$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133841.roa File: AS133841.roa (raw, json) Hash identifier: MhySWzNl4O5DvkZ1EKMWWwFMdKQ2yNSKo3oltWzUDSk= Subject key identifier: 02:E7:F4:34:F6:86:64:5E:4A:98:6E:4D:05:40:BF:49:97:89:8E:9F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 21692940AC28BDA7B84CC66E151C1B762DF61421 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133841.roa Signing time: Sun 22 Mar 2026 03:00:00 +0000 ROA not before: Sun 22 Mar 2026 02:55:00 +0000 ROA not after: Sun 21 Mar 2027 03:00:00 +0000 asID: 133841 IP address blocks: 210.79.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 06:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:69:29:40:ac:28:bd:a7:b8:4c:c6:6e:15:1c:1b:76:2d:f6:14:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 22 02:55:00 2026 GMT Not After : Mar 21 03:00:00 2027 GMT Subject: CN=02E7F434F686645E4A986E4D0540BF4997898E9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:17:c1:3e:00:28:e5:34:7e:58:93:4a:44:1b: 1e:46:3a:fe:24:a5:d6:50:aa:09:33:ff:02:99:2b: 04:96:a1:04:0a:db:9f:bf:50:aa:85:e9:af:4c:31: 74:d7:f2:7a:81:f0:3c:63:42:63:2e:52:2a:65:d1: b5:7b:1c:9b:0c:ea:49:a9:19:5e:aa:18:95:04:0a: 4f:de:95:6e:75:30:24:97:7a:a3:11:b3:ea:42:f9: e9:74:d4:1e:da:ac:27:73:57:84:a6:a0:02:83:25: 3a:4d:2d:e1:af:27:83:f3:26:dc:11:ce:b6:e0:cb: a3:43:77:1c:f5:31:58:09:70:6b:5d:9f:0b:c0:0e: 45:6c:f3:e6:1b:b6:fb:c2:fb:66:59:34:4a:87:7c: 0e:dc:3a:0e:73:21:e6:97:81:31:3a:68:db:8b:31: 3c:d2:f2:89:b9:b5:1e:e2:c5:95:13:a4:d1:bf:f2: 83:c0:f8:9b:08:f5:0d:4d:37:5f:67:08:35:f6:6e: 41:8b:7b:54:a1:f7:29:59:34:ff:a3:b2:84:ba:db: 01:99:2e:77:20:61:35:2c:e4:b1:83:97:78:17:e3: 76:cc:4f:2d:3a:d9:0d:91:3b:d6:ae:f5:80:2a:93: 78:e9:63:10:b7:d3:24:6d:00:41:ab:89:b5:1d:d8: 00:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E7:F4:34:F6:86:64:5E:4A:98:6E:4D:05:40:BF:49:97:89:8E:9F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133841.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.158.0/23 Signature Algorithm: sha256WithRSAEncryption 41:54:6d:12:d8:17:a3:48:42:6b:ae:5c:a3:33:bf:3d:cb:1f: df:e5:3b:72:e2:35:08:05:75:a2:18:f0:5c:e4:79:d2:23:8c: 6a:5c:71:20:8c:23:19:f3:00:02:bf:88:ce:b7:1b:4b:af:24: 57:17:35:cb:52:8a:e5:0e:20:35:a7:5a:7e:13:42:f2:46:59: 3e:e6:ec:e2:54:a6:94:eb:ba:4b:c5:6b:02:64:39:6a:fb:8d: 3f:6f:c0:de:e9:fc:58:f6:3b:d4:27:ff:81:00:52:f6:2a:23: a8:7a:36:d5:bc:53:25:6e:7a:36:26:be:74:c1:73:2e:54:fb: 4d:a9:b7:0f:8e:dc:b6:f3:cf:c0:b4:3e:c2:0e:9f:fa:a8:6d: 62:ae:19:b6:0a:1c:5d:2b:fe:12:d8:ff:48:67:cb:ee:a3:f4: 27:09:65:60:ce:a9:7c:57:9c:a4:5c:70:62:4d:84:38:8c:b9: 1f:56:e1:e2:af:b4:d4:3b:3c:c1:eb:59:4d:10:88:8d:19:b2: 08:aa:62:78:29:cb:99:ec:96:dc:6f:ec:fb:b1:bd:39:8d:5b: f3:c5:f8:68:b6:6f:2b:7f:a2:b0:27:5b:f6:62:4b:74:20:5b: 48:b0:0a:08:7e:18:2e:e4:e2:98:b3:4c:0b:f8:11:b5:a2:a8: 18:63:36:83 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUIWkpQKwovae4TMZuFRwbdi32FCEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMyMjAyNTUwMFoX DTI3MDMyMTAzMDAwMFowMzExMC8GA1UEAxMoMDJFN0Y0MzRGNjg2NjQ1RTRBOTg2 RTREMDU0MEJGNDk5Nzg5OEU5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMUXwT4AKOU0fliTSkQbHkY6/iSl1lCqCTP/ApkrBJahBArbn79QqoXpr0wx dNfyeoHwPGNCYy5SKmXRtXscmwzqSakZXqoYlQQKT96VbnUwJJd6oxGz6kL56XTU HtqsJ3NXhKagAoMlOk0t4a8ng/Mm3BHOtuDLo0N3HPUxWAlwa12fC8AORWzz5hu2 +8L7Zlk0Sod8Dtw6DnMh5peBMTpo24sxPNLyibm1HuLFlROk0b/yg8D4mwj1DU03 X2cINfZuQYt7VKH3KVk0/6OyhLrbAZkudyBhNSzksYOXeBfjdsxPLTrZDZE71q71 gCqTeOljELfTJG0AQauJtR3YAE0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQC5/Q0 9oZkXkqYbk0FQL9Jl4mOnzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMzg0MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAdJPnjANBgkqhkiG9w0BAQsFAAOCAQEAQVRtEtgXo0hCa65cozO/ Pcsf3+U7cuI1CAV1ohjwXOR50iOMalxxIIwjGfMAAr+IzrcbS68kVxc1y1KK5Q4g NadafhNC8kZZPubs4lSmlOu6S8VrAmQ5avuNP2/A3un8WPY71Cf/gQBS9iojqHo2 1bxTJW56Nia+dMFzLlT7Tam3D47ctvPPwLQ+wg6f+qhtYq4ZtgocXSv+Etj/SGfL 7qP0JwllYM6pfFecpFxwYk2EOIy5H1bh4q+01Ds8wetZTRCIjRmyCKpieCnLmeyW 3G/s+7G9OY1b88X4aLZvK3+isCdb9mJLdCBbSLAKCH4YLuTimLNMC/gRtaKoGGM2 gw== -----END CERTIFICATE-----Generated at Thu Mar 26 04:01:42 2026 by rpki-client