$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS396982.roa File: AS396982.roa (raw, json) Hash identifier: +J5OwyGelWVmXjgoYz8DiNZHR5zVFtQy1RkWtKCie/E= Subject key identifier: 35:27:35:8B:97:70:C5:2F:2F:10:C1:B5:87:AC:7A:14:E1:6E:E7:41 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6D70F6CA77D5AB83EE7FB7E3E34996480CD399F6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS396982.roa Signing time: Fri 16 Jan 2026 04:00:00 +0000 ROA not before: Fri 16 Jan 2026 03:55:00 +0000 ROA not after: Fri 15 Jan 2027 04:00:00 +0000 asID: 396982 IP address blocks: 103.165.152.0/24 maxlen: 24 103.165.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Feb 2026 20:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:70:f6:ca:77:d5:ab:83:ee:7f:b7:e3:e3:49:96:48:0c:d3:99:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 16 03:55:00 2026 GMT Not After : Jan 15 04:00:00 2027 GMT Subject: CN=3527358B9770C52F2F10C1B587AC7A14E16EE741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:88:fc:6b:58:64:f1:e0:e4:05:2a:4d:b3:ed: 0a:ec:86:79:9e:a3:84:22:9b:af:3b:e3:d7:46:91: 0e:cb:3f:04:9a:75:80:81:72:34:3f:58:17:3f:2b: 38:13:25:6d:4d:11:97:fe:72:03:03:4f:f2:f2:05: 32:64:d0:13:b2:e1:d8:a5:97:d8:ae:5a:bd:ca:dc: 5b:99:97:46:71:bc:46:bb:82:f8:e0:18:91:bc:d6: af:ab:f6:2c:42:48:54:41:8c:14:3d:5a:fd:89:f8: 65:f7:7e:87:0e:d0:e6:6b:d2:ae:28:66:0c:4b:05: 73:61:38:b1:eb:57:10:40:92:69:21:d1:35:4f:e1: 35:8b:45:48:cc:72:7c:f8:27:49:e7:0a:52:74:f8: 20:51:3a:62:c9:c1:59:a8:76:af:60:63:07:42:85: e5:12:68:d2:48:84:b7:5c:47:82:75:e1:7a:e9:e8: b0:80:fd:f7:4e:a9:7a:6c:97:eb:bf:73:13:b9:2a: 8b:3a:93:ef:dd:b5:91:e9:33:17:f1:37:d6:b2:36: d0:10:32:5a:cd:c1:72:c5:50:63:da:7f:c7:b8:35: ca:5d:a9:af:66:5e:73:c0:63:39:b7:65:e9:ff:05: d7:6f:62:73:d6:b9:5b:d2:b9:8b:b3:4d:a8:6c:a8: 45:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:27:35:8B:97:70:C5:2F:2F:10:C1:B5:87:AC:7A:14:E1:6E:E7:41 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS396982.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.152.0/23 Signature Algorithm: sha256WithRSAEncryption 71:09:1e:67:f0:d1:15:32:fa:d2:a8:c2:59:da:3b:47:fc:ee: 63:21:02:75:de:00:81:cc:43:d6:96:a2:95:7f:3e:c6:85:6e: c5:5c:df:74:61:65:f3:44:e9:3a:6f:ed:47:ff:31:ba:4b:de: ac:1e:4c:b8:ae:ef:ca:4a:f6:f1:f0:31:19:05:bd:c7:4c:9d: f8:4f:30:6b:40:a0:da:21:3a:ca:67:da:3c:c2:93:ef:ae:b7: 87:27:6d:1a:2d:72:42:c5:cd:8d:98:60:b7:19:c1:a7:4a:84: 06:60:59:b8:96:67:85:af:07:57:25:39:32:44:ab:e5:56:8d: 8b:90:6d:50:c2:b4:d8:61:15:69:9c:ea:44:01:04:0c:96:07: 42:b8:f5:2c:03:83:e9:c4:09:78:37:87:2e:60:79:eb:9f:0e: 7c:26:68:97:91:04:ad:29:36:7c:37:c0:ad:3b:0d:ac:27:1c: 7d:5d:46:1e:c2:88:cd:ee:13:6b:45:c6:a9:a5:2b:c1:49:84: 12:29:a1:6b:53:fd:3a:1a:8c:19:0a:21:b3:d4:19:67:7c:77: cb:09:08:2e:0a:31:fd:8f:bb:70:e8:55:7a:e9:5e:2f:e5:86: eb:32:c7:a4:3d:42:f9:ac:00:bc:ed:08:2b:97:34:84:09:8c: 82:fb:85:e7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUbXD2ynfVq4Puf7fj40mWSAzTmfYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDExNjAzNTUwMFoX DTI3MDExNTA0MDAwMFowMzExMC8GA1UEAxMoMzUyNzM1OEI5NzcwQzUyRjJGMTBD MUI1ODdBQzdBMTRFMTZFRTc0MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyI/GtYZPHg5AUqTbPtCuyGeZ6jhCKbrzvj10aRDss/BJp1gIFyND9YFz8r OBMlbU0Rl/5yAwNP8vIFMmTQE7Lh2KWX2K5avcrcW5mXRnG8RruC+OAYkbzWr6v2 LEJIVEGMFD1a/Yn4Zfd+hw7Q5mvSrihmDEsFc2E4setXEECSaSHRNU/hNYtFSMxy fPgnSecKUnT4IFE6YsnBWah2r2BjB0KF5RJo0kiEt1xHgnXheunosID9906pemyX 679zE7kqizqT7921kekzF/E31rI20BAyWs3BcsVQY9p/x7g1yl2pr2Zec8BjObdl 6f8F129ic9a5W9K5i7NNqGyoRckCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ1JzWL l3DFLy8QwbWHrHoU4W7nQTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM5Njk4Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWelmDANBgkqhkiG9w0BAQsFAAOCAQEAcQkeZ/DRFTL60qjCWdo7 R/zuYyECdd4AgcxD1pailX8+xoVuxVzfdGFl80TpOm/tR/8xukverB5MuK7vykr2 8fAxGQW9x0yd+E8wa0Cg2iE6ymfaPMKT7663hydtGi1yQsXNjZhgtxnBp0qEBmBZ uJZnha8HVyU5MkSr5VaNi5BtUMK02GEVaZzqRAEEDJYHQrj1LAOD6cQJeDeHLmB5 658OfCZol5EErSk2fDfArTsNrCccfV1GHsKIze4Ta0XGqaUrwUmEEimha1P9OhqM GQohs9QZZ3x3ywkILgox/Y+7cOhVeuleL+WG6zLHpD1C+awAvO0IK5c0hAmMgvuF 5w== -----END CERTIFICATE-----Generated at Sun Feb 22 22:06:01 2026 by rpki-client