$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS132634.roa File: AS132634.roa (raw, json) Hash identifier: Nu05HXFYvZfMNgqaFJiuMbS7qLjFJqbbidnmHj3JyDc= Subject key identifier: A2:E1:EE:95:5C:B0:28:F0:58:D8:3F:1E:92:7F:79:65:BD:40:5D:8B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5B10F4E4D7A50B28FE8CD5974AEF44E0BC80783E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS132634.roa Signing time: Wed 13 May 2026 08:20:54 +0000 ROA not before: Wed 13 May 2026 08:15:54 +0000 ROA not after: Wed 12 May 2027 08:20:54 +0000 asID: 132634 IP address blocks: 103.132.18.0/23 maxlen: 24 103.170.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:10:f4:e4:d7:a5:0b:28:fe:8c:d5:97:4a:ef:44:e0:bc:80:78:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 13 08:15:54 2026 GMT Not After : May 12 08:20:54 2027 GMT Subject: CN=A2E1EE955CB028F058D83F1E927F7965BD405D8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0c:15:f1:a9:0c:73:da:48:0e:8e:d1:10:24: f9:a3:57:3c:99:cc:55:c5:69:d3:37:2b:42:55:be: 3b:1f:d7:a4:6b:b1:00:b1:d7:75:89:82:db:b1:29: b1:40:8e:a5:90:7b:3f:9d:a7:5e:7e:c6:8b:bc:9b: 83:00:3a:1c:af:ef:cb:ef:c9:fb:30:9b:56:42:6e: 66:e3:b8:67:b6:83:57:b4:f7:f6:a0:b7:0d:25:ee: 83:40:83:f7:d2:ac:b1:16:a6:4c:25:39:11:e9:89: 6e:86:b0:eb:31:c9:06:27:87:a0:16:5c:78:09:21: 44:e5:5b:1e:f4:9b:5c:b0:38:79:c6:36:97:15:3f: d0:9f:a7:c1:ce:14:6c:4a:b3:55:fa:65:80:90:7c: f7:b5:ca:94:3b:be:8f:6d:85:5e:61:6f:d8:c3:d3: aa:5e:88:38:bf:8d:d1:d9:cd:b0:c0:b8:04:f0:1c: 94:3f:f2:2d:f5:94:cb:a3:e0:ee:11:90:66:e5:d2: 04:46:62:20:1d:94:67:c4:2d:a0:27:e8:54:14:4f: e2:96:3d:3a:f3:a4:c5:21:2e:ce:42:61:8e:73:37: 49:be:b3:a5:c8:4e:d3:0b:22:8d:68:21:b2:19:24: 7c:cf:86:ed:ef:98:ee:65:e8:3c:05:25:93:83:d8: ea:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:E1:EE:95:5C:B0:28:F0:58:D8:3F:1E:92:7F:79:65:BD:40:5D:8B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS132634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.18.0/23 103.170.104.0/23 Signature Algorithm: sha256WithRSAEncryption 35:57:e6:62:05:ec:bd:84:5c:b5:4c:0a:70:a1:ed:5b:77:f5: 73:fa:c0:39:6b:6f:df:85:dc:b0:70:59:95:75:26:fb:27:28: 12:aa:1f:8a:03:b7:84:e3:f4:02:03:20:50:5d:bb:81:69:de: 79:9d:bc:3b:55:4d:29:f1:35:14:5a:e8:8c:62:28:c3:2e:89: 78:ad:19:2b:c0:2b:00:6c:f1:35:cb:d8:0a:9c:7b:ca:be:df: 96:97:8d:b5:88:26:a5:97:5c:6f:46:23:a7:a9:dc:69:2f:7d: d9:21:bd:d4:af:cc:94:ac:56:09:7f:1f:6f:d8:e0:93:e2:6e: b9:52:ec:52:33:aa:80:63:26:15:71:fa:29:d2:4c:11:f7:a0: 6e:85:00:be:7a:2e:f4:af:bb:44:7b:dd:c9:6b:b0:4a:28:ff: 58:e3:fd:22:25:18:ae:bd:e1:69:e9:33:64:c1:af:aa:ca:a3: d1:26:0e:af:b7:28:3a:c4:0f:fa:6a:68:d6:e3:e2:ba:a9:23: fd:a7:fc:64:3a:d3:6a:82:33:41:c7:72:14:0c:e0:e8:44:53: 1c:42:37:88:a5:cc:ba:4c:a5:58:48:05:da:8d:bf:9b:0d:fc: 3f:43:9d:fe:a3:f0:fe:46:19:cd:06:89:8e:51:4a:4f:6a:0d: ec:36:82:a7 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUWxD05NelCyj+jNWXSu9E4LyAeD4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUxMzA4MTU1NFoX DTI3MDUxMjA4MjA1NFowMzExMC8GA1UEAxMoQTJFMUVFOTU1Q0IwMjhGMDU4RDgz RjFFOTI3Rjc5NjVCRDQwNUQ4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL4MFfGpDHPaSA6O0RAk+aNXPJnMVcVp0zcrQlW+Ox/XpGuxALHXdYmC27Ep sUCOpZB7P52nXn7Gi7ybgwA6HK/vy+/J+zCbVkJuZuO4Z7aDV7T39qC3DSXug0CD 99KssRamTCU5EemJboaw6zHJBieHoBZceAkhROVbHvSbXLA4ecY2lxU/0J+nwc4U bEqzVfplgJB897XKlDu+j22FXmFv2MPTql6IOL+N0dnNsMC4BPAclD/yLfWUy6Pg 7hGQZuXSBEZiIB2UZ8QtoCfoVBRP4pY9OvOkxSEuzkJhjnM3Sb6zpchO0wsijWgh shkkfM+G7e+Y7mXoPAUlk4PY6h8CAwEAAaOCAdIwggHOMB0GA1UdDgQWBBSi4e6V XLAo8FjYPx6Sf3llvUBdizAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTMyNjM0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIA ATAMAwQBZ4QSAwQBZ6poMA0GCSqGSIb3DQEBCwUAA4IBAQA1V+ZiBey9hFy1TApw oe1bd/Vz+sA5a2/fhdywcFmVdSb7JygSqh+KA7eE4/QCAyBQXbuBad55nbw7VU0p 8TUUWuiMYijDLol4rRkrwCsAbPE1y9gKnHvKvt+Wl421iCall1xvRiOnqdxpL33Z Ib3Ur8yUrFYJfx9v2OCT4m65UuxSM6qAYyYVcfop0kwR96BuhQC+ei70r7tEe93J a7BKKP9Y4/0iJRiuveFp6TNkwa+qyqPRJg6vtyg6xA/6amjW4+K6qSP9p/xkOtNq gjNBx3IUDODoRFMcQjeIpcy6TKVYSAXajb+bDfw/Q53+o/D+RhnNBomOUUpPag3s NoKn -----END CERTIFICATE-----Generated at Wed Jun 17 10:04:58 2026 by rpki-client