$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS56255.roa File: AS56255.roa (raw, json) Hash identifier: 1jgnk4ui3gSsCONP9oui9JmAKzNpUm4NKlB3CbZ8Ezs= Subject key identifier: B3:37:BC:19:64:22:93:35:85:99:72:A6:A0:31:F9:6C:6E:C1:27:A8 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1597A0BDADA96C107C56069A25CCC52669B7CAD3 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS56255.roa Signing time: Sun 03 May 2026 15:10:48 +0000 ROA not before: Sun 03 May 2026 15:05:48 +0000 ROA not after: Sun 02 May 2027 15:10:48 +0000 asID: 56255 IP address blocks: 103.10.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:97:a0:bd:ad:a9:6c:10:7c:56:06:9a:25:cc:c5:26:69:b7:ca:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 15:05:48 2026 GMT Not After : May 2 15:10:48 2027 GMT Subject: CN=B337BC1964229335859972A6A031F96C6EC127A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cf:ff:15:3e:7d:87:90:2d:7b:e6:b6:b3:a4: f5:07:b9:2d:ae:fa:5e:2f:45:52:52:18:4c:9c:bd: 41:9d:92:a2:aa:94:9a:13:16:e2:de:5b:5e:23:56: 4c:0c:a4:e8:b1:be:06:bb:c6:66:e2:83:16:d1:22: 61:25:8e:fc:aa:88:da:57:ad:07:91:42:de:2b:7e: 2b:00:5f:65:65:6f:40:0d:9b:8a:9c:55:d5:22:ed: 66:1c:f2:dc:4c:5a:13:56:57:87:7c:c7:57:d8:4f: 8d:ba:12:76:2d:17:55:49:0b:64:b3:37:16:12:e6: 8b:32:be:42:3b:ab:cf:1b:1b:a1:d8:f1:86:4e:97: 01:8e:3d:63:53:42:6c:df:77:ba:00:b0:48:cd:b1: db:47:7c:c9:07:84:f1:04:22:0a:28:b2:52:e6:eb: 61:d5:6b:0d:38:4b:1d:f0:1b:74:f1:0e:b3:94:20: 0f:8a:80:7a:53:b4:89:71:2c:4f:f3:3d:f8:d3:e3: 0d:c1:86:b8:ff:0d:64:ea:af:03:e4:5a:3a:88:2d: 88:58:95:2f:51:23:72:81:11:4b:00:7c:be:7f:43: 0b:ee:78:9f:dc:3f:13:d9:e5:5e:b6:9f:df:0a:06: 99:cc:e2:f9:f2:fa:61:39:26:01:1a:e7:6e:e7:85: 81:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:37:BC:19:64:22:93:35:85:99:72:A6:A0:31:F9:6C:6E:C1:27:A8 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS56255.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.170.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:c0:8d:50:a0:4d:33:9e:e6:25:a4:de:11:42:ca:fc:0a:47: d2:6a:95:07:12:b4:a8:e2:bc:87:0b:b1:95:55:f1:3a:af:1b: b3:cc:75:96:b0:be:ff:54:ef:a1:0f:81:ea:26:53:57:63:85: 33:2c:b4:c1:61:57:75:cd:48:b8:b7:fb:17:ee:81:47:6b:b9: 71:a0:50:1d:7a:73:ce:58:db:09:89:9b:28:f8:aa:e7:2c:e7: 2b:37:79:e6:20:d5:2b:0d:29:38:0b:e2:36:f6:57:0a:5d:08: b8:00:f0:28:dd:6b:0f:20:9a:99:0f:82:cc:2b:2f:e9:80:e3: e6:02:52:f0:fd:63:97:07:d1:ec:48:f4:e7:96:bd:ae:9d:bc: 3d:3b:10:e5:bc:90:a0:81:af:d5:6a:8a:d3:47:18:60:10:d6: b4:f3:4a:6c:81:f0:92:4e:91:3b:96:3f:97:c3:13:b5:94:1b: 34:a3:21:a6:9b:f8:1b:5b:69:44:e9:18:10:21:2a:38:22:a4: ae:5c:9a:2b:70:3c:0d:23:c6:57:0c:4d:e5:c5:c3:59:cc:7b: b8:c0:df:ef:63:a3:dd:70:ec:e9:24:aa:f9:fc:a7:b2:62:12: 46:b3:6f:d2:23:76:94:0d:be:49:0a:59:a9:4a:f7:b2:26:ca: a7:de:67:87 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUFZegva2pbBB8VgaaJczFJmm3ytMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzE1MDU0OFoX DTI3MDUwMjE1MTA0OFowMzExMC8GA1UEAxMoQjMzN0JDMTk2NDIyOTMzNTg1OTk3 MkE2QTAzMUY5NkM2RUMxMjdBODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMTP/xU+fYeQLXvmtrOk9Qe5La76Xi9FUlIYTJy9QZ2SoqqUmhMW4t5bXiNW TAyk6LG+BrvGZuKDFtEiYSWO/KqI2letB5FC3it+KwBfZWVvQA2bipxV1SLtZhzy 3ExaE1ZXh3zHV9hPjboSdi0XVUkLZLM3FhLmizK+Qjurzxsbodjxhk6XAY49Y1NC bN93ugCwSM2x20d8yQeE8QQiCiiyUubrYdVrDThLHfAbdPEOs5QgD4qAelO0iXEs T/M9+NPjDcGGuP8NZOqvA+RaOogtiFiVL1EjcoERSwB8vn9DC+54n9w/E9nlXraf 3woGmczi+fL6YTkmARrnbueFgV0CAwEAAaOCAcswggHHMB0GA1UdDgQWBBSzN7wZ ZCKTNYWZcqagMflsbsEnqDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNTYyNTUucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnCqowDQYJKoZIhvcNAQELBQADggEBAFrAjVCgTTOe5iWk3hFCyvwKR9Jq lQcStKjivIcLsZVV8TqvG7PMdZawvv9U76EPgeomU1djhTMstMFhV3XNSLi3+xfu gUdruXGgUB16c85Y2wmJmyj4qucs5ys3eeYg1SsNKTgL4jb2VwpdCLgA8Cjdaw8g mpkPgswrL+mA4+YCUvD9Y5cH0exI9OeWva6dvD07EOW8kKCBr9VqitNHGGAQ1rTz SmyB8JJOkTuWP5fDE7WUGzSjIaab+BtbaUTpGBAhKjgipK5cmitwPA0jxlcMTeXF w1nMe7jA3+9jo91w7Okkqvn8p7JiEkazb9IjdpQNvkkKWalK97ImyqfeZ4c= -----END CERTIFICATE-----Generated at Tue May 12 22:42:56 2026 by rpki-client