$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132662.roa File: AS132662.roa (raw, json) Hash identifier: qjLJG0eDRIlyqaG4z55I2JTpCvIA0eHxooMswFk2ZTI= Subject key identifier: BF:F4:C8:A5:9C:5D:85:E5:B6:79:72:50:7F:54:5E:BC:03:63:7B:E7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1627E3203A543A22E1E6A7B46022F8234AC91BB4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132662.roa Signing time: Tue 09 Sep 2025 05:00:23 +0000 ROA not before: Tue 09 Sep 2025 04:55:23 +0000 ROA not after: Tue 08 Sep 2026 05:00:23 +0000 asID: 132662 IP address blocks: 103.26.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:27:e3:20:3a:54:3a:22:e1:e6:a7:b4:60:22:f8:23:4a:c9:1b:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 9 04:55:23 2025 GMT Not After : Sep 8 05:00:23 2026 GMT Subject: CN=BFF4C8A59C5D85E5B67972507F545EBC03637BE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:eb:6a:dc:f1:6e:38:65:35:38:c5:51:50:cc: 92:ab:7d:85:06:1a:cb:11:21:bb:66:98:3c:0e:8e: bd:a7:71:fe:85:f0:55:97:c5:c0:d1:a9:58:04:da: c7:a2:03:e9:7d:91:4c:05:35:43:b5:d7:7e:65:28: 1b:d3:5f:e2:9c:d9:2f:eb:15:23:cc:76:f7:a4:19: c9:d3:d7:ed:4d:75:21:de:e2:71:c9:19:ff:65:d8: 2b:dd:21:9e:b2:d7:43:77:a8:71:af:0d:f0:43:70: cd:d1:39:1b:f6:df:07:ea:fa:14:42:4d:cf:bd:8f: 21:fd:c0:b1:e6:d4:50:dd:ca:91:a3:94:e5:05:58: 33:32:77:6f:90:3b:38:4b:59:ba:8b:68:51:b5:b6: c8:9b:fa:38:10:9c:35:9a:6e:c7:35:a1:db:75:f3: c5:56:a9:a7:26:f9:32:43:78:14:a2:6a:0c:69:bb: 54:6b:d6:28:91:cb:3a:42:7b:9f:3e:8b:f7:30:5f: 8f:a4:c8:91:fa:e4:38:0c:83:c0:f4:13:44:84:27: 7e:d4:f4:5e:39:11:9d:da:08:ec:d6:e1:50:70:af: d3:8f:52:9a:3e:6f:6c:d5:29:54:cf:b6:35:c9:5f: d0:ad:38:4e:4d:f1:b5:0b:cf:17:77:7a:7e:1e:96: 97:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F4:C8:A5:9C:5D:85:E5:B6:79:72:50:7F:54:5E:BC:03:63:7B:E7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132662.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.26.100.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:6a:25:45:9b:93:6d:8d:cb:cf:d2:e4:ab:db:ff:16:f8:ef: 02:77:03:49:62:a4:e1:c6:e1:6f:da:e1:95:cf:38:30:d4:00: 83:92:3b:88:c1:e3:5a:76:4e:fd:b9:aa:b4:da:72:90:d8:6a: 5a:f5:7f:08:4a:dc:1d:9b:18:c4:61:c3:0d:76:8d:d7:99:1e: 2f:d9:f5:a1:d0:ad:10:ad:51:70:07:c9:89:1d:35:1a:66:e9: bb:dc:ff:8e:f6:12:d7:d5:71:d8:b5:69:a0:b4:bd:58:01:f2: fc:b5:67:e8:bb:1a:f9:dc:02:4c:1a:a0:09:c8:8f:d1:91:a7: 19:67:73:22:e2:38:81:c0:c4:ca:a8:bf:8b:77:b4:f5:be:9e: ce:8a:c2:ed:60:f8:76:db:7b:bc:2f:80:d8:de:b8:01:84:37: 49:0d:84:19:37:34:8e:0c:9a:c2:1d:a4:d2:dd:bb:79:7a:6d: aa:e5:2f:c8:3a:cf:4d:36:5c:3e:40:78:af:42:89:80:77:26: bd:ea:f4:a3:dc:39:1d:c5:ad:fb:d9:49:fb:ca:a1:2e:11:de: f9:14:7c:50:f9:01:30:86:dc:d2:a3:f8:29:be:f5:6a:c1:24: 66:2f:4a:77:12:c9:19:6d:cb:d7:04:b9:ec:5c:c9:33:2a:6a: 2f:96:d4:e7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFifjIDpUOiLh5qe0YCL4I0rJG7QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwOTA0NTUyM1oX DTI2MDkwODA1MDAyM1owMzExMC8GA1UEAxMoQkZGNEM4QTU5QzVEODVFNUI2Nzk3 MjUwN0Y1NDVFQkMwMzYzN0JFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALDratzxbjhlNTjFUVDMkqt9hQYayxEhu2aYPA6Ovadx/oXwVZfFwNGpWATa x6ID6X2RTAU1Q7XXfmUoG9Nf4pzZL+sVI8x296QZydPX7U11Id7icckZ/2XYK90h nrLXQ3eoca8N8ENwzdE5G/bfB+r6FEJNz72PIf3AsebUUN3KkaOU5QVYMzJ3b5A7 OEtZuotoUbW2yJv6OBCcNZpuxzWh23XzxVappyb5MkN4FKJqDGm7VGvWKJHLOkJ7 nz6L9zBfj6TIkfrkOAyDwPQTRIQnftT0XjkRndoI7NbhUHCv049Smj5vbNUpVM+2 Nclf0K04Tk3xtQvPF3d6fh6Wl5cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS/9Mil nF2F5bZ5clB/VF68A2N75zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMjY2Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGcaZDANBgkqhkiG9w0BAQsFAAOCAQEATGolRZuTbY3Lz9Lkq9v/ FvjvAncDSWKk4cbhb9rhlc84MNQAg5I7iMHjWnZO/bmqtNpykNhqWvV/CErcHZsY xGHDDXaN15keL9n1odCtEK1RcAfJiR01Gmbpu9z/jvYS19Vx2LVpoLS9WAHy/LVn 6Lsa+dwCTBqgCciP0ZGnGWdzIuI4gcDEyqi/i3e09b6ezorC7WD4dtt7vC+A2N64 AYQ3SQ2EGTc0jgyawh2k0t27eXptquUvyDrPTTZcPkB4r0KJgHcmver0o9w5HcWt +9lJ+8qhLhHe+RR8UPkBMIbc0qP4Kb71asEkZi9KdxLJGW3L1wS57FzJMypqL5bU 5w== -----END CERTIFICATE-----Generated at Mon Oct 20 03:04:14 2025 by rpki-client