$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136873.roa File: AS136873.roa (raw, json) Hash identifier: oP8SbURRtdExTksv801Z/WVEuICNAG2lDtH8eK8lgLk= Subject key identifier: 4B:0F:57:41:CD:38:E9:4C:E6:2A:F2:13:F0:C6:37:28:6D:F1:5A:3C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5B3B726228417ADDE7FF4B7EF7A888A4F3A82CF8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136873.roa Signing time: Fri 09 May 2025 04:08:12 +0000 ROA not before: Fri 09 May 2025 04:03:12 +0000 ROA not after: Fri 08 May 2026 04:08:12 +0000 asID: 136873 IP address blocks: 103.75.84.0/23 maxlen: 24 103.116.49.0/24 maxlen: 24 103.165.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:3b:72:62:28:41:7a:dd:e7:ff:4b:7e:f7:a8:88:a4:f3:a8:2c:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 9 04:03:12 2025 GMT Not After : May 8 04:08:12 2026 GMT Subject: CN=4B0F5741CD38E94CE62AF213F0C637286DF15A3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3b:22:75:a9:64:2e:81:54:57:3e:f3:24:88: 17:02:91:72:6d:27:b6:8a:dc:34:d1:c7:cc:01:3c: 71:3c:fb:ac:ed:90:98:c0:de:c4:25:73:43:58:8d: 3a:1c:a7:19:a1:e4:87:1b:18:80:e0:87:6f:f5:8a: d9:61:89:ea:73:ce:f1:b8:53:c8:02:8e:89:2d:89: 9f:0f:9c:b3:e8:0f:98:14:47:da:13:d2:2f:17:66: 49:6a:68:ac:bc:28:4d:87:86:36:7b:92:0b:69:10: 5a:c0:d8:9e:0b:09:61:aa:c2:63:22:a6:cb:17:17: db:5d:4a:f2:88:ef:16:25:a3:a8:7a:16:9b:5d:93: 27:02:17:11:fc:6d:ab:6e:1a:9c:6d:9c:c8:ef:68: 30:fe:22:2a:d9:12:46:86:ed:c4:71:32:77:da:aa: be:fa:dc:0d:c2:26:24:3c:ec:c9:6b:38:14:c6:fe: c3:5c:da:75:a3:c3:42:f7:d5:6a:70:15:15:96:0e: e9:4a:28:71:a3:58:e7:42:49:b4:00:5f:38:1e:44: 71:ba:6e:ac:87:74:3b:32:56:02:53:bf:75:7a:05: 88:43:c1:1a:aa:71:0f:52:31:5f:47:23:92:93:84: ad:bc:43:6d:e1:ef:b7:f2:10:63:41:64:ab:6b:bf: 9a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0F:57:41:CD:38:E9:4C:E6:2A:F2:13:F0:C6:37:28:6D:F1:5A:3C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136873.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.75.84.0/23 103.116.49.0/24 103.165.156.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:35:31:fc:9e:eb:6f:22:12:69:e2:16:0e:e9:1d:60:ef:ee: d3:7c:fc:44:5e:25:0a:19:d7:f6:6c:20:73:f3:ae:a6:3f:be: b8:d3:23:22:71:6a:2d:55:c4:86:ba:ea:8b:ec:28:39:ef:71: 15:24:b0:20:57:97:dc:42:cc:93:f5:78:fd:95:95:bd:5c:6b: e1:c5:e8:22:d0:d9:f0:78:c2:0a:7b:85:db:94:5b:e2:de:e7: d7:72:97:1f:c2:6e:58:13:fe:56:08:09:02:d8:2c:4d:03:69: 81:0e:b1:e8:47:c9:a4:3b:ce:5d:b6:06:30:17:33:31:4c:90: ca:02:6d:83:01:fd:03:8e:7b:40:9b:4e:61:0b:07:f1:65:4a: db:f3:b9:1a:73:b8:95:f2:85:b3:c1:58:3b:af:74:a2:3c:dc: 97:2f:87:33:cd:9c:63:8b:08:5d:d7:8a:11:a3:3c:50:85:71: be:88:e2:4e:88:70:17:64:18:41:81:69:49:1f:6e:35:95:42: 5f:dd:77:2e:22:b0:2e:84:ca:5b:54:e0:83:f8:1a:75:92:4a: 7c:a4:38:9e:d9:c3:1a:a8:15:e5:56:93:50:9e:5d:ce:27:01: 65:b1:06:33:e1:69:52:5a:77:1b:bf:f8:24:ab:da:87:79:06: db:53:e6:17 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUWztyYihBet3n/0t+96iIpPOoLPgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUwOTA0MDMxMloX DTI2MDUwODA0MDgxMlowMzExMC8GA1UEAxMoNEIwRjU3NDFDRDM4RTk0Q0U2MkFG MjEzRjBDNjM3Mjg2REYxNUEzQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMs7InWpZC6BVFc+8ySIFwKRcm0ntorcNNHHzAE8cTz7rO2QmMDexCVzQ1iN OhynGaHkhxsYgOCHb/WK2WGJ6nPO8bhTyAKOiS2Jnw+cs+gPmBRH2hPSLxdmSWpo rLwoTYeGNnuSC2kQWsDYngsJYarCYyKmyxcX211K8ojvFiWjqHoWm12TJwIXEfxt q24anG2cyO9oMP4iKtkSRobtxHEyd9qqvvrcDcImJDzsyWs4FMb+w1zadaPDQvfV anAVFZYO6UoocaNY50JJtABfOB5EcbpurId0OzJWAlO/dXoFiEPBGqpxD1IxX0cj kpOErbxDbeHvt/IQY0Fkq2u/misCAwEAAaOCAdwwggHYMB0GA1UdDgQWBBRLD1dB zTjpTOYq8hPwxjcobfFaPDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjg3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEAWdLVAMEAGd0MQMEAWelnDANBgkqhkiG9w0BAQsFAAOCAQEAOzUx /J7rbyISaeIWDukdYO/u03z8RF4lChnX9mwgc/Oupj++uNMjInFqLVXEhrrqi+wo Oe9xFSSwIFeX3ELMk/V4/ZWVvVxr4cXoItDZ8HjCCnuF25Rb4t7n13KXH8JuWBP+ VggJAtgsTQNpgQ6x6EfJpDvOXbYGMBczMUyQygJtgwH9A457QJtOYQsH8WVK2/O5 GnO4lfKFs8FYO690ojzcly+HM82cY4sIXdeKEaM8UIVxvojiTohwF2QYQYFpSR9u NZVCX913LiKwLoTKW1Tgg/gadZJKfKQ4ntnDGqgV5VaTUJ5dzicBZbEGM+FpUlp3 G7/4JKvah3kG21PmFw== -----END CERTIFICATE-----Generated at Tue Jun 3 23:13:21 2025 by rpki-client