$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS133841.roa File: AS133841.roa (raw, json) Hash identifier: WrotsbA4y5Si//jISRwo55QyPglXajXba3fi93TFH8s= Subject key identifier: 85:1F:56:56:12:F1:6E:06:5E:10:02:1E:E0:D0:FC:DA:35:04:25:FE Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 0E3DF8CAB9B2F52C9762BA77C43696E4CD58F7A3 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS133841.roa Signing time: Sat 02 May 2026 21:31:02 +0000 ROA not before: Sat 02 May 2026 21:26:02 +0000 ROA not after: Sat 01 May 2027 21:31:02 +0000 asID: 133841 IP address blocks: 210.79.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:3d:f8:ca:b9:b2:f5:2c:97:62:ba:77:c4:36:96:e4:cd:58:f7:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:26:02 2026 GMT Not After : May 1 21:31:02 2027 GMT Subject: CN=851F565612F16E065E10021EE0D0FCDA350425FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:57:3d:f3:f8:12:1d:4f:9c:c7:fd:67:ea:75: cc:2f:ce:41:a6:fb:09:ea:8f:5e:1c:ae:70:5a:9a: b4:f0:67:39:77:79:79:d5:e0:46:33:3a:65:34:ee: 75:79:bd:cb:aa:7b:39:f9:92:c6:07:5c:8a:34:0f: 01:a0:ba:8d:ab:bf:83:40:4b:2a:e6:df:b3:5c:2a: fb:15:2d:74:b5:2d:32:f1:a3:30:c1:69:63:91:2f: 0a:8b:7f:0d:c7:5f:28:53:fc:88:fb:4d:ff:ae:fb: 04:2c:fe:13:ac:f7:bb:47:19:00:1e:79:7d:15:e7: 44:bd:00:1f:89:ab:6c:00:cf:ed:fa:bf:fb:cf:2e: 80:7c:a3:9e:4c:ac:fb:92:7e:2b:a8:91:19:ec:6d: 3a:4f:2e:cf:23:7a:d6:f0:0b:9f:5f:bb:cf:e8:bc: 21:9d:6a:28:2f:a5:8f:41:cf:de:82:2e:3a:2f:19: 08:85:80:ab:69:9d:d4:9b:6a:74:d7:2b:66:c6:5d: 6c:5c:f7:ff:a4:df:17:e8:8d:df:84:19:ab:ea:bd: 2f:69:16:9b:20:7d:2f:ac:3e:9d:c0:92:e5:47:97: 36:c0:d2:42:e6:7a:0e:04:46:d1:ac:a7:09:a4:05: bb:79:92:5a:03:bd:70:1c:03:85:ed:7b:a7:e4:8a: 6e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1F:56:56:12:F1:6E:06:5E:10:02:1E:E0:D0:FC:DA:35:04:25:FE X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS133841.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.158.0/23 Signature Algorithm: sha256WithRSAEncryption 14:9e:40:55:5f:44:ed:4f:8d:c4:8b:d6:a6:de:a7:cd:78:37: 53:ab:c3:39:0b:9f:0c:9b:7f:7b:d9:7e:4a:cd:08:78:cb:86: 65:44:db:b8:6e:a1:14:18:3a:f5:c3:10:7a:2e:54:69:db:b9: 66:19:6b:f2:91:75:d6:d7:5c:0e:93:75:fa:7e:5f:1b:40:17: cc:a4:96:f9:0e:f4:ad:b8:25:0a:dc:06:93:da:25:e2:fe:47: 4c:c4:d9:57:28:55:ff:ea:3c:0c:52:83:49:a4:b4:84:5c:03: 67:06:fa:4e:67:8f:2e:f1:b6:86:66:d8:c0:96:fa:47:cf:7e: 6f:0b:0c:17:ff:ca:24:05:01:d1:77:8a:5a:20:3c:06:e6:5b: 5f:b6:5f:d6:30:d8:16:bb:e7:94:04:00:7d:40:d2:88:6f:8b: 76:c6:fd:a2:b0:df:85:d4:aa:67:ad:b7:0f:3e:d1:db:61:ae: dd:ce:22:ce:25:78:4f:01:f9:b7:e3:db:6c:c0:2f:6c:c3:f5: c4:aa:3f:f8:57:ed:24:42:a8:c2:e4:55:4f:48:66:49:1b:9f: a8:76:c8:9c:29:c1:39:2b:44:9e:c5:07:a0:4c:b8:a1:4d:86: 2b:08:01:45:22:92:ad:29:dc:cc:7f:93:5d:18:96:d4:62:10: ee:6b:6a:4b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUDj34yrmy9SyXYrp3xDaW5M1Y96MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjYwMloX DTI3MDUwMTIxMzEwMlowMzExMC8GA1UEAxMoODUxRjU2NTYxMkYxNkUwNjVFMTAw MjFFRTBEMEZDREEzNTA0MjVGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMJXPfP4Eh1PnMf9Z+p1zC/OQab7CeqPXhyucFqatPBnOXd5edXgRjM6ZTTu dXm9y6p7OfmSxgdcijQPAaC6jau/g0BLKubfs1wq+xUtdLUtMvGjMMFpY5EvCot/ DcdfKFP8iPtN/677BCz+E6z3u0cZAB55fRXnRL0AH4mrbADP7fq/+88ugHyjnkys +5J+K6iRGextOk8uzyN61vALn1+7z+i8IZ1qKC+lj0HP3oIuOi8ZCIWAq2md1Jtq dNcrZsZdbFz3/6TfF+iN34QZq+q9L2kWmyB9L6w+ncCS5UeXNsDSQuZ6DgRG0ayn CaQFu3mSWgO9cBwDhe17p+SKbokCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSFH1ZW EvFuBl4QAh7g0PzaNQQl/jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTMzODQxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQB0k+eMA0GCSqGSIb3DQEBCwUAA4IBAQAUnkBVX0TtT43Ei9am3qfNeDdT q8M5C58Mm3972X5KzQh4y4ZlRNu4bqEUGDr1wxB6LlRp27lmGWvykXXW11wOk3X6 fl8bQBfMpJb5DvStuCUK3AaT2iXi/kdMxNlXKFX/6jwMUoNJpLSEXANnBvpOZ48u 8baGZtjAlvpHz35vCwwX/8okBQHRd4paIDwG5ltftl/WMNgWu+eUBAB9QNKIb4t2 xv2isN+F1KpnrbcPPtHbYa7dziLOJXhPAfm349tswC9sw/XEqj/4V+0kQqjC5FVP SGZJG5+odsicKcE5K0SexQegTLihTYYrCAFFIpKtKdzMf5NdGJbUYhDua2pL -----END CERTIFICATE-----Generated at Sun May 3 00:41:11 2026 by rpki-client