$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS55688.roa File: AS55688.roa (raw, json) Hash identifier: a9z2CUALTdKa5dmGCMB4UY9Xe8pFlPJ3IDO6pbevfRI= Subject key identifier: 5E:87:E9:CC:53:02:95:46:CA:E3:17:77:7C:7C:53:F4:A8:A1:52:7E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1CCFE7FF0B9FEFF6D0B457E12D2F41E97758C3D8 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS55688.roa Signing time: Sat 02 May 2026 21:35:55 +0000 ROA not before: Sat 02 May 2026 21:30:55 +0000 ROA not after: Sat 01 May 2027 21:35:55 +0000 asID: 55688 IP address blocks: 103.157.96.0/23 maxlen: 24 103.163.138.0/23 maxlen: 24 103.166.156.0/23 maxlen: 24 2406:a040:ff01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:cf:e7:ff:0b:9f:ef:f6:d0:b4:57:e1:2d:2f:41:e9:77:58:c3:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:30:55 2026 GMT Not After : May 1 21:35:55 2027 GMT Subject: CN=5E87E9CC53029546CAE317777C7C53F4A8A1527E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2b:12:02:7a:3b:2f:17:d7:98:41:41:f0:c0: a3:5d:20:81:75:8e:13:30:d0:6a:26:6d:96:91:e3: 6d:74:a9:d4:e4:e7:f9:d3:6e:60:71:cd:99:95:fa: 74:08:0b:4b:c1:8c:4e:51:a4:c0:15:e5:cc:00:59: 5c:68:53:6c:01:5c:30:56:dc:6f:3c:ce:97:34:8f: 94:92:be:65:9b:10:12:1e:b2:34:ff:f8:b1:33:6c: cd:b4:31:b1:c2:c1:c2:c1:ba:4c:ad:2a:e0:a3:21: 52:fc:01:cd:53:63:ba:e5:db:4b:50:e6:2e:bc:45: 25:b3:bc:f0:8e:25:25:22:4d:4c:67:9d:11:58:ab: 3f:5e:da:5d:bd:1b:d6:db:79:f2:f5:bb:14:15:63: 44:d8:66:c0:29:81:26:cf:71:4e:57:d5:f9:19:b8: 9a:c0:fd:46:17:ba:77:86:f6:49:2d:d1:17:5e:ed: 98:b1:d7:7a:97:f6:06:91:59:28:64:de:cd:34:0e: a6:79:7a:e2:49:2c:ce:62:3c:72:04:d6:c2:61:1c: 12:90:4c:7b:eb:1b:97:38:5b:cd:ad:cd:a2:4c:a0: 7b:35:bd:9d:42:5c:20:7f:ca:10:97:91:fe:93:20: 17:69:ed:ab:54:e2:32:dc:de:20:63:68:ca:18:89: e2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:87:E9:CC:53:02:95:46:CA:E3:17:77:7C:7C:53:F4:A8:A1:52:7E X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS55688.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.96.0/23 103.163.138.0/23 103.166.156.0/23 IPv6: 2406:a040:ff01::/48 Signature Algorithm: sha256WithRSAEncryption 30:bd:ff:c7:92:13:85:78:00:3d:7e:d6:88:40:75:3f:f2:ae: e3:b2:3b:e2:30:58:91:f2:75:5e:0e:d9:90:1d:80:74:a5:0b: 13:54:89:2b:d6:04:8d:20:36:b2:c5:59:93:eb:44:9b:0d:14: 2d:80:88:dc:63:97:1e:c0:75:19:d0:3d:2c:b9:94:c2:1e:0e: 6b:57:16:c7:90:2a:ed:a7:4a:9d:c5:aa:eb:31:d6:23:2c:cb: 38:c6:f8:35:f0:cb:bb:fc:2e:94:95:84:7c:5b:d6:16:dd:2e: 30:67:9a:33:23:d6:d1:10:a3:7f:a8:51:e3:11:ec:e1:21:b2: 12:31:c9:f6:a5:68:a9:6b:85:4e:05:dd:41:3a:2e:3e:ef:b4: 28:92:d5:8b:87:57:ab:e0:09:ed:9b:d5:44:37:6b:87:fb:b7: b8:7e:31:ef:96:55:f3:1b:7c:c6:01:17:09:21:a7:c2:5c:0b: 6f:db:c0:03:8d:15:69:2a:d2:0b:8d:c1:97:d6:cc:9b:82:ef: 20:96:c5:03:78:29:f9:b2:fd:38:c9:73:d4:2a:59:41:94:4a: dc:0b:16:70:53:8e:12:92:44:9f:77:56:15:1f:84:37:bc:e6: 83:7e:93:0f:a7:05:a0:bc:bd:59:c2:3b:18:40:a8:f7:06:86: 09:23:65:be -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUHM/n/wuf7/bQtFfhLS9B6XdYw9gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMzA1NVoX DTI3MDUwMTIxMzU1NVowMzExMC8GA1UEAxMoNUU4N0U5Q0M1MzAyOTU0NkNBRTMx Nzc3N0M3QzUzRjRBOEExNTI3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALArEgJ6Oy8X15hBQfDAo10ggXWOEzDQaiZtlpHjbXSp1OTn+dNuYHHNmZX6 dAgLS8GMTlGkwBXlzABZXGhTbAFcMFbcbzzOlzSPlJK+ZZsQEh6yNP/4sTNszbQx scLBwsG6TK0q4KMhUvwBzVNjuuXbS1DmLrxFJbO88I4lJSJNTGedEVirP17aXb0b 1tt58vW7FBVjRNhmwCmBJs9xTlfV+Rm4msD9Rhe6d4b2SS3RF17tmLHXepf2BpFZ KGTezTQOpnl64kkszmI8cgTWwmEcEpBMe+sblzhbza3NokygezW9nUJcIH/KEJeR /pMgF2ntq1TiMtzeIGNoyhiJ4kECAwEAAaOCAegwggHkMB0GA1UdDgQWBBReh+nM UwKVRsrjF3d8fFP0qKFSfjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNTU2ODgucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwPAYIKwYBBQUHAQcBAf8ELTArMBgEAgAB MBIDBAFnnWADBAFno4oDBAFnppwwDwQCAAIwCQMHACQGoED/ATANBgkqhkiG9w0B AQsFAAOCAQEAML3/x5IThXgAPX7WiEB1P/Ku47I74jBYkfJ1Xg7ZkB2AdKULE1SJ K9YEjSA2ssVZk+tEmw0ULYCI3GOXHsB1GdA9LLmUwh4Oa1cWx5Aq7adKncWq6zHW IyzLOMb4NfDLu/wulJWEfFvWFt0uMGeaMyPW0RCjf6hR4xHs4SGyEjHJ9qVoqWuF TgXdQTouPu+0KJLVi4dXq+AJ7ZvVRDdrh/u3uH4x75ZV8xt8xgEXCSGnwlwLb9vA A40VaSrSC43Bl9bMm4LvIJbFA3gp+bL9OMlz1CpZQZRK3AsWcFOOEpJEn3dWFR+E N7zmg36TD6cFoLy9WcI7GECo9waGCSNlvg== -----END CERTIFICATE-----Generated at Sun May 3 00:40:32 2026 by rpki-client