$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS132634.roa File: AS132634.roa (raw, json) Hash identifier: D4H4XKj4qTFi2yGJvjtHwombGvHAvIFocqhj43/8umM= Subject key identifier: F4:DA:FD:5A:15:AC:ED:E3:78:6D:4F:A2:D6:66:F5:95:9C:50:0C:51 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 329C75E5ACDC875FECBB95FBCCC21C955D8734DE Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS132634.roa Signing time: Sat 02 May 2026 09:20:43 +0000 ROA not before: Sat 02 May 2026 09:15:43 +0000 ROA not after: Sat 01 May 2027 09:20:43 +0000 asID: 132634 IP address blocks: 103.170.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:9c:75:e5:ac:dc:87:5f:ec:bb:95:fb:cc:c2:1c:95:5d:87:34:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:43 2026 GMT Not After : May 1 09:20:43 2027 GMT Subject: CN=F4DAFD5A15ACEDE3786D4FA2D666F5959C500C51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d5:c7:d3:f6:81:44:1d:b0:22:37:dd:dd:23: 19:ca:20:1e:d5:d7:31:e4:49:2b:8c:c9:bd:96:42: b8:39:dc:e7:bb:e4:c5:f1:73:ab:3e:eb:58:ff:e5: 58:50:d8:56:d7:6a:22:85:8b:4c:2d:3a:0f:46:d2: 24:04:27:70:1b:7e:8a:13:88:9c:1e:3b:32:cc:a3: a0:ce:f3:1b:2a:55:d9:30:4b:cc:f3:ba:06:79:8d: 92:fd:f0:eb:99:5a:57:9b:a3:cd:8b:8b:e8:3a:8b: fe:29:93:18:4e:eb:5a:22:01:84:69:2d:9f:37:45: 68:7d:f7:1d:be:b5:ca:59:fe:61:9f:19:c0:53:5a: c3:43:b3:52:10:49:cb:61:85:9d:a9:d9:61:0e:b7: 62:3c:64:78:fd:51:b4:b6:c0:cf:62:ed:8c:64:bc: af:d3:d8:e1:e0:4e:57:37:dc:6b:cd:c6:b5:b6:69: 11:48:6b:45:f2:41:34:74:60:49:9b:14:e8:56:b0: 4b:2e:e9:44:0f:de:d1:46:e4:f0:ba:37:c6:bf:d3: 0d:40:6c:1e:bd:c1:ab:2a:e4:55:d1:0d:0d:ad:1a: 54:90:4b:a9:15:9b:6c:bc:d3:52:c8:e0:ff:d6:01: 16:56:0d:33:69:fc:07:52:73:0f:ac:f8:93:9c:ef: 60:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:DA:FD:5A:15:AC:ED:E3:78:6D:4F:A2:D6:66:F5:95:9C:50:0C:51 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS132634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.104.0/23 Signature Algorithm: sha256WithRSAEncryption 68:cf:34:8c:07:a9:10:a1:e9:bf:aa:92:7d:9b:99:4c:44:51: 30:c1:4a:0a:61:ff:19:c9:04:68:7a:17:55:af:28:2c:98:18: 9d:7a:10:b7:a0:6f:eb:c0:e7:1e:0b:e9:64:aa:bf:67:50:39: 81:4a:a7:78:03:03:58:e1:f9:4d:ef:65:a4:78:35:1c:df:c9: c4:ca:bf:7c:bf:7f:d2:f1:3a:ad:66:29:9f:d7:91:72:a5:05: 1f:6e:d1:94:13:53:e2:d8:e5:0f:6f:f7:29:38:03:eb:20:0c: e6:d6:28:25:07:46:f0:56:03:38:ab:6a:cc:62:0b:39:07:5e: a7:1b:40:c1:bc:bf:ae:ac:61:a2:6c:93:a1:6e:9b:ae:57:26: 6d:13:4f:eb:73:7b:4f:71:6d:c9:25:df:81:99:f1:74:45:00: 94:3a:e8:42:c8:ba:66:c6:3b:56:a2:26:ef:72:5a:94:32:c9: eb:c5:d4:69:a3:c6:42:a9:7d:3a:d0:ad:12:f5:43:cf:9e:04: ad:99:30:6c:bd:99:94:01:e4:7e:52:0a:45:48:82:ce:fa:5f: 78:65:33:39:3d:ce:f8:3e:9d:83:54:a4:4d:15:24:e5:28:97: cd:34:76:d5:fc:44:a6:a9:c5:5a:ab:c9:72:84:6d:80:6d:90: 21:64:bb:ff -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUMpx15azch1/su5X7zMIclV2HNN4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTU0M1oX DTI3MDUwMTA5MjA0M1owMzExMC8GA1UEAxMoRjREQUZENUExNUFDRURFMzc4NkQ0 RkEyRDY2NkY1OTU5QzUwMEM1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANbVx9P2gUQdsCI33d0jGcogHtXXMeRJK4zJvZZCuDnc57vkxfFzqz7rWP/l WFDYVtdqIoWLTC06D0bSJAQncBt+ihOInB47MsyjoM7zGypV2TBLzPO6BnmNkv3w 65laV5ujzYuL6DqL/imTGE7rWiIBhGktnzdFaH33Hb61yln+YZ8ZwFNaw0OzUhBJ y2GFnanZYQ63YjxkeP1RtLbAz2LtjGS8r9PY4eBOVzfca83GtbZpEUhrRfJBNHRg SZsU6FawSy7pRA/e0Ubk8Lo3xr/TDUBsHr3BqyrkVdENDa0aVJBLqRWbbLzTUsjg /9YBFlYNM2n8B1JzD6z4k5zvYIsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBT02v1a Fazt43htT6LWZvWVnFAMUTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTMyNjM0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ6poMA0GCSqGSIb3DQEBCwUAA4IBAQBozzSMB6kQoem/qpJ9m5lMRFEw wUoKYf8ZyQRoehdVrygsmBidehC3oG/rwOceC+lkqr9nUDmBSqd4AwNY4flN72Wk eDUc38nEyr98v3/S8TqtZimf15FypQUfbtGUE1Pi2OUPb/cpOAPrIAzm1iglB0bw VgM4q2rMYgs5B16nG0DBvL+urGGibJOhbpuuVyZtE0/rc3tPcW3JJd+BmfF0RQCU OuhCyLpmxjtWoibvclqUMsnrxdRpo8ZCqX060K0S9UPPngStmTBsvZmUAeR+UgpF SILO+l94ZTM5Pc74Pp2DVKRNFSTlKJfNNHbV/ESmqcVaq8lyhG2AbZAhZLv/ -----END CERTIFICATE-----Generated at Sun May 3 00:42:15 2026 by rpki-client