$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS59132.roa File: AS59132.roa (raw, json) Hash identifier: 3Lwy8/p57D+Io7ML8ozsB08DiFpbix+XzQuOc3B1YXk= Subject key identifier: C0:44:0B:1A:D8:9C:2D:F0:C9:ED:B3:0F:5E:42:BD:61:D2:24:66:F9 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5D89A5E151FE5797DFF19204047490B27D12D92C Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS59132.roa Signing time: Thu 21 May 2026 07:29:05 +0000 ROA not before: Thu 21 May 2026 07:24:05 +0000 ROA not after: Thu 20 May 2027 07:29:05 +0000 asID: 59132 IP address blocks: 103.183.254.0/24 maxlen: 24 103.183.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:89:a5:e1:51:fe:57:97:df:f1:92:04:04:74:90:b2:7d:12:d9:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 21 07:24:05 2026 GMT Not After : May 20 07:29:05 2027 GMT Subject: CN=C0440B1AD89C2DF0C9EDB30F5E42BD61D22466F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:6b:b3:70:ed:df:aa:a2:8c:10:31:92:e0:d5: 3f:36:0a:b4:97:91:2e:92:e6:6a:f3:fc:24:b4:cf: 23:56:86:5d:d8:fa:64:0a:3a:fc:08:e5:be:f2:52: 4b:23:f1:b6:a7:ec:19:dd:5b:10:f9:d9:7e:90:30: 15:47:30:5f:64:8f:22:9f:64:a6:ae:ba:41:a7:7e: 75:d4:78:d9:a8:59:39:3c:0b:6a:f3:3e:4f:6d:28: b0:e2:78:f6:e4:a7:d5:f2:b4:02:28:b6:60:62:4d: 83:3f:76:0e:5a:3b:64:d4:28:69:df:1a:79:1a:1a: 70:4a:ad:1a:e4:3e:da:68:be:96:34:0c:b0:31:86: 24:80:5a:dc:4c:9f:3f:80:ca:9a:db:9d:af:d8:32: 39:f6:9e:f5:9c:e7:ca:bf:d2:02:0c:80:6c:43:2e: 2b:8f:7f:ad:12:d1:47:7a:e9:ef:dc:a1:88:a8:ca: 7b:59:fe:f6:85:36:29:54:74:c4:71:a4:b0:1f:99: dc:2c:3c:5b:a5:5e:a3:31:5a:4e:eb:d2:7b:e0:59: 77:a9:bc:87:a0:1b:71:07:04:6f:90:89:2b:c2:e0: bf:3c:5a:2c:70:30:e8:01:f9:ba:e5:8d:16:b3:6c: a3:68:ac:1d:fa:11:c1:a4:43:66:6f:5f:fa:5a:4b: ae:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:44:0B:1A:D8:9C:2D:F0:C9:ED:B3:0F:5E:42:BD:61:D2:24:66:F9 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS59132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.254.0/23 Signature Algorithm: sha256WithRSAEncryption 63:11:9f:24:68:c4:41:41:11:b8:0a:21:59:e6:1f:c5:a7:11: 26:91:a4:19:e1:c9:df:d6:78:ba:bf:8a:ea:b1:d9:d8:87:64: ea:78:87:0f:f8:98:2d:47:96:a7:db:6a:ac:0e:bc:d5:f7:9a: 66:0a:6a:d4:ec:b4:df:d0:dc:85:4b:f9:a3:cf:11:93:ff:9a: f2:b0:4d:28:b1:92:23:ab:09:dd:e4:6d:ff:67:7c:40:1e:d2: 1f:f9:09:1d:e1:7a:68:f8:80:6e:18:bc:c2:99:40:42:1f:c4: aa:c4:85:21:3e:34:cc:76:53:95:43:ba:1b:7c:3a:35:2e:15: 08:b0:ff:04:92:60:83:53:d5:ec:96:b1:42:a5:57:2d:53:70: 31:c7:51:e1:da:32:cf:a2:49:4f:8f:3d:1b:4b:25:8e:c0:09: 0c:40:21:e6:ae:b1:5a:21:de:74:37:84:fd:c5:2a:51:80:3a: e8:3a:48:c5:37:68:5d:27:57:b3:a6:b2:af:e1:2a:f9:a9:90: 25:7a:d1:ae:0e:bf:60:73:25:f7:fd:8e:48:da:0e:27:0b:4b: df:83:9a:45:cb:d7:c6:c3:8a:98:c9:0a:f8:d5:2a:c5:e1:26: 88:64:8d:ff:f6:61:de:21:94:f6:34:55:1d:1c:2f:71:47:1c: 43:7e:ed:99 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUXYml4VH+V5ff8ZIEBHSQsn0S2SwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUyMTA3MjQwNVoX DTI3MDUyMDA3MjkwNVowMzExMC8GA1UEAxMoQzA0NDBCMUFEODlDMkRGMEM5RURC MzBGNUU0MkJENjFEMjI0NjZGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAItrs3Dt36qijBAxkuDVPzYKtJeRLpLmavP8JLTPI1aGXdj6ZAo6/AjlvvJS SyPxtqfsGd1bEPnZfpAwFUcwX2SPIp9kpq66Qad+ddR42ahZOTwLavM+T20osOJ4 9uSn1fK0Aii2YGJNgz92Dlo7ZNQoad8aeRoacEqtGuQ+2mi+ljQMsDGGJIBa3Eyf P4DKmtudr9gyOfae9Zznyr/SAgyAbEMuK49/rRLRR3rp79yhiKjKe1n+9oU2KVR0 xHGksB+Z3Cw8W6VeozFaTuvSe+BZd6m8h6AbcQcEb5CJK8LgvzxaLHAw6AH5uuWN FrNso2isHfoRwaRDZm9f+lpLrmcCAwEAAaOCAcswggHHMB0GA1UdDgQWBBTARAsa 2Jwt8Mntsw9eQr1h0iRm+TAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNTkxMzIucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnt/4wDQYJKoZIhvcNAQELBQADggEBAGMRnyRoxEFBEbgKIVnmH8WnESaR pBnhyd/WeLq/iuqx2diHZOp4hw/4mC1HlqfbaqwOvNX3mmYKatTstN/Q3IVL+aPP EZP/mvKwTSixkiOrCd3kbf9nfEAe0h/5CR3hemj4gG4YvMKZQEIfxKrEhSE+NMx2 U5VDuht8OjUuFQiw/wSSYINT1eyWsUKlVy1TcDHHUeHaMs+iSU+PPRtLJY7ACQxA IeausVoh3nQ3hP3FKlGAOug6SMU3aF0nV7Omsq/hKvmpkCV60a4Ov2BzJff9jkja DicLS9+DmkXL18bDipjJCvjVKsXhJohkjf/2Yd4hlPY0VR0cL3FHHEN+7Zk= -----END CERTIFICATE-----Generated at Wed Jun 17 08:48:21 2026 by rpki-client