$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS137383.roa File: AS137383.roa (raw, json) Hash identifier: FmrFB+TX0bPIOM+/YwN9K9cejPVsAnXq0cdJx4Fy3mw= Subject key identifier: 4E:FC:0A:5F:A2:E4:D2:EE:C0:B3:92:F4:98:F4:42:2A:7A:56:CB:D3 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 31F6FB31B48886A52D9EE171AAC833127886C45E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS137383.roa Signing time: Sat 02 May 2026 21:05:59 +0000 ROA not before: Sat 02 May 2026 21:00:59 +0000 ROA not after: Sat 01 May 2027 21:05:59 +0000 asID: 137383 IP address blocks: 103.120.244.0/24 maxlen: 24 103.141.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:f6:fb:31:b4:88:86:a5:2d:9e:e1:71:aa:c8:33:12:78:86:c4:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:00:59 2026 GMT Not After : May 1 21:05:59 2027 GMT Subject: CN=4EFC0A5FA2E4D2EEC0B392F498F4422A7A56CBD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9d:39:b1:41:b6:e4:e3:69:57:f1:86:dd:ad: 1e:85:52:8c:a6:25:de:30:fc:58:30:fe:14:3b:ac: 35:9a:ee:9e:99:3c:9d:d0:f2:da:14:a0:11:66:3c: e9:a5:3c:5c:f7:88:fd:70:e7:a3:4d:5e:40:35:78: 97:09:68:d5:03:f5:14:30:20:f5:23:c4:ad:24:ff: 49:4a:4d:d6:39:ff:58:56:fb:b1:db:d6:84:40:65: 5a:e1:a6:35:93:a8:18:17:2a:78:9b:1f:33:bf:be: ee:61:84:02:53:3a:6b:76:41:3d:d1:4d:04:a4:70: 33:52:a5:71:42:b7:2b:63:f2:3b:5b:ea:73:f8:1b: c4:5f:ed:3e:5d:33:3d:78:2b:34:43:8b:65:d4:cf: 36:02:14:51:de:92:9d:6a:7c:ef:b2:92:40:94:0d: 59:86:5a:28:c3:fa:fc:61:01:8f:89:68:6a:a6:08: c9:1b:0b:77:29:75:3f:78:81:ea:9b:2e:4f:6a:2b: 16:45:2d:6d:0a:26:76:db:07:04:1c:0a:be:6d:f0: df:eb:50:e8:1d:81:3e:3c:09:74:47:71:fc:63:b1: 53:ba:74:41:80:ac:f2:a2:0f:29:a4:19:14:86:e3: 47:75:35:34:4b:d6:1f:30:6f:a9:75:00:c6:93:05: 28:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:FC:0A:5F:A2:E4:D2:EE:C0:B3:92:F4:98:F4:42:2A:7A:56:CB:D3 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS137383.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.244.0/24 103.141.228.0/24 Signature Algorithm: sha256WithRSAEncryption 95:79:25:aa:bf:fa:21:69:67:1c:83:f6:23:ba:91:b2:da:98: 17:fb:91:f8:1f:a2:cb:ac:25:b1:be:4c:2f:e7:b2:e2:8b:92: f3:40:93:66:9b:9e:d4:a9:5a:0f:5d:b2:07:db:09:eb:b8:47: 80:20:e4:1f:97:f9:19:ac:4a:06:07:44:d7:09:68:d5:dd:73: c0:1e:6c:0e:0f:27:60:22:11:ac:8b:87:e3:2c:08:54:3a:2d: 5d:03:ea:9e:ff:c1:88:a6:88:32:b2:52:9f:b0:02:77:89:24: 8c:78:86:fd:90:6c:52:d0:96:13:af:4e:1b:3b:97:fc:df:dc: 57:1f:a5:95:50:9f:d5:95:4c:c3:85:63:e0:55:d8:36:af:07: bb:79:70:ad:af:b8:d5:a0:62:a5:69:51:ff:0f:48:7e:64:68: 3a:60:a4:65:4f:0b:34:c7:a3:b1:15:85:93:2c:15:ed:97:5e: fc:35:d3:39:44:ba:97:6a:aa:02:05:d5:8c:a4:05:1a:81:06: 98:16:8b:10:77:59:50:f8:cf:f8:a5:41:23:60:40:52:1d:2e: 11:b7:24:4d:9e:77:be:6d:23:24:0e:2a:a8:67:8d:38:9d:4c: 84:d2:ce:cb:4c:ba:eb:b5:2f:f3:0c:24:d4:d0:1c:68:07:48: 73:92:ed:a4 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUMfb7MbSIhqUtnuFxqsgzEniGxF4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDA1OVoX DTI3MDUwMTIxMDU1OVowMzExMC8GA1UEAxMoNEVGQzBBNUZBMkU0RDJFRUMwQjM5 MkY0OThGNDQyMkE3QTU2Q0JEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMOdObFBtuTjaVfxht2tHoVSjKYl3jD8WDD+FDusNZrunpk8ndDy2hSgEWY8 6aU8XPeI/XDno01eQDV4lwlo1QP1FDAg9SPErST/SUpN1jn/WFb7sdvWhEBlWuGm NZOoGBcqeJsfM7++7mGEAlM6a3ZBPdFNBKRwM1KlcUK3K2PyO1vqc/gbxF/tPl0z PXgrNEOLZdTPNgIUUd6SnWp877KSQJQNWYZaKMP6/GEBj4loaqYIyRsLdyl1P3iB 6psuT2orFkUtbQomdtsHBBwKvm3w3+tQ6B2BPjwJdEdx/GOxU7p0QYCs8qIPKaQZ FIbjR3U1NEvWHzBvqXUAxpMFKE8CAwEAAaOCAdIwggHOMB0GA1UdDgQWBBRO/Apf ouTS7sCzkvSY9EIqelbL0zAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM3MzgzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIA ATAMAwQAZ3j0AwQAZ43kMA0GCSqGSIb3DQEBCwUAA4IBAQCVeSWqv/ohaWccg/Yj upGy2pgX+5H4H6LLrCWxvkwv57Lii5LzQJNmm57UqVoPXbIH2wnruEeAIOQfl/kZ rEoGB0TXCWjV3XPAHmwODydgIhGsi4fjLAhUOi1dA+qe/8GIpogyslKfsAJ3iSSM eIb9kGxS0JYTr04bO5f839xXH6WVUJ/VlUzDhWPgVdg2rwe7eXCtr7jVoGKlaVH/ D0h+ZGg6YKRlTws0x6OxFYWTLBXtl178NdM5RLqXaqoCBdWMpAUagQaYFosQd1lQ +M/4pUEjYEBSHS4RtyRNnne+bSMkDiqoZ404nUyE0s7LTLrrtS/zDCTU0BxoB0hz ku2k -----END CERTIFICATE-----Generated at Sun May 3 00:42:19 2026 by rpki-client