$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135472.roa File: AS135472.roa (raw, json) Hash identifier: uoqrYupzpfi5QooF9j1xYWNGkElJqnNhDfz3Hl649dw= Subject key identifier: A6:2E:2C:51:5F:3A:48:43:A7:45:9D:91:DC:97:D9:A9:CC:F7:3D:3B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 56C1CA6F2ECEF695058F64A152EC93DEFEF6B64E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135472.roa Signing time: Fri 04 Jul 2025 09:00:55 +0000 ROA not before: Fri 04 Jul 2025 08:55:55 +0000 ROA not after: Fri 03 Jul 2026 09:00:55 +0000 asID: 135472 IP address blocks: 2400:fce0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:c1:ca:6f:2e:ce:f6:95:05:8f:64:a1:52:ec:93:de:fe:f6:b6:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 4 08:55:55 2025 GMT Not After : Jul 3 09:00:55 2026 GMT Subject: CN=A62E2C515F3A4843A7459D91DC97D9A9CCF73D3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:22:d9:1a:20:6b:f4:f6:2f:83:a4:cc:2f:87: fa:89:3d:53:06:ef:07:8e:0c:33:b5:bb:61:47:73: 13:40:45:09:a9:3a:2b:37:85:96:48:90:ae:2e:27: f6:23:d8:7f:a2:23:98:38:23:d9:56:3c:a7:59:db: 41:fe:6e:45:e7:f8:e3:1e:26:67:32:c8:1a:8f:0c: 37:91:60:b1:db:e9:c1:e4:ef:21:36:d2:af:16:61: 8d:7a:84:f4:10:aa:c0:e3:16:9d:0d:44:90:85:cc: f3:4c:ec:32:bd:7f:ce:64:5e:12:33:46:1b:21:47: 5d:0e:a6:ba:20:a8:38:a9:f1:60:ec:76:55:97:db: f3:92:7f:f6:77:79:ce:01:2f:38:d5:dc:e1:53:3e: e9:00:7a:f9:fd:ab:e1:0f:f9:a6:c9:51:ef:7d:ed: 61:e8:98:ea:3f:a4:33:38:1f:52:83:86:bf:8f:0b: e0:07:0d:fc:53:4b:80:63:cf:bb:32:4e:4d:ac:7d: 88:c8:d1:8a:17:cf:f7:62:c5:0d:e7:ad:27:b5:b8: c8:c8:c1:b4:7d:ab:10:f8:9d:17:27:84:d4:6d:67: 27:dc:19:ea:29:9e:cc:94:36:57:51:db:27:d4:46: 6f:a6:f5:c1:69:81:2a:bd:2a:53:39:a8:d9:66:d9: ae:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:2E:2C:51:5F:3A:48:43:A7:45:9D:91:DC:97:D9:A9:CC:F7:3D:3B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135472.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:fce0::/32 Signature Algorithm: sha256WithRSAEncryption 42:58:ba:94:51:bf:3d:13:c0:dc:eb:d2:88:ab:4a:4f:cd:1b: 79:7d:2e:29:18:15:8f:4e:ce:70:0d:84:45:70:d8:b0:25:27: 70:b7:90:ac:75:24:58:1d:73:4f:95:17:ac:54:b0:b8:0a:58: c3:4b:17:2a:76:4c:45:15:04:00:a0:57:4e:b4:89:07:51:a4: 62:b8:05:23:fb:34:06:ea:86:94:cd:a9:fa:c7:c2:81:43:d4: fe:61:d0:74:05:46:34:7d:8f:ef:56:f8:22:1e:b3:82:91:b5: 8f:02:9e:ac:52:78:5c:6d:ec:bb:fb:12:94:cd:a3:1d:ce:f8: 43:a2:1e:f2:69:87:4c:dc:98:de:9c:51:6c:b5:ea:c9:f4:ca: e3:cb:1a:b5:14:64:31:25:b0:73:2f:f4:eb:78:4d:26:79:e7: fe:d4:ff:1e:dc:89:18:8f:6c:6a:1a:df:52:7e:39:9b:4c:3c: ec:bc:7a:43:b7:c9:30:5f:1d:e8:3d:e8:ca:6b:0f:1a:9d:81: f3:6a:9b:51:ea:74:05:bf:da:7a:65:ef:52:18:ef:6c:9c:9f: 9f:f1:1e:67:7d:e3:5a:78:24:d7:9f:35:71:19:ef:77:ab:ce: 8c:58:64:d6:d8:2a:81:6f:8e:02:c2:de:2f:da:68:74:b9:94: 91:0a:00:68 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUVsHKby7O9pUFj2ShUuyT3v72tk4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcwNDA4NTU1NVoX DTI2MDcwMzA5MDA1NVowMzExMC8GA1UEAxMoQTYyRTJDNTE1RjNBNDg0M0E3NDU5 RDkxREM5N0Q5QTlDQ0Y3M0QzQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANgi2Roga/T2L4OkzC+H+ok9UwbvB44MM7W7YUdzE0BFCak6KzeFlkiQri4n 9iPYf6IjmDgj2VY8p1nbQf5uRef44x4mZzLIGo8MN5FgsdvpweTvITbSrxZhjXqE 9BCqwOMWnQ1EkIXM80zsMr1/zmReEjNGGyFHXQ6muiCoOKnxYOx2VZfb85J/9nd5 zgEvONXc4VM+6QB6+f2r4Q/5pslR733tYeiY6j+kMzgfUoOGv48L4AcN/FNLgGPP uzJOTax9iMjRihfP92LFDeetJ7W4yMjBtH2rEPidFyeE1G1nJ9wZ6imezJQ2V1Hb J9RGb6b1wWmBKr0qUzmo2WbZroECAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSmLixR XzpIQ6dFnZHcl9mpzPc9OzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNTQ3Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQA/OAwDQYJKoZIhvcNAQELBQADggEBAEJYupRRvz0TwNzr0oir Sk/NG3l9LikYFY9OznANhEVw2LAlJ3C3kKx1JFgdc0+VF6xUsLgKWMNLFyp2TEUV BACgV060iQdRpGK4BSP7NAbqhpTNqfrHwoFD1P5h0HQFRjR9j+9W+CIes4KRtY8C nqxSeFxt7Lv7EpTNox3O+EOiHvJph0zcmN6cUWy16sn0yuPLGrUUZDElsHMv9Ot4 TSZ55/7U/x7ciRiPbGoa31J+OZtMPOy8ekO3yTBfHeg96MprDxqdgfNqm1HqdAW/ 2npl71IY72ycn5/xHmd941p4JNefNXEZ73erzoxYZNbYKoFvjgLC3i/aaHS5lJEK AGg= -----END CERTIFICATE-----Generated at Mon Jul 21 00:04:25 2025 by rpki-client