$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134655.roa File: AS134655.roa (raw, json) Hash identifier: O78QuvJJoREfyjsWuFVZmCY8ZRc50koyMeJ6RBTGBWI= Subject key identifier: 14:D0:46:70:9D:7A:50:F3:A3:B6:C2:EB:DF:61:20:87:69:69:E9:00 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7CD6FD873C4F23D53924A26F934A03999E9712E4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134655.roa Signing time: Mon 13 Oct 2025 03:37:19 +0000 ROA not before: Mon 13 Oct 2025 03:32:19 +0000 ROA not after: Mon 12 Oct 2026 03:37:19 +0000 asID: 134655 IP address blocks: 103.131.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d6:fd:87:3c:4f:23:d5:39:24:a2:6f:93:4a:03:99:9e:97:12:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 13 03:32:19 2025 GMT Not After : Oct 12 03:37:19 2026 GMT Subject: CN=14D046709D7A50F3A3B6C2EBDF6120876969E900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c5:b0:01:fc:7e:db:42:fa:1c:bb:28:6a:bc: d2:8d:68:e6:6b:db:41:58:5f:b1:b4:91:84:f0:e0: 56:3a:b6:cb:51:42:95:3d:3a:c4:08:2a:af:7d:fb: cd:5a:5e:91:c6:99:a1:1f:ea:75:4a:c4:24:fd:fe: cf:ef:df:0a:51:87:37:f5:52:f1:25:10:14:e1:64: 39:94:d2:6e:13:01:2c:54:c6:3e:40:1c:b5:14:ae: f5:74:6a:52:57:f7:74:2f:aa:8c:c7:77:30:cf:77: 89:0a:55:5c:09:f3:4f:68:ae:09:17:8e:c7:c6:54: 11:bc:57:05:c4:54:f4:ba:24:18:73:f4:f9:d3:4b: 3e:41:67:a1:47:de:47:ea:88:8a:bd:5a:9e:80:da: c6:a5:00:3d:c5:34:be:50:d4:c0:d5:ac:f6:a7:75: 70:1b:ab:26:34:4b:0f:84:98:de:ae:de:ff:ed:60: 55:df:96:e4:9d:85:0a:87:0e:e4:4e:37:f3:5d:0b: ae:85:14:e9:b4:36:5b:a7:87:a9:49:4d:82:7d:1c: 51:89:12:fa:f0:cf:4a:f3:81:cd:63:9f:b0:1e:90: a5:5d:59:49:45:2d:ff:f3:77:d0:09:03:4c:7c:19: a4:0d:fe:25:cf:08:01:12:46:ff:6e:3b:33:f6:e7: cd:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D0:46:70:9D:7A:50:F3:A3:B6:C2:EB:DF:61:20:87:69:69:E9:00 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134655.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.245.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:dd:38:ae:40:b5:2a:f7:9a:da:fc:90:89:df:ec:1d:11:ac: f3:a7:6f:b3:ba:57:72:74:19:e0:72:43:ca:29:cc:7e:68:f4: 64:fd:20:7f:c0:c9:45:a0:41:95:a3:43:dd:7c:9b:3f:fe:76: be:c2:91:28:96:f2:6e:60:e1:ce:49:78:5c:d2:e2:af:a6:bc: bb:4f:04:a4:ff:1b:d4:06:97:67:7e:60:cd:48:37:cb:34:d9: 6c:55:70:96:44:e5:12:18:6a:cf:4c:2e:66:e7:4d:bf:73:5f: 45:5e:f7:eb:03:de:a0:5f:da:09:95:98:64:54:87:e0:79:fb: 6b:fb:1b:e1:fd:31:53:f9:a5:6e:2e:c9:55:7c:b1:ba:7c:75: 60:0d:75:c2:58:f7:a3:26:7b:6d:57:98:bd:f8:57:05:25:9a: f6:17:d1:e1:04:f0:1e:de:8a:27:3c:5a:af:13:50:fb:bf:6a: a5:88:85:91:dd:b0:7e:3e:2c:73:70:a8:67:ef:86:ad:b2:88: 62:58:9b:b5:84:4a:d5:2d:00:66:c9:ca:76:3f:07:6d:d1:c9: ae:d7:b3:d9:b4:a4:b3:60:ce:8d:42:f2:e5:c8:bd:25:c7:9d: a6:d0:bb:37:2f:3b:ef:33:08:16:55:02:56:5e:4c:3c:74:af: 8b:c9:95:48 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfNb9hzxPI9U5JKJvk0oDmZ6XEuQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAxMzAzMzIxOVoX DTI2MTAxMjAzMzcxOVowMzExMC8GA1UEAxMoMTREMDQ2NzA5RDdBNTBGM0EzQjZD MkVCREY2MTIwODc2OTY5RTkwMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALzFsAH8fttC+hy7KGq80o1o5mvbQVhfsbSRhPDgVjq2y1FClT06xAgqr337 zVpekcaZoR/qdUrEJP3+z+/fClGHN/VS8SUQFOFkOZTSbhMBLFTGPkActRSu9XRq Ulf3dC+qjMd3MM93iQpVXAnzT2iuCReOx8ZUEbxXBcRU9LokGHP0+dNLPkFnoUfe R+qIir1anoDaxqUAPcU0vlDUwNWs9qd1cBurJjRLD4SY3q7e/+1gVd+W5J2FCocO 5E43810LroUU6bQ2W6eHqUlNgn0cUYkS+vDPSvOBzWOfsB6QpV1ZSUUt//N30AkD THwZpA3+Jc8IARJG/247M/bnzZcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQU0EZw nXpQ86O2wuvfYSCHaWnpADAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNDY1NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeD9TANBgkqhkiG9w0BAQsFAAOCAQEAet04rkC1Kvea2vyQid/s HRGs86dvs7pXcnQZ4HJDyinMfmj0ZP0gf8DJRaBBlaND3XybP/52vsKRKJbybmDh zkl4XNLir6a8u08EpP8b1AaXZ35gzUg3yzTZbFVwlkTlEhhqz0wuZudNv3NfRV73 6wPeoF/aCZWYZFSH4Hn7a/sb4f0xU/mlbi7JVXyxunx1YA11wlj3oyZ7bVeYvfhX BSWa9hfR4QTwHt6KJzxarxNQ+79qpYiFkd2wfj4sc3CoZ++GrbKIYlibtYRK1S0A ZsnKdj8HbdHJrtez2bSks2DOjULy5ci9JcedptC7Ny877zMIFlUCVl5MPHSvi8mV SA== -----END CERTIFICATE-----Generated at Sun Oct 19 12:51:25 2025 by rpki-client