$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS131745.roa File: AS131745.roa (raw, json) Hash identifier: 2Q7QJn8C66bqXlkKubpFTZ2Wna1rO8QBXeNzbRGH/Cs= Subject key identifier: 63:61:88:74:EA:19:59:02:E1:6F:AE:87:E3:6D:58:D6:0E:21:72:8A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 51CAE0B12ACECE8498A8D63947E67437E56E702B Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131745.roa Signing time: Sat 02 May 2026 21:17:17 +0000 ROA not before: Sat 02 May 2026 21:12:17 +0000 ROA not after: Sat 01 May 2027 21:17:17 +0000 asID: 131745 IP address blocks: 103.241.192.0/24 maxlen: 24 2400:85e0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:ca:e0:b1:2a:ce:ce:84:98:a8:d6:39:47:e6:74:37:e5:6e:70:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:12:17 2026 GMT Not After : May 1 21:17:17 2027 GMT Subject: CN=63618874EA195902E16FAE87E36D58D60E21728A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:52:a4:4f:ce:b7:3e:f9:b4:d8:91:11:ae:a4: 25:fd:25:fa:23:6e:db:9f:46:39:f4:e1:85:eb:6f: 64:5e:fd:20:8c:4d:9e:0f:72:a5:1c:e9:32:5d:da: 41:bc:6d:b0:f3:38:ed:97:8d:7f:60:23:77:78:9f: 06:a2:ee:f2:b3:9a:44:a3:cc:11:20:9c:cb:38:de: 94:02:94:f6:3d:2e:2e:2d:0c:c5:fe:a3:9a:44:6f: 47:2c:4a:a6:cf:f2:5f:48:b7:19:92:d5:18:e8:88: 32:d4:54:6d:50:9e:8e:c1:5e:f2:c4:89:41:b0:af: d3:1b:77:92:14:59:f7:ae:11:66:0d:b2:d1:0c:25: 93:5f:a1:f8:15:9f:6e:16:52:4d:96:16:ff:6a:8b: 84:3b:08:af:03:a9:63:09:65:b5:f4:ea:10:ac:e8: a2:fd:4a:74:75:c8:8b:05:b5:4a:20:cf:8a:4e:b6: b8:70:cc:65:76:64:bf:a2:4c:94:81:9d:d5:33:57: 38:8b:15:7c:32:40:04:62:93:bc:b4:0b:c3:0a:e2: 02:6f:3f:4a:9a:33:c6:8c:a7:d6:e7:72:17:27:41: fe:a6:43:df:52:85:2b:eb:cd:63:da:ed:93:91:fb: 19:b8:1c:81:4a:21:7e:b7:8a:4b:f9:77:9b:3d:03: 56:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:61:88:74:EA:19:59:02:E1:6F:AE:87:E3:6D:58:D6:0E:21:72:8A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS131745.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.241.192.0/24 IPv6: 2400:85e0::/32 Signature Algorithm: sha256WithRSAEncryption 64:23:5b:15:5a:53:fb:07:a6:73:9b:56:de:1e:2c:a2:bc:a7: 59:c9:6e:b3:dd:79:4a:c3:46:50:a3:57:f3:47:7c:7e:b8:4a: 8a:bb:39:2b:07:7c:8a:88:1b:cc:bb:3a:d6:41:69:68:0b:5d: c2:56:5a:9a:6a:3c:9f:bc:15:dc:0e:8d:49:34:1f:10:a4:09: 0f:9e:7d:34:c4:f9:34:50:8a:6f:ed:5f:53:90:26:07:4b:7c: 00:e9:4b:0f:d6:d0:d9:33:fc:ac:17:00:2f:4f:ec:9b:98:9e: ce:fa:8e:64:8e:10:0d:b8:62:94:37:65:a5:9f:7a:c7:03:82: 55:77:29:0a:84:e9:c8:e7:85:7b:67:fb:aa:8c:7d:8e:b1:a8: 09:2f:97:b8:bd:f5:88:6e:b7:07:73:85:6f:1c:27:7e:e5:1e: 3b:7b:7b:ff:f4:2a:e7:40:a3:31:fd:5f:42:cb:c5:75:c6:40: a7:4d:7e:bc:e9:df:ff:57:4c:41:6f:d3:5d:d2:cb:0e:4c:a9: bf:9b:96:be:23:58:eb:82:40:d3:91:5c:be:18:ab:1a:99:fd: 24:fb:cc:e7:b1:f1:0f:df:8f:80:da:ef:f0:a4:9e:1c:61:07: 7e:f5:f1:63:0e:9b:3b:70:06:3c:bb:0e:a8:fc:05:91:26:fb: 86:05:37:16 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUUcrgsSrOzoSYqNY5R+Z0N+VucCswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTIxN1oX DTI3MDUwMTIxMTcxN1owMzExMC8GA1UEAxMoNjM2MTg4NzRFQTE5NTkwMkUxNkZB RTg3RTM2RDU4RDYwRTIxNzI4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJhSpE/Otz75tNiREa6kJf0l+iNu259GOfThhetvZF79IIxNng9ypRzpMl3a QbxtsPM47ZeNf2Ajd3ifBqLu8rOaRKPMESCcyzjelAKU9j0uLi0Mxf6jmkRvRyxK ps/yX0i3GZLVGOiIMtRUbVCejsFe8sSJQbCv0xt3khRZ964RZg2y0Qwlk1+h+BWf bhZSTZYW/2qLhDsIrwOpYwlltfTqEKzoov1KdHXIiwW1SiDPik62uHDMZXZkv6JM lIGd1TNXOIsVfDJABGKTvLQLwwriAm8/Spozxoyn1udyFydB/qZD31KFK+vNY9rt k5H7GbgcgUohfreKS/l3mz0DVnECAwEAAaOCAdswggHXMB0GA1UdDgQWBBRjYYh0 6hlZAuFvrofjbVjWDiFyijAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTMxNzQ1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIA ATAGAwQAZ/HAMA0EAgACMAcDBQAkAIXgMA0GCSqGSIb3DQEBCwUAA4IBAQBkI1sV WlP7B6Zzm1beHiyivKdZyW6z3XlKw0ZQo1fzR3x+uEqKuzkrB3yKiBvMuzrWQWlo C13CVlqaajyfvBXcDo1JNB8QpAkPnn00xPk0UIpv7V9TkCYHS3wA6UsP1tDZM/ys FwAvT+ybmJ7O+o5kjhANuGKUN2Wln3rHA4JVdykKhOnI54V7Z/uqjH2OsagJL5e4 vfWIbrcHc4VvHCd+5R47e3v/9CrnQKMx/V9Cy8V1xkCnTX686d//V0xBb9Nd0ssO TKm/m5a+I1jrgkDTkVy+GKsamf0k+8znsfEP34+A2u/wpJ4cYQd+9fFjDps7cAY8 uw6o/AWRJvuGBTcW -----END CERTIFICATE-----Generated at Sun May 3 01:44:06 2026 by rpki-client