$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS13335.roa File: AS13335.roa (raw, json) Hash identifier: 5eI2EKKwYqfGUcUI47VmWxH8afq5tH7Hs9SHfvLGcV0= Subject key identifier: D3:6A:25:D5:D3:CB:D1:C3:FC:05:33:2C:88:01:1D:47:BA:CC:AC:59 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 22C9B2B0EE77CAED1695B4C835C7402776FA1C8E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS13335.roa Signing time: Wed 06 May 2026 08:55:17 +0000 ROA not before: Wed 06 May 2026 08:50:17 +0000 ROA not after: Wed 05 May 2027 08:55:17 +0000 asID: 13335 IP address blocks: 103.54.225.0/24 maxlen: 24 103.156.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:c9:b2:b0:ee:77:ca:ed:16:95:b4:c8:35:c7:40:27:76:fa:1c:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 6 08:50:17 2026 GMT Not After : May 5 08:55:17 2027 GMT Subject: CN=D36A25D5D3CBD1C3FC05332C88011D47BACCAC59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7a:60:93:42:ab:b4:0b:bf:8e:e2:8a:9c:e1: 89:5f:ae:72:28:09:d3:44:44:3d:a3:5f:bb:dc:47: d6:ec:37:b4:ca:b6:ff:7e:60:ab:9e:1d:be:30:e8: 04:98:f0:46:0c:3e:ca:b4:a0:a4:ad:8c:39:c0:91: 64:04:ee:bc:e4:71:1d:ee:b9:da:87:7a:18:e6:d3: 5c:a0:3d:9b:3e:c6:0c:8e:fc:49:1f:ba:0c:bc:a0: 68:b2:01:af:f3:40:3f:9f:1e:ad:1b:99:ad:ea:1c: 6c:2a:15:ab:20:75:0a:a5:35:c9:67:52:c7:5a:ae: 6f:bf:22:83:3f:e3:37:b1:4c:9a:14:cf:c9:2e:7d: 28:46:fc:43:94:f9:04:4d:a1:4a:06:37:04:89:73: 24:8e:b8:e2:e8:8c:67:21:fb:6a:67:ab:ae:05:d8: 62:da:d5:03:4b:12:4d:5c:7f:bd:23:3d:9f:65:7d: 0a:2f:83:cf:82:94:1b:58:7b:7b:0e:e4:2f:10:d1: 0c:66:48:3a:5b:62:e1:17:48:2c:8b:65:da:8f:ee: 58:d4:06:d1:af:5a:65:97:82:dc:c5:e4:e1:97:22: 5a:71:24:e3:b8:ef:20:48:e3:aa:b6:ff:89:03:6d: af:9d:a5:2f:3d:c5:35:eb:c2:86:50:aa:53:19:e5: 68:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:6A:25:D5:D3:CB:D1:C3:FC:05:33:2C:88:01:1D:47:BA:CC:AC:59 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS13335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.54.225.0/24 103.156.130.0/24 Signature Algorithm: sha256WithRSAEncryption 51:87:d4:1e:44:2e:1f:fa:ff:32:c0:45:65:1c:0e:41:4e:aa: cc:77:76:50:23:9b:53:6d:42:07:ab:dd:08:f0:96:97:97:66: 0a:d9:b2:14:35:6d:9b:3a:ce:d0:6a:51:6d:5d:16:e4:ed:5f: 3f:24:15:47:02:d3:3b:da:2b:6a:e0:48:47:fb:74:82:80:b2: 5e:d9:c3:a7:0a:0b:26:21:2b:bc:36:f4:5b:e7:36:57:b8:4c: b2:0b:31:4b:5c:bb:a9:42:ff:df:77:41:83:44:e3:2d:ec:20: 36:8c:fa:52:dd:30:d7:e3:17:aa:8b:bc:6b:54:65:19:1c:36: 2a:75:74:c0:e6:94:90:91:2d:2a:af:dc:8b:ef:cf:a7:0e:f6: 00:9b:8d:cf:c5:62:eb:7d:46:26:64:c7:64:33:c7:73:b1:a0: 0d:6f:f0:50:f3:42:99:73:bf:18:2c:7f:4f:41:77:02:6f:ae: db:66:53:9a:fb:32:e0:4c:c5:92:dc:46:f6:fc:6b:81:bf:1c: f5:7f:0e:69:c9:c5:ad:43:c1:8a:b7:8f:07:39:f8:d6:62:09: 5c:db:33:d5:e3:9a:3b:2b:95:0f:fe:e0:83:7e:25:5f:5b:36: ee:f5:35:0c:6c:c5:dd:3e:76:5d:8d:1d:69:71:68:5f:c1:92: f8:ee:7d:b5 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUIsmysO53yu0WlbTINcdAJ3b6HI4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwNjA4NTAxN1oX DTI3MDUwNTA4NTUxN1owMzExMC8GA1UEAxMoRDM2QTI1RDVEM0NCRDFDM0ZDMDUz MzJDODgwMTFENDdCQUNDQUM1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANZ6YJNCq7QLv47iipzhiV+ucigJ00REPaNfu9xH1uw3tMq2/35gq54dvjDo BJjwRgw+yrSgpK2MOcCRZATuvORxHe652od6GObTXKA9mz7GDI78SR+6DLygaLIB r/NAP58erRuZreocbCoVqyB1CqU1yWdSx1qub78igz/jN7FMmhTPyS59KEb8Q5T5 BE2hSgY3BIlzJI644uiMZyH7amerrgXYYtrVA0sSTVx/vSM9n2V9Ci+Dz4KUG1h7 ew7kLxDRDGZIOlti4RdILItl2o/uWNQG0a9aZZeC3MXk4ZciWnEk47jvIEjjqrb/ iQNtr52lLz3FNevChlCqUxnlaGsCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBTTaiXV 08vRw/wFMyyIAR1HusysWTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTMzMzUucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgAB MAwDBABnNuEDBABnnIIwDQYJKoZIhvcNAQELBQADggEBAFGH1B5ELh/6/zLARWUc DkFOqsx3dlAjm1NtQger3QjwlpeXZgrZshQ1bZs6ztBqUW1dFuTtXz8kFUcC0zva K2rgSEf7dIKAsl7Zw6cKCyYhK7w29FvnNle4TLILMUtcu6lC/993QYNE4y3sIDaM +lLdMNfjF6qLvGtUZRkcNip1dMDmlJCRLSqv3Ivvz6cO9gCbjc/FYut9RiZkx2Qz x3OxoA1v8FDzQplzvxgsf09BdwJvrttmU5r7MuBMxZLcRvb8a4G/HPV/DmnJxa1D wYq3jwc5+NZiCVzbM9XjmjsrlQ/+4IN+JV9bNu71NQxsxd0+dl2NHWlxaF/Bkvju fbU= -----END CERTIFICATE-----Generated at Tue May 12 22:42:52 2026 by rpki-client