$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS212238.roa File: AS212238.roa (raw, json) Hash identifier: E3byjUu9gD7J96dG8hF0lSThoCmIh+TmVtdAn2qmzz4= Subject key identifier: 8C:EF:D1:1D:F1:C0:9F:55:1E:06:83:27:1A:E6:00:E7:70:20:11:90 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7DE37191DDA7A80057D474307680552F6113DEF9 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS212238.roa Signing time: Sat 02 May 2026 21:08:42 +0000 ROA not before: Sat 02 May 2026 21:03:42 +0000 ROA not after: Sat 01 May 2027 21:08:42 +0000 asID: 212238 IP address blocks: 103.149.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e3:71:91:dd:a7:a8:00:57:d4:74:30:76:80:55:2f:61:13:de:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:03:42 2026 GMT Not After : May 1 21:08:42 2027 GMT Subject: CN=8CEFD11DF1C09F551E0683271AE600E770201190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:33:2a:54:bf:89:42:85:3f:2e:29:1c:a6:09: 68:3e:dd:fa:76:02:b7:e0:29:bf:63:0a:f1:9b:fb: f4:86:d6:a3:83:b3:b9:23:fb:3b:18:55:7a:69:bb: 84:2f:26:59:1d:0a:0a:ff:9d:50:7a:19:55:8f:75: b8:80:4e:9c:d5:70:08:8b:2e:df:8d:2f:d9:b1:47: d2:88:26:ed:1c:21:66:5f:2e:ce:1a:55:98:85:c9: e6:4f:82:9a:70:36:96:2c:02:a3:42:18:03:25:15: 86:7f:56:5b:9b:05:cd:51:17:d9:ca:2c:12:94:e0: 90:07:b5:c8:79:8d:bd:72:3b:4e:a5:da:18:b3:de: 69:7c:c0:6c:bb:c7:1d:59:6c:a9:ce:41:cf:a5:33: 70:98:0b:20:6e:08:4d:6b:ce:50:ea:7b:41:c6:69: 4a:1e:a2:f5:91:24:77:c0:96:9f:a4:8b:70:08:44: 67:95:34:5f:28:69:a8:8f:e9:9b:90:cf:0f:f9:b7: 47:61:c6:78:58:7c:14:37:76:19:17:ac:07:c2:4a: 17:6f:fa:4a:16:65:dd:07:a2:9a:37:ec:76:81:98: 90:23:49:39:6c:e6:8f:5a:ff:09:46:01:3a:4b:e3: da:49:e7:73:95:ae:c4:1f:69:1b:a1:07:91:78:f0: 8d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:EF:D1:1D:F1:C0:9F:55:1E:06:83:27:1A:E6:00:E7:70:20:11:90 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS212238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.115.0/24 Signature Algorithm: sha256WithRSAEncryption 21:4f:29:e4:78:96:4f:e3:08:9a:0e:10:00:0b:99:6f:49:8a: 95:65:46:c4:aa:38:41:1d:19:66:7e:84:2e:ec:90:1b:5f:a8: 0c:ad:1e:f1:00:a0:9a:1b:1b:08:e9:6d:e9:53:4f:d5:44:c2: 33:30:51:4e:ff:75:f7:8f:39:a5:b2:e4:20:a9:06:7e:30:4f: 8f:2b:28:82:12:13:1d:65:f1:74:bc:66:d4:29:7a:ce:6a:3a: 7d:b2:d6:e1:42:e2:b7:75:21:21:e0:aa:1c:a9:15:e1:4f:f0: a1:a7:b1:e6:9e:56:6b:99:6c:02:69:bd:25:87:d8:44:5b:c6: 5b:da:4d:44:1d:d8:9f:15:23:b0:cb:e5:88:13:1d:4a:53:be: f4:e9:b4:6a:f3:b1:12:23:21:f1:bf:41:61:d9:f1:91:6a:ec: c2:54:99:b2:14:f3:ba:37:f1:18:08:cc:f3:8f:97:f3:1b:a8: 4f:ac:98:31:e0:26:7e:ce:d6:bc:01:35:59:5d:55:f0:9b:28: 20:ec:85:40:7d:90:4c:06:dd:4d:58:e5:fe:74:61:32:11:c7: 74:b7:37:5d:ec:17:8a:73:a8:70:a4:bd:f4:21:49:61:a8:b3: 53:26:d2:3a:41:8d:6e:6a:2b:f8:9e:ae:0f:10:de:65:fb:99: 97:ba:99:e1 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUfeNxkd2nqABX1HQwdoBVL2ET3vkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDM0MloX DTI3MDUwMTIxMDg0MlowMzExMC8GA1UEAxMoOENFRkQxMURGMUMwOUY1NTFFMDY4 MzI3MUFFNjAwRTc3MDIwMTE5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALUzKlS/iUKFPy4pHKYJaD7d+nYCt+Apv2MK8Zv79IbWo4OzuSP7OxhVemm7 hC8mWR0KCv+dUHoZVY91uIBOnNVwCIsu340v2bFH0ogm7RwhZl8uzhpVmIXJ5k+C mnA2liwCo0IYAyUVhn9WW5sFzVEX2cosEpTgkAe1yHmNvXI7TqXaGLPeaXzAbLvH HVlsqc5Bz6UzcJgLIG4ITWvOUOp7QcZpSh6i9ZEkd8CWn6SLcAhEZ5U0XyhpqI/p m5DPD/m3R2HGeFh8FDd2GResB8JKF2/6ShZl3QeimjfsdoGYkCNJOWzmj1r/CUYB Okvj2knnc5WuxB9pG6EHkXjwjQsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSM79Ed 8cCfVR4Ggyca5gDncCARkDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMjEyMjM4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ5VzMA0GCSqGSIb3DQEBCwUAA4IBAQAhTynkeJZP4wiaDhAAC5lvSYqV ZUbEqjhBHRlmfoQu7JAbX6gMrR7xAKCaGxsI6W3pU0/VRMIzMFFO/3X3jzmlsuQg qQZ+ME+PKyiCEhMdZfF0vGbUKXrOajp9stbhQuK3dSEh4KocqRXhT/Chp7HmnlZr mWwCab0lh9hEW8Zb2k1EHdifFSOwy+WIEx1KU7706bRq87ESIyHxv0Fh2fGRauzC VJmyFPO6N/EYCMzzj5fzG6hPrJgx4CZ+zta8ATVZXVXwmygg7IVAfZBMBt1NWOX+ dGEyEcd0tzdd7BeKc6hwpL30IUlhqLNTJtI6QY1uaiv4nq4PEN5l+5mXupnh -----END CERTIFICATE-----Generated at Sun May 3 00:42:23 2026 by rpki-client