$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS136129.roa File: AS136129.roa (raw, json) Hash identifier: IOekxrGcq214OwLAsZaZtnr7pAu76ND9f9zT3dy42BU= Subject key identifier: 84:C7:44:F0:75:E6:51:76:FE:A8:E1:E2:46:ED:B0:09:5C:A4:D1:61 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5776BD7D0AFB1E274741E62C5891017CE8051ACA Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136129.roa Signing time: Sat 02 May 2026 21:26:18 +0000 ROA not before: Sat 02 May 2026 21:21:18 +0000 ROA not after: Sat 01 May 2027 21:26:18 +0000 asID: 136129 IP address blocks: 103.98.31.0/24 maxlen: 24 2001:df2:1100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:76:bd:7d:0a:fb:1e:27:47:41:e6:2c:58:91:01:7c:e8:05:1a:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:21:18 2026 GMT Not After : May 1 21:26:18 2027 GMT Subject: CN=84C744F075E65176FEA8E1E246EDB0095CA4D161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5f:39:c3:c3:f1:d0:e8:3a:b1:ec:0b:4f:e9: 38:d1:d8:fc:68:3d:9d:13:e6:10:f3:09:08:68:59: 63:9c:97:e6:68:f2:51:a8:07:4f:56:d3:b3:8e:0c: 35:1c:0b:d2:9a:28:b0:5b:dc:9f:af:cb:fd:cd:38: 2c:76:c3:9a:34:dc:48:8c:96:17:c7:f9:66:09:d8: 8f:de:fe:dd:b5:f2:96:92:b7:92:28:f6:1a:74:64: e7:e8:9d:dd:6c:97:05:04:b0:e6:78:0e:95:f0:b6: b6:a4:20:c5:56:d8:97:28:e6:71:1a:46:42:0c:86: 1d:8d:e0:ea:1c:36:fe:47:1a:78:79:09:98:9b:5c: 80:83:48:53:23:f8:f5:c8:34:ca:9f:29:6e:fc:a7: b5:8e:f5:3b:5e:79:25:2f:c5:e7:bf:b4:43:af:7a: a0:71:dc:76:a7:ac:0f:57:f5:36:04:42:07:cd:87: 1e:84:2b:96:42:cc:61:14:76:2b:5a:f4:d4:ef:1a: 5a:b8:1c:7c:1c:ee:da:d4:0b:f2:5d:fe:07:c6:46: 4b:cd:3d:63:76:40:00:ac:2f:ab:2d:8a:bf:f3:65: f6:ed:74:61:72:7e:6d:a1:17:93:a2:5c:18:14:9f: fb:13:3d:af:19:19:a7:75:c2:72:d4:53:e8:f0:a0: 00:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:C7:44:F0:75:E6:51:76:FE:A8:E1:E2:46:ED:B0:09:5C:A4:D1:61 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136129.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.31.0/24 IPv6: 2001:df2:1100::/48 Signature Algorithm: sha256WithRSAEncryption 36:0c:5a:5f:4a:40:5e:29:90:a5:9b:6c:2f:5e:08:89:b2:f1: c4:8c:4e:51:01:bf:25:0c:e4:0c:ae:66:3a:1a:41:6a:40:f3: b8:2b:63:0c:ca:8b:08:88:35:55:b0:e9:8e:3b:d0:d1:f6:66: f4:27:f5:57:09:ec:5e:3d:92:76:2d:c1:e1:a9:0e:ac:0c:99: 1b:9c:4d:f7:33:a3:32:be:57:d8:a0:4c:09:1a:72:ec:9c:c1: f0:60:0d:81:94:64:79:b4:bc:4d:16:14:f4:41:ec:e3:6d:25: 64:f4:15:f8:ef:39:d7:e4:63:4a:42:52:fa:eb:e0:2c:b9:23: 99:9e:e0:f2:3f:f2:12:f1:c7:50:ff:e2:8d:f7:02:10:39:ea: ad:9c:b4:fb:a3:d3:e1:63:4f:6b:a4:66:49:90:d2:6d:95:3e: d0:c4:fd:f1:01:9c:22:58:2b:6d:d3:4f:68:ee:a8:89:59:ee: 18:5f:8c:ea:81:d8:63:cd:7b:55:22:ae:55:6c:b0:61:7e:61: 55:66:f3:82:19:66:59:40:c0:0a:55:d8:96:41:bf:5a:32:e6: 76:02:a9:91:fc:a2:6b:79:c0:32:4b:a8:fe:fe:1e:64:d8:73: 49:d2:2e:5c:4a:34:32:fc:0f:88:6b:86:6a:5c:04:24:67:5a: c7:b7:a4:89 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUV3a9fQr7HidHQeYsWJEBfOgFGsowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjExOFoX DTI3MDUwMTIxMjYxOFowMzExMC8GA1UEAxMoODRDNzQ0RjA3NUU2NTE3NkZFQThF MUUyNDZFREIwMDk1Q0E0RDE2MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANVfOcPD8dDoOrHsC0/pONHY/Gg9nRPmEPMJCGhZY5yX5mjyUagHT1bTs44M NRwL0poosFvcn6/L/c04LHbDmjTcSIyWF8f5ZgnYj97+3bXylpK3kij2GnRk5+id 3WyXBQSw5ngOlfC2tqQgxVbYlyjmcRpGQgyGHY3g6hw2/kcaeHkJmJtcgINIUyP4 9cg0yp8pbvyntY71O155JS/F57+0Q696oHHcdqesD1f1NgRCB82HHoQrlkLMYRR2 K1r01O8aWrgcfBzu2tQL8l3+B8ZGS809Y3ZAAKwvqy2Kv/Nl9u10YXJ+baEXk6Jc GBSf+xM9rxkZp3XCctRT6PCgAMMCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBSEx0Tw deZRdv6o4eJG7bAJXKTRYTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM2MTI5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAZ2IfMA8EAgACMAkDBwAgAQ3yEQAwDQYJKoZIhvcNAQELBQADggEBADYM Wl9KQF4pkKWbbC9eCImy8cSMTlEBvyUM5AyuZjoaQWpA87grYwzKiwiINVWw6Y47 0NH2ZvQn9VcJ7F49knYtweGpDqwMmRucTfczozK+V9igTAkacuycwfBgDYGUZHm0 vE0WFPRB7ONtJWT0FfjvOdfkY0pCUvrr4Cy5I5me4PI/8hLxx1D/4o33AhA56q2c tPuj0+FjT2ukZkmQ0m2VPtDE/fEBnCJYK23TT2juqIlZ7hhfjOqB2GPNe1UirlVs sGF+YVVm84IZZllAwApV2JZBv1oy5nYCqZH8omt5wDJLqP7+HmTYc0nSLlxKNDL8 D4hrhmpcBCRnWse3pIk= -----END CERTIFICATE-----Generated at Sun May 3 00:39:51 2026 by rpki-client