$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS19905.roa File: AS19905.roa (raw, json) Hash identifier: Q7LCW5NY41iOqQgPoLDXtMS9mrkwGizY/oUUPx3qz/Q= Subject key identifier: BB:01:88:29:24:76:61:59:06:BB:83:76:73:DE:0D:25:96:83:AA:D3 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 58088A9E3C6C75297831E91B0F25A193EEF27CA8 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS19905.roa Signing time: Wed 06 May 2026 09:10:48 +0000 ROA not before: Wed 06 May 2026 09:05:48 +0000 ROA not after: Wed 05 May 2027 09:10:48 +0000 asID: 19905 IP address blocks: 103.54.225.0/24 maxlen: 24 103.156.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:08:8a:9e:3c:6c:75:29:78:31:e9:1b:0f:25:a1:93:ee:f2:7c:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 6 09:05:48 2026 GMT Not After : May 5 09:10:48 2027 GMT Subject: CN=BB0188292476615906BB837673DE0D259683AAD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:66:7c:2e:58:e9:97:94:ac:68:e0:59:c1:05: a0:d5:d6:24:f8:59:db:4b:f9:cc:a0:3c:dd:cc:9b: 7f:49:02:b1:6a:72:9d:e8:6e:9d:ae:ee:6f:8e:c1: 18:3d:9f:92:30:7b:21:a4:7c:51:77:dd:7a:85:da: 72:86:e7:65:2f:30:b9:31:75:04:02:35:1f:8e:28: 94:38:da:89:60:a2:de:43:e7:3f:89:31:3f:30:b2: 57:c0:8e:0f:0a:1c:69:bf:a7:be:4e:ed:6b:18:40: f8:e4:fb:7c:4a:73:a4:e8:3d:bc:0f:a9:91:81:7f: 73:9a:6e:b5:1b:b6:2f:9b:73:04:d5:ea:d7:bb:dd: 2f:c0:9d:2f:f2:4b:16:55:ac:9c:d2:e4:b9:99:39: a3:7e:aa:15:ca:f6:90:f5:5a:95:d0:5f:93:26:2f: d2:07:e5:f0:72:77:97:0f:39:5d:ae:ca:04:97:f5: e1:e6:4b:6e:40:35:5b:f3:9a:d4:06:0c:e8:ca:6e: dd:6b:26:ef:61:71:e2:a0:4e:38:3d:33:ce:d4:3c: f7:f1:13:20:12:fe:75:72:fa:50:e0:16:e9:48:d3: 5d:84:ae:39:fc:60:67:20:91:85:06:27:2f:ac:91: 9d:2b:88:07:ba:d8:8d:d5:1b:8d:9e:01:5f:da:14: 2e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:01:88:29:24:76:61:59:06:BB:83:76:73:DE:0D:25:96:83:AA:D3 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS19905.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.54.225.0/24 103.156.130.0/24 Signature Algorithm: sha256WithRSAEncryption 63:65:b0:ff:0a:de:bf:16:87:1b:bb:62:f3:88:c5:98:aa:e2: f2:4e:fe:a4:bf:fe:fc:7a:7f:65:69:67:ba:00:b6:af:66:ac: 33:9f:89:ae:13:93:01:8b:c3:34:54:e3:97:2a:ff:df:ef:d6: 98:7b:1f:b9:90:ad:69:29:b7:cb:e0:41:4d:1b:ce:67:4c:b0: 06:05:e0:c4:6b:aa:3e:6c:8c:59:5a:4f:e1:71:30:31:a3:9b: 28:e6:a5:3e:11:05:ec:07:d8:b8:0e:f1:60:a4:6a:a1:12:bb: 9d:b6:45:62:97:98:96:98:e0:9a:33:53:10:30:dd:9c:53:0d: 8e:df:58:28:12:31:ef:9f:d4:8c:a0:fd:34:3f:0c:6d:42:39: bb:a6:8f:56:55:5e:c7:7d:f7:2d:23:47:7f:e1:39:83:ce:aa: f8:bd:d8:8f:93:d1:18:ab:b1:09:05:4f:8d:a6:ef:f0:69:b6: 8a:64:48:ee:d3:a9:36:ed:8b:70:bf:1c:b7:15:11:c7:0c:ee: 85:fa:eb:87:aa:6d:82:99:51:45:da:99:53:e7:be:62:5b:12: 9f:7f:ed:f5:2c:82:9b:0d:d8:e0:5e:cd:a7:af:65:6d:14:5d: 38:36:14:83:d8:41:b3:9a:8c:da:52:8b:95:70:25:04:60:46: c6:bc:96:79 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUWAiKnjxsdSl4MekbDyWhk+7yfKgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwNjA5MDU0OFoX DTI3MDUwNTA5MTA0OFowMzExMC8GA1UEAxMoQkIwMTg4MjkyNDc2NjE1OTA2QkI4 Mzc2NzNERTBEMjU5NjgzQUFEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNmfC5Y6ZeUrGjgWcEFoNXWJPhZ20v5zKA83cybf0kCsWpynehuna7ub47B GD2fkjB7IaR8UXfdeoXacobnZS8wuTF1BAI1H44olDjaiWCi3kPnP4kxPzCyV8CO Dwocab+nvk7taxhA+OT7fEpzpOg9vA+pkYF/c5putRu2L5tzBNXq17vdL8CdL/JL FlWsnNLkuZk5o36qFcr2kPValdBfkyYv0gfl8HJ3lw85Xa7KBJf14eZLbkA1W/Oa 1AYM6Mpu3Wsm72Fx4qBOOD0zztQ89/ETIBL+dXL6UOAW6UjTXYSuOfxgZyCRhQYn L6yRnSuIB7rYjdUbjZ4BX9oULksCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBS7AYgp JHZhWQa7g3Zz3g0lloOq0zAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTk5MDUucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgAB MAwDBABnNuEDBABnnIIwDQYJKoZIhvcNAQELBQADggEBAGNlsP8K3r8Whxu7YvOI xZiq4vJO/qS//vx6f2VpZ7oAtq9mrDOfia4TkwGLwzRU45cq/9/v1ph7H7mQrWkp t8vgQU0bzmdMsAYF4MRrqj5sjFlaT+FxMDGjmyjmpT4RBewH2LgO8WCkaqESu522 RWKXmJaY4JozUxAw3ZxTDY7fWCgSMe+f1Iyg/TQ/DG1CObumj1ZVXsd99y0jR3/h OYPOqvi92I+T0RirsQkFT42m7/BptopkSO7TqTbti3C/HLcVEccM7oX664eqbYKZ UUXamVPnvmJbEp9/7fUsgpsN2OBezaevZW0UXTg2FIPYQbOajNpSi5VwJQRgRsa8 lnk= -----END CERTIFICATE-----Generated at Tue May 12 21:54:09 2026 by rpki-client