xPVkAGbdDFCz8uMJFKsQdjACRM/1NlCKGRh5/YgLuvlN /XYjyu85+tmsPVqYLYOrkhvp9iRjFe9/QtUW1L49+pBFBPuCQXosUv8YaClW3x+1 GKfcNtNIS9Xx/1sIJ38v2lURAuIrpv0mYUJi8tPh0OIw+umOrPikDx807kvwpP9o /2EN1t1L+eSw2MhSVuRXhQYuyRp/7XZ9WN3Cg97Q5BuO8gxmcPL/RM357TVKJJwl MbmRXNhaXJr8PHNxwoFNK/WtImz1o3ohWQr1gmoHys3w2KK8sCJdg730R4Qaeu1m LgA9rUmhDndh1ZCLqJmtEfjLheMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQMgQuw hadqopGI6GYSqsX/stHSBTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTMxNzM2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIA ATAMAwQCZ4QMAwQFyrcAMA0EAgACMAcDBQAkBCzAMA0GCSqGSIb3DQEBCwUAA4IB AQAm5ZG6ZAZ1t3210NS5z9g3akSL2Gj+ZpXukXCdJnisPUg+tp8xWfyeAVFybCqN dJHFTd5uJymAQrrBusvx4XExaYmKe95kzBAINpu2iQsKR0niCCWFBjZzxI6mX89M z8706SUKkpAHKIrHAjXMtvYFNZ3KDIYAeurDmx9nOWyYNPLEyQavg36HH0+yfI/f zB+wD3nEKUyR1kVNqgL3C/kvmKQ75yTMTc5cgSbwzgdnQadoYWhaCr6wkXl84SnV k/G40ykl+aatfPZO1QiZZXGCxIWDMnJya6LEKb5WjXB00o7hDSSU+lyVk1+Fby1B FXT6gz9lB9Fb9iXuxEjla/Y2 -----END CERTIFICATE-----Generated at Sun May 3 00:42:12 2026 by rpki-client