$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS4622.roa File: AS4622.roa (raw, json) Hash identifier: up430MAg7FhfLBXIvnNtwMuHYuPg10+cAgsGGHkmFsM= Subject key identifier: 58:84:42:B4:2A:00:8D:78:CE:EA:41:12:35:A0:99:B3:1D:F5:EA:F3 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 675603E1DB5DE20BEDB1DF7DBF465E3536B5CD8F Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS4622.roa Signing time: Sat 02 May 2026 21:29:51 +0000 ROA not before: Sat 02 May 2026 21:24:51 +0000 ROA not after: Sat 01 May 2027 21:29:51 +0000 asID: 4622 IP address blocks: 203.119.13.0/24 maxlen: 24 203.119.52.0/22 maxlen: 24 2001:dc6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:56:03:e1:db:5d:e2:0b:ed:b1:df:7d:bf:46:5e:35:36:b5:cd:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:24:51 2026 GMT Not After : May 1 21:29:51 2027 GMT Subject: CN=588442B42A008D78CEEA411235A099B31DF5EAF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:57:13:95:9f:41:ce:70:06:b1:1e:1b:2e:7c: 82:3a:ed:4c:44:03:8f:de:17:9b:36:b8:a1:93:e2: 4b:aa:d0:68:2a:36:ed:49:2f:fe:f5:54:e1:df:16: ba:34:05:94:06:ad:46:88:f1:e3:80:4f:45:95:68: d0:d9:87:c5:c7:99:c2:96:0d:aa:74:5f:30:a5:dd: 8a:e7:56:c7:f5:a0:d6:00:e9:9d:84:f6:a4:a0:fe: a8:34:6d:cd:e3:43:30:29:22:af:5a:13:46:f6:09: 34:28:d4:55:57:79:99:75:01:b3:d3:84:c1:61:23: 1e:7a:e1:29:59:81:62:73:6c:0f:70:48:ed:9a:46: 64:74:3b:a2:b2:fe:77:e0:af:12:be:24:10:da:60: 4b:c7:05:46:06:3b:fe:99:98:13:08:6b:43:a6:22: 0a:28:f7:8f:3f:fa:00:99:a4:2e:39:8e:03:f1:c7: 95:b3:5c:65:4f:51:98:40:d3:0f:40:33:47:f5:ff: d5:96:1b:ea:b5:c2:93:41:64:2a:f8:e9:9e:2c:b4: 15:85:86:5a:f2:74:b8:33:c4:27:11:c6:f0:c8:59: 50:73:e0:0f:38:dd:1b:72:7a:6f:1c:b9:f8:79:c8: d9:7e:2c:2e:ff:a0:d6:27:42:9e:7a:43:1f:89:86: 22:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:84:42:B4:2A:00:8D:78:CE:EA:41:12:35:A0:99:B3:1D:F5:EA:F3 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS4622.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.119.13.0/24 203.119.52.0/22 IPv6: 2001:dc6::/48 Signature Algorithm: sha256WithRSAEncryption 44:68:b9:c1:14:56:f7:1f:d5:d5:50:d3:e5:c4:a2:28:56:8d: 48:4f:1f:58:98:81:7d:6b:3c:c6:55:46:ab:8a:8f:c8:c2:97: f6:04:0f:ae:78:59:11:c1:78:a4:3a:2f:32:98:dc:d2:5a:a4: f5:1f:45:39:74:4c:ac:03:cb:d5:e9:4d:d5:7b:4d:08:bb:91: d2:2a:12:9c:54:64:79:a5:49:9e:f5:7c:12:1b:8a:a0:ba:a1: ba:37:20:3a:da:1d:aa:4c:f8:dd:71:3c:9e:8a:f1:33:5c:3e: 99:65:30:c9:db:ba:b9:28:0a:76:1f:44:ec:8c:de:4e:b0:51: 78:56:4a:91:a8:2d:cf:e2:e0:23:ae:f0:a4:26:28:8e:00:d1: 6e:60:13:2f:69:94:44:95:a9:0b:5a:d0:45:12:4c:77:84:67: 34:3b:ca:6e:e3:28:87:11:cc:81:28:e3:6d:29:e7:4b:63:f2: 23:20:ca:6a:c9:e6:0d:5d:b9:02:d4:ad:6a:c5:ef:41:46:25: 88:bd:63:66:f5:94:61:dc:77:de:30:96:a0:ab:64:1a:3e:1d: 77:6c:92:e4:63:c2:76:71:e8:a5:f0:27:be:09:f6:bf:6b:7a: 53:9f:ca:a1:9c:fc:24:6e:29:52:71:29:9f:24:15:51:54:96: d1:1c:3a:09 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUZ1YD4dtd4gvtsd99v0ZeNTa1zY8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjQ1MVoX DTI3MDUwMTIxMjk1MVowMzExMC8GA1UEAxMoNTg4NDQyQjQyQTAwOEQ3OENFRUE0 MTEyMzVBMDk5QjMxREY1RUFGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL5XE5WfQc5wBrEeGy58gjrtTEQDj94Xmza4oZPiS6rQaCo27Ukv/vVU4d8W ujQFlAatRojx44BPRZVo0NmHxceZwpYNqnRfMKXdiudWx/Wg1gDpnYT2pKD+qDRt zeNDMCkir1oTRvYJNCjUVVd5mXUBs9OEwWEjHnrhKVmBYnNsD3BI7ZpGZHQ7orL+ d+CvEr4kENpgS8cFRgY7/pmYEwhrQ6YiCij3jz/6AJmkLjmOA/HHlbNcZU9RmEDT D0AzR/X/1ZYb6rXCk0FkKvjpniy0FYWGWvJ0uDPEJxHG8MhZUHPgDzjdG3J6bxy5 +HnI2X4sLv+g1idCnnpDH4mGIsUCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRYhEK0 KgCNeM7qQRI1oJmzHfXq8zAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBQBggrBgEFBQcBCwREMEIwQAYIKwYBBQUHMAuGNHJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNDYyMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjA2BggrBgEFBQcBBwEB/wQnMCUwEgQCAAEw DAMEAMt3DQMEAst3NDAPBAIAAjAJAwcAIAENxgAAMA0GCSqGSIb3DQEBCwUAA4IB AQBEaLnBFFb3H9XVUNPlxKIoVo1ITx9YmIF9azzGVUario/Iwpf2BA+ueFkRwXik Oi8ymNzSWqT1H0U5dEysA8vV6U3Ve00Iu5HSKhKcVGR5pUme9XwSG4qguqG6NyA6 2h2qTPjdcTyeivEzXD6ZZTDJ27q5KAp2H0TsjN5OsFF4VkqRqC3P4uAjrvCkJiiO ANFuYBMvaZRElakLWtBFEkx3hGc0O8pu4yiHEcyBKONtKedLY/IjIMpqyeYNXbkC 1K1qxe9BRiWIvWNm9ZRh3HfeMJagq2QaPh13bJLkY8J2ceil8Ce+Cfa/a3pTn8qh nPwkbilScSmfJBVRVJbRHDoJ -----END CERTIFICATE-----Generated at Sun May 3 01:40:41 2026 by rpki-client