$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS136600.roa File: AS136600.roa (raw, json) Hash identifier: R0pJcjS26U7F3R5sboFCjgldjLjo2shmTv0T1N0h1Ig= Subject key identifier: 3D:7B:22:A0:97:7F:92:8C:DF:E5:4F:FD:30:FF:92:7A:AC:C9:B6:19 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1845011DD7DBE3818E7A0CA298904C3C46493BB3 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136600.roa Signing time: Sat 02 May 2026 09:27:15 +0000 ROA not before: Sat 02 May 2026 09:22:15 +0000 ROA not after: Sat 01 May 2027 09:27:15 +0000 asID: 136600 IP address blocks: 163.128.82.0/23 maxlen: 24 2001:df6:d6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:45:01:1d:d7:db:e3:81:8e:7a:0c:a2:98:90:4c:3c:46:49:3b:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:22:15 2026 GMT Not After : May 1 09:27:15 2027 GMT Subject: CN=3D7B22A0977F928CDFE54FFD30FF927AACC9B619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:be:ff:57:61:9d:15:b8:2d:3b:68:2c:f5:4d: 2a:ba:74:69:00:ee:fe:af:0c:0c:46:f8:cb:74:11: a2:15:c9:c8:ea:77:91:31:68:b8:0e:7c:87:ac:ca: c1:57:31:e0:44:29:e2:90:28:fe:e8:38:23:04:35: 37:a1:5e:41:cc:02:4d:27:b5:13:77:df:4b:1a:f4: 08:27:5b:35:6f:46:2b:82:44:e1:a6:9b:17:0d:d2: 29:e5:87:e3:3d:5a:9e:c0:8b:4e:b9:58:56:91:06: 88:7d:9d:99:e3:5d:f0:da:c7:87:41:27:39:67:77: 29:0c:72:c9:b4:7c:7b:ad:e1:59:3b:dc:c6:13:76: f3:14:5c:28:af:c9:bc:77:f5:79:58:0b:7f:f4:85: 2b:b2:67:f9:d6:af:d0:98:30:1e:2d:c7:e5:2b:43: e7:62:a3:38:a3:81:6b:b1:51:b2:ef:09:8e:83:c8: 27:1f:6f:42:63:13:92:d5:f0:62:b6:3e:6d:0b:20: 47:0d:2f:18:4e:4f:2f:82:35:48:33:55:db:af:c2: f4:3a:2e:bc:d3:a9:2d:db:3b:c5:1b:01:94:89:23: 22:42:b5:a7:83:03:05:f1:e8:ce:cf:d6:28:ec:58: d8:dd:35:21:8f:0e:76:ea:62:08:50:1b:6e:62:c7: 54:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:7B:22:A0:97:7F:92:8C:DF:E5:4F:FD:30:FF:92:7A:AC:C9:B6:19 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136600.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.82.0/23 IPv6: 2001:df6:d6c0::/48 Signature Algorithm: sha256WithRSAEncryption 06:0c:c8:2e:09:d6:e4:4f:21:f8:63:ee:70:bf:f8:80:c2:5f: 98:6d:10:77:96:01:48:65:4e:62:a9:26:6f:18:f0:29:c4:ea: ef:e4:7b:ae:4a:f1:c0:f8:2a:11:3c:d5:e4:63:ea:e2:a5:db: 37:b4:9b:28:65:e2:d7:80:13:3f:72:f3:52:f7:e2:6b:3a:c9: c2:c1:3d:89:10:15:fc:69:f2:4c:4a:31:3d:65:34:31:ff:74: fd:0a:96:84:2f:98:61:69:14:c0:56:88:23:94:6b:b6:35:01: 0f:98:77:7e:ad:36:2a:28:4d:f4:c5:ce:8e:7e:74:42:96:d3: c1:37:45:42:00:7e:bc:e6:b2:e0:94:91:c4:08:17:30:7e:02: bb:49:e6:5d:a1:5b:fc:73:0c:3f:3b:5c:08:9d:97:2a:55:1a: c5:e4:aa:6d:82:6e:fa:bd:40:4a:4c:df:75:b5:b1:b2:0b:b0: fb:fe:b9:cf:ca:65:2c:2c:70:1d:2e:0b:06:65:a7:5f:d5:f4: 8b:61:36:cb:0d:de:15:00:c2:ef:86:97:dd:26:ba:83:60:b9: a6:c4:65:d3:9c:8e:b2:5b:3f:af:ef:d7:e2:4e:6c:56:be:03: e7:39:81:af:c1:bc:5c:d4:45:d7:0a:0d:5e:17:04:9f:f3:94: 7b:fc:01:b3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGEUBHdfb44GOegyimJBMPEZJO7MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjIxNVoX DTI3MDUwMTA5MjcxNVowMzExMC8GA1UEAxMoM0Q3QjIyQTA5NzdGOTI4Q0RGRTU0 RkZEMzBGRjkyN0FBQ0M5QjYxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANW+/1dhnRW4LTtoLPVNKrp0aQDu/q8MDEb4y3QRohXJyOp3kTFouA58h6zK wVcx4EQp4pAo/ug4IwQ1N6FeQcwCTSe1E3ffSxr0CCdbNW9GK4JE4aabFw3SKeWH 4z1ansCLTrlYVpEGiH2dmeNd8NrHh0EnOWd3KQxyybR8e63hWTvcxhN28xRcKK/J vHf1eVgLf/SFK7Jn+dav0JgwHi3H5StD52KjOKOBa7FRsu8JjoPIJx9vQmMTktXw YrY+bQsgRw0vGE5PL4I1SDNV26/C9DouvNOpLds7xRsBlIkjIkK1p4MDBfHozs/W KOxY2N01IY8OdupiCFAbbmLHVEsCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBQ9eyKg l3+SjN/lT/0w/5J6rMm2GTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM2NjAwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBo4BSMA8EAgACMAkDBwAgAQ321sAwDQYJKoZIhvcNAQELBQADggEBAAYM yC4J1uRPIfhj7nC/+IDCX5htEHeWAUhlTmKpJm8Y8CnE6u/ke65K8cD4KhE81eRj 6uKl2ze0myhl4teAEz9y81L34ms6ycLBPYkQFfxp8kxKMT1lNDH/dP0KloQvmGFp FMBWiCOUa7Y1AQ+Yd36tNiooTfTFzo5+dEKW08E3RUIAfrzmsuCUkcQIFzB+ArtJ 5l2hW/xzDD87XAidlypVGsXkqm2Cbvq9QEpM33W1sbILsPv+uc/KZSwscB0uCwZl p1/V9IthNssN3hUAwu+Gl90muoNguabEZdOcjrJbP6/v1+JObFa+A+c5ga/BvFzU RdcKDV4XBJ/zlHv8AbM= -----END CERTIFICATE-----Generated at Sun May 3 00:42:29 2026 by rpki-client