$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS63880.roa File: AS63880.roa (raw, json) Hash identifier: I+cEbqpl5loZxjby93M15t4INTM39rIUMKRAshunsVE= Subject key identifier: 3D:B8:11:60:AD:1B:F9:CB:D8:9E:E1:02:8F:50:34:6B:6E:D3:14:E8 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 038922E969AF05E6ED8214E3580E834F30B53907 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS63880.roa Signing time: Sat 02 May 2026 21:35:33 +0000 ROA not before: Sat 02 May 2026 21:30:33 +0000 ROA not after: Sat 01 May 2027 21:35:33 +0000 asID: 63880 IP address blocks: 103.119.204.0/22 maxlen: 24 2406:6cc0:a500::/48 maxlen: 48 2406:6cc0:a700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:89:22:e9:69:af:05:e6:ed:82:14:e3:58:0e:83:4f:30:b5:39:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:30:33 2026 GMT Not After : May 1 21:35:33 2027 GMT Subject: CN=3DB81160AD1BF9CBD89EE1028F50346B6ED314E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:19:aa:4a:2b:80:c7:6f:d6:2c:ab:1c:3b:7f: 79:f3:ec:3f:a5:d4:20:2e:57:35:dd:c4:47:c9:8a: 40:5e:11:6b:22:77:31:dc:3f:5f:9a:bc:42:4f:72: 90:e2:b9:47:5a:4a:0e:fe:f7:b6:91:2a:a6:5b:41: 5f:d6:bd:ff:1c:4b:97:a4:12:a2:d4:40:73:47:00: dd:44:69:a5:b2:e2:3e:ef:f6:f1:1e:f7:92:3a:b8: 7e:31:23:b7:a7:e6:9a:2b:e6:b4:4c:5f:0e:6d:29: 68:e6:0e:57:29:f0:32:94:34:04:31:14:83:d5:69: 3c:39:4e:06:16:0f:78:99:d6:df:6d:e1:b6:2e:4c: 4b:b9:4f:f3:b6:b6:b3:cf:55:af:9b:89:3b:6d:c5: 9d:f9:a4:9f:87:ee:21:6b:b2:3f:af:d5:51:1e:7b: 87:11:a0:c8:87:7e:9b:a9:13:c4:62:09:00:5c:ad: de:32:55:f7:50:43:ca:4f:7b:fc:f9:b6:63:42:2e: 0e:18:aa:18:cd:c1:c4:37:71:87:d7:24:12:38:bd: 6d:76:c7:d5:be:88:a8:09:f3:f1:0f:b0:a8:0c:d7: 21:d0:8e:00:ac:61:44:42:a8:b6:80:50:1f:4e:44: e4:ed:c2:5a:64:d6:88:1c:ab:14:09:62:2f:15:cd: e9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B8:11:60:AD:1B:F9:CB:D8:9E:E1:02:8F:50:34:6B:6E:D3:14:E8 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS63880.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.204.0/22 IPv6: 2406:6cc0:a500::/48 2406:6cc0:a700::/48 Signature Algorithm: sha256WithRSAEncryption 65:eb:4b:77:2e:54:c7:91:f3:8f:d9:eb:17:a5:ef:b0:ae:d3: c3:eb:7e:99:43:34:0d:e8:2f:9c:de:c9:2c:5f:4d:5c:00:27: 31:80:c6:57:a5:d4:e6:67:b6:3f:6a:fd:d6:92:56:f3:32:3c: 58:4c:64:09:3a:d3:53:6b:bf:d3:af:c9:29:72:ab:c2:ae:45: 08:d4:9a:e5:cc:27:bb:f0:ef:c2:1e:02:03:0b:72:66:a2:37: dd:33:f3:24:65:af:e6:86:bb:34:5c:36:dc:8f:71:f3:d4:84: b4:4c:8e:49:e8:cc:09:ec:0a:2f:3c:41:c3:70:6e:44:84:18: 95:30:ad:ca:e1:de:a8:a9:b9:0a:fd:74:20:36:1f:17:3d:11: 3f:5c:ab:be:48:d2:df:26:16:0e:d9:94:6f:0c:52:64:fc:39: 9a:09:33:55:02:80:69:50:0b:44:b5:bd:d0:0e:14:86:d0:5e: 33:58:1f:50:0e:7c:fd:99:9c:95:f9:43:45:38:88:20:a7:f0: 4c:01:03:e5:3f:2d:0d:da:51:2b:0e:3b:2f:b1:1f:3c:e7:ab: e4:b6:80:5c:f5:5b:3f:4c:9c:18:8a:e1:ba:f1:72:6e:c3:56: 63:a3:4c:e4:32:0b:1d:b2:b4:7b:14:4d:cc:f8:de:ca:3a:8a: 0e:86:a9:6d -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUA4ki6WmvBebtghTjWA6DTzC1OQcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMzAzM1oX DTI3MDUwMTIxMzUzM1owMzExMC8GA1UEAxMoM0RCODExNjBBRDFCRjlDQkQ4OUVF MTAyOEY1MDM0NkI2RUQzMTRFODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALIZqkorgMdv1iyrHDt/efPsP6XUIC5XNd3ER8mKQF4RayJ3Mdw/X5q8Qk9y kOK5R1pKDv73tpEqpltBX9a9/xxLl6QSotRAc0cA3URppbLiPu/28R73kjq4fjEj t6fmmivmtExfDm0paOYOVynwMpQ0BDEUg9VpPDlOBhYPeJnW323hti5MS7lP87a2 s89Vr5uJO23Fnfmkn4fuIWuyP6/VUR57hxGgyId+m6kTxGIJAFyt3jJV91BDyk97 /Pm2Y0IuDhiqGM3BxDdxh9ckEji9bXbH1b6IqAnz8Q+wqAzXIdCOAKxhREKotoBQ H05E5O3CWmTWiByrFAliLxXN6cECAwEAAaOCAeUwggHhMB0GA1UdDgQWBBQ9uBFg rRv5y9ie4QKPUDRrbtMU6DAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNjM4ODAucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwOQYIKwYBBQUHAQcBAf8EKjAoMAwEAgAB MAYDBAJnd8wwGAQCAAIwEgMHACQGbMClAAMHACQGbMCnADANBgkqhkiG9w0BAQsF AAOCAQEAZetLdy5Ux5Hzj9nrF6XvsK7Tw+t+mUM0DegvnN7JLF9NXAAnMYDGV6XU 5me2P2r91pJW8zI8WExkCTrTU2u/06/JKXKrwq5FCNSa5cwnu/Dvwh4CAwtyZqI3 3TPzJGWv5oa7NFw23I9x89SEtEyOSejMCewKLzxBw3BuRIQYlTCtyuHeqKm5Cv10 IDYfFz0RP1yrvkjS3yYWDtmUbwxSZPw5mgkzVQKAaVALRLW90A4UhtBeM1gfUA58 /ZmclflDRTiIIKfwTAED5T8tDdpRKw47L7EfPOer5LaAXPVbP0ycGIrhuvFybsNW Y6NM5DILHbK0exRNzPjeyjqKDoapbQ== -----END CERTIFICATE-----Generated at Sun May 3 00:40:43 2026 by rpki-client