$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS131769.roa File: AS131769.roa (raw, json) Hash identifier: QWl2sAXTRdG+O0hZJr4lSz8qG4jQIy24Lsztx1xkAx0= Subject key identifier: E7:95:6A:55:28:65:0A:C6:CE:8D:AB:AA:2B:1C:F4:67:68:86:EE:58 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 3E2E5B145DD7952FD624F7326970FEE03D72F73D Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS131769.roa Signing time: Mon 26 May 2025 07:58:19 +0000 ROA not before: Mon 26 May 2025 07:53:19 +0000 ROA not after: Mon 25 May 2026 07:58:19 +0000 asID: 131769 IP address blocks: 160.22.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 01:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:2e:5b:14:5d:d7:95:2f:d6:24:f7:32:69:70:fe:e0:3d:72:f7:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 26 07:53:19 2025 GMT Not After : May 25 07:58:19 2026 GMT Subject: CN=E7956A5528650AC6CE8DABAA2B1CF4676886EE58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:57:ff:19:ab:86:cc:c9:5a:05:5d:a4:c5:9d: 0d:ae:77:37:ae:77:84:11:d7:24:02:7f:81:1b:6d: d8:61:e9:83:8e:f8:96:23:75:22:a1:38:b1:16:aa: 31:f1:57:b6:b7:38:59:75:db:dc:a8:1d:29:44:e1: 6c:96:aa:99:2b:cf:78:67:03:77:08:19:7a:fb:44: 84:00:af:22:70:fb:1d:ab:af:c7:f6:83:5c:74:17: 6f:c5:0b:04:c2:12:10:02:03:36:60:b3:a5:d1:88: ff:67:02:6e:6d:ab:5d:92:7f:5c:8b:70:18:83:2b: 85:97:79:c0:85:37:84:b9:24:cb:a9:98:25:a5:a6: 2a:77:b7:fb:1d:f4:c3:e4:6b:78:76:f1:7c:23:2a: 34:36:d0:8e:d6:e2:6e:30:fb:23:eb:95:ec:3d:a8: 19:9f:b8:4c:a0:9c:58:f4:f6:24:76:20:7a:81:2f: 36:66:53:97:44:ae:72:39:24:f6:05:f1:ef:51:e0: 8e:22:94:81:e7:71:de:67:0d:f5:ac:0d:e4:df:d6: 22:e2:c5:eb:41:67:49:b7:9c:19:a2:a3:e4:89:3f: 5e:be:c6:86:fe:77:75:63:a6:7f:57:be:f4:f1:6a: a2:32:24:96:10:dd:d9:86:47:a6:2a:9d:ba:ab:79: ea:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:95:6A:55:28:65:0A:C6:CE:8D:AB:AA:2B:1C:F4:67:68:86:EE:58 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS131769.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.177.0/24 Signature Algorithm: sha256WithRSAEncryption 33:2d:ca:a7:82:fe:d0:58:98:01:e3:94:95:e6:9c:f8:0d:04: 69:68:c5:8b:83:40:52:1b:0b:60:53:27:87:6f:6d:d4:cc:96: 92:10:ad:42:c0:a9:ab:ae:c0:94:7c:4a:4d:19:b9:b4:aa:19: 56:fd:7f:45:4d:78:90:09:58:72:43:48:39:7b:6a:a1:f7:78: 9a:58:e0:46:76:60:80:cd:72:a8:10:cd:86:e1:b1:02:4f:93: df:4a:2b:0b:bc:f6:cb:63:fa:71:58:7e:74:63:07:56:48:37: 97:12:ed:2d:1b:b0:1a:2a:75:d5:e0:b5:46:8f:ed:36:20:7f: f0:ee:02:29:4c:2c:48:f4:9b:00:d4:86:ee:fc:f5:4e:1c:82: 5e:8d:0b:0b:43:86:d1:6c:05:d8:3f:97:ca:dd:72:6f:21:d7: 30:56:6b:10:5e:20:61:a7:8c:5c:49:e5:5b:ef:69:4b:88:80: 62:2b:dd:70:8d:87:0d:65:be:13:cc:77:43:e4:db:48:d5:10: f4:94:32:d0:56:ce:cf:75:ac:ba:35:98:0f:63:ea:42:a3:d3: 6b:44:9d:93:88:d6:8e:7b:df:4d:43:55:10:ce:bd:9b:76:64: 80:b1:9d:63:83:82:9c:ac:2d:4e:93:ad:d0:6a:75:4f:fc:2d: 99:25:bc:15 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPi5bFF3XlS/WJPcyaXD+4D1y9z0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDUyNjA3NTMxOVoX DTI2MDUyNTA3NTgxOVowMzExMC8GA1UEAxMoRTc5NTZBNTUyODY1MEFDNkNFOERB QkFBMkIxQ0Y0Njc2ODg2RUU1ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9X/xmrhszJWgVdpMWdDa53N653hBHXJAJ/gRtt2GHpg474liN1IqE4sRaq MfFXtrc4WXXb3KgdKUThbJaqmSvPeGcDdwgZevtEhACvInD7Hauvx/aDXHQXb8UL BMISEAIDNmCzpdGI/2cCbm2rXZJ/XItwGIMrhZd5wIU3hLkky6mYJaWmKne3+x30 w+RreHbxfCMqNDbQjtbibjD7I+uV7D2oGZ+4TKCcWPT2JHYgeoEvNmZTl0Sucjkk 9gXx71HgjiKUgedx3mcN9awN5N/WIuLF60FnSbecGaKj5Ik/Xr7Ghv53dWOmf1e+ 9PFqojIklhDd2YZHpiqduqt56sUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTnlWpV KGUKxs6Nq6orHPRnaIbuWDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzMTc2OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKAWsTANBgkqhkiG9w0BAQsFAAOCAQEAMy3Kp4L+0FiYAeOUleac +A0EaWjFi4NAUhsLYFMnh29t1MyWkhCtQsCpq67AlHxKTRm5tKoZVv1/RU14kAlY ckNIOXtqofd4mljgRnZggM1yqBDNhuGxAk+T30orC7z2y2P6cVh+dGMHVkg3lxLt LRuwGip11eC1Ro/tNiB/8O4CKUwsSPSbANSG7vz1ThyCXo0LC0OG0WwF2D+Xyt1y byHXMFZrEF4gYaeMXEnlW+9pS4iAYivdcI2HDWW+E8x3Q+TbSNUQ9JQy0FbOz3Ws ujWYD2PqQqPTa0Sdk4jWjnvfTUNVEM69m3ZkgLGdY4OCnKwtTpOt0Gp1T/wtmSW8 FQ== -----END CERTIFICATE-----Generated at Fri Jun 6 04:56:06 2025 by rpki-client