$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS137349.roa File: AS137349.roa (raw, json) Hash identifier: RpHDvJIovGst4hN8XIDmWhWg+4czLmLb37v4qE6rJTE= Subject key identifier: E8:DC:07:C2:9D:4C:32:DB:F5:51:C7:97:F6:1C:D4:69:32:29:B4:91 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 65D23C0BF0C974A8596F0165F1CFCC11C92C53E1 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS137349.roa Signing time: Sun 03 May 2026 08:13:36 +0000 ROA not before: Sun 03 May 2026 08:08:36 +0000 ROA not after: Sun 02 May 2027 08:13:36 +0000 asID: 137349 IP address blocks: 103.114.52.0/24 maxlen: 24 103.114.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:d2:3c:0b:f0:c9:74:a8:59:6f:01:65:f1:cf:cc:11:c9:2c:53:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 08:08:36 2026 GMT Not After : May 2 08:13:36 2027 GMT Subject: CN=E8DC07C29D4C32DBF551C797F61CD4693229B491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8b:3d:79:90:cf:75:17:1d:6c:7d:be:1c:3a: 5c:8e:4c:82:18:ab:fb:7c:c2:fd:b8:42:e1:77:c0: 44:4f:ff:8a:0c:0c:aa:22:ec:13:67:29:a5:f0:60: 00:3d:af:36:1a:60:c4:09:23:24:50:f5:16:c9:eb: 3d:eb:e7:f0:7f:ea:b6:1b:11:19:0b:1c:44:e4:f8: 3c:91:35:eb:c7:f3:37:61:90:6a:f8:ee:2f:57:ae: 3d:d3:c2:47:74:b5:87:32:2d:05:0f:cb:a7:df:4b: 38:65:39:af:41:a2:b1:23:19:09:b4:ba:7d:09:d7: f9:40:34:48:f8:59:8a:ab:cd:6a:54:b0:c7:70:27: 5d:fb:86:83:e3:03:be:4c:ec:60:aa:59:1a:79:a7: e0:ce:77:ec:b0:8e:84:23:bc:cf:c6:16:d1:01:e2: b0:d0:b2:c7:8b:6d:4e:e8:2a:31:80:4d:84:a1:43: a8:5f:82:2e:99:1f:44:c8:81:8f:b3:c2:5d:3b:e2: 53:63:35:ed:d1:56:23:f6:99:8f:4c:bd:28:c0:65: 2c:dc:d0:57:54:56:c3:15:e9:9f:bd:53:ba:52:79: 1c:b4:87:16:47:37:b0:1d:99:6c:02:9c:57:f8:a3: e8:84:31:a3:ff:d1:e4:4e:54:64:e3:a1:c5:f1:b7: 72:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:DC:07:C2:9D:4C:32:DB:F5:51:C7:97:F6:1C:D4:69:32:29:B4:91 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS137349.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.114.52.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:2e:2b:24:f7:15:f5:59:ce:9c:e1:f3:07:d3:a0:cd:53:00: 98:d3:a0:1b:b8:90:4b:c7:26:3d:01:50:73:75:96:52:ee:79: cd:69:c3:cf:f4:66:62:41:bf:68:dc:40:2a:88:96:7c:8f:5e: 91:74:f6:9b:b1:2e:86:ee:d0:d2:cf:ae:58:68:d2:0c:fe:0e: 9e:2c:f4:0c:85:f4:6d:a7:f6:d3:22:1c:cd:d0:0f:a8:bb:fd: f1:a5:44:b2:e5:42:29:36:38:96:92:16:be:f3:65:bd:f9:d8: 88:1d:fd:d8:ef:26:b0:7b:92:14:b9:c5:80:38:8c:d6:52:7a: 9f:5e:7e:42:99:cc:09:b1:5c:ab:89:60:25:c4:4a:e4:b0:f5: d1:37:bd:e9:2f:68:e9:74:86:24:b3:e3:c4:07:67:7c:7e:94: 24:71:ac:b3:dc:03:be:51:5e:72:74:e0:1a:f6:1b:60:c1:11: a9:e1:e4:b6:a6:35:91:95:c5:74:52:d7:a0:6f:83:ae:a4:9d: 75:bc:a4:51:54:99:2f:7f:cf:00:8a:5e:61:f1:0a:84:69:5c: 98:64:48:a9:2f:51:75:65:6c:74:bb:96:62:ee:3e:fb:c9:9e: 95:7c:db:d8:3f:d1:12:b1:75:3c:88:4b:54:ed:84:f0:86:d9: 31:a7:db:6c -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUZdI8C/DJdKhZbwFl8c/MEcksU+EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzA4MDgzNloX DTI3MDUwMjA4MTMzNlowMzExMC8GA1UEAxMoRThEQzA3QzI5RDRDMzJEQkY1NTFD Nzk3RjYxQ0Q0NjkzMjI5QjQ5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKSLPXmQz3UXHWx9vhw6XI5Mghir+3zC/bhC4XfARE//igwMqiLsE2cppfBg AD2vNhpgxAkjJFD1FsnrPevn8H/qthsRGQscROT4PJE168fzN2GQavjuL1euPdPC R3S1hzItBQ/Lp99LOGU5r0GisSMZCbS6fQnX+UA0SPhZiqvNalSwx3AnXfuGg+MD vkzsYKpZGnmn4M537LCOhCO8z8YW0QHisNCyx4ttTugqMYBNhKFDqF+CLpkfRMiB j7PCXTviU2M17dFWI/aZj0y9KMBlLNzQV1RWwxXpn71TulJ5HLSHFkc3sB2ZbAKc V/ij6IQxo//R5E5UZOOhxfG3cpUCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTo3AfC nUwy2/VRx5f2HNRpMim0kTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM3MzQ5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ3I0MA0GCSqGSIb3DQEBCwUAA4IBAQAcLisk9xX1Wc6c4fMH06DNUwCY 06AbuJBLxyY9AVBzdZZS7nnNacPP9GZiQb9o3EAqiJZ8j16RdPabsS6G7tDSz65Y aNIM/g6eLPQMhfRtp/bTIhzN0A+ou/3xpUSy5UIpNjiWkha+82W9+diIHf3Y7yaw e5IUucWAOIzWUnqfXn5CmcwJsVyriWAlxErksPXRN73pL2jpdIYks+PEB2d8fpQk cayz3AO+UV5ydOAa9htgwRGp4eS2pjWRlcV0Utegb4OupJ11vKRRVJkvf88Ail5h 8QqEaVyYZEipL1F1ZWx0u5Zi7j77yZ6VfNvYP9ESsXU8iEtU7YTwhtkxp9ts -----END CERTIFICATE-----Generated at Tue May 12 22:56:08 2026 by rpki-client