$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131775.roa File: AS131775.roa (raw, json) Hash identifier: EkaHQoB9bfgrwj9F9Hf2bYyCHD4x6IbW11LDa57ahsM= Subject key identifier: 3D:F8:42:BE:04:05:F8:6A:C3:13:0B:DE:33:11:C8:22:D5:87:C8:50 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 29FB76A4FE64FBC64E94D61226EE8542DF0F3E80 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131775.roa Signing time: Sun 01 Jun 2025 08:14:30 +0000 ROA not before: Sun 01 Jun 2025 08:09:30 +0000 ROA not after: Sun 31 May 2026 08:14:30 +0000 asID: 131775 IP address blocks: 163.227.124.0/24 maxlen: 24 2406:f040::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:fb:76:a4:fe:64:fb:c6:4e:94:d6:12:26:ee:85:42:df:0f:3e:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 1 08:09:30 2025 GMT Not After : May 31 08:14:30 2026 GMT Subject: CN=3DF842BE0405F86AC3130BDE3311C822D587C850 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:65:65:93:5e:02:4e:c4:1f:0c:6c:63:d6:82: 2e:a0:bd:87:60:a1:09:54:8b:3c:14:c4:d7:36:5c: 53:20:a0:e7:bb:9f:27:a2:1a:9b:7d:4c:2b:40:cb: eb:13:7e:22:26:3f:51:dd:6e:10:56:dd:87:9f:38: 74:67:4e:f9:8b:9f:4f:1f:65:e9:da:6f:66:66:5a: a9:48:83:bb:e0:71:1d:2b:d0:a4:d4:35:9b:0b:05: f3:2d:75:7f:02:09:8d:b9:47:c0:bc:ac:c6:c2:d5: 76:fe:27:a1:3b:00:59:a2:30:d9:1e:8d:30:7b:57: 0f:37:96:fd:3f:62:9f:4f:8c:c5:0b:f8:94:97:2d: 9b:ac:ed:92:c6:6e:d5:d7:b0:9a:6c:f3:83:49:1b: 6e:8a:2b:7e:c6:d6:a3:72:9a:98:9d:50:c6:2b:5a: 2b:87:23:6b:a5:2e:2b:4e:d5:4e:35:b5:b8:cb:8e: 4e:27:5c:66:90:8d:e9:8a:52:6c:90:b9:0a:b9:31: c4:14:b8:62:f5:09:c9:7e:b2:66:78:6e:f7:bc:8d: 59:ae:b0:56:fc:c9:0e:a1:1d:e6:21:0e:9d:5c:60: 2d:d3:49:74:84:53:49:db:c8:47:f2:a3:8b:f7:71: df:44:77:2d:fe:fc:54:6a:a7:e6:13:a6:70:79:58: 4c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F8:42:BE:04:05:F8:6A:C3:13:0B:DE:33:11:C8:22:D5:87:C8:50 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131775.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.124.0/24 IPv6: 2406:f040::/32 Signature Algorithm: sha256WithRSAEncryption 54:3b:d7:ec:f5:48:77:62:86:4e:49:82:1c:90:aa:e7:93:7f: 34:0a:37:77:d3:f1:bd:66:93:5f:a6:1e:07:d2:35:41:21:d0: 91:4b:d6:95:d2:d9:55:43:24:79:90:a5:c0:3d:42:bc:d7:8d: 3a:c5:42:d5:e8:fd:a6:0b:ef:bc:05:5f:7b:f6:d4:98:40:03: d8:b3:ad:9f:e0:29:06:a7:28:b8:3e:1a:dd:5d:ed:65:bf:a3: 70:e6:8a:a1:8e:fc:40:30:22:a3:8c:bc:4d:46:21:1e:41:ce: e1:2d:57:fd:ca:50:09:52:35:4c:86:d4:d5:4e:a8:0e:8f:a8: 01:41:eb:89:55:90:06:b5:a5:ec:bf:d0:f0:24:9e:ce:e0:46: a6:c3:14:96:e1:99:50:bf:3b:0d:e9:e9:22:8b:1e:a1:8b:d5: c5:9c:7c:b1:41:64:5d:81:ff:7b:9c:89:09:b9:7c:b9:09:33: 2b:e6:0b:cc:63:cc:45:59:b3:18:c0:b8:17:58:6b:28:3c:50: 00:55:e5:d9:c3:96:0c:9b:38:4b:f9:5e:ec:55:3b:c5:a9:0b: b3:70:46:0f:fe:33:94:bc:60:bc:24:dd:fc:db:da:97:46:d2: c3:99:3e:b6:8b:53:3b:6d:1f:35:ac:75:ef:74:5f:3b:31:67: cb:8b:ae:60 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUKft2pP5k+8ZOlNYSJu6FQt8PPoAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMTA4MDkzMFoX DTI2MDUzMTA4MTQzMFowMzExMC8GA1UEAxMoM0RGODQyQkUwNDA1Rjg2QUMzMTMw QkRFMzMxMUM4MjJENTg3Qzg1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN9lZZNeAk7EHwxsY9aCLqC9h2ChCVSLPBTE1zZcUyCg57ufJ6Iam31MK0DL 6xN+IiY/Ud1uEFbdh584dGdO+YufTx9l6dpvZmZaqUiDu+BxHSvQpNQ1mwsF8y11 fwIJjblHwLysxsLVdv4noTsAWaIw2R6NMHtXDzeW/T9in0+MxQv4lJctm6ztksZu 1dewmmzzg0kbboorfsbWo3KamJ1QxitaK4cja6UuK07VTjW1uMuOTidcZpCN6YpS bJC5CrkxxBS4YvUJyX6yZnhu97yNWa6wVvzJDqEd5iEOnVxgLdNJdIRTSdvIR/Kj i/dx30R3Lf78VGqn5hOmcHlYTEECAwEAAaOCAd8wggHbMB0GA1UdDgQWBBQ9+EK+ BAX4asMTC94zEcgi1YfIUDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTc3NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAKPjfDANBAIAAjAHAwUAJAbwQDANBgkqhkiG9w0BAQsFAAOCAQEA VDvX7PVId2KGTkmCHJCq55N/NAo3d9PxvWaTX6YeB9I1QSHQkUvWldLZVUMkeZCl wD1CvNeNOsVC1ej9pgvvvAVfe/bUmEAD2LOtn+ApBqcouD4a3V3tZb+jcOaKoY78 QDAio4y8TUYhHkHO4S1X/cpQCVI1TIbU1U6oDo+oAUHriVWQBrWl7L/Q8CSezuBG psMUluGZUL87DenpIoseoYvVxZx8sUFkXYH/e5yJCbl8uQkzK+YLzGPMRVmzGMC4 F1hrKDxQAFXl2cOWDJs4S/le7FU7xakLs3BGD/4zlLxgvCTd/Nval0bSw5k+totT O20fNax173RfOzFny4uuYA== -----END CERTIFICATE-----Generated at Tue Jun 3 23:09:26 2025 by rpki-client