$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS17769.roa File: AS17769.roa (raw, json) Hash identifier: 2yoUegNNWxNDaJVz+FHtOU9DkA6+EHgn5qpWIF6cWuI= Subject key identifier: 48:C9:0A:CF:71:BF:5E:56:0C:7D:58:D2:C5:37:7F:71:20:C2:DC:16 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5360D74E318721BDBB6B6CE138CED5ACC7439FCC Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS17769.roa Signing time: Sat 02 May 2026 21:15:04 +0000 ROA not before: Sat 02 May 2026 21:10:04 +0000 ROA not after: Sat 01 May 2027 21:15:04 +0000 asID: 17769 IP address blocks: 103.158.70.0/23 maxlen: 24 103.158.72.0/23 maxlen: 24 103.158.164.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:60:d7:4e:31:87:21:bd:bb:6b:6c:e1:38:ce:d5:ac:c7:43:9f:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:10:04 2026 GMT Not After : May 1 21:15:04 2027 GMT Subject: CN=48C90ACF71BF5E560C7D58D2C5377F7120C2DC16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ae:37:59:56:32:7d:81:8c:51:e3:8f:99:ef: 6d:99:c9:f0:b0:4e:e1:29:47:b5:67:08:50:3d:4c: 98:5b:ed:52:8b:30:5b:64:a1:6d:89:76:a2:56:9f: 98:51:23:41:a8:c5:06:5e:47:f7:7a:b2:a1:63:22: c1:da:77:9a:28:f0:0f:2d:ff:09:22:df:a4:b3:47: b7:d6:f7:14:cb:af:c8:d7:c0:d8:b9:0e:7e:2e:1c: 11:fb:8b:da:9a:86:64:df:d4:28:35:02:d9:7b:44: f9:4b:5b:2c:09:dc:33:68:a6:2d:d0:3b:d3:69:e1: e0:d2:ef:db:01:e0:b9:d3:e4:c0:00:3a:43:7d:bc: ea:60:db:ad:af:0c:b2:92:d0:32:f7:de:70:a0:df: fb:51:32:c9:d1:86:4a:22:13:ba:9f:24:07:ce:23: b6:b8:c6:b8:d8:ed:ba:cf:87:63:50:0c:34:e1:65: 69:fb:34:78:91:76:d0:97:b8:f8:37:a5:61:00:8c: f8:07:cc:e2:81:00:bc:c6:34:9d:96:65:0d:fe:9e: f8:b5:8a:00:29:35:e8:14:55:80:bf:bb:a9:c0:9b: 4a:f3:df:8a:ce:52:e2:7f:5a:ee:82:3d:1e:87:f6: bb:82:85:9e:bb:90:f0:4b:a1:c7:df:fd:45:30:da: 3a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:C9:0A:CF:71:BF:5E:56:0C:7D:58:D2:C5:37:7F:71:20:C2:DC:16 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS17769.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.70.0-103.158.73.255 103.158.164.0/23 Signature Algorithm: sha256WithRSAEncryption 77:60:1b:03:a5:1f:a4:a5:03:ef:35:b1:33:95:4e:c2:fc:a9: 05:8e:4e:a3:19:8f:d0:a6:4a:88:9b:e8:0d:e6:34:ca:15:44: eb:a3:ec:e4:ef:45:2f:a1:e6:5f:13:b3:46:9c:a7:1e:66:8e: b1:f9:1c:84:6b:88:ef:93:5c:83:ab:4e:7e:17:77:3e:7d:bd: 89:05:67:59:43:eb:7c:d2:3e:d1:9a:c7:82:a9:bf:01:fa:28: 49:4b:61:cd:67:e7:0b:ad:02:7d:c5:10:28:d1:d0:2e:c4:53: 30:41:c4:9f:08:22:cd:f1:8c:57:b0:a8:ff:c7:96:d2:09:d6: 65:55:0d:3d:4c:72:3f:c0:00:40:5f:bd:06:29:9c:a5:42:71: fd:57:61:8a:d8:b2:fb:9a:b7:96:9b:a0:63:4d:6a:70:42:ad: 7e:96:f3:d4:77:b6:8a:26:ba:ca:5f:6a:cf:19:76:dd:18:a1: b5:db:3f:3e:9b:67:c8:bc:a2:66:a9:8d:d9:da:99:cf:9d:7c: 89:82:4e:58:70:56:89:7a:d9:1d:28:2e:88:5c:e9:53:5b:90: 3e:7f:86:72:39:07:57:06:ec:55:6e:8f:5e:16:ba:09:1d:29: 54:d8:22:45:68:11:03:4d:4d:ff:eb:25:19:a6:3e:54:9b:53: 0d:82:05:49 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUU2DXTjGHIb27a2zhOM7VrMdDn8wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTAwNFoX DTI3MDUwMTIxMTUwNFowMzExMC8GA1UEAxMoNDhDOTBBQ0Y3MUJGNUU1NjBDN0Q1 OEQyQzUzNzdGNzEyMEMyREMxNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKGuN1lWMn2BjFHjj5nvbZnJ8LBO4SlHtWcIUD1MmFvtUoswW2ShbYl2olaf mFEjQajFBl5H93qyoWMiwdp3mijwDy3/CSLfpLNHt9b3FMuvyNfA2LkOfi4cEfuL 2pqGZN/UKDUC2XtE+UtbLAncM2imLdA702nh4NLv2wHgudPkwAA6Q3286mDbra8M spLQMvfecKDf+1EyydGGSiITup8kB84jtrjGuNjtus+HY1AMNOFlafs0eJF20Je4 +DelYQCM+AfM4oEAvMY0nZZlDf6e+LWKACk16BRVgL+7qcCbSvPfis5S4n9a7oI9 Hof2u4KFnruQ8Euhx9/9RTDaOqsCAwEAAaOCAdkwggHVMB0GA1UdDgQWBBRIyQrP cb9eVgx9WNLFN39xIMLcFjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTc3Njkucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwLQYIKwYBBQUHAQcBAf8EHjAcMBoEAgAB MBQwDAMEAWeeRgMEAWeeSAMEAWeepDANBgkqhkiG9w0BAQsFAAOCAQEAd2AbA6Uf pKUD7zWxM5VOwvypBY5OoxmP0KZKiJvoDeY0yhVE66Ps5O9FL6HmXxOzRpynHmaO sfkchGuI75Ncg6tOfhd3Pn29iQVnWUPrfNI+0ZrHgqm/AfooSUthzWfnC60CfcUQ KNHQLsRTMEHEnwgizfGMV7Co/8eW0gnWZVUNPUxyP8AAQF+9BimcpUJx/Vdhitiy +5q3lpugY01qcEKtfpbz1He2iia6yl9qzxl23Rihtds/PptnyLyiZqmN2dqZz518 iYJOWHBWiXrZHSguiFzpU1uQPn+GcjkHVwbsVW6PXha6CR0pVNgiRWgRA01N/+sl GaY+VJtTDYIFSQ== -----END CERTIFICATE-----Generated at Sun May 3 00:40:42 2026 by rpki-client