$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136123.roa File: AS136123.roa (raw, json) Hash identifier: xngGgYH7KVZEQ7UQiehCTHozzVguJhqtC79fMdg3iG8= Subject key identifier: C4:2A:1E:C7:7E:0C:10:A4:02:CE:BC:62:E0:F6:F5:F6:2C:EF:28:C6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 14318987D905E6EF7AFCE79C1B100A757F321A7B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136123.roa Signing time: Tue 11 Nov 2025 06:00:23 +0000 ROA not before: Tue 11 Nov 2025 05:55:23 +0000 ROA not after: Tue 10 Nov 2026 06:00:23 +0000 asID: 136123 IP address blocks: 103.95.162.0/24 maxlen: 24 103.98.61.0/24 maxlen: 24 2001:df1:b300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Nov 2025 23:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:31:89:87:d9:05:e6:ef:7a:fc:e7:9c:1b:10:0a:75:7f:32:1a:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:23 2025 GMT Not After : Nov 10 06:00:23 2026 GMT Subject: CN=C42A1EC77E0C10A402CEBC62E0F6F5F62CEF28C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:09:37:70:8a:1e:03:2e:cc:f7:5b:42:e6:67: 98:77:9d:92:7a:11:0e:84:4f:5f:2e:ea:88:78:08: e8:f2:98:a7:b6:ae:4c:2e:3d:32:78:ab:98:34:9f: cc:ae:aa:26:42:78:80:d8:83:dd:91:d3:ad:2f:2e: 3b:d6:a9:33:3a:58:8f:5d:1e:86:48:29:77:d2:48: 11:a4:9a:5f:00:2b:3a:1f:57:d8:b7:bb:3b:21:5c: 70:de:13:62:46:1d:85:c3:31:a7:44:05:58:d1:9d: 7f:14:9b:10:6b:b4:d0:6f:97:f7:d6:20:cd:e6:fc: 5e:27:61:14:1f:75:39:97:84:ee:25:28:b0:a0:07: e4:11:29:50:df:94:44:f2:87:48:c7:2f:35:9e:c5: a6:09:57:8a:57:6f:c7:76:5e:6e:d9:09:ca:22:7f: 98:e9:bd:64:47:0b:ff:74:05:37:73:2c:7a:56:e3: 38:98:6c:38:6a:97:66:b9:22:6e:ef:10:aa:9b:01: 1b:6e:46:17:63:b0:e8:d3:29:e1:34:34:59:f1:8b: 30:91:1c:7b:a4:4e:42:1b:28:bc:c3:9b:3c:01:c7: 49:5b:20:cc:8a:4e:61:b2:8b:be:65:d0:38:8d:97: 69:78:ee:ef:3d:e6:a4:4f:0b:18:39:c7:18:ea:29: f9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:2A:1E:C7:7E:0C:10:A4:02:CE:BC:62:E0:F6:F5:F6:2C:EF:28:C6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136123.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.162.0/24 103.98.61.0/24 IPv6: 2001:df1:b300::/48 Signature Algorithm: sha256WithRSAEncryption 86:5e:3d:d3:a5:ba:a7:0e:f8:90:8a:38:ed:c0:fe:50:51:5f: c3:d6:7e:70:8c:ae:7f:0c:11:28:bc:92:b5:6e:02:c2:15:0a: d0:bb:f1:5d:0f:da:7d:b2:e5:3b:8c:3d:71:25:db:e7:b2:6b: 65:a7:0c:8a:91:bf:3a:cf:ce:f2:c2:69:4b:fd:72:7a:c6:ab: 1d:0d:90:8c:ba:d0:e6:c7:5b:5a:3e:c0:18:16:7f:66:4d:d1: b8:94:67:b0:06:3f:1f:38:e3:99:8d:f0:c3:78:1b:58:d1:b1: 01:16:d8:5f:fd:52:d8:f0:24:00:91:a7:74:fe:3c:94:b2:b6: b3:b0:a3:b0:d6:53:e5:bb:56:8f:60:38:f1:bd:c4:7e:9b:26: 19:59:38:61:4c:b5:c3:71:8c:69:53:fe:5c:a7:9f:3d:3f:4c: 3a:a2:e2:63:6d:c8:6f:42:27:22:63:77:38:85:ab:c1:c6:33: ce:ef:94:d1:08:64:9c:95:ba:3b:57:4f:77:b8:d3:44:ad:96: ff:27:4d:07:4b:ba:3d:5c:76:44:30:db:ae:3a:0b:76:19:1f: 83:ed:7a:2b:e1:4e:e0:1c:9d:5d:59:21:1b:ff:7d:6c:77:5c: 9e:a2:77:14:5a:7a:3d:99:0b:e7:86:dd:93:7c:d6:29:92:45: ce:66:5a:f2 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUFDGJh9kF5u96/OecGxAKdX8yGnswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyM1oX DTI2MTExMDA2MDAyM1owMzExMC8GA1UEAxMoQzQyQTFFQzc3RTBDMTBBNDAyQ0VC QzYyRTBGNkY1RjYyQ0VGMjhDNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALIJN3CKHgMuzPdbQuZnmHedknoRDoRPXy7qiHgI6PKYp7auTC49MnirmDSf zK6qJkJ4gNiD3ZHTrS8uO9apMzpYj10ehkgpd9JIEaSaXwArOh9X2Le7OyFccN4T YkYdhcMxp0QFWNGdfxSbEGu00G+X99Ygzeb8XidhFB91OZeE7iUosKAH5BEpUN+U RPKHSMcvNZ7FpglXildvx3ZebtkJyiJ/mOm9ZEcL/3QFN3MselbjOJhsOGqXZrki bu8QqpsBG25GF2Ow6NMp4TQ0WfGLMJEce6ROQhsovMObPAHHSVsgzIpOYbKLvmXQ OI2XaXju7z3mpE8LGDnHGOop+b8CAwEAAaOCAecwggHjMB0GA1UdDgQWBBTEKh7H fgwQpALOvGLg9vX2LO8oxjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjEyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAGdfogMEAGdiPTAPBAIAAjAJAwcAIAEN8bMAMA0GCSqGSIb3DQEB CwUAA4IBAQCGXj3TpbqnDviQijjtwP5QUV/D1n5wjK5/DBEovJK1bgLCFQrQu/Fd D9p9suU7jD1xJdvnsmtlpwyKkb86z87ywmlL/XJ6xqsdDZCMutDmx1taPsAYFn9m TdG4lGewBj8fOOOZjfDDeBtY0bEBFthf/VLY8CQAkad0/jyUsrazsKOw1lPlu1aP YDjxvcR+myYZWThhTLXDcYxpU/5cp589P0w6ouJjbchvQiciY3c4havBxjPO75TR CGSclbo7V093uNNErZb/J00HS7o9XHZEMNuuOgt2GR+D7Xor4U7gHJ1dWSEb/31s d1yeoncUWno9mQvnht2TfNYpkkXOZlry -----END CERTIFICATE-----Generated at Mon Nov 17 03:08:55 2025 by rpki-client