$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138517.roa File: AS138517.roa (raw, json) Hash identifier: oILgaI+7Ufi3jeHTFbWt7SFymoJoxqCV4J/ek/Kjq+Y= Subject key identifier: 45:8B:EA:AF:15:96:14:7C:5D:9B:DD:66:FA:21:EF:C7:0F:61:3E:10 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 735EA1D099AC690253441327200FE143F728E3DB Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138517.roa Signing time: Sat 02 May 2026 09:26:13 +0000 ROA not before: Sat 02 May 2026 09:21:13 +0000 ROA not after: Sat 01 May 2027 09:26:13 +0000 asID: 138517 IP address blocks: 163.227.32.0/23 maxlen: 24 2001:df5:5740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:5e:a1:d0:99:ac:69:02:53:44:13:27:20:0f:e1:43:f7:28:e3:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:13 2026 GMT Not After : May 1 09:26:13 2027 GMT Subject: CN=458BEAAF1596147C5D9BDD66FA21EFC70F613E10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f0:fa:dd:47:48:1a:bf:5a:03:34:07:5e:15: c4:73:e5:a9:be:0d:fb:13:7a:d6:1c:0e:11:31:79: 19:dc:28:9d:d8:8e:87:c1:28:8f:d9:a7:a1:34:5e: f9:4b:9a:e1:b1:3f:88:94:71:32:9a:d1:b2:ff:f0: 7a:a6:56:1a:65:91:72:70:45:c7:9b:56:82:4d:b0: 45:8d:46:62:98:fd:86:d0:62:15:79:14:1f:bd:b0: 93:c0:13:df:ba:d2:da:70:94:7b:ce:79:4d:24:2e: 79:3f:f6:0d:05:7f:b3:5e:45:11:c6:dd:8b:6f:01: 78:96:61:53:65:c0:82:0a:fb:f0:51:31:c4:26:7a: 86:76:cf:23:24:31:36:3e:73:b9:01:80:64:64:76: 1d:ee:ca:13:cc:bf:6f:96:5e:72:14:3a:51:a6:ee: d5:cc:8b:1d:28:85:ee:5b:74:60:98:cd:85:29:4a: bb:b8:a9:47:aa:a4:7d:43:1e:66:f2:66:d0:2b:40: 12:dc:ce:b7:eb:68:90:92:74:15:03:7f:eb:50:5c: c2:9a:39:31:2f:c4:0d:50:13:1a:91:23:1b:3a:6e: bb:54:68:54:f7:28:cd:2c:cf:5e:5b:ce:cc:bd:27: 46:c2:59:ac:6f:9c:52:ab:ef:5a:d7:f4:81:d3:51: 27:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:8B:EA:AF:15:96:14:7C:5D:9B:DD:66:FA:21:EF:C7:0F:61:3E:10 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.32.0/23 IPv6: 2001:df5:5740::/48 Signature Algorithm: sha256WithRSAEncryption 74:dd:10:c4:2b:a3:3a:b4:f0:81:a5:69:2b:c9:7b:2d:98:4c: b9:b7:f2:9f:6a:30:02:16:a0:e8:b6:b0:d7:65:8b:3d:b1:fa: 92:23:64:be:43:15:07:60:d5:b5:ef:2d:2f:61:a0:0a:20:4d: a6:be:a6:74:eb:e1:14:07:29:1d:78:45:8f:e1:a0:ff:38:0f: 67:45:1d:b0:fb:2f:1d:9b:31:46:89:19:88:c7:62:c2:7d:14: d1:0c:fe:73:a2:ea:7f:57:c7:68:93:25:ad:35:d1:88:80:19: 0a:a5:a2:09:0a:61:73:94:f4:f0:9a:02:db:e9:e9:7e:b5:4e: c7:11:9d:1b:14:a1:e5:28:08:53:5b:d1:a4:77:bd:e7:05:97: 32:ae:cb:e6:df:c8:9f:c7:b2:17:84:83:6e:29:d2:13:b9:a8: d3:d6:7d:f8:91:2f:5d:73:0a:eb:9a:22:f3:cf:c9:1e:70:13: 0a:4c:87:14:84:85:2a:cb:c5:04:07:06:21:47:97:64:92:12: 22:d9:49:ca:90:dc:b8:f7:21:7e:18:8e:4a:46:f5:80:d0:49: 36:4a:ea:45:14:68:83:50:25:be:b0:79:be:ce:c3:7e:eb:35: 1b:3a:06:07:bd:9b:8f:3e:75:d1:5b:f1:db:eb:d2:71:d0:27: 42:2f:cf:1b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUc16h0JmsaQJTRBMnIA/hQ/co49swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjExM1oX DTI3MDUwMTA5MjYxM1owMzExMC8GA1UEAxMoNDU4QkVBQUYxNTk2MTQ3QzVEOUJE RDY2RkEyMUVGQzcwRjYxM0UxMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKvw+t1HSBq/WgM0B14VxHPlqb4N+xN61hwOETF5GdwondiOh8Eoj9mnoTRe +Uua4bE/iJRxMprRsv/weqZWGmWRcnBFx5tWgk2wRY1GYpj9htBiFXkUH72wk8AT 37rS2nCUe855TSQueT/2DQV/s15FEcbdi28BeJZhU2XAggr78FExxCZ6hnbPIyQx Nj5zuQGAZGR2He7KE8y/b5ZechQ6Uabu1cyLHSiF7lt0YJjNhSlKu7ipR6qkfUMe ZvJm0CtAEtzOt+tokJJ0FQN/61Bcwpo5MS/EDVATGpEjGzpuu1RoVPcozSzPXlvO zL0nRsJZrG+cUqvvWtf0gdNRJ38CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBRFi+qv FZYUfF2b3Wb6Ie/HD2E+EDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4NTE3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBo+MgMA8EAgACMAkDBwAgAQ31V0AwDQYJKoZIhvcNAQELBQADggEBAHTd EMQrozq08IGlaSvJey2YTLm38p9qMAIWoOi2sNdliz2x+pIjZL5DFQdg1bXvLS9h oAogTaa+pnTr4RQHKR14RY/hoP84D2dFHbD7Lx2bMUaJGYjHYsJ9FNEM/nOi6n9X x2iTJa010YiAGQqlogkKYXOU9PCaAtvp6X61TscRnRsUoeUoCFNb0aR3vecFlzKu y+bfyJ/HsheEg24p0hO5qNPWffiRL11zCuuaIvPPyR5wEwpMhxSEhSrLxQQHBiFH l2SSEiLZScqQ3Lj3IX4YjkpG9YDQSTZK6kUUaINQJb6web7Ow37rNRs6Bge9m48+ ddFb8dvr0nHQJ0Ivzxs= -----END CERTIFICATE-----Generated at Sun May 3 00:41:50 2026 by rpki-client