$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS56236.roa File: AS56236.roa (raw, json) Hash identifier: uhqQ4luS4nyQe1Y0D7Owmq4spqYv1p+Z0vLf35arrlw= Subject key identifier: FF:B4:CE:6B:0D:8B:C0:1B:86:61:02:DE:90:CC:E7:A7:F4:56:10:88 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 28B5B2D10FC23936564290963EB99EFF24823CAD Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS56236.roa Signing time: Sat 02 May 2026 09:26:29 +0000 ROA not before: Sat 02 May 2026 09:21:29 +0000 ROA not after: Sat 01 May 2027 09:26:29 +0000 asID: 56236 IP address blocks: 103.3.70.0/24 maxlen: 24 2001:df5:3600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:b5:b2:d1:0f:c2:39:36:56:42:90:96:3e:b9:9e:ff:24:82:3c:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:29 2026 GMT Not After : May 1 09:26:29 2027 GMT Subject: CN=FFB4CE6B0D8BC01B866102DE90CCE7A7F4561088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:61:2f:e3:a2:d6:23:f9:8d:99:f9:a9:df:8f: c3:1a:6d:66:87:8a:b2:d6:a4:8e:52:a8:aa:35:86: 23:4f:19:d9:bd:6d:91:c8:c4:c7:02:26:b0:f9:68: 89:23:bc:e6:84:3f:47:dd:26:10:27:00:72:b5:69: be:77:52:50:f6:d8:ae:93:e7:b7:b9:e7:d1:43:24: 3b:d5:40:50:2b:f3:7b:1e:dc:cb:8b:d6:44:5c:ce: bd:02:f3:d1:1b:79:e0:17:ba:3b:24:77:fe:2c:76: 24:7e:70:1e:ab:7f:d2:df:22:8a:93:62:c3:4d:49: 91:a9:06:41:10:bd:27:5d:ce:e6:1d:87:c5:21:b0: 6d:5d:ff:1d:76:e4:81:12:a7:6c:cf:11:94:da:7f: 63:48:9d:eb:b3:06:88:35:b8:a1:0a:34:60:c1:d7: 04:53:86:5d:72:16:ee:c7:c6:b4:c4:87:5d:65:2c: e6:40:9b:46:8d:d7:59:7d:8d:29:eb:9a:ca:d8:84: c2:59:51:a3:41:8f:16:65:41:ed:df:e3:6b:92:7a: 32:be:22:f0:96:e0:6c:70:ed:26:01:28:df:8a:f3: d7:fd:ff:f7:68:f7:c1:33:26:50:90:10:da:34:49: 64:42:01:81:26:6e:04:a7:79:2e:41:68:b7:6c:7f: b0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B4:CE:6B:0D:8B:C0:1B:86:61:02:DE:90:CC:E7:A7:F4:56:10:88 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS56236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.3.70.0/24 IPv6: 2001:df5:3600::/48 Signature Algorithm: sha256WithRSAEncryption 88:e1:37:bb:74:cf:36:7a:24:5e:20:bb:20:79:20:0d:cc:f8: 3f:e1:92:19:f5:41:1f:15:5c:93:10:76:39:6f:7c:34:cc:6d: 2d:a7:6d:27:db:4b:83:8a:84:b4:4f:1e:a8:41:d4:31:2c:ab: f2:80:fc:1f:ca:2f:8a:4d:ee:5e:a7:e7:c2:11:ea:c6:70:49: 32:72:c5:12:ab:13:2c:8c:38:22:57:24:84:65:15:df:c8:1a: ae:0f:47:c0:a3:9e:c6:e4:ce:c7:b6:6a:78:25:cd:cf:f6:1b: 11:a2:8a:7d:75:76:3f:48:50:ac:db:68:ae:04:bf:06:86:41: 01:1c:1a:3d:df:bb:53:78:57:5f:8d:2d:3f:1d:ed:fa:d7:9a: e4:32:96:e4:8b:fa:75:fd:39:4a:c3:2f:a8:50:c6:5b:5d:9c: 2b:03:e5:eb:f9:b4:d4:a2:52:ad:a6:41:15:78:d7:a5:96:56: a2:17:a2:2e:e8:1c:e5:65:32:85:e0:c6:54:bd:86:0d:3f:8b: f6:0f:42:11:83:be:94:9c:0a:76:10:04:8f:d8:92:8e:b0:51: 0d:11:1e:33:b6:3d:4c:9c:14:79:35:db:0c:c6:ec:7e:f0:1f: 76:bd:ac:ab:1d:4b:d6:98:b7:b8:b3:98:49:f4:53:eb:70:8e: 45:3a:77:a1 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUKLWy0Q/COTZWQpCWPrme/ySCPK0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEyOVoX DTI3MDUwMTA5MjYyOVowMzExMC8GA1UEAxMoRkZCNENFNkIwRDhCQzAxQjg2NjEw MkRFOTBDQ0U3QTdGNDU2MTA4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALVhL+Oi1iP5jZn5qd+PwxptZoeKstakjlKoqjWGI08Z2b1tkcjExwImsPlo iSO85oQ/R90mECcAcrVpvndSUPbYrpPnt7nn0UMkO9VAUCvzex7cy4vWRFzOvQLz 0Rt54Be6OyR3/ix2JH5wHqt/0t8iipNiw01JkakGQRC9J13O5h2HxSGwbV3/HXbk gRKnbM8RlNp/Y0id67MGiDW4oQo0YMHXBFOGXXIW7sfGtMSHXWUs5kCbRo3XWX2N KeuaytiEwllRo0GPFmVB7d/ja5J6Mr4i8JbgbHDtJgEo34rz1/3/92j3wTMmUJAQ 2jRJZEIBgSZuBKd5LkFot2x/sKsCAwEAAaOCAdwwggHYMB0GA1UdDgQWBBT/tM5r DYvAG4ZhAt6QzOen9FYQiDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNTYyMzYucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgAB MAYDBABnA0YwDwQCAAIwCQMHACABDfU2ADANBgkqhkiG9w0BAQsFAAOCAQEAiOE3 u3TPNnokXiC7IHkgDcz4P+GSGfVBHxVckxB2OW98NMxtLadtJ9tLg4qEtE8eqEHU MSyr8oD8H8ovik3uXqfnwhHqxnBJMnLFEqsTLIw4IlckhGUV38garg9HwKOexuTO x7ZqeCXNz/YbEaKKfXV2P0hQrNtorgS/BoZBARwaPd+7U3hXX40tPx3t+tea5DKW 5Iv6df05SsMvqFDGW12cKwPl6/m01KJSraZBFXjXpZZWoheiLugc5WUyheDGVL2G DT+L9g9CEYO+lJwKdhAEj9iSjrBRDREeM7Y9TJwUeTXbDMbsfvAfdr2sqx1L1pi3 uLOYSfRT63CORTp3oQ== -----END CERTIFICATE-----Generated at Sun May 3 00:40:19 2026 by rpki-client