$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS18059.roa File: AS18059.roa (raw, json) Hash identifier: kt2jCscS+zXRbk5zyBm75WJv+drdWpEbJTH1sQ2ZsNw= Subject key identifier: 87:9D:75:54:05:09:18:ED:B6:00:8C:64:C8:19:95:D5:9F:69:B5:5A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 2B6ECCF7D9A9FE8BB853F8C599AD987F6ACC13A2 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS18059.roa Signing time: Sat 02 May 2026 09:25:27 +0000 ROA not before: Sat 02 May 2026 09:20:27 +0000 ROA not after: Sat 01 May 2027 09:25:27 +0000 asID: 18059 IP address blocks: 103.168.114.0/23 maxlen: 24 103.168.116.0/23 maxlen: 24 103.168.118.0/23 maxlen: 24 103.168.120.0/23 maxlen: 24 163.61.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:6e:cc:f7:d9:a9:fe:8b:b8:53:f8:c5:99:ad:98:7f:6a:cc:13:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:20:27 2026 GMT Not After : May 1 09:25:27 2027 GMT Subject: CN=879D7554050918EDB6008C64C81995D59F69B55A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e8:5d:25:9a:26:84:ab:3a:08:59:10:e3:98: b2:78:a7:a6:5e:9f:40:06:9f:66:ee:81:10:38:2f: 95:40:6a:28:16:4d:15:a9:76:9c:08:f4:ee:51:d3: 79:6e:ec:5f:7a:84:e5:08:fc:dd:03:53:c4:95:45: c7:4b:6a:0b:1e:5d:53:b5:e3:40:e6:2b:8e:5e:7c: 89:fc:1c:91:87:42:28:f7:2f:63:c5:f4:94:94:f5: 1d:e9:15:78:fa:9a:6f:0d:41:79:0e:f2:a5:7e:76: ea:a4:f1:04:8d:b9:9b:7c:a2:eb:cb:43:8b:09:e6: 72:05:84:28:d2:e2:95:60:56:2e:60:8e:dd:2a:ad: 6a:c0:70:08:f3:5f:a1:95:92:db:b1:6e:88:a7:75: 45:42:39:f9:83:0e:12:62:2b:de:cc:b7:86:a4:a0: 8f:8e:45:b4:3f:34:86:02:ee:a7:f6:66:64:eb:ed: cd:a5:97:c8:1e:d7:32:8f:a6:a3:a4:61:df:12:89: 8e:a6:65:0d:39:4c:6f:a6:3e:c4:47:82:a4:0b:4f: f3:91:af:23:b1:37:9d:4e:b2:32:97:06:c5:ff:57: 7b:fc:99:2a:0b:b4:eb:35:0e:b2:68:78:a6:63:62: 95:e8:18:7b:e9:c5:bd:f4:57:19:9c:8c:b1:d1:84: 62:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:9D:75:54:05:09:18:ED:B6:00:8C:64:C8:19:95:D5:9F:69:B5:5A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS18059.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.114.0-103.168.121.255 163.61.77.0/24 Signature Algorithm: sha256WithRSAEncryption 63:4c:dc:b3:14:c5:fa:1a:4c:80:c0:8f:76:59:42:e2:fb:91: 09:6d:80:d9:a7:3f:be:49:57:49:c1:d2:0c:58:c2:d1:f7:b1: ed:89:ac:eb:36:20:05:21:bb:f4:5d:30:f5:c0:0a:a6:c2:b6: dc:02:48:69:12:87:93:0c:63:5d:51:00:58:52:9c:ef:37:0e: 75:89:6e:8d:b4:73:ba:05:38:c6:bb:51:cf:e6:25:c6:14:5d: 79:e9:f4:d5:88:c7:cd:0d:e7:30:02:b5:8f:89:87:e3:5c:a5: 12:32:90:7f:20:c7:66:de:40:91:ab:3c:91:03:dc:52:61:d5: 6a:43:76:f0:47:44:93:2d:3f:e4:5b:e0:25:30:04:11:a6:14: a0:f4:25:37:7d:d8:5a:a1:81:d5:7d:71:d8:d7:01:de:5a:c4: 8c:4b:6b:db:7e:03:17:bb:0d:a5:88:bb:d6:ae:05:8f:8b:aa: 02:ac:b2:c1:d3:ab:37:40:41:26:5f:4f:6f:9a:36:81:8a:50: b2:75:42:79:2a:71:34:7b:8f:26:d2:63:6c:b5:50:99:71:32: d3:3e:96:b4:b1:3f:2d:02:7d:14:ea:07:58:38:53:a3:13:8b: 1f:12:13:01:7a:8b:5b:20:15:84:0d:cb:f9:49:8e:ab:a9:79: 67:95:ad:19 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUK27M99mp/ou4U/jFma2Yf2rME6IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjAyN1oX DTI3MDUwMTA5MjUyN1owMzExMC8GA1UEAxMoODc5RDc1NTQwNTA5MThFREI2MDA4 QzY0QzgxOTk1RDU5RjY5QjU1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM/oXSWaJoSrOghZEOOYsninpl6fQAafZu6BEDgvlUBqKBZNFal2nAj07lHT eW7sX3qE5Qj83QNTxJVFx0tqCx5dU7XjQOYrjl58ifwckYdCKPcvY8X0lJT1HekV ePqabw1BeQ7ypX526qTxBI25m3yi68tDiwnmcgWEKNLilWBWLmCO3SqtasBwCPNf oZWS27FuiKd1RUI5+YMOEmIr3sy3hqSgj45FtD80hgLup/ZmZOvtzaWXyB7XMo+m o6Rh3xKJjqZlDTlMb6Y+xEeCpAtP85GvI7E3nU6yMpcGxf9Xe/yZKgu06zUOsmh4 pmNilegYe+nFvfRXGZyMsdGEYpUCAwEAAaOCAdkwggHVMB0GA1UdDgQWBBSHnXVU BQkY7bYAjGTIGZXVn2m1WjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTgwNTkucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwLQYIKwYBBQUHAQcBAf8EHjAcMBoEAgAB MBQwDAMEAWeocgMEAWeoeAMEAKM9TTANBgkqhkiG9w0BAQsFAAOCAQEAY0zcsxTF +hpMgMCPdllC4vuRCW2A2ac/vklXScHSDFjC0fex7Yms6zYgBSG79F0w9cAKpsK2 3AJIaRKHkwxjXVEAWFKc7zcOdYlujbRzugU4xrtRz+YlxhRdeen01YjHzQ3nMAK1 j4mH41ylEjKQfyDHZt5Akas8kQPcUmHVakN28EdEky0/5FvgJTAEEaYUoPQlN33Y WqGB1X1x2NcB3lrEjEtr234DF7sNpYi71q4Fj4uqAqyywdOrN0BBJl9Pb5o2gYpQ snVCeSpxNHuPJtJjbLVQmXEy0z6WtLE/LQJ9FOoHWDhToxOLHxITAXqLWyAVhA3L +UmOq6l5Z5WtGQ== -----END CERTIFICATE-----Generated at Sun May 3 01:40:41 2026 by rpki-client