$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134635.roa File: AS134635.roa (raw, json) Hash identifier: Gg4LZddQ67743QioAoRmdc39Seyim0qBkLovDYrkeis= Subject key identifier: 70:46:93:37:01:8A:AD:CC:45:10:60:4C:1A:C6:82:1E:29:CE:98:CC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 445824CF1885F3A1360089631D82C48B8E86B1A2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134635.roa Signing time: Fri 22 Aug 2025 06:00:00 +0000 ROA not before: Fri 22 Aug 2025 05:55:00 +0000 ROA not after: Fri 21 Aug 2026 06:00:00 +0000 asID: 134635 IP address blocks: 2001:df1:ba40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:58:24:cf:18:85:f3:a1:36:00:89:63:1d:82:c4:8b:8e:86:b1:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 22 05:55:00 2025 GMT Not After : Aug 21 06:00:00 2026 GMT Subject: CN=70469337018AADCC4510604C1AC6821E29CE98CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:56:58:be:92:c2:22:27:c8:d4:ae:99:10:5c: 1c:37:91:0b:c0:1a:45:58:08:19:33:b9:75:8d:2e: 15:72:07:24:bd:4d:3e:16:91:bf:e9:5f:f0:57:bd: 9b:cb:37:53:99:32:71:83:f6:17:1e:0c:ff:d7:94: 2d:6e:d4:1b:9b:07:bb:14:23:79:03:33:7e:6f:bb: 7d:df:b8:cc:a6:be:d2:a4:2e:38:ef:e8:92:c2:2c: 44:79:2c:5f:43:51:38:1a:3e:d5:98:ec:cd:75:1e: 52:3c:3a:3a:a2:84:c4:37:af:d0:ae:31:61:e5:3d: 4f:35:51:01:e9:29:c1:a6:7f:9b:81:8f:e4:26:3e: 10:af:dd:f8:17:b7:28:3a:64:f6:d6:dc:c8:9e:ca: 6c:95:92:94:d1:54:63:5a:d2:5e:e0:4d:e9:ad:ac: 99:fc:e3:71:84:21:c0:e6:10:79:e9:49:ce:42:7d: 87:bd:46:06:b0:19:6d:63:0d:07:cb:94:46:26:a6: ee:12:0b:1a:18:84:97:00:7e:d3:09:1e:c3:d9:5e: df:b0:e2:3b:77:24:1b:67:79:09:a2:b7:79:52:ac: 94:cb:75:44:9d:cd:ca:34:61:e5:ad:64:52:ba:cf: ff:aa:27:db:8d:fb:bd:59:68:77:c8:c4:4f:1e:dc: 15:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:46:93:37:01:8A:AD:CC:45:10:60:4C:1A:C6:82:1E:29:CE:98:CC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:ba40::/48 Signature Algorithm: sha256WithRSAEncryption 2c:56:0c:b3:af:d0:08:13:0a:af:44:ba:46:00:b0:b3:30:d0: ba:f8:04:1b:db:b6:b2:c7:d9:01:af:7b:22:1d:0e:68:a1:73: 83:db:2e:61:7c:29:84:1f:c8:df:88:98:84:bd:02:9c:0e:d6: 25:20:c3:cd:6c:19:f6:6c:36:e6:af:3b:ec:7c:46:89:28:f5: 03:02:bf:03:50:d2:c3:6a:2e:47:91:a8:ba:d8:2b:69:76:ac: a8:b6:7e:8d:9d:a6:22:0f:84:fa:5f:be:32:41:b9:4d:96:cd: 61:e7:4e:09:e2:b9:72:1c:12:69:34:d4:e1:77:7f:78:9c:e8: c8:6a:d4:10:63:95:34:0f:70:9b:bb:e0:37:7e:85:76:a8:f7: 12:71:d1:cf:68:ec:27:50:98:f7:5c:79:28:8b:5e:57:f1:52: 18:9c:38:7f:7f:f4:ca:1d:11:22:67:d0:b4:95:21:af:b4:5f: dc:44:e0:28:1f:0c:45:29:62:96:cf:d2:9a:94:c3:70:ab:06: cd:01:a0:1d:8f:33:e2:b7:01:2f:23:bb:5e:61:70:12:78:a9: 60:8d:68:98:ff:ad:61:94:87:42:6e:0c:90:c5:41:5c:98:21: 55:fd:6d:eb:3e:fa:04:05:81:6e:fc:87:1c:e8:00:f3:b5:27: 2e:ea:1b:55 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIURFgkzxiF86E2AIljHYLEi46GsaIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgyMjA1NTUwMFoX DTI2MDgyMTA2MDAwMFowMzExMC8GA1UEAxMoNzA0NjkzMzcwMThBQURDQzQ1MTA2 MDRDMUFDNjgyMUUyOUNFOThDQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO1WWL6SwiInyNSumRBcHDeRC8AaRVgIGTO5dY0uFXIHJL1NPhaRv+lf8Fe9 m8s3U5kycYP2Fx4M/9eULW7UG5sHuxQjeQMzfm+7fd+4zKa+0qQuOO/oksIsRHks X0NROBo+1ZjszXUeUjw6OqKExDev0K4xYeU9TzVRAekpwaZ/m4GP5CY+EK/d+Be3 KDpk9tbcyJ7KbJWSlNFUY1rSXuBN6a2smfzjcYQhwOYQeelJzkJ9h71GBrAZbWMN B8uURiam7hILGhiElwB+0wkew9le37DiO3ckG2d5CaK3eVKslMt1RJ3NyjRh5a1k UrrP/6on2437vVlod8jETx7cFRcCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRwRpM3 AYqtzEUQYEwaxoIeKc6YzDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNDYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfG6QDANBgkqhkiG9w0BAQsFAAOCAQEALFYMs6/QCBMKr0S6 RgCwszDQuvgEG9u2ssfZAa97Ih0OaKFzg9suYXwphB/I34iYhL0CnA7WJSDDzWwZ 9mw25q877HxGiSj1AwK/A1DSw2ouR5GoutgraXasqLZ+jZ2mIg+E+l++MkG5TZbN YedOCeK5chwSaTTU4Xd/eJzoyGrUEGOVNA9wm7vgN36Fdqj3EnHRz2jsJ1CY91x5 KIteV/FSGJw4f3/0yh0RImfQtJUhr7Rf3ETgKB8MRSlils/SmpTDcKsGzQGgHY8z 4rcBLyO7XmFwEnipYI1omP+tYZSHQm4MkMVBXJghVf1t6z76BAWBbvyHHOgA87Un LuobVQ== -----END CERTIFICATE-----Generated at Sat Aug 23 11:59:10 2025 by rpki-client