$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS63882.roa File: AS63882.roa (raw, json) Hash identifier: UoUsBNBsZuR4D73C6dMBcEIg/+eytw5pZUWqlwsPWyQ= Subject key identifier: 73:6A:83:C2:04:D9:93:87:42:97:10:53:C2:1C:55:E5:22:90:0D:20 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4B773B2858D60124A176DCC351BD204EED02C643 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS63882.roa Signing time: Sat 02 May 2026 08:35:23 +0000 ROA not before: Sat 02 May 2026 08:30:23 +0000 ROA not after: Sat 01 May 2027 08:35:23 +0000 asID: 63882 IP address blocks: 103.57.192.0/22 maxlen: 24 2401:9540::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:77:3b:28:58:d6:01:24:a1:76:dc:c3:51:bd:20:4e:ed:02:c6:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:23 2026 GMT Not After : May 1 08:35:23 2027 GMT Subject: CN=736A83C204D9938742971053C21C55E522900D20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:56:c4:3e:9e:3e:cf:56:5f:27:55:16:80:ac: 1f:15:e5:b3:25:59:59:e1:a6:40:24:e4:3c:77:03: 6c:60:54:69:a1:a5:24:bf:72:07:d6:83:c5:f4:f8: 10:db:79:92:e4:fd:e3:5a:66:4e:86:e5:70:26:d3: 02:f4:43:dd:90:4c:a2:69:e1:dc:25:36:12:c5:93: de:79:fd:91:79:a2:b9:2e:26:6d:a6:7a:ef:ff:77: ef:b8:64:e6:2f:0e:c4:79:96:f1:80:d1:ee:25:ce: 5b:b0:78:8b:10:4d:ac:7b:fe:7a:67:14:fa:80:e6: 78:c8:f1:4a:f8:4b:e4:af:e4:3d:49:f5:ad:67:8a: 71:68:4f:ef:1d:1b:b2:cf:5c:89:66:c2:66:76:77: 2b:47:1e:e3:59:d5:78:26:27:12:12:32:c6:f9:39: 70:9e:a8:2a:9e:df:fb:3d:a2:08:9f:8b:59:39:4b: e0:1b:e6:3f:83:34:6e:d6:2e:fe:d9:4e:be:ca:0c: f4:69:ec:f9:a2:f5:29:7e:fb:93:e3:60:60:da:2f: 14:65:d7:88:84:07:8a:99:5c:89:ba:b7:d7:94:8d: f7:e5:16:80:4a:54:c2:5b:06:8e:eb:b8:fe:0a:a2: b6:5c:3d:74:71:92:9b:fd:cd:e9:65:d5:fc:37:55: e7:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:6A:83:C2:04:D9:93:87:42:97:10:53:C2:1C:55:E5:22:90:0D:20 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS63882.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.57.192.0/22 IPv6: 2401:9540::/32 Signature Algorithm: sha256WithRSAEncryption 0a:41:68:ad:12:53:35:c6:0d:9d:43:0e:a0:75:3a:ec:09:7e: 27:ef:eb:3f:9a:20:14:1b:d2:f1:33:55:dd:3a:06:12:0c:1d: 07:4f:4f:96:98:84:20:19:8e:f8:a8:f1:a6:6d:4e:f3:1d:8f: 13:5c:ae:9c:3f:46:4a:0a:3a:85:9f:2a:2b:d0:8c:cc:34:8b: cb:4c:72:c1:c4:43:e5:38:67:e9:c4:f4:57:fd:e4:d1:f7:0f: d2:17:d8:ba:2c:f3:ab:ef:37:6a:51:a4:04:f0:02:ab:4b:c9: de:d5:ae:aa:ab:8d:9b:dc:e3:18:93:a1:29:e0:0d:a0:19:92: 8f:fc:77:23:4e:60:9b:af:07:3c:8a:10:9a:87:41:a0:e4:ad: 23:da:9b:b8:d7:d7:7a:bf:a7:71:84:a5:e3:a1:5d:06:d8:02: 18:f8:3b:b4:a9:d9:70:60:a3:49:14:e8:24:cb:3e:9e:9f:64: 7f:fd:fd:c5:36:ee:70:1a:f6:01:7b:5a:9e:f7:1d:ae:9b:04: f1:aa:d9:ad:39:65:12:3c:b8:1f:9a:67:89:27:a9:43:5c:3f: e3:f3:74:c6:42:2f:e2:74:95:30:34:9b:b6:dd:df:b7:69:3f: 47:31:98:4b:f4:03:bc:f7:5c:7f:4a:c5:0e:50:a1:f2:de:3f: 2a:cf:f1:3c -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgIUS3c7KFjWASShdtzDUb0gTu0CxkMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzAyM1oX DTI3MDUwMTA4MzUyM1owMzExMC8GA1UEAxMoNzM2QTgzQzIwNEQ5OTM4NzQyOTcx MDUzQzIxQzU1RTUyMjkwMEQyMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOJWxD6ePs9WXydVFoCsHxXlsyVZWeGmQCTkPHcDbGBUaaGlJL9yB9aDxfT4 ENt5kuT941pmToblcCbTAvRD3ZBMomnh3CU2EsWT3nn9kXmiuS4mbaZ67/9377hk 5i8OxHmW8YDR7iXOW7B4ixBNrHv+emcU+oDmeMjxSvhL5K/kPUn1rWeKcWhP7x0b ss9ciWbCZnZ3K0ce41nVeCYnEhIyxvk5cJ6oKp7f+z2iCJ+LWTlL4BvmP4M0btYu /tlOvsoM9Gns+aL1KX77k+NgYNovFGXXiIQHiplcibq315SN9+UWgEpUwlsGjuu4 /gqitlw9dHGSm/3N6WXV/DdV5z0CAwEAAaOCAdowggHWMB0GA1UdDgQWBBRzaoPC BNmTh0KXEFPCHFXlIpANIDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNjM4ODIucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgAB MAYDBAJnOcAwDQQCAAIwBwMFACQBlUAwDQYJKoZIhvcNAQELBQADggEBAApBaK0S UzXGDZ1DDqB1OuwJfifv6z+aIBQb0vEzVd06BhIMHQdPT5aYhCAZjvio8aZtTvMd jxNcrpw/RkoKOoWfKivQjMw0i8tMcsHEQ+U4Z+nE9Ff95NH3D9IX2Los86vvN2pR pATwAqtLyd7VrqqrjZvc4xiToSngDaAZko/8dyNOYJuvBzyKEJqHQaDkrSPam7jX 13q/p3GEpeOhXQbYAhj4O7Sp2XBgo0kU6CTLPp6fZH/9/cU27nAa9gF7Wp73Ha6b BPGq2a05ZRI8uB+aZ4knqUNcP+PzdMZCL+J0lTA0m7bd37dpP0cxmEv0A7z3XH9K xQ5QofLePyrP8Tw= -----END CERTIFICATE-----Generated at Sun May 3 00:40:37 2026 by rpki-client