$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS136065.roa File: AS136065.roa (raw, json) Hash identifier: K5e4aG3tVqrnsywHKXf5Oh3WTlsMpP1rPg+qGIHC31U= Subject key identifier: 30:C1:FD:C1:2B:DC:72:E9:D2:A2:2B:89:1C:FD:BC:A7:96:2F:FA:4E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 0724616FC3C0C41634895071882761DCDB431805 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136065.roa Signing time: Sat 02 May 2026 21:21:23 +0000 ROA not before: Sat 02 May 2026 21:16:23 +0000 ROA not after: Sat 01 May 2027 21:21:23 +0000 asID: 136065 IP address blocks: 103.82.126.0/23 maxlen: 24 103.83.178.0/23 maxlen: 24 2001:df7:fa00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:24:61:6f:c3:c0:c4:16:34:89:50:71:88:27:61:dc:db:43:18:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:16:23 2026 GMT Not After : May 1 21:21:23 2027 GMT Subject: CN=30C1FDC12BDC72E9D2A22B891CFDBCA7962FFA4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:51:f5:bd:e6:96:7c:5f:d2:e6:40:c6:5e:1b: 01:74:45:b3:6b:b2:84:c1:d0:18:dc:2a:12:b3:04: 15:b2:e1:2a:3a:c3:f7:25:e8:5a:90:3b:ed:25:78: c0:88:36:8b:66:6e:7d:75:59:94:ec:44:1b:25:a4: 6d:9c:fc:78:ee:46:84:9d:49:7f:2e:fb:41:64:60: 26:7e:1c:e1:24:11:4b:cc:2a:64:ab:d9:0d:14:52: 7c:ad:51:7f:9d:12:51:64:a8:ac:98:21:30:43:50: 00:ce:a3:7b:5b:f5:57:fa:a4:e7:31:d5:d5:b5:27: ea:68:f6:d7:55:b1:90:05:d5:cb:e8:02:0c:4a:4a: 61:3f:0b:fa:47:c1:d0:32:f5:fd:2c:ad:a8:3f:2e: 25:4b:b7:d6:98:97:df:0e:c2:99:cc:fe:17:a2:b8: 41:60:0d:8e:98:b6:1c:22:f7:0c:cd:b3:16:bd:40: 01:96:01:39:10:cb:f5:ac:91:3b:ed:1c:ed:52:42: ed:a8:95:0f:8e:a8:5c:9b:b2:e7:23:07:9d:08:a6: d0:b9:72:f7:a2:d1:29:10:2b:e1:7e:00:16:64:bc: bc:e1:d6:33:f6:4b:50:4f:ba:36:cb:54:41:80:11: 10:32:7e:0c:4f:60:85:c9:ac:54:3c:a4:9b:cf:7c: 26:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:C1:FD:C1:2B:DC:72:E9:D2:A2:2B:89:1C:FD:BC:A7:96:2F:FA:4E X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136065.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.82.126.0/23 103.83.178.0/23 IPv6: 2001:df7:fa00::/48 Signature Algorithm: sha256WithRSAEncryption 66:1b:5e:a2:b3:49:65:38:ba:97:0f:f0:18:f9:b6:e8:d1:c6: c4:fc:ff:25:fd:0d:7a:d4:1c:9c:76:43:f8:7a:e6:d8:73:c1: 4a:45:2e:5d:31:6c:83:59:af:38:66:c0:9d:5c:2a:3b:8f:a2: 96:8f:d4:b6:00:68:ff:20:d7:e2:82:ec:de:12:86:20:09:b8: 59:b0:c7:49:c7:08:cb:75:0e:56:e0:19:23:22:e3:68:09:e3: ad:48:94:bf:0b:c7:16:1f:bf:52:b5:21:7f:fc:fb:e9:eb:e6: 0c:36:00:11:77:00:96:6c:64:d9:2c:86:53:bc:29:99:43:8a: ee:6e:ca:6a:d7:64:5c:31:44:ea:a8:19:df:0f:25:86:17:51: 14:8b:19:e2:00:da:bf:55:3c:a4:5c:2d:c2:bb:6f:70:90:c1: f8:14:c8:3b:37:c2:55:c5:d8:3f:dc:9b:8f:24:93:04:6e:6a: 04:82:1a:28:00:a0:ed:c1:15:01:44:af:77:39:56:da:68:29: d5:ee:66:c2:70:f8:4d:4b:f6:f8:4c:8d:a9:04:23:84:ed:56: bf:ab:d5:8d:83:21:37:f7:46:70:64:ed:8e:40:42:c5:72:89: 77:bf:b3:cf:22:66:2f:dc:36:3e:48:ee:e4:78:13:df:a6:33: 77:89:bc:20 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIUByRhb8PAxBY0iVBxiCdh3NtDGAUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTYyM1oX DTI3MDUwMTIxMjEyM1owMzExMC8GA1UEAxMoMzBDMUZEQzEyQkRDNzJFOUQyQTIy Qjg5MUNGREJDQTc5NjJGRkE0RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKFR9b3mlnxf0uZAxl4bAXRFs2uyhMHQGNwqErMEFbLhKjrD9yXoWpA77SV4 wIg2i2ZufXVZlOxEGyWkbZz8eO5GhJ1Jfy77QWRgJn4c4SQRS8wqZKvZDRRSfK1R f50SUWSorJghMENQAM6je1v1V/qk5zHV1bUn6mj211WxkAXVy+gCDEpKYT8L+kfB 0DL1/SytqD8uJUu31piX3w7Cmcz+F6K4QWANjpi2HCL3DM2zFr1AAZYBORDL9ayR O+0c7VJC7aiVD46oXJuy5yMHnQim0Lly96LRKRAr4X4AFmS8vOHWM/ZLUE+6NstU QYAREDJ+DE9ghcmsVDykm898JjsCAwEAAaOCAeMwggHfMB0GA1UdDgQWBBQwwf3B K9xy6dKiK4kc/bynli/6TjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM2MDY1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIA ATAMAwQBZ1J+AwQBZ1OyMA8EAgACMAkDBwAgAQ33+gAwDQYJKoZIhvcNAQELBQAD ggEBAGYbXqKzSWU4upcP8Bj5tujRxsT8/yX9DXrUHJx2Q/h65thzwUpFLl0xbINZ rzhmwJ1cKjuPopaP1LYAaP8g1+KC7N4ShiAJuFmwx0nHCMt1DlbgGSMi42gJ461I lL8LxxYfv1K1IX/8++nr5gw2ABF3AJZsZNkshlO8KZlDiu5uymrXZFwxROqoGd8P JYYXURSLGeIA2r9VPKRcLcK7b3CQwfgUyDs3wlXF2D/cm48kkwRuagSCGigAoO3B FQFEr3c5VtpoKdXuZsJw+E1L9vhMjakEI4TtVr+r1Y2DITf3RnBk7Y5AQsVyiXe/ s88iZi/cNj5I7uR4E9+mM3eJvCA= -----END CERTIFICATE-----Generated at Tue May 5 08:26:03 2026 by rpki-client