$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS136873.roa File: AS136873.roa (raw, json) Hash identifier: mD346XCl5edLjEMtLOJwmTLw0+pWh67sb8PpCcSER4I= Subject key identifier: F7:02:4E:EE:A1:FF:28:69:FF:C7:E9:6F:58:CC:CE:A2:90:BA:8A:69 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7417FFE6FD37334B85DF9BAD9C9281913A807D8C Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136873.roa Signing time: Sat 02 May 2026 21:20:15 +0000 ROA not before: Sat 02 May 2026 21:15:15 +0000 ROA not after: Sat 01 May 2027 21:20:15 +0000 asID: 136873 IP address blocks: 103.75.84.0/23 maxlen: 24 103.116.49.0/24 maxlen: 24 103.165.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:17:ff:e6:fd:37:33:4b:85:df:9b:ad:9c:92:81:91:3a:80:7d:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:15:15 2026 GMT Not After : May 1 21:20:15 2027 GMT Subject: CN=F7024EEEA1FF2869FFC7E96F58CCCEA290BA8A69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:65:be:ea:54:44:41:88:4f:cf:d5:30:6a:08: 86:7e:d4:a2:31:14:a6:f2:53:32:40:bf:c7:5b:e8: 1f:2a:53:90:6d:8f:90:59:a9:65:c7:55:12:44:24: f1:51:9f:41:86:84:4a:11:d0:fa:85:99:2f:eb:1f: e7:75:1e:ba:45:2a:28:68:c1:fe:b5:7f:47:a5:ab: 0b:22:42:d2:aa:b3:0f:77:b3:c0:47:2a:b2:0f:ce: 19:f4:e0:b9:ff:ec:a8:e5:9e:a4:a3:5f:04:eb:12: 19:06:2c:2c:8a:e9:d8:ec:62:ae:84:f0:99:6f:f9: 18:a2:cd:50:8b:0c:d5:6e:78:cc:fa:a7:9b:0c:af: ac:b7:b5:bd:27:35:c8:ba:1b:cd:c8:ea:bb:0e:32: cf:52:56:1d:c2:8d:bd:34:27:d2:57:1d:66:62:ba: e2:41:d9:c5:a6:e8:ca:07:a4:d5:6b:d7:d8:89:8d: 58:75:db:f5:e8:e0:86:47:14:f1:1b:15:77:e7:4f: da:80:92:e0:76:42:7b:dc:85:ba:40:f6:f3:59:d8: 14:01:b2:d0:4f:29:f8:ff:d7:34:c2:08:e1:02:d7: 27:83:c4:92:f6:32:3d:12:01:14:3c:ea:1c:27:cb: fc:45:af:9d:09:53:f3:21:16:7f:93:a9:89:9e:a8: 63:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:02:4E:EE:A1:FF:28:69:FF:C7:E9:6F:58:CC:CE:A2:90:BA:8A:69 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS136873.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.75.84.0/23 103.116.49.0/24 103.165.156.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:6f:22:cf:1b:5f:29:08:36:9f:51:52:9b:ad:7d:8f:66:2c: 39:96:6e:8f:85:39:d8:c3:28:01:cb:38:d1:1d:9f:75:3a:6f: d1:f5:f4:87:93:3c:64:e9:c7:a1:6e:0e:86:30:10:6e:b9:d2: e2:14:a4:0e:27:10:06:4c:8b:6b:e1:79:13:28:98:f2:30:f4: 66:10:fd:81:20:3c:c8:f8:e1:89:78:9d:fd:42:e7:63:ef:a0: b6:8f:60:b5:24:ee:b1:80:8d:b1:8d:86:30:c0:c9:4e:c0:a8: c7:a0:f8:f3:76:2b:73:47:84:96:66:d4:d3:88:ce:7d:6c:39: 2f:15:c8:54:2f:58:40:58:ec:23:30:44:db:9d:59:1f:35:40: 17:b3:a6:ec:d8:1f:d0:5c:9d:5a:f4:6d:6a:7f:bd:f4:c7:4f: c9:2b:a0:76:e9:3e:f3:c8:35:3c:80:97:b2:c1:d7:2b:54:c3: 8b:f7:b4:31:8b:64:07:2c:b8:eb:3b:c3:b3:87:2d:75:79:40: ac:33:3d:00:38:96:e7:60:02:28:1d:c0:b3:b6:db:68:07:b7: 25:5c:4c:84:8e:fb:ff:d6:0c:f5:ed:18:5d:87:a9:64:8a:9f: 0a:f0:02:bb:eb:d9:33:fc:d7:3b:9b:29:66:3d:2b:71:bb:4e: d2:d5:90:89 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUdBf/5v03M0uF35utnJKBkTqAfYwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTUxNVoX DTI3MDUwMTIxMjAxNVowMzExMC8GA1UEAxMoRjcwMjRFRUVBMUZGMjg2OUZGQzdF OTZGNThDQ0NFQTI5MEJBOEE2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALBlvupUREGIT8/VMGoIhn7UojEUpvJTMkC/x1voHypTkG2PkFmpZcdVEkQk 8VGfQYaEShHQ+oWZL+sf53UeukUqKGjB/rV/R6WrCyJC0qqzD3ezwEcqsg/OGfTg uf/sqOWepKNfBOsSGQYsLIrp2OxiroTwmW/5GKLNUIsM1W54zPqnmwyvrLe1vSc1 yLobzcjquw4yz1JWHcKNvTQn0lcdZmK64kHZxaboygek1WvX2ImNWHXb9ejghkcU 8RsVd+dP2oCS4HZCe9yFukD281nYFAGy0E8p+P/XNMII4QLXJ4PEkvYyPRIBFDzq HCfL/EWvnQlT8yEWf5OpiZ6oY38CAwEAAaOCAdgwggHUMB0GA1UdDgQWBBT3Ak7u of8oaf/H6W9YzM6ikLqKaTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM2ODczLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIA ATASAwQBZ0tUAwQAZ3QxAwQBZ6WcMA0GCSqGSIb3DQEBCwUAA4IBAQA+byLPG18p CDafUVKbrX2PZiw5lm6PhTnYwygByzjRHZ91Om/R9fSHkzxk6cehbg6GMBBuudLi FKQOJxAGTItr4XkTKJjyMPRmEP2BIDzI+OGJeJ39Qudj76C2j2C1JO6xgI2xjYYw wMlOwKjHoPjzditzR4SWZtTTiM59bDkvFchUL1hAWOwjMETbnVkfNUAXs6bs2B/Q XJ1a9G1qf730x0/JK6B26T7zyDU8gJeywdcrVMOL97Qxi2QHLLjrO8Ozhy11eUCs Mz0AOJbnYAIoHcCztttoB7clXEyEjvv/1gz17Rhdh6lkip8K8AK769kz/Nc7mylm PStxu07S1ZCJ -----END CERTIFICATE-----Generated at Sun May 3 00:42:32 2026 by rpki-client