$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS136075.roa File: AS136075.roa (raw, json) Hash identifier: tiTuE3+U+nWldiyrtRU7YAGcqqWr4kmEOvY0ZDM3J7E= Subject key identifier: B4:E9:30:C9:57:7D:C2:3C:D3:90:EC:2B:69:53:12:63:CD:68:3D:42 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 648483660C4D0338CEA64C34D21BE4A26FECB69A Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136075.roa Signing time: Sat 02 May 2026 16:28:58 +0000 ROA not before: Sat 02 May 2026 16:23:58 +0000 ROA not after: Sat 01 May 2027 16:28:58 +0000 asID: 136075 IP address blocks: 103.84.208.0/22 maxlen: 24 2400:a340::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:84:83:66:0c:4d:03:38:ce:a6:4c:34:d2:1b:e4:a2:6f:ec:b6:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 16:23:58 2026 GMT Not After : May 1 16:28:58 2027 GMT Subject: CN=B4E930C9577DC23CD390EC2B69531263CD683D42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:e3:f0:56:cd:be:96:ea:9b:1b:15:75:8a:4b: 11:02:fa:56:9d:3a:0f:78:20:cc:8f:d7:0e:73:aa: 14:e5:e7:8a:6c:1c:99:9c:3e:f9:16:f4:f5:fd:e6: 57:cf:dd:43:dd:f3:05:c5:f8:26:a0:7b:38:93:c1: 62:83:57:9e:d8:7a:2f:47:4c:77:80:c9:ac:a2:d0: a6:66:f8:18:0c:36:57:15:13:eb:26:2d:52:57:fd: 8f:5e:b2:cb:58:12:86:54:1b:d4:b7:11:da:67:fe: 8e:56:26:e1:98:a0:83:d8:b6:ea:b0:66:57:ca:a1: 94:44:78:54:10:5a:e5:2a:11:f8:c7:b7:cd:c9:b1: 37:48:37:1e:56:cc:6d:ab:04:a4:cd:5f:20:b5:a2: 52:a5:3d:9a:7d:6b:b3:17:9a:32:04:31:75:2a:11: 5f:83:dd:4d:c2:66:18:ce:59:c1:4c:f8:74:ee:df: 9a:73:e9:e5:37:82:55:87:16:bd:b0:17:5f:de:ea: 9d:da:6d:d0:10:6a:68:a0:da:20:27:3d:62:c5:32: d0:8c:1d:fd:05:26:37:40:9d:a6:a4:72:4a:be:05: 4b:a9:dc:78:82:1b:13:4c:ae:64:0b:1b:9e:cd:2d: 93:85:92:2b:1c:9c:85:02:4f:f4:db:96:b7:0a:c6: 90:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E9:30:C9:57:7D:C2:3C:D3:90:EC:2B:69:53:12:63:CD:68:3D:42 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136075.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.208.0/22 IPv6: 2400:a340::/32 Signature Algorithm: sha256WithRSAEncryption 79:71:05:7f:1a:88:5f:01:40:b7:ab:68:d2:3d:00:42:e4:50: 29:79:c5:1d:1b:95:93:b7:f5:75:18:de:41:8b:2d:93:3c:5a: f1:ca:95:d2:cf:fd:0c:e6:22:8e:9a:78:ad:02:74:ab:ab:22: 56:9b:76:dd:e6:ba:52:a5:e7:4d:cc:e3:5a:da:48:ed:1d:4c: 48:55:f6:f0:a7:fd:94:08:c6:cb:17:ca:ad:3c:52:57:6a:ab: b4:9b:37:ef:40:88:17:d3:30:0b:f2:7c:70:ca:3d:d2:71:7e: 4a:4f:97:c6:55:d1:7f:f8:38:b2:76:a1:e8:8d:50:50:a9:87: a4:69:c8:99:4c:1d:b6:e8:da:2f:1c:81:2b:77:0c:d7:02:d5: d2:43:10:29:02:e9:88:18:a6:67:10:f5:74:d1:ed:ee:ed:26: cc:8e:e5:30:f3:5a:af:69:d2:a4:40:69:da:29:a4:2d:2b:d1: 40:b8:ad:c3:2e:6b:59:8e:92:1b:2f:62:bc:2c:26:01:1f:a8: 04:cb:47:91:0a:df:8a:4c:7d:c6:eb:e1:eb:62:18:73:18:7b: f9:da:93:af:71:b5:de:62:36:72:a6:f7:b3:5e:19:8c:7b:ff: a4:49:a4:f2:f3:19:dc:f0:0a:54:17:b8:4b:5d:dc:f5:79:7c: 03:f1:bc:b0 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUZISDZgxNAzjOpkw00hvkom/stpowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE2MjM1OFoX DTI3MDUwMTE2Mjg1OFowMzExMC8GA1UEAxMoQjRFOTMwQzk1NzdEQzIzQ0QzOTBF QzJCNjk1MzEyNjNDRDY4M0Q0MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIbj8FbNvpbqmxsVdYpLEQL6Vp06D3ggzI/XDnOqFOXnimwcmZw++Rb09f3m V8/dQ93zBcX4JqB7OJPBYoNXnth6L0dMd4DJrKLQpmb4GAw2VxUT6yYtUlf9j16y y1gShlQb1LcR2mf+jlYm4Zigg9i26rBmV8qhlER4VBBa5SoR+Me3zcmxN0g3HlbM basEpM1fILWiUqU9mn1rsxeaMgQxdSoRX4PdTcJmGM5ZwUz4dO7fmnPp5TeCVYcW vbAXX97qndpt0BBqaKDaICc9YsUy0Iwd/QUmN0CdpqRySr4FS6nceIIbE0yuZAsb ns0tk4WSKxychQJP9NuWtwrGkKMCAwEAAaOCAdswggHXMB0GA1UdDgQWBBS06TDJ V33CPNOQ7CtpUxJjzWg9QjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM2MDc1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIA ATAGAwQCZ1TQMA0EAgACMAcDBQAkAKNAMA0GCSqGSIb3DQEBCwUAA4IBAQB5cQV/ GohfAUC3q2jSPQBC5FApecUdG5WTt/V1GN5Biy2TPFrxypXSz/0M5iKOmnitAnSr qyJWm3bd5rpSpedNzONa2kjtHUxIVfbwp/2UCMbLF8qtPFJXaqu0mzfvQIgX0zAL 8nxwyj3ScX5KT5fGVdF/+DiydqHojVBQqYekaciZTB226NovHIErdwzXAtXSQxAp AumIGKZnEPV00e3u7SbMjuUw81qvadKkQGnaKaQtK9FAuK3DLmtZjpIbL2K8LCYB H6gEy0eRCt+KTH3G6+HrYhhzGHv52pOvcbXeYjZypvezXhmMe/+kSaTy8xnc8ApU F7hLXdz1eXwD8byw -----END CERTIFICATE-----Generated at Sun May 3 00:42:27 2026 by rpki-client