$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137366.roa File: AS137366.roa (raw, json) Hash identifier: GULTetzHHMFSxNJuCr5FwmGuRU08U65Eh4bWUBxlBI8= Subject key identifier: 18:07:D1:12:8E:6F:00:E0:CE:C2:F9:D7:7A:A7:36:39:15:AB:39:1A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 337DC1E4B7125A330B9E387B4076FBC1E3080500 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137366.roa Signing time: Tue 02 Sep 2025 11:07:46 +0000 ROA not before: Tue 02 Sep 2025 11:02:46 +0000 ROA not after: Tue 01 Sep 2026 11:07:46 +0000 asID: 137366 IP address blocks: 103.12.12.0/23 maxlen: 24 103.16.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:7d:c1:e4:b7:12:5a:33:0b:9e:38:7b:40:76:fb:c1:e3:08:05:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 2 11:02:46 2025 GMT Not After : Sep 1 11:07:46 2026 GMT Subject: CN=1807D1128E6F00E0CEC2F9D77AA7363915AB391A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:44:0b:df:43:1e:28:bb:fd:fb:96:4d:a7: 6f:bb:42:03:43:15:2a:5a:8b:70:68:2c:ad:18:13: f5:22:7d:b7:3a:62:aa:6d:6c:b6:7a:a5:26:06:94: f8:3e:c6:b0:74:58:2d:57:03:b3:62:73:a6:14:e3: ac:d2:48:76:64:8d:70:fa:24:e7:cc:9f:c0:18:c5: 16:17:0e:6f:07:5a:69:e5:49:5a:25:db:ea:49:44: 31:3a:05:ce:4f:bf:d4:5e:97:db:58:36:d3:1e:05: d8:fa:0f:11:c7:53:37:1c:a7:9c:07:09:2c:1c:8e: d5:56:30:8f:b8:0e:7d:98:a6:55:20:b0:57:23:02: 0c:6d:a6:0b:b4:78:d1:de:a8:2b:9c:06:ef:18:0f: 6a:50:52:50:a0:88:38:6e:2d:1f:bf:06:b0:1a:d6: 3a:31:5d:97:5e:f1:3f:80:f0:a0:38:9a:2e:c5:74: 92:62:c7:71:04:02:26:b7:f3:96:f7:d1:1a:2b:fe: b6:86:77:0a:56:f8:06:ba:80:96:13:81:a6:30:3e: f0:5b:3d:09:d3:2a:8d:a4:c3:aa:5a:65:aa:34:93: 1a:cc:00:d1:9c:63:ba:61:d4:21:0e:6d:46:83:71: b9:50:2b:f1:30:46:da:42:23:e3:0b:05:dc:da:eb: 9c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:07:D1:12:8E:6F:00:E0:CE:C2:F9:D7:7A:A7:36:39:15:AB:39:1A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137366.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.12.12.0/23 103.16.188.0/22 Signature Algorithm: sha256WithRSAEncryption 74:77:e0:77:c4:5b:3d:25:5b:10:08:93:87:a1:27:f6:f2:48: 0f:c5:60:f1:1a:9e:6d:26:ac:3f:7c:40:ac:8d:a1:32:9f:f9: 93:9d:65:06:ae:1d:21:bb:f6:f2:70:a4:17:a7:0a:b2:2c:76: cc:89:c1:aa:07:63:0e:9b:9b:e2:1d:97:b0:69:da:77:24:a6: 61:27:92:c0:1d:d6:b7:e9:5f:e4:e3:fd:d1:e0:d4:1a:59:da: b5:29:6a:85:68:8d:9d:35:7c:a0:a2:47:12:13:fc:78:b6:48: 02:89:b9:74:c6:fb:5c:a5:f9:c6:05:c8:f1:d5:2d:a7:22:f1: a3:d9:70:46:94:9a:4e:a9:76:85:e3:35:1b:40:70:e4:15:6a: 14:27:59:ef:96:d3:4c:e1:46:20:4d:7c:94:47:7a:0f:7a:77: 24:29:ca:db:1c:71:40:7b:83:f5:64:91:5b:c6:5e:92:89:1f: c0:0d:0c:75:70:d5:1f:8f:e4:7d:9f:cc:38:18:92:76:02:1a: 64:5a:d2:a7:cf:3a:a1:39:04:9b:d2:a7:75:5d:d9:5a:1a:8a: 7a:02:74:ae:e3:de:e4:ae:f5:78:db:71:da:45:46:d8:b9:d1: 05:c8:10:bd:09:bf:6a:48:41:87:cb:ad:8b:5b:8c:48:77:7b: a3:d0:e6:3a -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUM33B5LcSWjMLnjh7QHb7weMIBQAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwMjExMDI0NloX DTI2MDkwMTExMDc0NlowMzExMC8GA1UEAxMoMTgwN0QxMTI4RTZGMDBFMENFQzJG OUQ3N0FBNzM2MzkxNUFCMzkxQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMbVRAvfQx4ou/37lk2nb7tCA0MVKlqLcGgsrRgT9SJ9tzpiqm1stnqlJgaU +D7GsHRYLVcDs2JzphTjrNJIdmSNcPok58yfwBjFFhcObwdaaeVJWiXb6klEMToF zk+/1F6X21g20x4F2PoPEcdTNxynnAcJLByO1VYwj7gOfZimVSCwVyMCDG2mC7R4 0d6oK5wG7xgPalBSUKCIOG4tH78GsBrWOjFdl17xP4DwoDiaLsV0kmLHcQQCJrfz lvfRGiv+toZ3Clb4BrqAlhOBpjA+8Fs9CdMqjaTDqlplqjSTGswA0ZxjumHUIQ5t RoNxuVAr8TBG2kIj4wsF3NrrnM8CAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQYB9ES jm8A4M7C+dd6pzY5Fas5GjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAWcMDAMEAmcQvDANBgkqhkiG9w0BAQsFAAOCAQEAdHfgd8RbPSVb EAiTh6En9vJID8Vg8RqebSasP3xArI2hMp/5k51lBq4dIbv28nCkF6cKsix2zInB qgdjDpub4h2XsGnadySmYSeSwB3Wt+lf5OP90eDUGlnatSlqhWiNnTV8oKJHEhP8 eLZIAom5dMb7XKX5xgXI8dUtpyLxo9lwRpSaTql2heM1G0Bw5BVqFCdZ75bTTOFG IE18lEd6D3p3JCnK2xxxQHuD9WSRW8ZekokfwA0MdXDVH4/kfZ/MOBiSdgIaZFrS p886oTkEm9KndV3ZWhqKegJ0ruPe5K71eNtx2kVG2LnRBcgQvQm/akhBh8uti1uM SHd7o9DmOg== -----END CERTIFICATE-----Generated at Fri Sep 5 08:17:34 2025 by rpki-client