$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS135457.roa File: AS135457.roa (raw, json) Hash identifier: pdAuw+qN/4Fc+kScoQmuW1ket+cYuTR0XnjAe28uRzU= Subject key identifier: FE:31:5B:4D:4A:4C:22:42:6F:DC:AC:E0:CE:DD:D3:2D:45:5B:6C:8E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 67CEFC7A86AB7908897EC5B0E9106A8BC493138C Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS135457.roa Signing time: Sat 02 May 2026 21:30:26 +0000 ROA not before: Sat 02 May 2026 21:25:26 +0000 ROA not after: Sat 01 May 2027 21:30:26 +0000 asID: 135457 IP address blocks: 203.191.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ce:fc:7a:86:ab:79:08:89:7e:c5:b0:e9:10:6a:8b:c4:93:13:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:25:26 2026 GMT Not After : May 1 21:30:26 2027 GMT Subject: CN=FE315B4D4A4C22426FDCACE0CEDDD32D455B6C8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:14:de:bc:1e:c5:30:ae:c6:3d:b5:fc:23:ec: 0e:a8:13:c2:ad:5d:cd:88:f0:08:d8:4c:7e:68:45: f7:d7:33:ff:a9:d9:a3:fc:93:bd:cc:3f:47:04:f2: 4d:87:8d:95:e5:55:2f:d9:39:72:1c:1f:5c:53:1f: 2b:1b:0a:1a:d1:ac:d1:53:ff:00:d0:54:3d:6c:ef: 97:9a:31:f0:eb:46:09:fc:e6:a6:f0:dc:bb:d2:0d: e4:68:b7:c3:e1:ff:c3:75:5e:14:d0:e0:49:6e:29: 59:20:84:ac:10:80:ef:a6:2c:35:16:06:f4:73:10: f5:a8:db:41:82:49:71:0e:cd:6f:66:c3:37:27:98: 3a:e0:95:aa:d8:99:9b:bf:bf:37:23:c7:b7:aa:20: e4:b5:91:9a:79:58:7f:2d:30:4f:64:96:2f:67:47: e4:c1:c8:9a:e1:cd:6f:8b:9a:0a:47:1d:fc:fd:bb: 86:92:f2:7d:cf:86:ab:38:fc:1e:d8:fc:8c:f6:78: 78:b0:7e:3b:c4:22:b4:65:09:31:69:8a:33:ad:fd: 1b:65:db:82:e6:34:a3:7d:e2:d1:a5:ee:d6:7b:96: d5:85:8f:52:0e:83:a0:c8:da:df:ff:b4:49:f1:a7: 52:c8:ea:63:93:d0:d6:b9:71:41:bb:9d:47:7a:73: 67:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:31:5B:4D:4A:4C:22:42:6F:DC:AC:E0:CE:DD:D3:2D:45:5B:6C:8E X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS135457.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.191.46.0/24 Signature Algorithm: sha256WithRSAEncryption 03:71:de:79:b9:32:b3:fe:8d:ac:e5:5b:2a:3c:df:35:68:70: 31:77:a5:be:d3:ba:42:b7:95:b6:07:b8:9d:08:dd:4b:b3:13: 69:b9:23:34:07:59:5d:66:14:4d:2a:24:53:07:ae:61:c8:6e: 1a:7e:f4:dd:1c:ac:83:52:66:1e:af:13:6d:2c:20:4f:9d:3c: c3:f8:22:65:da:79:04:bd:e1:71:81:10:cf:70:69:c9:36:97: 5f:d9:e6:7e:a6:b9:9a:27:6e:f3:a3:ad:7b:ca:fb:2a:dd:2a: 81:7a:21:8c:cb:e3:71:73:c0:f1:89:9b:d5:0d:ba:62:d3:fd: 83:62:af:58:97:30:9e:73:a1:0d:9f:68:1f:5d:a3:36:d5:54: b8:1c:94:03:8f:3a:2a:2e:02:ad:a6:21:f3:15:f4:d2:a2:15: bb:18:45:19:fc:ea:27:ed:9b:47:68:41:40:08:a5:09:15:bf: 8f:39:37:86:21:7e:be:60:bb:c4:a7:96:b6:9f:9d:f4:0b:42: 0b:44:71:f2:e7:98:ff:13:6f:8b:81:02:63:d5:ae:ec:a6:fa: f3:48:8c:68:c6:fc:78:f4:5d:8e:94:bb:c6:03:7b:e8:83:b2: cc:41:41:f9:be:db:db:fb:87:3b:61:27:26:ab:60:99:6c:27: bd:5e:db:5c -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUZ878eoareQiJfsWw6RBqi8STE4wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjUyNloX DTI3MDUwMTIxMzAyNlowMzExMC8GA1UEAxMoRkUzMTVCNEQ0QTRDMjI0MjZGRENB Q0UwQ0VEREQzMkQ0NTVCNkM4RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIUU3rwexTCuxj21/CPsDqgTwq1dzYjwCNhMfmhF99cz/6nZo/yTvcw/RwTy TYeNleVVL9k5chwfXFMfKxsKGtGs0VP/ANBUPWzvl5ox8OtGCfzmpvDcu9IN5Gi3 w+H/w3VeFNDgSW4pWSCErBCA76YsNRYG9HMQ9ajbQYJJcQ7Nb2bDNyeYOuCVqtiZ m7+/NyPHt6og5LWRmnlYfy0wT2SWL2dH5MHImuHNb4uaCkcd/P27hpLyfc+Gqzj8 Htj8jPZ4eLB+O8QitGUJMWmKM639G2XbguY0o33i0aXu1nuW1YWPUg6DoMja3/+0 SfGnUsjqY5PQ1rlxQbudR3pzZ8kCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBT+MVtN SkwiQm/crODO3dMtRVtsjjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM1NDU3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAy78uMA0GCSqGSIb3DQEBCwUAA4IBAQADcd55uTKz/o2s5VsqPN81aHAx d6W+07pCt5W2B7idCN1LsxNpuSM0B1ldZhRNKiRTB65hyG4afvTdHKyDUmYerxNt LCBPnTzD+CJl2nkEveFxgRDPcGnJNpdf2eZ+prmaJ27zo617yvsq3SqBeiGMy+Nx c8DxiZvVDbpi0/2DYq9YlzCec6ENn2gfXaM21VS4HJQDjzoqLgKtpiHzFfTSohW7 GEUZ/Oon7ZtHaEFACKUJFb+POTeGIX6+YLvEp5a2n530C0ILRHHy55j/E2+LgQJj 1a7spvrzSIxoxvx49F2OlLvGA3vog7LMQUH5vtvb+4c7YScmq2CZbCe9Xttc -----END CERTIFICATE-----Generated at Sun May 3 00:42:22 2026 by rpki-client