$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS135474.roa File: AS135474.roa (raw, json) Hash identifier: hTnDR4SZS+/EaTIkuzBrE0RpBvjOZ2e/Mdlf+eDNy7Y= Subject key identifier: 99:AA:52:B1:15:00:99:B0:A4:F8:C3:5A:24:04:5D:C4:47:42:E3:45 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 0886727B222DE82BE77851D3510FA268C49299ED Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS135474.roa Signing time: Sun 03 May 2026 05:55:12 +0000 ROA not before: Sun 03 May 2026 05:50:12 +0000 ROA not after: Sun 02 May 2027 05:55:12 +0000 asID: 135474 IP address blocks: 103.73.76.0/22 maxlen: 22 2406:f180::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:86:72:7b:22:2d:e8:2b:e7:78:51:d3:51:0f:a2:68:c4:92:99:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 05:50:12 2026 GMT Not After : May 2 05:55:12 2027 GMT Subject: CN=99AA52B1150099B0A4F8C35A24045DC44742E345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:34:da:12:9d:db:3b:ef:1e:d3:b7:7e:a7:51: cd:a1:15:b2:53:63:0d:a4:01:42:a2:96:1f:6f:45: 23:d7:11:96:9e:34:ff:50:a9:58:fe:75:5b:d8:3a: f0:64:ad:80:45:17:43:1f:ec:a5:4f:24:b5:31:26: 8e:8a:16:0c:45:93:a0:c1:e5:f9:70:43:bb:f6:96: 94:f8:a4:3a:5b:7c:9f:4a:86:8c:27:54:ba:49:cf: bf:41:1e:4d:81:46:c5:a6:2f:f4:cb:08:5a:70:85: 95:15:cc:45:72:6e:71:3a:4b:0d:77:62:6e:97:89: b2:d8:e4:d4:fc:bc:73:66:60:27:b8:9e:a2:f5:84: e4:48:3a:3d:48:27:6f:3e:26:f6:0b:26:98:f6:e0: 3d:fc:29:47:1d:f3:6f:0e:58:70:9f:87:48:e3:5d: b6:4b:fc:2d:08:0c:81:f0:46:23:0b:a5:11:03:74: 4a:5c:98:47:0a:e2:a1:96:15:b4:5b:18:b9:51:f2: 80:f4:cf:a8:ac:a4:d8:f1:92:72:37:2d:82:71:66: 52:27:82:c2:df:5f:3c:60:64:c8:b7:9a:f1:25:97: a2:86:27:1e:6a:f8:43:42:d7:0e:2b:92:d9:e0:02: 8c:ce:da:a6:ff:f2:1c:b1:70:d0:10:bc:50:e2:63: e2:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:AA:52:B1:15:00:99:B0:A4:F8:C3:5A:24:04:5D:C4:47:42:E3:45 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS135474.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.73.76.0/22 IPv6: 2406:f180::/32 Signature Algorithm: sha256WithRSAEncryption 4c:d2:8a:3a:b3:2d:8f:f3:20:56:81:27:c7:2f:96:e7:61:10: f4:c6:e2:72:8c:7d:76:3d:99:0d:4d:d2:fd:fb:70:2d:26:e1: 9f:c6:64:9a:70:d0:b1:32:4f:81:79:31:5f:18:a3:82:01:3b: 5e:28:75:92:79:fd:9d:99:0f:a7:c4:2c:76:7b:3d:bf:c5:ba: f6:91:b8:49:4e:e1:c0:33:91:36:0e:6d:91:d4:1c:30:ec:d1: ae:12:21:15:43:39:ad:3f:f6:4f:91:3c:ad:5b:5b:d2:c4:42: dd:2f:73:68:4c:6a:01:4b:9b:61:60:12:2a:39:ce:57:4c:0a: 5b:2c:92:9f:f1:18:cd:71:a0:cf:ec:90:2d:ca:f1:66:fe:4f: 44:d2:8c:c4:e3:4d:59:b7:b0:25:f7:33:fc:e3:ed:46:f4:dc: ea:f0:b8:a8:e6:b1:8f:c7:cd:68:60:b2:22:11:01:2c:2c:cb: 65:83:ef:11:44:bf:4d:af:96:70:88:5a:df:8f:59:7e:9e:bc: 58:8c:fd:74:eb:97:cd:e5:31:a7:18:4c:51:7c:76:8e:f5:bc: c3:ca:f8:db:d0:06:4c:ca:03:3a:0b:ef:7b:51:8a:5d:65:42: d7:40:e1:21:89:46:5a:61:1e:e1:89:dc:95:ec:9b:d4:28:cd: 52:3c:e8:00 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUCIZyeyIt6CvneFHTUQ+iaMSSme0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzA1NTAxMloX DTI3MDUwMjA1NTUxMlowMzExMC8GA1UEAxMoOTlBQTUyQjExNTAwOTlCMEE0RjhD MzVBMjQwNDVEQzQ0NzQyRTM0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMM02hKd2zvvHtO3fqdRzaEVslNjDaQBQqKWH29FI9cRlp40/1CpWP51W9g6 8GStgEUXQx/spU8ktTEmjooWDEWToMHl+XBDu/aWlPikOlt8n0qGjCdUuknPv0Ee TYFGxaYv9MsIWnCFlRXMRXJucTpLDXdibpeJstjk1Py8c2ZgJ7ieovWE5Eg6PUgn bz4m9gsmmPbgPfwpRx3zbw5YcJ+HSONdtkv8LQgMgfBGIwulEQN0SlyYRwrioZYV tFsYuVHygPTPqKyk2PGScjctgnFmUieCwt9fPGBkyLea8SWXooYnHmr4Q0LXDiuS 2eACjM7apv/yHLFw0BC8UOJj4vECAwEAAaOCAdswggHXMB0GA1UdDgQWBBSZqlKx FQCZsKT4w1okBF3ER0LjRTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM1NDc0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIA ATAGAwQCZ0lMMA0EAgACMAcDBQAkBvGAMA0GCSqGSIb3DQEBCwUAA4IBAQBM0oo6 sy2P8yBWgSfHL5bnYRD0xuJyjH12PZkNTdL9+3AtJuGfxmSacNCxMk+BeTFfGKOC ATteKHWSef2dmQ+nxCx2ez2/xbr2kbhJTuHAM5E2Dm2R1Bww7NGuEiEVQzmtP/ZP kTytW1vSxELdL3NoTGoBS5thYBIqOc5XTApbLJKf8RjNcaDP7JAtyvFm/k9E0ozE 401Zt7Al9zP84+1G9Nzq8Lio5rGPx81oYLIiEQEsLMtlg+8RRL9Nr5ZwiFrfj1l+ nrxYjP1065fN5TGnGExRfHaO9bzDyvjb0AZMygM6C+97UYpdZULXQOEhiUZaYR7h idyV7JvUKM1SPOgA -----END CERTIFICATE-----Generated at Tue May 12 22:42:06 2026 by rpki-client