$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS133039.roa File: AS133039.roa (raw, json) Hash identifier: z4gMgQCtvFQLfbXcTHBWl/DEN6CmGiS+7HjGc27pGqI= Subject key identifier: 79:C9:BF:A8:51:75:B9:7E:67:54:0B:40:DD:69:F0:A2:D1:C3:33:39 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 2DACD136B97FD168AD05155315E5D0D0B438DD91 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS133039.roa Signing time: Mon 18 May 2026 03:43:37 +0000 ROA not before: Mon 18 May 2026 03:38:37 +0000 ROA not after: Mon 17 May 2027 03:43:37 +0000 asID: 133039 IP address blocks: 144.79.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 21:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:ac:d1:36:b9:7f:d1:68:ad:05:15:53:15:e5:d0:d0:b4:38:dd:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 18 03:38:37 2026 GMT Not After : May 17 03:43:37 2027 GMT Subject: CN=79C9BFA85175B97E67540B40DD69F0A2D1C33339 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e3:58:73:bb:f6:38:ca:cf:6b:42:b4:89:bb: d5:d9:7b:91:2a:ef:7f:9b:69:41:a7:34:4c:b1:57: 48:b9:82:01:e0:2c:f8:30:27:b1:02:1b:fd:09:6b: 3f:63:aa:f5:c5:a0:32:5f:f8:8d:ca:9f:06:75:df: 5f:8c:6e:da:2c:b8:ca:bf:c0:ee:76:77:76:3b:b4: ab:34:27:23:ff:9b:b3:3b:03:f3:c9:2a:a7:ad:c3: 01:be:62:06:29:b2:9c:1f:99:d2:8c:cb:3e:6b:4f: 59:b7:c4:48:79:1c:16:54:47:7a:49:5f:e2:8e:57: bf:30:39:58:dd:18:29:3f:82:d3:cd:b1:65:fc:03: 24:cc:d7:89:97:5f:ec:68:a5:3e:0b:0e:c8:8c:09: 70:cb:ed:46:e2:e5:d9:39:21:80:19:27:49:76:8b: 36:68:8f:67:41:ca:46:77:20:41:b5:88:d5:aa:6d: 74:91:75:d4:d9:cf:fb:ea:c4:a1:32:39:3c:05:0b: b6:83:ee:93:09:2d:4b:e5:ad:84:27:a0:45:f6:28: 3f:e6:3e:44:a8:8b:4e:74:da:f3:22:7e:34:1f:ee: 12:ad:d5:95:3c:0a:f2:73:d1:b4:a6:d6:cf:ad:73: 28:9d:df:15:9c:64:02:57:0b:ea:55:ef:0a:e2:87: 2c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C9:BF:A8:51:75:B9:7E:67:54:0B:40:DD:69:F0:A2:D1:C3:33:39 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS133039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.36.0/24 Signature Algorithm: sha256WithRSAEncryption 57:2d:26:5b:6f:b7:37:ce:f8:77:6e:70:62:ee:bd:a0:3e:e0: 22:9f:08:7e:e4:7e:78:7d:95:41:9c:22:cf:14:6c:b9:b0:5e: 22:dc:1e:d2:81:23:11:ca:47:15:66:48:92:3a:b8:8c:e4:9f: b1:74:f7:b9:a4:d3:33:e3:5d:97:70:1e:ac:06:74:c2:98:c8: b1:9c:c9:79:90:41:28:a6:92:93:fb:4a:67:6c:e7:64:ce:8f: d2:39:ff:2d:39:7c:4d:f5:9f:87:80:7a:e0:d8:2e:66:36:2c: 38:e1:e3:4a:51:d8:53:0f:c9:96:c9:09:80:24:c7:d6:b4:be: a8:e8:06:bc:1c:b6:ad:59:a4:76:65:ae:44:ad:02:6e:44:ac: f9:78:ae:1b:16:b7:e0:14:f0:5e:34:f2:a2:48:fc:e5:4d:c7: a1:98:09:4d:8c:95:9c:35:b6:91:49:34:bf:f7:ea:e9:0e:b7: 7a:2f:9b:c5:34:6a:88:b9:f7:5b:06:f2:7c:4c:c5:26:59:dd: 2a:1f:29:01:2f:93:4a:dc:f7:99:fd:d3:b1:13:36:af:05:c0: 16:42:a0:a8:a7:af:d0:71:5e:bf:85:48:87:07:25:61:d7:dc: fd:1c:ec:bc:b1:3b:94:8a:05:b3:73:e0:da:f4:09:14:4d:1e: d3:be:9f:92 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIULazRNrl/0WitBRVTFeXQ0LQ43ZEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUxODAzMzgzN1oX DTI3MDUxNzAzNDMzN1owMzExMC8GA1UEAxMoNzlDOUJGQTg1MTc1Qjk3RTY3NTQw QjQwREQ2OUYwQTJEMUMzMzMzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANbjWHO79jjKz2tCtIm71dl7kSrvf5tpQac0TLFXSLmCAeAs+DAnsQIb/Qlr P2Oq9cWgMl/4jcqfBnXfX4xu2iy4yr/A7nZ3dju0qzQnI/+bszsD88kqp63DAb5i BimynB+Z0ozLPmtPWbfESHkcFlRHeklf4o5XvzA5WN0YKT+C082xZfwDJMzXiZdf 7GilPgsOyIwJcMvtRuLl2TkhgBknSXaLNmiPZ0HKRncgQbWI1aptdJF11NnP++rE oTI5PAULtoPukwktS+WthCegRfYoP+Y+RKiLTnTa8yJ+NB/uEq3VlTwK8nPRtKbW z61zKJ3fFZxkAlcL6lXvCuKHLLUCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBR5yb+o UXW5fmdUC0DdafCi0cMzOTAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTMzMDM5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAkE8kMA0GCSqGSIb3DQEBCwUAA4IBAQBXLSZbb7c3zvh3bnBi7r2gPuAi nwh+5H54fZVBnCLPFGy5sF4i3B7SgSMRykcVZkiSOriM5J+xdPe5pNMz412XcB6s BnTCmMixnMl5kEEoppKT+0pnbOdkzo/SOf8tOXxN9Z+HgHrg2C5mNiw44eNKUdhT D8mWyQmAJMfWtL6o6Aa8HLatWaR2Za5ErQJuRKz5eK4bFrfgFPBeNPKiSPzlTceh mAlNjJWcNbaRSTS/9+rpDrd6L5vFNGqIufdbBvJ8TMUmWd0qHykBL5NK3PeZ/dOx EzavBcAWQqCop6/QcV6/hUiHByVh19z9HOy8sTuUigWzc+Da9AkUTR7Tvp+S -----END CERTIFICATE-----Generated at Sat Jun 13 11:27:27 2026 by rpki-client