$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS136445.roa File: AS136445.roa (raw, json) Hash identifier: sSgUBTuyVf5l41TN8kuZY9doqan5ZxofV7sxFDOcqqs= Subject key identifier: F7:CB:05:0A:6D:A7:F2:5A:D0:C9:17:6B:AE:8D:BB:1C:8D:AD:9A:A9 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 11EB1DEB53AB617881EB8529275AEB020171EB8E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136445.roa Signing time: Sat 02 May 2026 09:26:48 +0000 ROA not before: Sat 02 May 2026 09:21:48 +0000 ROA not after: Sat 01 May 2027 09:26:48 +0000 asID: 136445 IP address blocks: 163.227.224.0/24 maxlen: 24 2001:df5:7dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:eb:1d:eb:53:ab:61:78:81:eb:85:29:27:5a:eb:02:01:71:eb:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:48 2026 GMT Not After : May 1 09:26:48 2027 GMT Subject: CN=F7CB050A6DA7F25AD0C9176BAE8DBB1C8DAD9AA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ff:87:a9:70:c5:65:66:04:3f:f6:79:38:a3: e7:d7:8a:08:62:36:5e:d8:ad:83:a5:68:9d:29:99: b8:33:11:59:48:3c:e0:24:dc:bc:44:fe:ae:03:e4: 31:ca:93:13:c7:4d:ee:9f:45:34:3c:1f:16:61:b3: 08:a5:db:b8:60:5b:0e:3c:7d:0f:54:13:67:56:c0: da:9b:70:09:23:47:37:dd:94:50:29:d8:21:4b:7e: 60:c6:9b:1d:50:fa:15:1d:64:64:bc:1c:b3:34:38: 76:d4:48:8d:5f:d2:ef:4c:b5:a5:ec:8b:3c:8e:82: 39:84:a3:41:1a:a6:f6:c3:1a:ef:a6:30:06:6e:96: 79:01:56:b6:b9:68:38:3f:c9:db:87:ad:c5:76:11: 4b:42:b7:2c:ab:f5:a5:b3:21:17:13:21:b9:54:ba: 5b:82:ac:3a:bd:85:f1:2d:70:bd:b3:ab:13:9b:b6: 62:39:ac:50:2d:14:c4:1b:dd:b4:f7:58:79:32:76: 80:21:9b:10:92:31:29:d4:08:28:81:9b:02:43:a6: d0:c7:5e:87:70:0c:88:8f:72:52:8f:6d:0e:ff:6c: e8:35:37:92:42:37:9c:a2:ee:e2:a0:fe:f6:79:2c: 5d:11:45:60:6f:b6:34:93:cc:73:93:f5:c2:ff:a1: 92:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:CB:05:0A:6D:A7:F2:5A:D0:C9:17:6B:AE:8D:BB:1C:8D:AD:9A:A9 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136445.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.224.0/24 IPv6: 2001:df5:7dc0::/48 Signature Algorithm: sha256WithRSAEncryption 3a:fa:8e:9e:e3:42:0f:7d:84:6c:74:8c:00:9e:85:46:8e:38: d4:65:13:87:d2:9a:fe:d4:71:bc:61:ca:9e:cd:f9:68:6b:e2: 3a:59:38:c0:e6:ad:87:75:ab:44:8f:26:f6:25:64:3f:32:1b: 16:46:85:28:3c:e4:46:c5:fc:db:a7:ab:db:b0:59:2a:d1:3b: 86:2e:75:e7:42:ba:87:f5:61:1d:02:a3:0b:33:c9:91:40:d4: ea:48:40:00:16:e2:55:d3:1f:b9:46:35:d6:78:e5:50:11:8a: 22:a2:aa:5d:37:9c:2c:03:3c:f0:00:17:d2:03:e3:ab:c6:5f: 10:0f:dd:55:d3:74:11:19:5e:97:4e:52:58:7b:41:52:7f:99: d0:58:61:da:9d:44:49:f2:da:e0:9b:67:4f:bf:4c:2a:9c:3c: 02:c8:6d:ee:2c:1e:c6:30:d8:3c:0c:08:45:4f:e1:8b:a8:e0: da:17:3d:9a:39:ea:5d:07:79:30:da:b9:0d:05:62:80:de:e3: a5:4f:47:30:70:84:73:c4:cc:04:1a:8b:b0:c8:29:02:cd:a1: 77:ec:3b:d7:15:f5:f5:6d:5b:73:fd:93:de:48:c2:75:5e:1f: 3a:22:99:73:9f:89:28:dc:84:bd:19:3d:da:70:0d:25:6c:4f: e8:35:5d:f9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEesd61OrYXiB64UpJ1rrAgFx644wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjE0OFoX DTI3MDUwMTA5MjY0OFowMzExMC8GA1UEAxMoRjdDQjA1MEE2REE3RjI1QUQwQzkx NzZCQUU4REJCMUM4REFEOUFBOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJP/h6lwxWVmBD/2eTij59eKCGI2Xtitg6VonSmZuDMRWUg84CTcvET+rgPk McqTE8dN7p9FNDwfFmGzCKXbuGBbDjx9D1QTZ1bA2ptwCSNHN92UUCnYIUt+YMab HVD6FR1kZLwcszQ4dtRIjV/S70y1peyLPI6COYSjQRqm9sMa76YwBm6WeQFWtrlo OD/J24etxXYRS0K3LKv1pbMhFxMhuVS6W4KsOr2F8S1wvbOrE5u2YjmsUC0UxBvd tPdYeTJ2gCGbEJIxKdQIKIGbAkOm0Mdeh3AMiI9yUo9tDv9s6DU3kkI3nKLu4qD+ 9nksXRFFYG+2NJPMc5P1wv+hkosCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBT3ywUK bafyWtDJF2uujbscja2aqTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM2NDQ1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAo+PgMA8EAgACMAkDBwAgAQ31fcAwDQYJKoZIhvcNAQELBQADggEBADr6 jp7jQg99hGx0jACehUaOONRlE4fSmv7Ucbxhyp7N+Whr4jpZOMDmrYd1q0SPJvYl ZD8yGxZGhSg85EbF/Nunq9uwWSrRO4YudedCuof1YR0CowszyZFA1OpIQAAW4lXT H7lGNdZ45VARiiKiql03nCwDPPAAF9ID46vGXxAP3VXTdBEZXpdOUlh7QVJ/mdBY YdqdREny2uCbZ0+/TCqcPALIbe4sHsYw2DwMCEVP4Yuo4NoXPZo56l0HeTDauQ0F YoDe46VPRzBwhHPEzAQai7DIKQLNoXfsO9cV9fVtW3P9k95IwnVeHzoimXOfiSjc hL0ZPdpwDSVsT+g1Xfk= -----END CERTIFICATE-----Generated at Sun May 3 00:40:18 2026 by rpki-client