$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS134412.roa File: AS134412.roa (raw, json) Hash identifier: ieLmMuaFCMtCn4RuEn23jBJSrmSIhvNY9r9NEw3/9e4= Subject key identifier: 37:77:27:05:41:F8:98:9E:B2:52:60:B7:EB:0E:42:60:77:BA:16:1F Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 3EE0190057CFFD3AD62CFE9F5288C03FB0B34311 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS134412.roa Signing time: Mon 08 Sep 2025 02:49:50 +0000 ROA not before: Mon 08 Sep 2025 02:44:50 +0000 ROA not after: Mon 07 Sep 2026 02:49:50 +0000 asID: 134412 IP address blocks: 165.101.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e0:19:00:57:cf:fd:3a:d6:2c:fe:9f:52:88:c0:3f:b0:b3:43:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 8 02:44:50 2025 GMT Not After : Sep 7 02:49:50 2026 GMT Subject: CN=3777270541F8989EB25260B7EB0E426077BA161F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:06:51:a6:8f:58:91:d7:ba:9c:0c:e5:4e:1b: 1b:e6:c3:7c:4e:e3:8f:fb:ba:da:b2:a2:8d:2b:82: 8d:b0:0c:84:8d:0f:05:50:e1:70:3d:1c:c1:c0:c1: 6e:9f:c3:20:ef:9d:75:b6:cc:e2:fe:ac:c4:65:e3: 29:34:4f:6c:0e:8f:87:90:9a:a0:85:7e:ff:f4:56: 13:1f:1b:9e:b1:b3:0d:21:85:de:0c:36:59:c5:5d: 1d:f1:e8:07:e0:08:ad:b2:b1:f3:34:43:c2:1c:f7: a6:05:b9:00:07:3f:6b:08:be:28:67:f7:f3:d1:0b: d8:e6:85:7f:6c:8f:02:9c:42:f1:8a:cd:fe:df:d1: 81:5d:98:ec:b4:3b:35:4f:9c:ac:5e:5f:df:ce:82: 7a:cc:05:c5:cf:e9:bf:02:a7:79:50:3b:62:db:3c: 3f:a0:79:66:76:80:f2:cc:30:43:67:8a:22:d8:d3: 23:63:98:fa:22:ea:a4:b7:37:0b:f0:bb:1c:22:9e: d2:d5:4f:63:1e:fe:2a:8d:e0:14:ae:08:9a:7d:19: 59:d5:54:e1:38:c0:98:34:0c:68:ec:22:34:16:fa: 9c:61:97:48:60:ea:b5:1c:f1:dd:84:1a:07:04:04: 91:85:2c:e7:b5:bc:a6:e9:31:3e:19:85:e3:fe:92: be:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:77:27:05:41:F8:98:9E:B2:52:60:B7:EB:0E:42:60:77:BA:16:1F X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS134412.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.247.0/24 Signature Algorithm: sha256WithRSAEncryption 75:8a:67:36:15:6f:ef:3a:7c:bd:d0:84:41:92:05:ea:e6:e8: 16:e6:b4:26:57:6d:34:9d:d0:5b:22:bc:a9:cd:c3:4c:34:80: c7:b9:b9:00:86:ac:48:ef:c1:8a:fb:a3:8d:14:c2:e1:88:ea: 64:d5:ef:56:ef:c7:86:6a:7e:11:de:bb:43:57:f2:9e:31:b2: b5:08:7c:3d:78:5f:73:42:79:02:fa:8d:73:c0:cd:fd:51:4d: 31:ff:8f:e2:e8:77:c9:ca:dc:20:ca:2b:5b:3f:7c:c5:7e:aa: 9a:a7:fb:32:ad:bb:de:4e:8e:67:d4:07:9e:11:12:6b:47:eb: 77:03:6b:23:3f:3b:5e:3e:29:c9:30:e8:40:cb:2d:14:d2:6a: 13:cc:83:5d:83:7a:88:c0:cc:53:3e:23:7c:d4:7b:5a:53:12: fb:81:d1:84:92:32:29:46:6a:05:70:a1:69:18:9e:ef:0b:67: c2:fb:15:36:89:8a:87:49:7c:92:0e:7f:20:8e:a3:26:72:81: 65:b0:37:b4:cb:cd:22:26:2a:03:ce:2b:5b:fa:51:39:d4:36: 9e:49:a3:b7:9d:e2:70:8b:c3:d7:84:2b:af:3d:89:80:4d:0f: 77:75:14:c1:d6:36:b5:e7:9c:c0:62:8b:a9:91:6f:2e:22:c1: 94:3c:08:a1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPuAZAFfP/TrWLP6fUojAP7CzQxEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDkwODAyNDQ1MFoX DTI2MDkwNzAyNDk1MFowMzExMC8GA1UEAxMoMzc3NzI3MDU0MUY4OTg5RUIyNTI2 MEI3RUIwRTQyNjA3N0JBMTYxRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALUGUaaPWJHXupwM5U4bG+bDfE7jj/u62rKijSuCjbAMhI0PBVDhcD0cwcDB bp/DIO+ddbbM4v6sxGXjKTRPbA6Ph5CaoIV+//RWEx8bnrGzDSGF3gw2WcVdHfHo B+AIrbKx8zRDwhz3pgW5AAc/awi+KGf389EL2OaFf2yPApxC8YrN/t/RgV2Y7LQ7 NU+crF5f386CeswFxc/pvwKneVA7Yts8P6B5ZnaA8swwQ2eKItjTI2OY+iLqpLc3 C/C7HCKe0tVPYx7+Ko3gFK4Imn0ZWdVU4TjAmDQMaOwiNBb6nGGXSGDqtRzx3YQa BwQEkYUs57W8pukxPhmF4/6Svp8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ3dycF QfiYnrJSYLfrDkJgd7oWHzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzNDQxMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKVl9zANBgkqhkiG9w0BAQsFAAOCAQEAdYpnNhVv7zp8vdCEQZIF 6uboFua0JldtNJ3QWyK8qc3DTDSAx7m5AIasSO/BivujjRTC4YjqZNXvVu/Hhmp+ Ed67Q1fynjGytQh8PXhfc0J5AvqNc8DN/VFNMf+P4uh3ycrcIMorWz98xX6qmqf7 Mq273k6OZ9QHnhESa0frdwNrIz87Xj4pyTDoQMstFNJqE8yDXYN6iMDMUz4jfNR7 WlMS+4HRhJIyKUZqBXChaRie7wtnwvsVNomKh0l8kg5/II6jJnKBZbA3tMvNIiYq A84rW/pROdQ2nkmjt53icIvD14Qrrz2JgE0Pd3UUwdY2teecwGKLqZFvLiLBlDwI oQ== -----END CERTIFICATE-----Generated at Sun Oct 19 19:51:24 2025 by rpki-client