$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142376.roa File: AS142376.roa (raw, json) Hash identifier: Q1KklRQZP/t9C/UZ6Gzo9fP5JKyu/PgOiRXoxm8cumk= Subject key identifier: 04:E1:AF:4A:EF:15:3A:F7:B1:8C:22:9E:38:C6:07:4E:FA:3F:D3:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 71D3EE700CABA6773914E971F79C613B3AF7ED5A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142376.roa Signing time: Mon 30 Jun 2025 10:00:00 +0000 ROA not before: Mon 30 Jun 2025 09:55:00 +0000 ROA not after: Mon 29 Jun 2026 10:00:00 +0000 asID: 142376 IP address blocks: 103.187.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:d3:ee:70:0c:ab:a6:77:39:14:e9:71:f7:9c:61:3b:3a:f7:ed:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 30 09:55:00 2025 GMT Not After : Jun 29 10:00:00 2026 GMT Subject: CN=04E1AF4AEF153AF7B18C229E38C6074EFA3FD36B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:a8:46:e0:60:15:10:6c:b2:1b:c1:58:6f:d3: 56:43:91:9e:8a:c7:c9:e6:00:f2:29:94:6b:41:69: b5:03:fd:74:b4:63:c0:a9:4e:6b:f8:a8:20:24:13: 6f:16:f8:f1:fe:35:98:72:74:b8:0e:3d:da:e1:e5: 52:a7:36:ac:ee:6d:cd:fa:e0:ea:f6:69:31:c8:4a: f1:a3:68:ae:eb:c7:69:f2:63:0b:26:9a:4b:10:e7: 17:eb:b0:67:80:67:a5:d8:4b:11:b0:9c:77:5c:52: f1:1e:e3:6b:29:37:67:63:b8:86:f8:01:5a:9e:f3: 71:e2:cb:82:8d:78:4b:96:70:35:12:07:4b:6e:cf: e6:a1:96:28:13:d4:ee:ac:f4:99:4e:a9:3d:d9:8b: 31:29:ea:15:45:8e:fb:5f:b7:59:a7:30:3f:fe:f1: 56:75:d3:8d:d6:70:ef:af:f2:47:57:c4:31:a5:40: 44:cb:44:7c:18:b2:d0:b1:f9:9e:97:b9:68:a6:ff: ee:8e:9a:d0:02:b6:11:dc:54:40:24:dc:6d:23:d7: b9:c4:bd:e0:8c:d8:32:e2:d8:f1:bb:7e:c5:1e:f0: 5d:cc:8f:06:f4:74:ae:d8:b9:3c:ac:7d:f3:45:31: c8:39:2f:a0:05:b6:8d:e9:6d:6b:da:e2:75:b6:dd: fe:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E1:AF:4A:EF:15:3A:F7:B1:8C:22:9E:38:C6:07:4E:FA:3F:D3:6B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142376.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.106.0/24 Signature Algorithm: sha256WithRSAEncryption 23:bf:2b:2d:3b:ad:bd:da:80:e0:de:9e:b8:39:c8:62:72:68: 82:98:03:c6:76:98:9e:7f:ed:a3:fe:63:38:aa:34:02:b9:4f: 93:c0:8e:10:db:1a:ea:ab:5d:63:b7:ac:fe:9d:c8:95:ae:6f: 9a:f6:fe:7b:c3:23:43:00:2e:22:4d:9d:07:64:b3:df:f6:b3: 45:5e:58:75:1c:15:27:90:8e:62:ac:6b:ba:75:c3:ac:bd:6a: bd:ea:c7:0a:33:d0:06:31:02:8c:95:83:32:12:59:6c:fa:71: 68:81:b3:de:84:33:d4:54:b3:d1:8e:34:43:43:76:9c:29:55: 7c:4e:94:14:3b:45:bf:15:b2:8c:da:87:8c:e3:02:00:69:f5: 6f:1d:4b:74:08:02:0d:e7:ae:e0:cd:82:2a:16:3d:dc:2d:4a: 2c:dd:c9:80:9d:84:81:0f:b6:37:d5:5c:3d:aa:43:e3:45:54: 75:d0:8f:39:19:ea:f5:d8:e6:9b:5b:a4:a4:f6:11:2d:c2:db: d2:d9:49:f3:ab:b6:cc:89:d6:56:94:31:d3:b5:d1:49:b8:da: 19:26:d9:07:27:aa:35:84:0a:99:d9:07:3e:66:fd:a1:ad:15: fb:d9:61:1c:66:58:ca:11:ba:62:f4:8f:6c:fd:35:35:51:92: 01:88:74:6f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcdPucAyrpnc5FOlx95xhOzr37VowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYzMDA5NTUwMFoX DTI2MDYyOTEwMDAwMFowMzExMC8GA1UEAxMoMDRFMUFGNEFFRjE1M0FGN0IxOEMy MjlFMzhDNjA3NEVGQTNGRDM2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOioRuBgFRBsshvBWG/TVkORnorHyeYA8imUa0FptQP9dLRjwKlOa/ioICQT bxb48f41mHJ0uA492uHlUqc2rO5tzfrg6vZpMchK8aNoruvHafJjCyaaSxDnF+uw Z4BnpdhLEbCcd1xS8R7jayk3Z2O4hvgBWp7zceLLgo14S5ZwNRIHS27P5qGWKBPU 7qz0mU6pPdmLMSnqFUWO+1+3WacwP/7xVnXTjdZw76/yR1fEMaVARMtEfBiy0LH5 npe5aKb/7o6a0AK2EdxUQCTcbSPXucS94IzYMuLY8bt+xR7wXcyPBvR0rti5PKx9 80UxyDkvoAW2jelta9ridbbd/pMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQE4a9K 7xU697GMIp44xgdO+j/TazAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM3Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGe7ajANBgkqhkiG9w0BAQsFAAOCAQEAI78rLTutvdqA4N6euDnI YnJogpgDxnaYnn/to/5jOKo0ArlPk8COENsa6qtdY7es/p3Ila5vmvb+e8MjQwAu Ik2dB2Sz3/azRV5YdRwVJ5COYqxrunXDrL1qverHCjPQBjECjJWDMhJZbPpxaIGz 3oQz1FSz0Y40Q0N2nClVfE6UFDtFvxWyjNqHjOMCAGn1bx1LdAgCDeeu4M2CKhY9 3C1KLN3JgJ2EgQ+2N9VcPapD40VUddCPORnq9djmm1ukpPYRLcLb0tlJ86u2zInW VpQx07XRSbjaGSbZByeqNYQKmdkHPmb9oa0V+9lhHGZYyhG6YvSPbP01NVGSAYh0 bw== -----END CERTIFICATE-----Generated at Mon Jul 21 00:06:59 2025 by rpki-client