$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS136093.roa File: AS136093.roa (raw, json) Hash identifier: NP0KB0XwrPi0FOyjv7fdZzjyvATgSXPCGAShvM33nII= Subject key identifier: B2:8E:CF:F6:28:F0:42:C7:7F:C0:FD:F9:B4:66:B7:56:6D:59:31:19 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 36FFD9639B2DBF0F95F5F45156156FE046927501 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136093.roa Signing time: Sat 02 May 2026 21:22:20 +0000 ROA not before: Sat 02 May 2026 21:17:20 +0000 ROA not after: Sat 01 May 2027 21:22:20 +0000 asID: 136093 IP address blocks: 103.41.78.0/23 maxlen: 24 103.88.168.0/22 maxlen: 24 103.175.208.0/23 maxlen: 24 103.220.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ff:d9:63:9b:2d:bf:0f:95:f5:f4:51:56:15:6f:e0:46:92:75:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:17:20 2026 GMT Not After : May 1 21:22:20 2027 GMT Subject: CN=B28ECFF628F042C77FC0FDF9B466B7566D593119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cd:78:e3:35:40:93:95:1e:ef:13:4a:45:97: 89:65:2d:01:10:29:05:07:11:cb:c1:a5:da:8c:4e: 16:ae:2a:e8:14:02:84:63:59:00:cd:6d:2e:77:b0: b4:e0:01:eb:2f:99:ee:a6:37:46:e3:4c:fd:5d:1e: 5d:33:13:3e:d4:77:d8:51:3e:6c:cc:2c:b3:01:19: dd:96:02:e4:c7:5a:5f:51:0d:23:13:f8:67:54:ef: 76:ca:32:89:fa:ca:6c:b8:d9:39:2b:8c:51:8a:94: f4:a9:c5:37:d9:e1:6e:3b:16:ba:b6:af:2d:54:db: 2b:6f:8d:fa:f4:ef:22:31:d1:a5:d4:28:1b:d1:23: 90:cf:a4:12:93:99:72:73:a6:a1:cc:74:6f:c8:79: 68:0a:28:dd:0c:b9:cd:25:5f:7a:93:df:41:2b:88: 26:88:0a:d8:22:e3:0c:02:7e:17:74:d8:8b:f3:88: 79:03:c4:78:25:a4:67:34:e7:eb:00:98:05:51:38: 28:5f:29:e2:b0:86:b0:32:50:97:11:4e:9f:7d:a5: 50:6d:a2:76:b8:66:8f:b7:bf:f1:50:4d:d8:1a:aa: 42:d3:af:fb:6a:ad:d6:73:02:39:90:78:c6:91:4f: 40:ff:75:a2:88:f5:c3:7a:3a:90:41:04:dc:69:38: 07:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:8E:CF:F6:28:F0:42:C7:7F:C0:FD:F9:B4:66:B7:56:6D:59:31:19 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136093.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.78.0/23 103.88.168.0/22 103.175.208.0/23 103.220.216.0/23 Signature Algorithm: sha256WithRSAEncryption 41:39:86:6a:7f:c5:81:bf:f0:2a:f6:bf:2f:e9:0b:09:14:8c: ca:f0:82:66:d8:7e:9e:ae:5e:2f:b6:4a:2c:1c:e6:57:45:b9: 9f:dd:7e:c7:e8:86:76:d8:4a:f7:94:61:c4:e6:83:17:12:cd: 04:e2:83:b8:00:4d:5e:ad:bf:67:2b:76:5c:f3:4d:e6:c4:01: e4:38:ca:1d:e3:95:3c:0a:3a:86:91:26:68:d6:00:98:1f:17: a5:f1:9e:06:48:43:6d:54:aa:a4:72:96:21:74:e4:ef:dc:93: 07:55:62:ac:78:23:61:e9:d3:9d:e3:5c:d6:b7:dc:3b:a2:a3: da:5f:13:89:65:0f:3f:57:9c:a9:ef:3a:46:c0:bc:08:21:c2: aa:61:6d:5f:76:41:81:44:ca:f9:7f:b5:d3:05:17:5b:9e:3b: 7d:05:5a:42:a6:23:54:70:53:97:25:59:b2:bb:f1:57:ac:a7: ed:55:03:42:05:9a:a9:7c:09:82:85:8e:08:14:7e:2e:ab:b4: a5:d3:4b:19:c3:2a:41:af:2d:f7:88:6a:33:05:cf:ea:80:34: fb:3c:80:10:c7:32:3c:3a:e1:4a:f7:8e:a0:31:28:d6:4c:d2: 36:c1:cc:f9:8a:86:38:78:6f:07:8e:33:e4:0a:86:98:72:c4: 7e:0b:4c:a2 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIUNv/ZY5stvw+V9fRRVhVv4EaSdQEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTcyMFoX DTI3MDUwMTIxMjIyMFowMzExMC8GA1UEAxMoQjI4RUNGRjYyOEYwNDJDNzdGQzBG REY5QjQ2NkI3NTY2RDU5MzExOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL/NeOM1QJOVHu8TSkWXiWUtARApBQcRy8Gl2oxOFq4q6BQChGNZAM1tLnew tOAB6y+Z7qY3RuNM/V0eXTMTPtR32FE+bMwsswEZ3ZYC5MdaX1ENIxP4Z1Tvdsoy ifrKbLjZOSuMUYqU9KnFN9nhbjsWuravLVTbK2+N+vTvIjHRpdQoG9EjkM+kEpOZ cnOmocx0b8h5aAoo3Qy5zSVfepPfQSuIJogK2CLjDAJ+F3TYi/OIeQPEeCWkZzTn 6wCYBVE4KF8p4rCGsDJQlxFOn32lUG2idrhmj7e/8VBN2BqqQtOv+2qt1nMCOZB4 xpFPQP91ooj1w3o6kEEE3Gk4BzECAwEAAaOCAd4wggHaMB0GA1UdDgQWBBSyjs/2 KPBCx3/A/fm0ZrdWbVkxGTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM2MDkzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIA ATAYAwQBZylOAwQCZ1ioAwQBZ6/QAwQBZ9zYMA0GCSqGSIb3DQEBCwUAA4IBAQBB OYZqf8WBv/Aq9r8v6QsJFIzK8IJm2H6erl4vtkosHOZXRbmf3X7H6IZ22Er3lGHE 5oMXEs0E4oO4AE1erb9nK3Zc803mxAHkOMod45U8CjqGkSZo1gCYHxel8Z4GSENt VKqkcpYhdOTv3JMHVWKseCNh6dOd41zWt9w7oqPaXxOJZQ8/V5yp7zpGwLwIIcKq YW1fdkGBRMr5f7XTBRdbnjt9BVpCpiNUcFOXJVmyu/FXrKftVQNCBZqpfAmChY4I FH4uq7Sl00sZwypBry33iGozBc/qgDT7PIAQxzI8OuFK946gMSjWTNI2wcz5ioY4 eG8HjjPkCoaYcsR+C0yi -----END CERTIFICATE-----Generated at Sun May 3 01:44:56 2026 by rpki-client