$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS137314.roa File: AS137314.roa (raw, json) Hash identifier: QN0a02asMvzBhfp6IR2dC7KWA7WsSO6yKZs6DHcL864= Subject key identifier: FD:AF:CF:46:3B:E8:A0:12:CE:21:87:6E:23:D9:34:4E:5A:1B:2D:FD Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 79E6BB31D1096B082667F30939D763074DE8F222 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS137314.roa Signing time: Sat 02 May 2026 09:19:21 +0000 ROA not before: Sat 02 May 2026 09:14:21 +0000 ROA not after: Sat 01 May 2027 09:19:21 +0000 asID: 137314 IP address blocks: 103.109.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:e6:bb:31:d1:09:6b:08:26:67:f3:09:39:d7:63:07:4d:e8:f2:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:14:21 2026 GMT Not After : May 1 09:19:21 2027 GMT Subject: CN=FDAFCF463BE8A012CE21876E23D9344E5A1B2DFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:13:48:e8:65:21:0d:ff:53:bf:56:43:ba:55: 69:de:92:dc:af:ad:f5:d1:0c:bb:75:ba:ce:75:f9: 3d:e0:2c:50:78:c3:8e:c0:6b:d9:94:ba:5f:05:51: f3:5d:be:aa:f5:73:5f:a3:e4:5f:25:7b:0e:93:c8: 51:32:a8:77:0c:b4:9b:41:80:1f:05:3d:c3:5e:43: f8:ec:9a:4e:84:17:df:01:c9:2b:1f:7e:57:3e:8d: cd:62:43:66:49:a7:16:b1:31:14:4a:67:f5:4e:7d: b1:8d:ed:4b:f0:61:2b:c8:da:06:26:ab:d9:f6:51: f2:06:00:93:26:02:b5:10:e9:33:35:2a:21:b8:da: ae:2f:aa:fc:92:4c:c1:ea:3c:86:53:8d:36:96:d3: 05:33:d3:44:e7:c6:42:82:a9:f0:d8:8c:4d:4d:72: b1:a1:b4:7d:6a:5f:47:87:f5:f0:01:42:4f:33:38: 91:36:5c:13:8b:eb:57:79:d2:72:ed:24:d2:3e:c7: 49:3a:f9:63:c2:6f:6d:b3:86:b5:50:71:25:15:83: 86:75:39:dd:f2:d4:ae:5f:27:31:49:a8:7f:26:16: 84:3b:ea:8f:59:31:90:ce:1b:26:02:3d:24:d4:a5: b5:b9:da:73:0b:02:02:98:28:91:94:24:ca:f8:25: 79:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:AF:CF:46:3B:E8:A0:12:CE:21:87:6E:23:D9:34:4E:5A:1B:2D:FD X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS137314.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.209.0/24 Signature Algorithm: sha256WithRSAEncryption 73:46:e5:7b:1c:e8:a5:3a:83:0b:b8:8c:db:59:3d:4c:db:2b: 2a:8d:2e:a7:d9:26:51:b2:69:ea:4a:a6:4a:19:79:00:fd:9b: 59:82:a4:f2:85:07:01:a6:31:2c:36:49:5f:0d:a6:a3:b2:bb: cb:1b:f3:3f:49:bf:d3:fc:93:41:49:86:e3:ee:18:97:62:33: 18:48:a9:b0:85:8e:b8:dd:64:a3:1a:47:68:39:0e:23:74:8e: 68:55:77:83:1a:8c:f1:ac:54:e3:ca:b8:c9:85:5f:5d:98:61: cd:ca:97:77:01:f8:cc:d2:ef:d6:8c:f1:01:91:a9:55:2e:59: 5e:5d:25:c4:59:ff:58:61:43:73:0c:42:c8:0b:28:09:37:06: 92:cc:d4:36:fa:83:66:0f:e8:10:c6:8e:65:52:a6:76:98:09: b5:a8:b8:08:43:89:45:16:10:7d:a6:49:2f:3e:20:2a:88:2b: ed:b0:c3:0e:60:4a:be:40:8e:a3:87:4f:f6:99:51:78:3d:11: 3f:22:b1:2e:d1:fd:6d:9b:ba:93:da:2c:75:d2:4e:4e:c8:3e: 82:80:af:5b:5f:29:2c:d6:9d:95:35:80:2b:33:1e:4f:50:ca: e3:da:65:5a:a3:1c:e2:9e:f1:95:c2:8f:19:5f:a4:6b:7b:92: fa:40:ed:36 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUeea7MdEJawgmZ/MJOddjB03o8iIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTQyMVoX DTI3MDUwMTA5MTkyMVowMzExMC8GA1UEAxMoRkRBRkNGNDYzQkU4QTAxMkNFMjE4 NzZFMjNEOTM0NEU1QTFCMkRGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPATSOhlIQ3/U79WQ7pVad6S3K+t9dEMu3W6znX5PeAsUHjDjsBr2ZS6XwVR 812+qvVzX6PkXyV7DpPIUTKodwy0m0GAHwU9w15D+OyaToQX3wHJKx9+Vz6NzWJD ZkmnFrExFEpn9U59sY3tS/BhK8jaBiar2fZR8gYAkyYCtRDpMzUqIbjari+q/JJM weo8hlONNpbTBTPTROfGQoKp8NiMTU1ysaG0fWpfR4f18AFCTzM4kTZcE4vrV3nS cu0k0j7HSTr5Y8JvbbOGtVBxJRWDhnU53fLUrl8nMUmofyYWhDvqj1kxkM4bJgI9 JNSltbnacwsCApgokZQkyvgleRcCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBT9r89G O+igEs4hh24j2TROWhst/TAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM3MzE0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ23RMA0GCSqGSIb3DQEBCwUAA4IBAQBzRuV7HOilOoMLuIzbWT1M2ysq jS6n2SZRsmnqSqZKGXkA/ZtZgqTyhQcBpjEsNklfDaajsrvLG/M/Sb/T/JNBSYbj 7hiXYjMYSKmwhY643WSjGkdoOQ4jdI5oVXeDGozxrFTjyrjJhV9dmGHNypd3AfjM 0u/WjPEBkalVLlleXSXEWf9YYUNzDELICygJNwaSzNQ2+oNmD+gQxo5lUqZ2mAm1 qLgIQ4lFFhB9pkkvPiAqiCvtsMMOYEq+QI6jh0/2mVF4PRE/IrEu0f1tm7qT2ix1 0k5OyD6CgK9bXyks1p2VNYArMx5PUMrj2mVaoxzinvGVwo8ZX6Rre5L6QO02 -----END CERTIFICATE-----Generated at Sun May 3 00:41:43 2026 by rpki-client