$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS135462.roa File: AS135462.roa (raw, json) Hash identifier: seFfj1kkr9SUnHb9R50zeAAjKGGGvTvPVdpH7IcLfZc= Subject key identifier: E4:C0:AB:49:C4:7F:E1:3E:47:06:54:92:45:D2:E9:0E:73:91:E6:5F Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 02B36EDA81C5147C381CDD31453F544BEC8A615F Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS135462.roa Signing time: Sat 02 May 2026 09:22:11 +0000 ROA not before: Sat 02 May 2026 09:17:11 +0000 ROA not after: Sat 01 May 2027 09:22:11 +0000 asID: 135462 IP address blocks: 124.158.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:b3:6e:da:81:c5:14:7c:38:1c:dd:31:45:3f:54:4b:ec:8a:61:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:17:11 2026 GMT Not After : May 1 09:22:11 2027 GMT Subject: CN=E4C0AB49C47FE13E4706549245D2E90E7391E65F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:94:a6:18:1e:a1:22:74:1b:1a:54:5d:8f:d0: e0:80:5b:90:b5:22:1a:8d:4d:c5:3a:30:56:7a:9e: 4b:7d:1a:e8:ac:89:58:90:6c:aa:ef:9d:87:f8:b6: 5d:b6:15:a9:a6:a1:80:08:32:da:29:ef:98:02:0e: 24:c3:c1:7c:e5:5c:84:7f:4e:4b:4e:36:c3:87:dd: e8:0b:84:47:2e:36:bc:9a:c3:2b:f3:9b:83:d9:eb: 9a:98:b7:d2:5e:d1:d3:0d:7b:77:b3:e3:7f:b6:2c: 72:c5:20:a6:ab:cb:d2:76:c5:21:8d:12:3c:15:71: 8b:93:4c:39:5f:55:0f:b7:f4:b4:d1:1e:0f:4f:50: 51:c4:38:c2:58:00:fa:fb:d2:46:35:d9:37:7b:87: f8:b7:27:95:e3:b3:74:ac:75:21:71:7d:04:aa:14: f9:41:3f:68:75:32:76:cd:f7:22:0d:16:cf:a9:c6: 7f:55:7b:55:e4:6c:69:b9:dd:80:82:aa:8b:68:20: d2:e1:6c:41:5c:69:e1:cf:d5:3b:2f:c5:b8:81:22: 2f:7c:4b:ec:ee:f4:e1:9c:0c:e4:91:07:eb:be:80: e7:14:c0:60:f1:05:9a:35:40:08:44:47:a5:3d:88: 88:42:65:f3:30:5a:ea:f8:16:95:72:e2:22:55:07: a8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C0:AB:49:C4:7F:E1:3E:47:06:54:92:45:D2:E9:0E:73:91:E6:5F X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS135462.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.158.136.0/22 Signature Algorithm: sha256WithRSAEncryption 85:e9:40:d4:6d:b3:86:6c:2f:4c:28:bb:58:39:dd:d9:1b:70: 09:ef:c4:2a:8c:a3:45:8e:f7:16:75:c3:33:e4:04:7f:0a:13: c0:7b:0e:96:c5:74:6a:d3:10:74:e3:10:ac:ea:5a:74:92:1a: ee:b7:ce:ab:51:12:a4:cf:a1:9e:7a:e3:5e:46:cd:b2:65:d8: 16:39:d8:ba:ef:a7:4a:1a:fc:9d:7f:56:74:09:14:f4:73:55: 67:27:d8:0c:31:5c:62:a5:b3:27:16:25:9a:f6:a3:79:91:35: cc:21:8b:f5:dc:82:55:6f:c8:5c:c0:12:df:6c:c7:c1:65:b7: 88:de:06:04:38:bd:6e:93:7b:c1:d2:21:a4:bf:4c:79:ad:e8: fa:b0:39:80:08:ff:ea:3b:6a:dd:fd:9c:eb:43:15:f0:a9:67: 20:08:5d:30:58:25:2c:57:ff:21:e0:aa:3b:1c:33:d4:a3:e1: 1e:e9:01:0a:33:14:bc:87:8e:b1:74:c6:c6:c8:b7:41:55:2f: 78:c9:e0:62:e7:01:18:25:e1:ca:1d:8c:fb:61:93:1f:63:72: 79:20:d9:92:11:56:97:81:03:f3:9d:6e:9a:ca:b9:22:cd:25: 07:b0:95:fd:7c:9d:52:8e:aa:8d:88:b5:e8:c1:6a:b8:03:77: 63:8e:02:63 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUArNu2oHFFHw4HN0xRT9US+yKYV8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTcxMVoX DTI3MDUwMTA5MjIxMVowMzExMC8GA1UEAxMoRTRDMEFCNDlDNDdGRTEzRTQ3MDY1 NDkyNDVEMkU5MEU3MzkxRTY1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIyUphgeoSJ0GxpUXY/Q4IBbkLUiGo1NxTowVnqeS30a6KyJWJBsqu+dh/i2 XbYVqaahgAgy2invmAIOJMPBfOVchH9OS042w4fd6AuERy42vJrDK/Obg9nrmpi3 0l7R0w17d7Pjf7YscsUgpqvL0nbFIY0SPBVxi5NMOV9VD7f0tNEeD09QUcQ4wlgA +vvSRjXZN3uH+LcnleOzdKx1IXF9BKoU+UE/aHUyds33Ig0Wz6nGf1V7VeRsabnd gIKqi2gg0uFsQVxp4c/VOy/FuIEiL3xL7O704ZwM5JEH676A5xTAYPEFmjVACERH pT2IiEJl8zBa6vgWlXLiIlUHqD8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTkwKtJ xH/hPkcGVJJF0ukOc5HmXzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM1NDYyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCfJ6IMA0GCSqGSIb3DQEBCwUAA4IBAQCF6UDUbbOGbC9MKLtYOd3ZG3AJ 78QqjKNFjvcWdcMz5AR/ChPAew6WxXRq0xB04xCs6lp0khrut86rURKkz6GeeuNe Rs2yZdgWOdi676dKGvydf1Z0CRT0c1VnJ9gMMVxipbMnFiWa9qN5kTXMIYv13IJV b8hcwBLfbMfBZbeI3gYEOL1uk3vB0iGkv0x5rej6sDmACP/qO2rd/ZzrQxXwqWcg CF0wWCUsV/8h4Ko7HDPUo+Ee6QEKMxS8h46xdMbGyLdBVS94yeBi5wEYJeHKHYz7 YZMfY3J5INmSEVaXgQPznW6ayrkizSUHsJX9fJ1SjqqNiLXowWq4A3djjgJj -----END CERTIFICATE-----Generated at Sun May 3 00:42:13 2026 by rpki-client