$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS137370.roa File: AS137370.roa (raw, json) Hash identifier: 6hDUxH3aTq1EL0rXIxeki1vRg/+LhFdJ7Lb2YfqoS8k= Subject key identifier: 73:AB:15:72:8D:3D:96:B0:A5:DE:EB:5D:D2:EF:5F:5E:12:1A:57:6A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 358BD795B8C8715C52080C130BAC4C5050ECA65A Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS137370.roa Signing time: Sat 02 May 2026 21:33:35 +0000 ROA not before: Sat 02 May 2026 21:28:35 +0000 ROA not after: Sat 01 May 2027 21:33:35 +0000 asID: 137370 IP address blocks: 103.118.176.0/22 maxlen: 24 2403:3540::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:8b:d7:95:b8:c8:71:5c:52:08:0c:13:0b:ac:4c:50:50:ec:a6:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:28:35 2026 GMT Not After : May 1 21:33:35 2027 GMT Subject: CN=73AB15728D3D96B0A5DEEB5DD2EF5F5E121A576A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ee:24:70:13:32:b2:55:29:25:c7:e2:a9:95: 23:8e:9e:11:0d:60:77:1c:78:4c:07:59:85:07:6b: 73:91:2a:41:6a:d1:e3:9d:d5:f9:2c:be:c0:0c:fe: 0e:64:96:5b:86:06:30:ad:32:b0:12:8b:bc:e0:13: db:4e:20:b9:1e:04:c5:2d:f2:49:b6:14:85:ac:f8: ae:44:5a:3d:53:c9:b3:57:ee:4b:06:87:f8:f2:6f: e3:8d:c3:0c:99:2d:f6:2f:4b:2e:7b:43:5a:2b:a1: 28:34:18:47:ad:8f:25:0f:00:bd:f8:27:e3:b7:b1: 6f:b1:48:11:b8:c9:44:e0:e1:b1:72:a6:2e:bb:1f: ac:b1:cf:d2:6f:99:4a:ee:d6:de:38:de:84:71:3a: 8e:e0:44:96:72:84:0e:18:29:71:d0:ba:b8:34:ac: 60:4c:8e:62:94:76:65:a0:68:f2:86:9d:aa:bf:0b: 77:35:2f:65:26:63:9b:14:71:f8:8f:dd:31:f3:4d: 9d:97:0d:96:9e:45:9d:e8:b7:51:ca:ba:5b:fa:4e: 0a:d0:b4:2e:86:37:48:89:83:82:20:b6:40:ba:56: 18:9b:78:0c:e3:0a:c4:37:b1:94:ba:91:98:2e:16: 9f:d0:72:5b:15:6a:bc:a2:45:04:ae:0b:15:93:64: 8e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:AB:15:72:8D:3D:96:B0:A5:DE:EB:5D:D2:EF:5F:5E:12:1A:57:6A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS137370.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.176.0/22 IPv6: 2403:3540::/32 Signature Algorithm: sha256WithRSAEncryption 69:78:11:9c:f5:2f:34:84:91:d1:f9:ff:ba:7d:99:dc:48:9b: fe:1f:7f:f1:79:46:03:89:07:eb:87:da:a4:c9:80:79:2e:98: 43:6f:2e:c5:1d:06:f4:8d:54:6a:5b:74:60:1f:13:4f:d7:7b: 06:8c:06:78:11:8c:5b:92:d2:4d:83:62:b9:b1:1a:92:e5:9e: 5c:6e:35:f5:12:36:28:48:88:48:e8:bb:5c:88:5a:ca:07:da: db:6a:6f:55:1a:76:f5:08:07:3f:56:37:f3:e9:92:83:97:5c: 4a:91:1e:e9:14:0b:75:a7:4e:af:ef:ce:51:45:39:64:17:c2: 86:99:a7:1b:55:ca:45:11:85:e2:eb:71:d9:5c:af:1d:bd:b1: ed:68:46:7b:76:4f:6b:d9:fb:8c:2f:f1:c9:10:a0:bb:a2:02: 47:07:b3:a3:da:0b:4a:d9:21:b1:ba:ef:e5:59:1f:f3:88:77: 2a:69:ce:7f:21:f2:49:77:47:13:8d:4b:7b:fd:ff:9e:1c:71: a0:7e:ae:97:44:70:38:6a:99:f8:d4:3d:52:6a:59:83:33:ec: 79:1a:c6:b8:2a:91:d1:1c:e2:e3:30:69:aa:95:3d:15:1e:ca: 3a:1b:7e:44:00:70:23:cd:a1:c3:4b:1c:0d:db:d6:dd:5d:e8: c2:a1:56:90 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUNYvXlbjIcVxSCAwTC6xMUFDsplowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjgzNVoX DTI3MDUwMTIxMzMzNVowMzExMC8GA1UEAxMoNzNBQjE1NzI4RDNEOTZCMEE1REVF QjVERDJFRjVGNUUxMjFBNTc2QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKDuJHATMrJVKSXH4qmVI46eEQ1gdxx4TAdZhQdrc5EqQWrR453V+Sy+wAz+ DmSWW4YGMK0ysBKLvOAT204guR4ExS3ySbYUhaz4rkRaPVPJs1fuSwaH+PJv443D DJkt9i9LLntDWiuhKDQYR62PJQ8Avfgn47exb7FIEbjJRODhsXKmLrsfrLHP0m+Z Su7W3jjehHE6juBElnKEDhgpcdC6uDSsYEyOYpR2ZaBo8oadqr8LdzUvZSZjmxRx +I/dMfNNnZcNlp5Fnei3Ucq6W/pOCtC0LoY3SImDgiC2QLpWGJt4DOMKxDexlLqR mC4Wn9ByWxVqvKJFBK4LFZNkjvkCAwEAAaOCAdswggHXMB0GA1UdDgQWBBRzqxVy jT2WsKXe613S719eEhpXajAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM3MzcwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIA ATAGAwQCZ3awMA0EAgACMAcDBQAkAzVAMA0GCSqGSIb3DQEBCwUAA4IBAQBpeBGc 9S80hJHR+f+6fZncSJv+H3/xeUYDiQfrh9qkyYB5LphDby7FHQb0jVRqW3RgHxNP 13sGjAZ4EYxbktJNg2K5sRqS5Z5cbjX1EjYoSIhI6LtciFrKB9rbam9VGnb1CAc/ Vjfz6ZKDl1xKkR7pFAt1p06v785RRTlkF8KGmacbVcpFEYXi63HZXK8dvbHtaEZ7 dk9r2fuML/HJEKC7ogJHB7Oj2gtK2SGxuu/lWR/ziHcqac5/IfJJd0cTjUt7/f+e HHGgfq6XRHA4apn41D1SalmDM+x5Gsa4KpHRHOLjMGmqlT0VHso6G35EAHAjzaHD SxwN29bdXejCoVaQ -----END CERTIFICATE-----Generated at Sun May 3 01:44:03 2026 by rpki-client