$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS134645.roa File: AS134645.roa (raw, json) Hash identifier: pEotZxT54l104SMMxIzQ4bvM7/B9ti4cCfhkCdXVQcw= Subject key identifier: DF:1E:51:C9:7D:B8:D4:DE:4C:0F:9D:83:AA:55:83:7A:A8:B9:9D:D4 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 44E21B81B953E0326D006A2615E5CFDC06200C09 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS134645.roa Signing time: Sat 02 May 2026 21:02:18 +0000 ROA not before: Sat 02 May 2026 20:57:18 +0000 ROA not after: Sat 01 May 2027 21:02:18 +0000 asID: 134645 IP address blocks: 103.127.16.0/23 maxlen: 24 103.133.3.0/24 maxlen: 24 103.208.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:e2:1b:81:b9:53:e0:32:6d:00:6a:26:15:e5:cf:dc:06:20:0c:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 20:57:18 2026 GMT Not After : May 1 21:02:18 2027 GMT Subject: CN=DF1E51C97DB8D4DE4C0F9D83AA55837AA8B99DD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5f:8d:0f:15:ca:13:6e:2e:05:f6:ee:2f:1c: 65:ab:78:6b:c6:ea:82:94:32:d9:f3:21:84:2c:6c: 40:11:c2:cf:37:63:42:3c:95:87:f9:b2:94:95:5b: 5d:51:d9:7f:f2:5e:b3:bd:ac:5d:1b:e8:4d:d5:ae: ca:b6:01:dc:28:55:6f:27:19:9c:92:3e:44:7a:53: d1:1e:4c:34:6e:73:33:f8:58:2e:29:e9:55:56:42: d6:e4:15:1f:be:eb:59:1e:e6:ab:cc:8e:dc:91:ef: 0b:62:71:be:ce:cb:ea:e1:03:20:25:78:c0:29:cc: 11:43:af:b7:b6:59:96:21:85:fd:45:1c:39:3d:40: 2f:23:3f:16:63:00:75:b2:e3:3b:3a:87:8f:e2:ac: b4:1e:bd:67:39:69:59:ad:c9:04:64:b3:bb:bb:91: a9:9a:ca:b0:04:40:10:48:38:d8:10:05:c3:45:65: 58:c7:7b:9b:32:2f:3e:83:d5:c3:ec:70:39:d2:8f: bd:33:4c:22:eb:f5:c4:38:d0:95:ef:ff:ee:36:5a: 0f:e9:26:6f:7c:28:3a:65:35:f9:05:8b:d5:79:15: c3:c7:8c:66:f3:08:11:ee:92:a4:4b:9c:b4:8c:49: 18:b2:84:8c:cb:9c:ac:56:6b:88:a9:af:93:27:59: 5c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:1E:51:C9:7D:B8:D4:DE:4C:0F:9D:83:AA:55:83:7A:A8:B9:9D:D4 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS134645.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.16.0/23 103.133.3.0/24 103.208.23.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:a1:12:d6:c9:52:2a:f3:5e:81:00:48:32:93:9e:c4:cc:bc: c7:36:35:68:22:e9:91:77:56:4c:0a:63:0c:65:09:a8:b5:28: b7:cb:ed:d0:94:3a:2e:0a:85:d5:d5:c6:90:3e:b8:5f:0d:0b: 27:f4:ba:fb:8c:f7:2a:5a:27:55:b2:cb:6b:f7:50:92:f1:cc: cc:b7:27:88:f5:60:ae:3f:ad:8e:87:de:a4:08:1e:8d:dd:04: ce:7b:8e:4f:2d:e7:c0:73:bb:7a:9b:08:24:5a:47:bb:65:11: 6f:ee:38:e0:0e:c7:d1:4e:b6:14:ce:4a:70:fe:fe:b6:71:40: ba:48:75:7a:05:f2:fa:07:7a:0e:95:00:c3:ec:98:68:fb:5b: 27:1b:30:f8:21:f0:04:36:e6:26:80:ba:e4:de:b2:c7:3a:03: 5a:86:c5:6f:9d:5f:79:07:27:b4:1a:d2:12:13:f1:22:21:3a: 28:40:4d:c3:f1:21:53:ee:fc:ad:15:a7:6b:da:3b:e9:4c:06: 8d:8c:99:14:ae:d9:b2:2a:da:c2:c3:21:1e:19:e5:83:a0:d2: 41:32:2f:48:53:54:91:38:00:2a:82:ed:49:76:c2:da:b6:12: 10:8c:5c:2a:2e:ce:95:1b:04:9b:d9:8a:21:ac:f8:1a:2c:45: 03:11:6f:2b -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUROIbgblT4DJtAGomFeXP3AYgDAkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIwNTcxOFoX DTI3MDUwMTIxMDIxOFowMzExMC8GA1UEAxMoREYxRTUxQzk3REI4RDRERTRDMEY5 RDgzQUE1NTgzN0FBOEI5OURENDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANdfjQ8VyhNuLgX27i8cZat4a8bqgpQy2fMhhCxsQBHCzzdjQjyVh/mylJVb XVHZf/Jes72sXRvoTdWuyrYB3ChVbycZnJI+RHpT0R5MNG5zM/hYLinpVVZC1uQV H77rWR7mq8yO3JHvC2Jxvs7L6uEDICV4wCnMEUOvt7ZZliGF/UUcOT1ALyM/FmMA dbLjOzqHj+KstB69ZzlpWa3JBGSzu7uRqZrKsARAEEg42BAFw0VlWMd7mzIvPoPV w+xwOdKPvTNMIuv1xDjQle//7jZaD+kmb3woOmU1+QWL1XkVw8eMZvMIEe6SpEuc tIxJGLKEjMucrFZriKmvkydZXKsCAwEAAaOCAdgwggHUMB0GA1UdDgQWBBTfHlHJ fbjU3kwPnYOqVYN6qLmd1DAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM0NjQ1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIA ATASAwQBZ38QAwQAZ4UDAwQAZ9AXMA0GCSqGSIb3DQEBCwUAA4IBAQCKoRLWyVIq 816BAEgyk57EzLzHNjVoIumRd1ZMCmMMZQmotSi3y+3QlDouCoXV1caQPrhfDQsn 9Lr7jPcqWidVsstr91CS8czMtyeI9WCuP62Oh96kCB6N3QTOe45PLefAc7t6mwgk Wke7ZRFv7jjgDsfRTrYUzkpw/v62cUC6SHV6BfL6B3oOlQDD7Jho+1snGzD4IfAE NuYmgLrk3rLHOgNahsVvnV95Bye0GtISE/EiITooQE3D8SFT7vytFadr2jvpTAaN jJkUrtmyKtrCwyEeGeWDoNJBMi9IU1SROAAqgu1JdsLathIQjFwqLs6VGwSb2Yoh rPgaLEUDEW8r -----END CERTIFICATE-----Generated at Sun May 3 00:40:33 2026 by rpki-client