$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131769.roa File: AS131769.roa (raw, json) Hash identifier: h6vHjkNaqxr5iw7Lniusj1pnDKJv3aIs9LI/E/J8kjk= Subject key identifier: 21:82:29:F6:EE:45:28:E8:AF:44:D6:FF:E3:22:65:DC:33:8B:97:37 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0CB5736DA372B43172028B5ADBCC91A500459A5E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131769.roa Signing time: Mon 24 Mar 2025 08:00:00 +0000 ROA not before: Mon 24 Mar 2025 07:55:00 +0000 ROA not after: Mon 23 Mar 2026 08:00:00 +0000 asID: 131769 IP address blocks: 103.16.132.0/23 maxlen: 24 103.211.160.0/24 maxlen: 24 103.227.148.0/23 maxlen: 24 203.18.39.0/24 maxlen: 24 203.153.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:b5:73:6d:a3:72:b4:31:72:02:8b:5a:db:cc:91:a5:00:45:9a:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 24 07:55:00 2025 GMT Not After : Mar 23 08:00:00 2026 GMT Subject: CN=218229F6EE4528E8AF44D6FFE32265DC338B9737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6e:5e:b7:11:a7:93:c7:5b:3b:ae:4a:9f:d2: df:12:66:a3:72:cc:99:55:0c:d8:d9:2d:23:a3:e2: 99:0a:22:66:d0:25:01:b2:8d:e5:e7:66:ae:0c:b3: b7:cf:f5:3f:3b:0f:74:eb:41:67:35:ee:d8:7d:73: cb:30:57:f7:a6:81:68:d5:eb:53:d1:53:62:68:4e: d1:7c:07:8e:89:b5:53:bb:0c:51:6d:a4:fd:d8:1a: 41:ce:2e:95:a8:87:ec:15:83:cd:51:1f:0d:1a:03: 35:3b:7f:f2:c7:13:3e:ab:b8:b0:f5:65:25:79:b5: 5b:c9:17:b2:20:e4:ff:0e:03:c2:0c:a9:c7:f9:98: c7:3f:4b:13:14:e4:0c:1b:2b:45:db:52:ff:1d:3d: 3f:ad:1d:e0:03:c0:82:d3:e5:76:fb:4b:33:90:f4: 12:94:b1:9e:c6:00:05:46:16:b5:00:06:74:6d:ed: d6:1a:f0:6a:97:22:da:fe:10:40:c8:34:77:47:85: a5:b0:a7:65:21:06:2c:61:27:7d:0a:a9:f5:49:13: e1:e9:be:4e:cb:e8:ee:b9:0a:31:16:38:93:c3:ca: 93:1e:06:46:e5:e7:d3:00:f0:7b:a0:5c:fe:32:13: 01:63:40:f8:b3:97:5e:48:ef:a8:76:25:eb:04:c7: 72:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:82:29:F6:EE:45:28:E8:AF:44:D6:FF:E3:22:65:DC:33:8B:97:37 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131769.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.132.0/23 103.211.160.0/24 103.227.148.0/23 203.18.39.0/24 203.153.20.0/22 Signature Algorithm: sha256WithRSAEncryption 62:44:8d:89:f8:78:90:b2:aa:3b:05:cf:e9:47:03:50:15:ec: 04:d3:e4:62:77:f0:26:0a:7a:cd:71:ea:41:4e:f9:56:42:5f: b9:35:85:fb:db:5c:6d:0a:f7:e0:e4:93:40:4e:b0:34:35:5c: d2:4c:e9:11:c3:49:4a:2e:d6:95:1e:d4:90:23:f2:d4:c6:94: 03:42:3c:8b:54:f3:64:41:aa:79:06:74:5d:b4:51:30:c5:20: 3f:97:64:3b:ac:92:8d:db:c9:3d:aa:fc:a0:4b:6e:00:40:00: 5f:13:18:69:b2:42:15:44:da:ee:d9:b8:aa:8e:e9:76:9e:b3: 20:8a:0e:90:6e:15:0c:2c:cf:cb:6f:2a:a1:f7:a0:bf:17:04: d8:71:e0:85:73:9e:91:90:e4:9e:f6:f4:f1:56:ca:ec:25:74: 9e:76:e5:f9:88:97:ad:43:f2:57:ac:42:f8:6e:60:82:a4:bb: 47:34:60:4f:f9:fc:d5:1b:a6:0c:22:ad:a0:21:a7:85:e6:a5: 7d:2c:68:3c:a7:56:df:9d:c2:cc:19:8e:7a:e2:c7:1b:72:c8: fa:9a:39:ce:a3:c0:fd:4d:d8:e1:06:79:92:df:b1:a7:d2:8f: 2c:d4:35:45:e3:7c:1f:28:3e:61:98:1d:48:33:87:4e:8d:09: 35:09:04:70 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUDLVzbaNytDFyAota28yRpQBFml4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMyNDA3NTUwMFoX DTI2MDMyMzA4MDAwMFowMzExMC8GA1UEAxMoMjE4MjI5RjZFRTQ1MjhFOEFGNDRE NkZGRTMyMjY1REMzMzhCOTczNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALRuXrcRp5PHWzuuSp/S3xJmo3LMmVUM2NktI6PimQoiZtAlAbKN5edmrgyz t8/1PzsPdOtBZzXu2H1zyzBX96aBaNXrU9FTYmhO0XwHjom1U7sMUW2k/dgaQc4u laiH7BWDzVEfDRoDNTt/8scTPqu4sPVlJXm1W8kXsiDk/w4Dwgypx/mYxz9LExTk DBsrRdtS/x09P60d4APAgtPldvtLM5D0EpSxnsYABUYWtQAGdG3t1hrwapci2v4Q QMg0d0eFpbCnZSEGLGEnfQqp9UkT4em+Tsvo7rkKMRY4k8PKkx4GRuXn0wDwe6Bc /jITAWNA+LOXXkjvqHYl6wTHchcCAwEAAaOCAegwggHkMB0GA1UdDgQWBBQhgin2 7kUo6K9E1v/jImXcM4uXNzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTc2OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3BggrBgEFBQcBBwEB/wQoMCYw JAQCAAEwHgMEAWcQhAMEAGfToAMEAWfjlAMEAMsSJwMEAsuZFDANBgkqhkiG9w0B AQsFAAOCAQEAYkSNifh4kLKqOwXP6UcDUBXsBNPkYnfwJgp6zXHqQU75VkJfuTWF +9tcbQr34OSTQE6wNDVc0kzpEcNJSi7WlR7UkCPy1MaUA0I8i1TzZEGqeQZ0XbRR MMUgP5dkO6ySjdvJPar8oEtuAEAAXxMYabJCFUTa7tm4qo7pdp6zIIoOkG4VDCzP y28qofegvxcE2HHghXOekZDknvb08VbK7CV0nnbl+YiXrUPyV6xC+G5ggqS7RzRg T/n81RumDCKtoCGnhealfSxoPKdW353CzBmOeuLHG3LI+po5zqPA/U3Y4QZ5kt+x p9KPLNQ1ReN8Hyg+YZgdSDOHTo0JNQkEcA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:19 2025 by rpki-client