$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131717.roa File: AS131717.roa (raw, json) Hash identifier: sPlSldN2UWzSews0eiv6N4GWe7STSATDPJrY9oHwMvI= Subject key identifier: 88:53:5F:90:77:2A:3D:10:20:D6:79:70:A2:48:71:46:4C:E8:DB:16 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 62620F988B67DE4BF496325BD7942ABD7DAC5C2F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131717.roa Signing time: Tue 19 Aug 2025 10:00:00 +0000 ROA not before: Tue 19 Aug 2025 09:55:00 +0000 ROA not after: Tue 18 Aug 2026 10:00:00 +0000 asID: 131717 IP address blocks: 103.184.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 11:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:62:0f:98:8b:67:de:4b:f4:96:32:5b:d7:94:2a:bd:7d:ac:5c:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 19 09:55:00 2025 GMT Not After : Aug 18 10:00:00 2026 GMT Subject: CN=88535F90772A3D1020D67970A24871464CE8DB16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0a:ff:5f:40:14:d2:5b:74:88:05:9b:fb:4e: cb:af:49:62:9d:92:e2:cd:a5:92:c2:6d:a2:14:b2: 21:36:ef:b6:fc:94:9b:0c:47:f5:7f:b6:67:da:7c: d6:32:26:05:39:0e:06:73:7c:9f:82:cb:a3:0f:de: 0c:ac:f4:75:2d:55:80:24:9c:6d:12:08:c2:d4:63: 5b:14:b0:a2:a5:11:13:8b:3a:ab:55:8d:a4:9f:38: fc:05:52:0c:81:11:17:36:04:ea:5b:9f:79:1e:7e: 25:4b:c3:26:17:93:42:69:3f:88:8d:9a:b3:15:78: 89:c2:9f:d6:99:36:cf:8c:6e:af:88:bf:46:2d:bc: 55:98:68:b8:a3:85:c0:06:65:ce:50:e5:9e:b6:ee: 75:54:9b:2c:48:43:55:ce:1a:6e:49:19:84:fc:47: ee:68:d3:4c:29:bd:65:76:11:0e:ca:ab:d7:cf:cd: d9:ef:37:ba:39:8c:92:52:62:56:18:08:0d:4f:98: 80:b7:7c:f6:67:d4:71:52:87:ea:3e:6a:c1:c3:fd: 0f:84:9f:10:85:c9:1a:80:fd:a9:d4:75:42:0c:0b: e1:f3:0d:e2:7c:1f:2d:2e:c6:74:15:fe:52:5a:ee: ab:fe:2e:76:29:70:3d:f9:64:ea:e1:b4:c8:00:b0: 2a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:53:5F:90:77:2A:3D:10:20:D6:79:70:A2:48:71:46:4C:E8:DB:16 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131717.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.98.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:e9:f6:fe:e9:b3:bd:19:da:48:01:a9:e9:1f:98:6c:f1:a4: 0b:bd:96:60:8c:77:d2:b4:4c:67:c3:67:34:3c:f0:92:73:1d: 6f:5c:41:62:14:73:26:90:4e:d1:1d:23:24:6d:1b:62:bd:ce: ec:f0:11:6f:0f:af:22:35:62:ee:b4:74:30:30:ee:4a:c0:4d: dd:01:5e:c9:50:a9:ee:63:6e:f2:9c:41:a7:01:f7:31:9c:e8: 7d:63:22:22:3f:0d:09:21:90:99:fb:8f:bc:16:44:3b:4f:05: be:e8:6e:50:77:4b:de:0a:b5:95:e3:36:b5:8e:65:ff:2d:59: ab:92:b8:f1:d5:27:e8:5c:1d:f5:d5:65:df:bc:fa:6c:96:5e: d6:62:76:32:b5:0f:78:b1:71:15:31:21:89:f3:e3:52:80:46: 0e:4d:be:f9:02:2a:b5:e6:c1:8a:50:ed:9d:70:b5:8a:b4:07: b2:3e:fe:10:34:2b:4e:73:ed:48:7e:86:50:4a:dd:ff:45:4d: 07:fb:c7:21:92:6c:7d:8f:80:f5:5d:77:17:09:f1:6f:09:14: b2:27:08:eb:ec:3f:47:96:c5:9b:2d:52:93:33:27:19:c7:9e: aa:ba:d6:72:fb:cd:15:3b:0b:70:e5:cb:39:fa:ae:95:d7:21: 25:2c:d4:90 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYmIPmItn3kv0ljJb15QqvX2sXC8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgxOTA5NTUwMFoX DTI2MDgxODEwMDAwMFowMzExMC8GA1UEAxMoODg1MzVGOTA3NzJBM0QxMDIwRDY3 OTcwQTI0ODcxNDY0Q0U4REIxNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM4K/19AFNJbdIgFm/tOy69JYp2S4s2lksJtohSyITbvtvyUmwxH9X+2Z9p8 1jImBTkOBnN8n4LLow/eDKz0dS1VgCScbRIIwtRjWxSwoqURE4s6q1WNpJ84/AVS DIERFzYE6lufeR5+JUvDJheTQmk/iI2asxV4icKf1pk2z4xur4i/Ri28VZhouKOF wAZlzlDlnrbudVSbLEhDVc4abkkZhPxH7mjTTCm9ZXYRDsqr18/N2e83ujmMklJi VhgIDU+YgLd89mfUcVKH6j5qwcP9D4SfEIXJGoD9qdR1QgwL4fMN4nwfLS7GdBX+ Ulruq/4udilwPflk6uG0yACwKuUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSIU1+Q dyo9ECDWeXCiSHFGTOjbFjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTcxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe4YjANBgkqhkiG9w0BAQsFAAOCAQEAG+n2/umzvRnaSAGp6R+Y bPGkC72WYIx30rRMZ8NnNDzwknMdb1xBYhRzJpBO0R0jJG0bYr3O7PARbw+vIjVi 7rR0MDDuSsBN3QFeyVCp7mNu8pxBpwH3MZzofWMiIj8NCSGQmfuPvBZEO08Fvuhu UHdL3gq1leM2tY5l/y1Zq5K48dUn6Fwd9dVl37z6bJZe1mJ2MrUPeLFxFTEhifPj UoBGDk2++QIqtebBilDtnXC1irQHsj7+EDQrTnPtSH6GUErd/0VNB/vHIZJsfY+A 9V13FwnxbwkUsicI6+w/R5bFmy1SkzMnGceeqrrWcvvNFTsLcOXLOfquldchJSzU kA== -----END CERTIFICATE-----Generated at Sat Aug 23 07:11:45 2025 by rpki-client