$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138065.roa File: AS138065.roa (raw, json) Hash identifier: Dx+qv/HjPM3UvZjIMCPJQD9hAC6rC+gfIOYcWIbJfvs= Subject key identifier: 1B:91:56:03:99:CA:1D:04:7B:D3:A6:CC:C4:14:E1:F1:C2:AB:FB:87 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5149EBA8B4DC5A9107A4146C526A724A96B222E4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138065.roa Signing time: Thu 08 May 2025 02:00:00 +0000 ROA not before: Thu 08 May 2025 01:55:00 +0000 ROA not after: Thu 07 May 2026 02:00:00 +0000 asID: 138065 IP address blocks: 103.219.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:49:eb:a8:b4:dc:5a:91:07:a4:14:6c:52:6a:72:4a:96:b2:22:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 8 01:55:00 2025 GMT Not After : May 7 02:00:00 2026 GMT Subject: CN=1B91560399CA1D047BD3A6CCC414E1F1C2ABFB87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e3:ec:8a:81:fa:71:9e:69:33:53:f4:91:8d: d0:90:5e:40:f2:3e:87:c8:4c:80:5a:be:8b:de:9b: c9:a3:d3:1a:7d:04:2b:d4:ce:85:6c:b2:5f:97:fa: d5:52:61:81:7e:5a:87:c4:cf:f9:aa:ad:84:73:5e: ef:b7:2f:5f:ca:64:b0:29:91:37:2c:74:e2:40:a7: 77:4d:54:39:49:28:99:7d:5d:e0:7d:43:91:0b:26: d4:88:93:95:69:f7:9f:ba:1c:62:c7:84:07:a6:94: 99:9f:79:89:90:d0:52:f4:d6:93:31:d6:e8:be:5f: 1d:76:55:44:a9:f5:c0:0f:6a:b1:8d:72:44:cc:57: a9:22:02:5f:8d:3b:d7:b5:1a:3a:5f:73:e7:b4:e7: ce:71:df:87:3e:a2:a0:57:5d:c6:6a:7f:b5:e4:60: c2:2c:65:2c:14:d6:86:a3:29:04:f3:6e:7f:f9:59: 2e:fa:86:3b:3e:bd:dd:53:dd:cc:b5:71:61:93:0f: d4:94:6a:c0:6a:56:c9:c1:13:dc:47:80:26:6c:df: ee:d1:ce:c0:fd:6d:50:99:66:3c:9f:9a:d9:3c:96: 9e:13:0e:7e:aa:68:0a:e5:2d:49:de:a5:d0:55:6a: 74:54:be:72:6f:f2:4d:64:be:44:b8:b5:e0:8c:28: 29:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:91:56:03:99:CA:1D:04:7B:D3:A6:CC:C4:14:E1:F1:C2:AB:FB:87 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138065.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.219.226.0/23 Signature Algorithm: sha256WithRSAEncryption 94:1e:e0:8a:94:48:1e:3c:6d:69:0b:65:a0:29:52:d7:a9:5a: 1b:a3:b2:85:64:06:9f:4f:6a:96:50:86:a0:86:f4:04:5f:8f: be:4c:9b:11:ea:40:f1:17:d0:1f:19:d0:17:32:86:cd:b1:a9: 5f:3a:a8:12:54:30:5d:e6:51:d8:0d:3d:9f:1d:c2:2f:7f:78: 6b:da:96:33:37:56:82:bf:72:ba:37:d3:6e:2a:e8:23:43:e8: da:69:f3:de:5f:b7:4d:55:fe:19:3e:b4:73:9d:7f:f6:22:cd: 82:50:01:7d:71:ea:b4:f2:d2:a8:03:4f:4a:92:3c:3d:7a:b1: 76:35:71:d6:85:38:f5:c0:09:bb:3a:dd:c4:c8:ff:e4:a4:24: 1c:30:54:1f:95:3a:7e:99:80:21:af:02:a4:8d:55:f3:7d:e6: 05:94:a9:92:36:0f:30:da:db:65:51:6b:1b:e8:ac:7e:a6:17: e4:f8:6e:e8:ac:be:05:59:e6:7c:d3:67:f5:63:0f:f4:db:9f: e5:da:2d:e7:7b:41:22:de:b5:0d:23:85:20:63:2e:53:79:a7: 6e:66:4a:e0:d1:3a:73:47:c0:44:09:85:cf:3b:9c:79:90:a9: e3:9a:01:e9:1c:4b:1c:31:e9:36:9f:f9:2c:c8:14:48:3c:c0: 5a:a4:da:7b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUUnrqLTcWpEHpBRsUmpySpayIuQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUwODAxNTUwMFoX DTI2MDUwNzAyMDAwMFowMzExMC8GA1UEAxMoMUI5MTU2MDM5OUNBMUQwNDdCRDNB NkNDQzQxNEUxRjFDMkFCRkI4NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPDj7IqB+nGeaTNT9JGN0JBeQPI+h8hMgFq+i96byaPTGn0EK9TOhWyyX5f6 1VJhgX5ah8TP+aqthHNe77cvX8pksCmRNyx04kCnd01UOUkomX1d4H1DkQsm1IiT lWn3n7ocYseEB6aUmZ95iZDQUvTWkzHW6L5fHXZVRKn1wA9qsY1yRMxXqSICX407 17UaOl9z57TnznHfhz6ioFddxmp/teRgwixlLBTWhqMpBPNuf/lZLvqGOz693VPd zLVxYZMP1JRqwGpWycET3EeAJmzf7tHOwP1tUJlmPJ+a2TyWnhMOfqpoCuUtSd6l 0FVqdFS+cm/yTWS+RLi14IwoKQ8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQbkVYD mcodBHvTpszEFOHxwqv7hzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODA2NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfb4jANBgkqhkiG9w0BAQsFAAOCAQEAlB7gipRIHjxtaQtloClS 16laG6OyhWQGn09qllCGoIb0BF+PvkybEepA8RfQHxnQFzKGzbGpXzqoElQwXeZR 2A09nx3CL394a9qWMzdWgr9yujfTbiroI0Po2mnz3l+3TVX+GT60c51/9iLNglAB fXHqtPLSqANPSpI8PXqxdjVx1oU49cAJuzrdxMj/5KQkHDBUH5U6fpmAIa8CpI1V 833mBZSpkjYPMNrbZVFrG+isfqYX5Phu6Ky+BVnmfNNn9WMP9Nuf5dot53tBIt61 DSOFIGMuU3mnbmZK4NE6c0fARAmFzzuceZCp45oB6RxLHDHpNp/5LMgUSDzAWqTa ew== -----END CERTIFICATE-----Generated at Tue Jun 3 23:10:54 2025 by rpki-client