$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS64024.roa File: AS64024.roa (raw, json) Hash identifier: 7n8Pf+dMghR0+DUiRK1gQ+8S/SbcU0MjU5vze4G2udU= Subject key identifier: 37:8A:71:45:07:82:06:1B:40:BA:61:11:B4:54:87:03:F9:75:E6:60 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 31C1707857C920268376D27FA2280AA3A71CA04D Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS64024.roa Signing time: Sun 03 May 2026 05:16:03 +0000 ROA not before: Sun 03 May 2026 05:11:03 +0000 ROA not after: Sun 02 May 2027 05:16:03 +0000 asID: 64024 IP address blocks: 103.210.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:c1:70:78:57:c9:20:26:83:76:d2:7f:a2:28:0a:a3:a7:1c:a0:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 05:11:03 2026 GMT Not After : May 2 05:16:03 2027 GMT Subject: CN=378A71450782061B40BA6111B4548703F975E660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c0:a3:9e:2c:38:4c:4c:4a:0f:e3:d0:4b:9c: 86:a4:19:3c:30:75:d3:3c:69:af:62:fb:9e:a2:2c: 7e:6d:7a:76:8d:2a:25:8a:6b:84:56:42:4d:6c:ea: 63:5a:37:fe:9e:52:7b:cc:a3:c9:bf:e2:7f:7c:34: 80:d1:64:11:41:7a:69:ec:05:10:6d:7d:cc:50:9a: e8:42:bb:f2:07:76:88:62:84:bf:c1:04:e0:a6:b4: 23:0a:76:07:c9:6a:f0:f3:56:a6:f1:be:27:29:91: c4:b3:39:5d:b9:50:5e:88:d8:aa:58:bc:74:bc:f4: e7:4e:5d:b3:0f:27:3b:49:00:ea:55:66:6c:fd:26: 84:6d:b4:55:01:34:80:97:b4:79:1f:7f:01:96:87: f6:b2:4e:b6:fa:59:40:82:67:eb:5e:7e:90:1e:e3: d9:6c:8b:91:49:9c:43:87:fa:5c:13:58:7e:17:79: a1:e6:f6:c8:a4:f3:ec:00:f9:0d:bd:1b:8d:0c:7b: 0f:1c:19:0f:de:5f:fc:b1:6a:14:84:a6:5d:17:21: 08:af:c1:8a:82:64:2a:bd:f2:59:a1:2c:7c:69:b1: d5:3c:34:41:c7:aa:86:ef:60:c9:5e:39:30:d2:da: b1:06:b7:cf:c0:4a:f2:6c:71:c3:2a:5c:c3:94:27: cd:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:8A:71:45:07:82:06:1B:40:BA:61:11:B4:54:87:03:F9:75:E6:60 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS64024.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.116.0/22 Signature Algorithm: sha256WithRSAEncryption 86:bb:94:1c:e4:15:39:21:4e:fa:f9:57:1c:75:01:4e:03:6a: 13:8d:63:39:d2:20:0d:f2:5e:21:8f:ec:88:28:19:ce:2d:dc: 49:a5:f4:5a:2c:cf:1e:ca:56:51:80:d3:f6:76:ea:1e:4b:5e: a3:56:9b:31:86:eb:f0:9d:cb:11:32:62:e3:34:bc:02:a9:87: 9e:d7:7e:ad:8d:85:1f:d8:47:f6:84:4e:d4:ef:55:8b:36:5a: c7:dd:c2:9b:b6:65:11:05:97:69:ab:96:8e:ef:17:3b:9e:e0: 3b:e7:e7:23:32:d4:43:c1:2b:0d:ac:12:19:f9:6b:87:d3:d2: d7:00:8e:86:47:14:5a:19:ad:bf:36:19:6d:a0:7b:85:e6:44: 30:1f:06:4f:b1:0a:b5:3c:44:74:c8:4f:fc:81:c2:74:38:b6: ba:bc:d1:33:0e:9c:31:b2:50:a4:3a:d9:cb:50:55:81:85:96: 4b:73:7e:f4:07:23:88:ad:6b:18:ac:cb:96:86:61:52:e8:2c: 0e:06:ec:22:fb:e5:6e:3b:2d:a8:b1:a6:93:e2:15:29:c3:4e: 41:01:17:b5:a2:0d:e9:cb:51:d6:82:16:b1:2b:c7:fd:78:c1: 4f:84:00:b4:d4:75:d2:46:2d:dd:dc:e8:fd:28:e6:b4:4f:af: 19:db:5d:0f -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUMcFweFfJICaDdtJ/oigKo6ccoE0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzA1MTEwM1oX DTI3MDUwMjA1MTYwM1owMzExMC8GA1UEAxMoMzc4QTcxNDUwNzgyMDYxQjQwQkE2 MTExQjQ1NDg3MDNGOTc1RTY2MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMLAo54sOExMSg/j0EuchqQZPDB10zxpr2L7nqIsfm16do0qJYprhFZCTWzq Y1o3/p5Se8yjyb/if3w0gNFkEUF6aewFEG19zFCa6EK78gd2iGKEv8EE4Ka0Iwp2 B8lq8PNWpvG+JymRxLM5XblQXojYqli8dLz0505dsw8nO0kA6lVmbP0mhG20VQE0 gJe0eR9/AZaH9rJOtvpZQIJn615+kB7j2WyLkUmcQ4f6XBNYfhd5oeb2yKTz7AD5 Db0bjQx7DxwZD95f/LFqFISmXRchCK/BioJkKr3yWaEsfGmx1Tw0Qceqhu9gyV45 MNLasQa3z8BK8mxxwypcw5QnzSMCAwEAAaOCAcswggHHMB0GA1UdDgQWBBQ3inFF B4IGG0C6YRG0VIcD+XXmYDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNjQwMjQucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJn0nQwDQYJKoZIhvcNAQELBQADggEBAIa7lBzkFTkhTvr5Vxx1AU4DahON YznSIA3yXiGP7IgoGc4t3Eml9Foszx7KVlGA0/Z26h5LXqNWmzGG6/CdyxEyYuM0 vAKph57Xfq2NhR/YR/aETtTvVYs2Wsfdwpu2ZREFl2mrlo7vFzue4Dvn5yMy1EPB Kw2sEhn5a4fT0tcAjoZHFFoZrb82GW2ge4XmRDAfBk+xCrU8RHTIT/yBwnQ4trq8 0TMOnDGyUKQ62ctQVYGFlktzfvQHI4itaxisy5aGYVLoLA4G7CL75W47LaixppPi FSnDTkEBF7WiDenLUdaCFrErx/14wU+EALTUddJGLd3c6P0o5rRPrxnbXQ8= -----END CERTIFICATE-----Generated at Tue May 12 22:42:55 2026 by rpki-client