$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24530.roa File: AS24530.roa (raw, json) Hash identifier: /jdFxfHLKbQYAPp2aulMBXLjK326t7kWDa5aGSwM76Y= Subject key identifier: 49:44:B6:5E:CD:35:FE:E6:10:9F:96:D9:11:E3:F4:09:82:C8:40:B9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 59AA72EAFACCACC78FBE796DC3915678B3CCC549 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24530.roa Signing time: Thu 19 Feb 2026 05:00:00 +0000 ROA not before: Thu 19 Feb 2026 04:55:00 +0000 ROA not after: Thu 18 Feb 2027 05:00:00 +0000 asID: 24530 IP address blocks: 103.178.196.0/23 maxlen: 24 203.190.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:aa:72:ea:fa:cc:ac:c7:8f:be:79:6d:c3:91:56:78:b3:cc:c5:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 19 04:55:00 2026 GMT Not After : Feb 18 05:00:00 2027 GMT Subject: CN=4944B65ECD35FEE6109F96D911E3F40982C840B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:50:dc:6d:22:c2:92:14:ab:08:f2:0b:3d:8d: c5:c0:18:ba:e7:6d:4f:31:1e:31:d6:05:df:27:b2: 0a:d0:ea:e4:90:2e:02:c3:eb:49:71:c1:86:aa:95: d1:3a:ef:03:d7:0a:e6:ae:83:a9:91:2b:1f:00:16: 03:2e:31:3a:5e:b6:05:70:79:e5:b3:3f:78:81:ed: d9:2d:f5:a2:fa:db:88:9e:4d:9e:f1:d3:9e:0c:e0: 41:09:cb:5e:73:63:ce:c7:e2:5b:47:3a:03:47:4e: a0:a3:c9:6e:46:0b:43:56:a3:72:bf:02:56:3c:a2: f8:20:98:d1:9e:e0:46:0d:36:c2:2c:4f:89:c4:5f: a8:2b:54:b8:8c:11:27:e6:83:a2:a4:4c:a2:79:6e: 55:20:da:39:ff:26:6a:c1:d8:a6:52:0a:c1:28:4c: 46:2c:ac:0c:de:01:fe:c8:d0:d6:92:89:0b:b7:80: a6:b0:ac:9e:36:a4:51:83:f4:48:1b:ea:60:c1:78: 0f:88:97:a4:16:f5:45:55:77:1d:75:34:57:e5:9c: 87:4a:67:74:4c:e3:05:36:5c:ed:79:e0:18:88:25: f7:ea:99:a9:78:79:fb:c7:96:f1:ae:28:d8:76:c2: 4a:18:1d:0c:3e:ad:ca:7e:5a:0e:d9:36:f8:47:5b: 19:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:44:B6:5E:CD:35:FE:E6:10:9F:96:D9:11:E3:F4:09:82:C8:40:B9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.196.0/23 203.190.48.0/21 Signature Algorithm: sha256WithRSAEncryption 9a:0c:34:06:fc:b2:37:23:34:26:81:45:f0:7e:45:c3:74:c5: f5:42:93:ab:c0:51:48:ab:5c:42:30:b4:84:0e:a6:c3:70:1f: 38:23:ef:31:71:78:e8:04:d6:6a:5b:9d:09:e2:50:5e:22:94: 60:80:e4:30:41:92:db:52:0c:4d:ff:13:5b:52:03:54:b9:79: ba:b3:50:e2:b4:36:1f:c0:cf:7e:06:89:a5:3a:c3:6d:43:04: 2c:44:18:9d:b2:1c:84:ee:0e:9f:fd:70:e7:2b:17:c6:e5:a7: 07:53:4e:70:28:20:b7:fb:06:ad:05:55:ba:67:d4:82:d3:32: ca:95:47:71:8c:74:f7:10:c8:43:6f:80:8a:39:9a:2d:9c:bf: 4b:ab:62:12:10:d0:fd:83:ed:aa:4c:2e:fc:40:fa:92:49:09: 66:23:60:a8:a6:4a:c7:20:37:4b:ca:31:50:f7:93:e1:67:58: 98:33:ce:59:ba:05:05:30:7a:4c:b2:59:54:04:24:1c:be:60: f5:86:f6:b0:cb:61:9a:69:55:8b:a2:4d:2a:f6:a2:4f:f1:ca: 76:da:b8:70:26:a2:49:a7:ab:ad:4c:1f:6e:ac:a9:21:02:83: f2:db:a9:59:29:36:f5:47:6c:e7:4a:31:36:9e:9e:23:cb:93: 3c:05:22:ca -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUWapy6vrMrMePvnltw5FWeLPMxUkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDIxOTA0NTUwMFoX DTI3MDIxODA1MDAwMFowMzExMC8GA1UEAxMoNDk0NEI2NUVDRDM1RkVFNjEwOUY5 NkQ5MTFFM0Y0MDk4MkM4NDBCOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOtQ3G0iwpIUqwjyCz2NxcAYuudtTzEeMdYF3yeyCtDq5JAuAsPrSXHBhqqV 0TrvA9cK5q6DqZErHwAWAy4xOl62BXB55bM/eIHt2S31ovrbiJ5NnvHTngzgQQnL XnNjzsfiW0c6A0dOoKPJbkYLQ1ajcr8CVjyi+CCY0Z7gRg02wixPicRfqCtUuIwR J+aDoqRMonluVSDaOf8masHYplIKwShMRiysDN4B/sjQ1pKJC7eAprCsnjakUYP0 SBvqYMF4D4iXpBb1RVV3HXU0V+Wch0pndEzjBTZc7XngGIgl9+qZqXh5+8eW8a4o 2HbCShgdDD6tyn5aDtk2+EdbGXcCAwEAAaOCAdUwggHRMB0GA1UdDgQWBBRJRLZe zTX+5hCfltkR4/QJgshAuTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzI0NTMwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ7LEAwQDy74wMA0GCSqGSIb3DQEBCwUAA4IBAQCaDDQG/LI3IzQm gUXwfkXDdMX1QpOrwFFIq1xCMLSEDqbDcB84I+8xcXjoBNZqW50J4lBeIpRggOQw QZLbUgxN/xNbUgNUuXm6s1DitDYfwM9+BomlOsNtQwQsRBidshyE7g6f/XDnKxfG 5acHU05wKCC3+watBVW6Z9SC0zLKlUdxjHT3EMhDb4CKOZotnL9Lq2ISEND9g+2q TC78QPqSSQlmI2CopkrHIDdLyjFQ95PhZ1iYM85ZugUFMHpMsllUBCQcvmD1hvaw y2GaaVWLok0q9qJP8cp22rhwJqJJp6utTB9urKkhAoPy26lZKTb1R2znSjE2np4j y5M8BSLK -----END CERTIFICATE-----Generated at Sun Mar 1 22:01:37 2026 by rpki-client