$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS136844.roa File: AS136844.roa (raw, json) Hash identifier: GzAZcJvu+EVyVAHqH9pVoxMqVGzp2KvHRozMCj9pMss= Subject key identifier: 2E:69:00:EF:B8:5F:D9:40:CA:2D:AF:3F:57:B8:EE:6E:59:94:65:3D Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 523ADAA9D4B9C3A23DA1E5129B9FA615778FB0DF Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136844.roa Signing time: Sat 02 May 2026 09:19:22 +0000 ROA not before: Sat 02 May 2026 09:14:22 +0000 ROA not after: Sat 01 May 2027 09:19:22 +0000 asID: 136844 IP address blocks: 103.100.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:3a:da:a9:d4:b9:c3:a2:3d:a1:e5:12:9b:9f:a6:15:77:8f:b0:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:14:22 2026 GMT Not After : May 1 09:19:22 2027 GMT Subject: CN=2E6900EFB85FD940CA2DAF3F57B8EE6E5994653D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0d:83:d5:64:78:e6:ba:3b:04:9c:55:f9:82: d6:4d:69:f0:8c:2c:3e:bd:76:85:71:f5:e9:87:b0: 7a:f4:18:91:05:4d:cc:01:33:5a:85:60:87:c8:73: ca:93:ee:f8:fe:a2:aa:6c:ee:ab:a0:94:92:bd:4c: 2d:4a:da:55:f5:fe:cd:ab:93:74:53:92:ed:f2:13: 8f:48:39:58:e4:3f:34:49:f3:cb:91:49:ad:55:12: ec:58:6e:51:0c:20:45:c1:f7:3f:a9:15:0d:a0:b1: 8a:26:3f:64:af:cc:ad:cb:81:bd:b6:94:0e:f1:a1: f1:66:d3:7a:83:e4:3b:5f:5a:fa:5c:44:37:03:28: 91:15:65:2a:d1:30:b2:84:03:f2:29:47:2e:8f:36: e1:03:7c:b3:46:43:fc:f8:5b:0b:b1:52:d8:33:70: e2:9c:23:07:ce:2c:70:58:52:f8:2e:43:db:43:aa: 25:0b:f1:0e:73:8a:86:6a:de:5f:87:b7:f7:ea:80: 52:d8:77:28:95:49:e2:24:bd:42:b5:af:17:16:36: ac:c1:76:c4:fa:1c:45:33:58:35:19:02:7a:d3:85: bc:6c:7d:3a:9f:90:9b:94:f5:73:74:31:99:28:3f: a3:92:3f:54:61:e2:c5:c0:05:ba:9a:cb:54:f5:e6: a3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:69:00:EF:B8:5F:D9:40:CA:2D:AF:3F:57:B8:EE:6E:59:94:65:3D X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136844.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.193.0/24 Signature Algorithm: sha256WithRSAEncryption 72:80:1f:3f:8d:a5:e9:5d:c7:6c:ba:6c:0b:d2:b4:73:5d:6a: 63:8a:b7:b0:50:f1:d4:85:62:cc:19:ad:34:f5:83:fe:69:bc: b6:67:ee:2c:22:1c:58:ed:19:bf:ab:55:5f:74:c7:d2:18:df: 0e:76:2c:5d:bb:8f:66:c9:2b:5e:62:9e:7e:9e:73:bd:b5:07: 0e:93:b1:1e:c8:75:b8:db:bc:09:e4:64:9b:a0:0c:f7:c1:ba: 5e:67:be:3d:f4:89:ae:af:eb:f8:e0:12:56:e9:f7:54:94:1d: 4f:1e:e9:80:9d:eb:4f:9b:cf:35:ae:06:ae:6c:b6:52:69:64: b2:59:fa:97:5d:d7:6c:de:f3:8d:a9:c3:ef:80:c5:02:1a:2b: d8:56:26:2f:82:28:21:31:02:31:36:90:7b:ab:fb:af:da:93: ab:15:3d:88:aa:9e:7f:92:45:cb:1e:ff:63:e1:03:31:97:6a: d9:e0:ac:28:2a:0f:8d:d4:1d:47:5a:0a:df:b2:07:b3:b3:92: bb:6b:b1:43:65:34:e5:ed:91:4a:f1:0f:ff:f5:23:bb:0d:54: cf:41:4f:d6:b3:78:9e:bf:df:4e:59:bb:a7:6b:25:e7:9e:2c: 41:95:f9:ea:d7:88:72:e8:b1:65:3c:69:2d:f9:ef:b5:88:5f: b3:f3:70:5d -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUUjraqdS5w6I9oeUSm5+mFXePsN8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTQyMloX DTI3MDUwMTA5MTkyMlowMzExMC8GA1UEAxMoMkU2OTAwRUZCODVGRDk0MENBMkRB RjNGNTdCOEVFNkU1OTk0NjUzRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMUNg9VkeOa6OwScVfmC1k1p8IwsPr12hXH16YewevQYkQVNzAEzWoVgh8hz ypPu+P6iqmzuq6CUkr1MLUraVfX+zauTdFOS7fITj0g5WOQ/NEnzy5FJrVUS7Fhu UQwgRcH3P6kVDaCxiiY/ZK/MrcuBvbaUDvGh8WbTeoPkO19a+lxENwMokRVlKtEw soQD8ilHLo824QN8s0ZD/PhbC7FS2DNw4pwjB84scFhS+C5D20OqJQvxDnOKhmre X4e39+qAUth3KJVJ4iS9QrWvFxY2rMF2xPocRTNYNRkCetOFvGx9Op+Qm5T1c3Qx mSg/o5I/VGHixcAFuprLVPXmow8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQuaQDv uF/ZQMotrz9XuO5uWZRlPTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM2ODQ0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ2TBMA0GCSqGSIb3DQEBCwUAA4IBAQBygB8/jaXpXcdsumwL0rRzXWpj irewUPHUhWLMGa009YP+aby2Z+4sIhxY7Rm/q1VfdMfSGN8Odixdu49mySteYp5+ nnO9tQcOk7EeyHW427wJ5GSboAz3wbpeZ7499Imur+v44BJW6fdUlB1PHumAnetP m881rgaubLZSaWSyWfqXXdds3vONqcPvgMUCGivYViYvgighMQIxNpB7q/uv2pOr FT2Iqp5/kkXLHv9j4QMxl2rZ4KwoKg+N1B1HWgrfsgezs5K7a7FDZTTl7ZFK8Q// 9SO7DVTPQU/Ws3iev99OWbunayXnnixBlfnq14hy6LFlPGkt+e+1iF+z83Bd -----END CERTIFICATE-----Generated at Sun May 3 01:44:03 2026 by rpki-client