$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131715.roa File: AS131715.roa (raw, json) Hash identifier: jZIFOE99VDpP4UFCkTXfrJjL/Xvi6GXJsp+JkoqNNDA= Subject key identifier: 2C:DA:79:F3:A0:A8:1D:1F:86:0D:8E:A1:D6:B4:C6:B6:6E:65:6F:70 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 365046A31E5BEF3BE74B229BAA105906848A8C0A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131715.roa Signing time: Tue 09 Sep 2025 01:00:00 +0000 ROA not before: Tue 09 Sep 2025 00:55:00 +0000 ROA not after: Tue 08 Sep 2026 01:00:00 +0000 asID: 131715 IP address blocks: 103.8.228.0/24 maxlen: 24 103.209.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:50:46:a3:1e:5b:ef:3b:e7:4b:22:9b:aa:10:59:06:84:8a:8c:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 9 00:55:00 2025 GMT Not After : Sep 8 01:00:00 2026 GMT Subject: CN=2CDA79F3A0A81D1F860D8EA1D6B4C6B66E656F70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:6f:a2:09:c9:80:f8:28:c6:52:4c:05:8b:d7: 3c:e7:93:d0:53:0a:9e:ae:ab:91:2f:3b:a1:87:b9: e6:fe:7a:13:6f:23:18:03:a1:a7:3b:d4:08:0b:98: 9a:ae:f4:31:d9:a6:de:5d:a7:26:d6:74:e5:10:46: 2a:63:fb:83:ad:10:a1:c6:0a:8c:b3:56:e3:42:42: 10:23:a4:b9:4b:19:77:66:f0:e4:c4:f6:e1:1f:13: ad:ca:f9:c0:1f:9d:22:4e:13:88:e7:83:e6:97:18: b0:3b:2a:21:0a:bc:6c:6b:20:bb:dc:da:e1:58:9d: 77:e8:b7:63:f5:04:d2:75:e1:97:fb:1b:48:ed:b8: 0d:c4:c0:75:67:b6:0b:31:ed:a4:50:b8:3a:b1:33: 85:73:19:20:f2:48:1e:c1:ad:f7:48:5b:0e:90:84: 8f:58:be:b9:17:13:0d:90:b4:69:da:16:e4:3f:29: 17:4d:7d:40:1e:6d:95:be:d2:04:af:c7:78:6b:81: f7:40:24:ea:26:f0:3c:78:95:71:1c:06:9b:06:de: 2d:29:93:90:b6:ae:e8:04:87:17:93:84:b9:89:7a: d2:be:0b:66:1f:c5:cc:e7:9a:70:55:27:ce:27:d1: 91:2b:cf:dc:a4:e9:67:95:7b:08:6e:83:d8:f7:22: 3a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:DA:79:F3:A0:A8:1D:1F:86:0D:8E:A1:D6:B4:C6:B6:6E:65:6F:70 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131715.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.8.228.0/24 103.209.130.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:0c:a2:3c:ee:35:b1:45:98:8a:9e:ac:f8:ca:42:f9:6c:7a: 15:74:12:6b:7b:2e:60:ea:d1:d3:f7:89:bf:e0:1c:2f:6d:7a: 8d:78:99:92:c2:af:f0:c1:43:51:4f:18:a2:92:f5:64:0a:6c: 7a:1f:b7:2c:07:03:20:14:32:3c:0e:8c:87:ae:e1:45:67:de: 65:48:0a:c8:3d:ae:e6:ae:a1:b4:ee:22:b2:b1:bc:ab:74:13: 71:b2:8b:fb:fc:ea:5b:5d:cb:fb:f4:43:07:51:1f:4a:98:8b: 57:e8:35:1a:06:ea:72:7e:b4:6f:62:1b:4c:c1:24:11:66:db: 0e:31:c0:98:61:cc:eb:56:ed:b0:37:b6:a8:2a:38:de:00:fd: 65:de:b7:13:cc:8e:11:dc:85:ad:cc:5d:7e:99:be:3c:f2:4a: 52:58:ed:cf:43:13:48:b8:d5:19:22:b9:1b:e1:46:15:25:54: fa:34:6d:7a:47:b2:ab:d7:13:68:a2:a6:d5:f3:74:8c:5b:e0: 61:25:c1:3d:90:f1:c8:ab:3e:42:11:ff:d2:e2:e9:15:fd:a3: ad:93:c9:77:ab:55:e6:96:a7:90:28:f0:ee:11:a6:d0:f8:26: 63:f0:db:bd:10:7f:85:7a:67:3a:ef:23:c8:d6:14:37:3f:c7: ce:1b:8f:87 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUNlBGox5b7zvnSyKbqhBZBoSKjAowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwOTAwNTUwMFoX DTI2MDkwODAxMDAwMFowMzExMC8GA1UEAxMoMkNEQTc5RjNBMEE4MUQxRjg2MEQ4 RUExRDZCNEM2QjY2RTY1NkY3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJlvognJgPgoxlJMBYvXPOeT0FMKnq6rkS87oYe55v56E28jGAOhpzvUCAuY mq70Mdmm3l2nJtZ05RBGKmP7g60QocYKjLNW40JCECOkuUsZd2bw5MT24R8Trcr5 wB+dIk4TiOeD5pcYsDsqIQq8bGsgu9za4Vidd+i3Y/UE0nXhl/sbSO24DcTAdWe2 CzHtpFC4OrEzhXMZIPJIHsGt90hbDpCEj1i+uRcTDZC0adoW5D8pF019QB5tlb7S BK/HeGuB90Ak6ibwPHiVcRwGmwbeLSmTkLau6ASHF5OEuYl60r4LZh/FzOeacFUn zifRkSvP3KTpZ5V7CG6D2PciOlUCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQs2nnz oKgdH4YNjqHWtMa2bmVvcDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTcxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGcI5AMEAGfRgjANBgkqhkiG9w0BAQsFAAOCAQEAOgyiPO41sUWY ip6s+MpC+Wx6FXQSa3suYOrR0/eJv+AcL216jXiZksKv8MFDUU8YopL1ZApseh+3 LAcDIBQyPA6Mh67hRWfeZUgKyD2u5q6htO4isrG8q3QTcbKL+/zqW13L+/RDB1Ef SpiLV+g1Ggbqcn60b2IbTMEkEWbbDjHAmGHM61btsDe2qCo43gD9Zd63E8yOEdyF rcxdfpm+PPJKUljtz0MTSLjVGSK5G+FGFSVU+jRtekeyq9cTaKKm1fN0jFvgYSXB PZDxyKs+QhH/0uLpFf2jrZPJd6tV5pankCjw7hGm0PgmY/DbvRB/hXpnOu8jyNYU Nz/HzhuPhw== -----END CERTIFICATE-----Generated at Mon Oct 20 03:04:39 2025 by rpki-client