$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS134412.roa File: AS134412.roa (raw, json) Hash identifier: 1MOFBnEIavoL8e6Efrp7X4lqpRykJPByjotYev044aw= Subject key identifier: B8:FB:D8:27:5B:2A:68:5E:AF:0D:96:52:BF:B1:6A:AA:9D:9F:84:C8 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5398C6B0089F841D02492E3C13A998FDA9C1E5C5 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS134412.roa Signing time: Sat 02 May 2026 09:26:25 +0000 ROA not before: Sat 02 May 2026 09:21:25 +0000 ROA not after: Sat 01 May 2027 09:26:25 +0000 asID: 134412 IP address blocks: 2001:df5:e740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:98:c6:b0:08:9f:84:1d:02:49:2e:3c:13:a9:98:fd:a9:c1:e5:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:25 2026 GMT Not After : May 1 09:26:25 2027 GMT Subject: CN=B8FBD8275B2A685EAF0D9652BFB16AAA9D9F84C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:11:7b:96:30:a7:45:24:2f:9a:26:5e:74:97: a5:1a:da:18:a2:92:e8:a2:c5:92:dd:dc:57:d6:eb: 72:4a:5d:d3:64:4e:6a:d3:c1:21:f6:6c:83:8f:18: 95:1c:12:53:d7:a3:00:4c:f4:1b:ee:ee:c6:28:fa: 47:56:f1:d6:ab:0a:ca:41:18:8c:0f:12:7c:cb:6b: d4:37:18:47:c6:8a:a9:de:11:1b:e1:41:e2:bb:db: 60:c4:3f:c9:fb:ca:4f:7d:12:51:c0:02:67:7e:a5: 4d:03:bb:06:86:3d:14:6d:60:39:2d:13:8d:0f:80: 41:fe:89:2d:16:0a:c3:d0:83:c7:cb:90:bd:c3:15: 45:ba:20:c9:cb:06:80:ed:e0:9f:a3:92:4c:5c:4b: fb:78:db:f6:e8:17:cf:ee:a2:f6:cd:73:02:9d:18: ba:1f:f6:b2:fc:eb:0a:1c:33:a2:73:6c:48:98:81: e3:20:61:d2:e2:31:e9:ca:4d:76:64:2f:eb:51:d0: 3a:c8:80:ec:34:4c:55:e4:83:b9:df:42:54:49:2c: 0b:c8:ce:d3:0b:52:f8:c0:ce:2a:6d:80:fb:3c:5e: e9:85:74:b8:68:f2:b9:e6:8a:7e:c6:92:62:5e:cc: 4c:48:3b:9e:68:0b:7a:2c:fb:4b:59:91:62:4b:b4: 4b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:FB:D8:27:5B:2A:68:5E:AF:0D:96:52:BF:B1:6A:AA:9D:9F:84:C8 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS134412.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:e740::/48 Signature Algorithm: sha256WithRSAEncryption 10:21:40:09:b8:9f:41:bd:c4:58:7a:f1:fe:c5:c2:a2:61:18: 02:cf:a1:be:29:5b:67:83:d5:aa:f8:b1:81:d6:bf:e7:d1:7e: 3e:dd:26:2b:87:5f:1a:ea:0e:a7:cd:fe:86:fb:80:ac:70:ff: cc:cd:c4:08:4e:71:d9:bd:3b:e2:02:5d:9f:10:c9:3c:69:39: c4:1d:43:75:c9:ce:18:9f:41:53:32:50:21:f9:8c:d4:6d:85: f5:55:0f:50:14:b6:7d:9d:13:34:3d:fd:64:5a:f8:79:e4:2d: 60:7e:af:62:d9:a6:3f:bb:f6:de:ac:c7:ca:8e:a5:e1:9a:a2: ac:a0:56:ba:70:67:e6:2c:65:1a:9a:c9:35:86:93:55:08:9d: 1c:ec:69:d7:9c:cf:c5:70:0f:bf:29:b4:b0:16:0f:07:30:6e: f7:1d:80:cf:24:49:1e:b7:63:b2:ae:d3:92:44:77:49:dc:4f: 2b:7a:8c:2e:55:7e:ef:71:7b:f3:9a:e6:a2:1b:8c:19:50:fc: 80:fc:e4:8e:bf:93:72:a7:b3:3a:05:cf:26:b2:e2:93:ce:2f: 6f:83:cd:13:55:14:6f:4a:da:58:80:f7:81:6a:ea:51:d9:88: 1b:21:62:b6:4d:84:ff:b7:da:78:80:d4:a0:e4:95:08:5c:63: 32:eb:bd:a3 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUU5jGsAifhB0CSS48E6mY/anB5cUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEyNVoX DTI3MDUwMTA5MjYyNVowMzExMC8GA1UEAxMoQjhGQkQ4Mjc1QjJBNjg1RUFGMEQ5 NjUyQkZCMTZBQUE5RDlGODRDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKgRe5Ywp0UkL5omXnSXpRraGKKS6KLFkt3cV9brckpd02ROatPBIfZsg48Y lRwSU9ejAEz0G+7uxij6R1bx1qsKykEYjA8SfMtr1DcYR8aKqd4RG+FB4rvbYMQ/ yfvKT30SUcACZ36lTQO7BoY9FG1gOS0TjQ+AQf6JLRYKw9CDx8uQvcMVRbogycsG gO3gn6OSTFxL+3jb9ugXz+6i9s1zAp0Yuh/2svzrChwzonNsSJiB4yBh0uIx6cpN dmQv61HQOsiA7DRMVeSDud9CVEksC8jO0wtS+MDOKm2A+zxe6YV0uGjyueaKfsaS Yl7MTEg7nmgLeiz7S1mRYku0S28CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBS4+9gn WypoXq8NllK/sWqqnZ+EyDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM0NDEyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN9edAMA0GCSqGSIb3DQEBCwUAA4IBAQAQIUAJuJ9BvcRYevH+xcKi YRgCz6G+KVtng9Wq+LGB1r/n0X4+3SYrh18a6g6nzf6G+4CscP/MzcQITnHZvTvi Al2fEMk8aTnEHUN1yc4Yn0FTMlAh+YzUbYX1VQ9QFLZ9nRM0Pf1kWvh55C1gfq9i 2aY/u/berMfKjqXhmqKsoFa6cGfmLGUamsk1hpNVCJ0c7GnXnM/FcA+/KbSwFg8H MG73HYDPJEket2OyrtOSRHdJ3E8reowuVX7vcXvzmuaiG4wZUPyA/OSOv5Nyp7M6 Bc8msuKTzi9vg80TVRRvStpYgPeBaupR2YgbIWK2TYT/t9p4gNSg5JUIXGMy672j -----END CERTIFICATE-----Generated at Sun May 3 00:41:47 2026 by rpki-client