$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS56235.roa File: AS56235.roa (raw, json) Hash identifier: wejQdDIUQOHipbEGXdp9ZopOm8Xyn66zz8xUCs29IC4= Subject key identifier: FE:D2:F8:91:A4:61:47:A0:0A:55:4F:8F:A4:ED:D6:04:59:5B:E3:79 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3873023AE5F3A2C691989422F2325679DAF7A394 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS56235.roa Signing time: Sat 02 May 2026 09:21:59 +0000 ROA not before: Sat 02 May 2026 09:16:59 +0000 ROA not after: Sat 01 May 2027 09:21:59 +0000 asID: 56235 IP address blocks: 103.3.44.0/24 maxlen: 24 103.3.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:73:02:3a:e5:f3:a2:c6:91:98:94:22:f2:32:56:79:da:f7:a3:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:16:59 2026 GMT Not After : May 1 09:21:59 2027 GMT Subject: CN=FED2F891A46147A00A554F8FA4EDD604595BE379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b5:77:0f:9f:af:c5:2d:b8:7f:b8:7e:b9:06: a0:b0:ad:19:d0:84:0b:90:97:4b:56:87:a9:d2:98: e5:3d:87:b0:42:c1:85:05:47:c7:ec:d9:2d:43:de: 90:12:3b:e5:45:60:b5:89:13:a5:95:7f:c7:1f:3b: af:0d:47:b9:45:6d:91:9b:7b:f9:4b:83:fb:aa:fa: d2:ea:f3:d9:79:16:a5:7d:2b:7d:d8:22:43:d7:26: 26:b2:52:42:c5:dd:3c:48:7a:05:03:88:a9:f5:c5: d8:18:76:75:11:8a:be:53:88:de:e0:ad:40:a6:52: 14:4c:7a:23:be:aa:c2:7d:81:64:85:15:e8:f9:b6: 97:6d:69:ad:c4:03:4a:d3:ca:e6:e3:c6:7b:c2:34: cc:b1:7a:cc:14:78:64:00:c9:92:db:b0:b0:5a:b0: 2d:4f:23:73:6b:54:7e:1a:ec:67:94:77:c9:1d:73: e1:14:22:b7:89:59:77:39:e7:90:5b:4e:b7:0b:3d: 4b:c2:7b:8e:3f:ec:51:6d:b0:d2:b3:7f:de:b6:55: ff:d8:10:3e:39:04:9d:67:cb:d7:e8:f5:7c:d5:a9: d7:aa:c0:47:dc:e2:b5:19:e0:60:71:4d:5d:fe:99: 8a:ce:ce:b8:40:d2:01:06:a2:74:46:97:85:83:bb: 41:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:D2:F8:91:A4:61:47:A0:0A:55:4F:8F:A4:ED:D6:04:59:5B:E3:79 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS56235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.3.44.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:f0:af:3b:2d:cc:63:73:c7:c4:26:81:ee:2c:2b:77:08:27: 2a:6c:94:6a:1a:60:01:3e:ac:fc:e4:03:af:a8:d4:5b:5f:f3: 05:f4:fb:32:99:6c:33:5f:b2:19:e9:c3:0a:93:d8:b5:71:f8: 83:72:ea:b4:84:bf:03:63:17:8c:fa:5f:59:3d:66:91:39:d8: f4:8f:a2:fb:a8:4a:5b:67:2a:61:3f:b2:93:b5:b6:fa:bd:5e: 99:59:4c:c3:1c:07:4c:a7:77:25:41:6b:f2:4c:28:d5:30:b3: d0:ea:75:be:b8:b8:44:57:61:50:2e:37:79:12:4c:aa:d6:6f: 12:86:4f:17:c2:19:25:8f:81:fb:49:47:f3:d6:d4:e2:40:bc: d0:4e:40:60:8e:03:6c:9e:58:90:0a:ad:e8:ad:43:31:bd:b1: 21:93:65:f3:ae:8a:f6:72:aa:4c:46:5d:14:54:73:c9:1c:0b: ff:83:c6:c0:54:5a:ce:32:06:de:6b:95:ac:55:c2:a6:48:58: 4d:c7:d0:09:59:89:6b:a4:d9:0a:73:51:c1:b4:d4:c3:a5:0c: 2a:58:f6:ce:2f:58:4a:2c:b8:d0:c6:80:6f:d2:ea:0a:03:66: cf:45:db:cd:52:7f:f2:3d:ed:75:6d:d7:66:e0:64:ff:6b:8a: 5d:c9:d1:9f -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUOHMCOuXzosaRmJQi8jJWedr3o5QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTY1OVoX DTI3MDUwMTA5MjE1OVowMzExMC8GA1UEAxMoRkVEMkY4OTFBNDYxNDdBMDBBNTU0 RjhGQTRFREQ2MDQ1OTVCRTM3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMC1dw+fr8UtuH+4frkGoLCtGdCEC5CXS1aHqdKY5T2HsELBhQVHx+zZLUPe kBI75UVgtYkTpZV/xx87rw1HuUVtkZt7+UuD+6r60urz2XkWpX0rfdgiQ9cmJrJS QsXdPEh6BQOIqfXF2Bh2dRGKvlOI3uCtQKZSFEx6I76qwn2BZIUV6Pm2l21prcQD StPK5uPGe8I0zLF6zBR4ZADJktuwsFqwLU8jc2tUfhrsZ5R3yR1z4RQit4lZdznn kFtOtws9S8J7jj/sUW2w0rN/3rZV/9gQPjkEnWfL1+j1fNWp16rAR9zitRngYHFN Xf6Zis7OuEDSAQaidEaXhYO7QYECAwEAAaOCAcswggHHMB0GA1UdDgQWBBT+0viR pGFHoApVT4+k7dYEWVvjeTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNTYyMzUucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnAywwDQYJKoZIhvcNAQELBQADggEBAG3wrzstzGNzx8Qmge4sK3cIJyps lGoaYAE+rPzkA6+o1Ftf8wX0+zKZbDNfshnpwwqT2LVx+INy6rSEvwNjF4z6X1k9 ZpE52PSPovuoSltnKmE/spO1tvq9XplZTMMcB0yndyVBa/JMKNUws9Dqdb64uERX YVAuN3kSTKrWbxKGTxfCGSWPgftJR/PW1OJAvNBOQGCOA2yeWJAKreitQzG9sSGT ZfOuivZyqkxGXRRUc8kcC/+DxsBUWs4yBt5rlaxVwqZIWE3H0AlZiWuk2QpzUcG0 1MOlDCpY9s4vWEosuNDGgG/S6goDZs9F281Sf/I97XVt12bgZP9ril3J0Z8= -----END CERTIFICATE-----Generated at Sun May 3 00:40:40 2026 by rpki-client