$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS133579.roa File: AS133579.roa (raw, json) Hash identifier: MSiUz6k3jpfJ6JK81DWSxUAzlDKqTkG0KOEtwKGTyP4= Subject key identifier: 47:20:F7:05:7D:A0:4F:1D:F8:E2:50:85:76:59:B3:0A:74:5F:1C:5F Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0F0747ECA0647B6F1406441EE894CEC8FFDC1BEE Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS133579.roa Signing time: Fri 19 Sep 2025 06:40:14 +0000 ROA not before: Fri 19 Sep 2025 06:35:14 +0000 ROA not after: Fri 18 Sep 2026 06:40:14 +0000 asID: 133579 IP address blocks: 165.101.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:07:47:ec:a0:64:7b:6f:14:06:44:1e:e8:94:ce:c8:ff:dc:1b:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 19 06:35:14 2025 GMT Not After : Sep 18 06:40:14 2026 GMT Subject: CN=4720F7057DA04F1DF8E250857659B30A745F1C5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0c:07:59:f1:00:b1:d0:98:03:01:17:a8:53: ed:cb:94:a2:1e:1a:0a:7a:6a:b4:37:7f:3a:a0:5e: 89:af:1a:1f:5c:ae:91:e1:bf:62:e0:23:5e:1e:e2: c8:e7:ff:1f:4d:1c:54:76:67:0f:2f:a6:78:b3:b5: 0f:f6:61:f8:52:61:98:30:ed:46:15:41:2e:ea:10: 61:da:7e:5d:aa:bb:df:45:a6:8a:60:4f:80:3c:f2: e9:fe:80:61:b8:51:ba:5d:82:5d:f9:13:a1:f5:7e: 4d:ef:92:d7:37:11:cf:c2:ff:11:05:eb:4f:51:12: 17:29:f6:f7:44:62:ed:54:fa:80:61:72:57:91:fc: 7c:3a:05:71:2c:db:38:c8:3b:21:a9:a3:9e:a7:33: 2f:07:a1:9e:cb:e7:10:c4:11:52:21:3b:f0:12:f0: db:2f:65:48:8a:9d:41:a2:7e:74:44:7a:a9:72:b8: 75:93:26:17:41:37:04:b9:05:f7:4f:a1:ec:eb:13: 0a:7c:af:df:18:14:ec:04:89:58:53:49:a0:c1:bd: ec:ac:c4:47:9d:cd:1e:2b:e0:84:2a:a7:13:a5:8a: cc:19:f0:e8:44:31:e4:1c:8d:35:6e:82:90:d1:46: ff:17:49:0f:c3:e8:66:19:bb:58:8d:b0:45:7b:5f: c6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:20:F7:05:7D:A0:4F:1D:F8:E2:50:85:76:59:B3:0A:74:5F:1C:5F X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS133579.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.162.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:c2:9d:d2:e3:50:74:59:d1:9e:5f:66:61:e2:02:94:05:2d: 0a:07:f2:3d:37:45:9d:38:f3:d7:52:3f:39:f8:71:48:c5:0c: 2c:14:bc:59:7d:74:56:fc:0a:91:74:d9:a3:e6:05:f3:c0:0c: d1:f6:84:de:37:11:51:6f:f1:b5:e1:d1:3c:1d:3c:23:f9:e3: f4:dc:b6:ea:ff:1f:70:7a:74:14:71:8a:57:16:7d:f0:41:9e: af:16:24:8a:d2:c3:07:65:2b:1c:f2:88:0c:9d:7f:33:dd:a5: c1:f8:4d:ad:88:3f:a5:11:b5:07:9e:36:8b:05:5d:85:ee:37: 41:8d:74:71:91:e0:82:ca:e3:43:f3:27:14:f9:b1:32:25:47: 43:1b:41:b4:8f:75:3a:64:12:f9:62:74:a2:f0:57:52:6f:5f: b7:a4:02:8e:e0:e5:e6:de:de:65:03:30:b0:fa:a3:62:6f:ca: b2:8a:40:d1:6d:77:53:00:1f:71:d0:0d:32:2f:b3:1f:f7:56: 41:8e:56:57:5d:21:8c:66:f8:aa:ab:06:41:61:63:20:5c:fe: 04:ee:b8:bd:13:4c:d9:85:28:b3:f6:de:b1:93:1f:57:19:3d: 33:b5:a7:fd:db:79:71:ed:fb:22:9f:a9:1e:e5:21:40:03:2f: d4:8a:ea:38 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDwdH7KBke28UBkQe6JTOyP/cG+4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDkxOTA2MzUxNFoX DTI2MDkxODA2NDAxNFowMzExMC8GA1UEAxMoNDcyMEY3MDU3REEwNEYxREY4RTI1 MDg1NzY1OUIzMEE3NDVGMUM1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJoMB1nxALHQmAMBF6hT7cuUoh4aCnpqtDd/OqBeia8aH1yukeG/YuAjXh7i yOf/H00cVHZnDy+meLO1D/Zh+FJhmDDtRhVBLuoQYdp+Xaq730WmimBPgDzy6f6A YbhRul2CXfkTofV+Te+S1zcRz8L/EQXrT1ESFyn290Ri7VT6gGFyV5H8fDoFcSzb OMg7IamjnqczLwehnsvnEMQRUiE78BLw2y9lSIqdQaJ+dER6qXK4dZMmF0E3BLkF 90+h7OsTCnyv3xgU7ASJWFNJoMG97KzER53NHivghCqnE6WKzBnw6EQx5ByNNW6C kNFG/xdJD8PoZhm7WI2wRXtfxtUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRHIPcF faBPHfjiUIV2WbMKdF8cXzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzMzU3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKVlojANBgkqhkiG9w0BAQsFAAOCAQEAbMKd0uNQdFnRnl9mYeIC lAUtCgfyPTdFnTjz11I/OfhxSMUMLBS8WX10VvwKkXTZo+YF88AM0faE3jcRUW/x teHRPB08I/nj9Ny26v8fcHp0FHGKVxZ98EGerxYkitLDB2UrHPKIDJ1/M92lwfhN rYg/pRG1B542iwVdhe43QY10cZHggsrjQ/MnFPmxMiVHQxtBtI91OmQS+WJ0ovBX Um9ft6QCjuDl5t7eZQMwsPqjYm/KsopA0W13UwAfcdANMi+zH/dWQY5WV10hjGb4 qqsGQWFjIFz+BO64vRNM2YUos/besZMfVxk9M7Wn/dt5ce37Ip+pHuUhQAMv1Irq OA== -----END CERTIFICATE-----Generated at Mon Oct 20 15:47:48 2025 by rpki-client