$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134412.roa File: AS134412.roa (raw, json) Hash identifier: rhsUOiI9yo6+lxwAce4CBaYkv8B7PZTiUdpK1nQ0UOo= Subject key identifier: 1B:DD:DA:00:F7:D4:AB:3A:C1:CC:BE:48:1B:77:19:0C:35:1C:B2:82 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5F29A0CD7EFB8E3255FDC8AEBB431C090C3EA2EA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134412.roa Signing time: Mon 08 Sep 2025 02:50:39 +0000 ROA not before: Mon 08 Sep 2025 02:45:39 +0000 ROA not after: Mon 07 Sep 2026 02:50:39 +0000 asID: 134412 IP address blocks: 2001:df5:e740::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:29:a0:cd:7e:fb:8e:32:55:fd:c8:ae:bb:43:1c:09:0c:3e:a2:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 8 02:45:39 2025 GMT Not After : Sep 7 02:50:39 2026 GMT Subject: CN=1BDDDA00F7D4AB3AC1CCBE481B77190C351CB282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:63:e7:0a:1e:5d:42:29:6b:99:96:49:fe:9b: 6a:c6:d6:bc:ab:ad:0b:1c:da:f0:99:60:85:d3:39: 93:52:94:3d:d6:b0:d7:1e:00:e6:77:ee:43:0a:2a: 97:7d:a7:e6:27:89:09:3c:2e:17:63:0e:c9:3d:91: ef:cf:bb:91:b4:07:34:99:19:e0:4d:38:24:ef:2d: cb:fe:72:3f:f8:b3:04:b8:15:fb:88:15:3e:dc:dc: cb:32:2b:67:a6:80:a3:2f:84:12:de:ff:e4:79:76: 45:90:e4:20:c0:36:d9:79:49:22:7f:77:3d:7f:78: a7:35:7f:ee:e5:e1:be:03:1d:fc:8f:e8:e8:44:3c: 91:72:b4:05:e3:cf:4b:f1:92:6d:da:1b:87:b4:5c: 84:6a:a9:d2:0c:96:aa:7b:dc:f8:8c:4a:fd:46:2b: fa:d8:71:41:bb:9a:db:b1:f0:f9:df:f6:58:38:8c: e0:2b:8e:95:df:b7:59:bd:ed:43:5b:45:43:75:a3: e7:e1:e7:c5:9a:38:fd:3f:92:1b:c5:3a:7e:09:6a: 9c:37:57:05:b9:bd:92:5b:d7:9b:ce:95:fd:74:d5: cf:d7:3f:39:47:89:f0:78:b5:3d:76:30:f0:93:39: ae:06:e4:19:4a:5d:27:55:a4:83:50:03:ae:e8:02: e6:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:DD:DA:00:F7:D4:AB:3A:C1:CC:BE:48:1B:77:19:0C:35:1C:B2:82 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134412.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:e740::/48 Signature Algorithm: sha256WithRSAEncryption 2e:72:e9:c6:25:a1:d9:ae:ea:ae:39:34:94:22:04:73:98:17: 2a:71:af:87:41:13:f2:0e:59:b1:ab:3b:df:db:b7:7d:59:df: 19:78:63:ad:e6:7c:ba:75:7b:57:82:2f:e6:7f:95:51:93:d4: 46:86:e6:5b:fc:84:1b:92:22:52:74:b5:81:25:43:08:dc:af: 95:7b:f5:34:fd:83:63:79:eb:99:03:f0:c1:4a:bf:d5:a5:bc: e5:7e:ee:c8:f0:ac:7d:83:4c:99:3d:87:4f:af:53:53:77:1d: 0d:c7:35:b1:f5:23:9f:9b:e6:8a:06:ec:54:5b:0f:f6:ee:ce: f0:e5:4f:b8:ae:1b:14:94:67:1a:f8:02:3a:d4:cd:81:7c:d5: 50:d2:bf:55:f4:4b:f8:0b:cd:ec:5a:d1:90:9c:01:6d:eb:cb: 9a:e1:d4:01:10:db:40:5a:b0:3b:8d:6c:f8:35:e1:0c:a1:40: 97:40:0f:b6:36:23:1f:87:af:4d:99:e8:62:6f:75:7b:90:25: 5e:17:d0:30:93:db:7c:03:59:58:12:d5:f6:6a:2e:9e:ff:87: c2:e9:27:b3:5a:74:39:33:c5:78:1b:c4:eb:50:1c:a1:96:de: 74:ed:58:36:c9:49:35:4d:3b:5c:29:ac:42:34:31:40:fc:ab: 72:3a:da:15 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUXymgzX77jjJV/ciuu0McCQw+ouowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwODAyNDUzOVoX DTI2MDkwNzAyNTAzOVowMzExMC8GA1UEAxMoMUJERERBMDBGN0Q0QUIzQUMxQ0NC RTQ4MUI3NzE5MEMzNTFDQjI4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM5j5woeXUIpa5mWSf6basbWvKutCxza8JlghdM5k1KUPdaw1x4A5nfuQwoq l32n5ieJCTwuF2MOyT2R78+7kbQHNJkZ4E04JO8ty/5yP/izBLgV+4gVPtzcyzIr Z6aAoy+EEt7/5Hl2RZDkIMA22XlJIn93PX94pzV/7uXhvgMd/I/o6EQ8kXK0BePP S/GSbdobh7RchGqp0gyWqnvc+IxK/UYr+thxQbua27Hw+d/2WDiM4CuOld+3Wb3t Q1tFQ3Wj5+HnxZo4/T+SG8U6fglqnDdXBbm9klvXm86V/XTVz9c/OUeJ8Hi1PXYw 8JM5rgbkGUpdJ1Wkg1ADrugC5g0CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQb3doA 99SrOsHMvkgbdxkMNRyygjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNDQxMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfXnQDANBgkqhkiG9w0BAQsFAAOCAQEALnLpxiWh2a7qrjk0 lCIEc5gXKnGvh0ET8g5Zsas739u3fVnfGXhjreZ8unV7V4Iv5n+VUZPURobmW/yE G5IiUnS1gSVDCNyvlXv1NP2DY3nrmQPwwUq/1aW85X7uyPCsfYNMmT2HT69TU3cd Dcc1sfUjn5vmigbsVFsP9u7O8OVPuK4bFJRnGvgCOtTNgXzVUNK/VfRL+AvN7FrR kJwBbevLmuHUARDbQFqwO41s+DXhDKFAl0APtjYjH4evTZnoYm91e5AlXhfQMJPb fANZWBLV9mounv+Hwukns1p0OTPFeBvE61AcoZbedO1YNslJNU07XCmsQjQxQPyr cjraFQ== -----END CERTIFICATE-----Generated at Sun Oct 19 12:51:26 2025 by rpki-client