$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135444.roa File: AS135444.roa (raw, json) Hash identifier: YVp+/A7aW8M3i2BVzMJft/0f1YSYZHRntWcOtPE6prQ= Subject key identifier: 90:2F:93:16:E9:77:3A:05:A1:8F:82:9E:33:68:21:F5:6D:5B:CE:11 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 725DEF1AEE8A63369688B9FA12A1264B34053AF8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135444.roa Signing time: Mon 29 Sep 2025 05:00:00 +0000 ROA not before: Mon 29 Sep 2025 04:55:00 +0000 ROA not after: Mon 28 Sep 2026 05:00:00 +0000 asID: 135444 IP address blocks: 103.74.5.0/24 maxlen: 24 2001:df1:a9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 08:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:5d:ef:1a:ee:8a:63:36:96:88:b9:fa:12:a1:26:4b:34:05:3a:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 29 04:55:00 2025 GMT Not After : Sep 28 05:00:00 2026 GMT Subject: CN=902F9316E9773A05A18F829E336821F56D5BCE11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:16:22:35:f2:13:6e:16:41:96:7d:da:d4:b8: 2b:1e:54:46:2f:9b:90:5a:e0:e0:05:7b:8c:97:23: f2:2d:cb:a0:da:20:80:27:dd:91:91:b4:7e:cb:f2: 70:57:c2:8c:f8:aa:2d:53:fd:c8:03:16:91:6c:e5: 19:91:2b:1a:ca:ce:4d:09:bd:67:64:dc:0e:73:5e: aa:2c:01:82:90:44:b3:1b:2d:23:c5:ae:f9:28:62: 26:73:36:7f:8a:17:aa:46:cc:a2:fe:0c:e4:fc:3e: 5c:44:9a:82:22:b9:9e:cc:2a:f5:1b:87:8a:d7:04: 60:4d:b4:7b:3d:eb:58:c7:12:50:b0:f7:4b:47:37: 85:99:a1:8f:a1:fa:a4:01:f4:e2:ff:0f:b8:80:a6: 84:c9:ff:25:3e:12:f9:32:ff:b7:89:b9:34:df:1e: 11:fd:e1:24:ee:58:55:ed:c9:72:b5:ea:1b:b3:05: 9f:14:36:6a:7d:68:05:93:ad:5c:3e:27:68:b8:51: 10:3b:30:bb:86:c2:b4:e9:28:4f:20:c4:ef:3c:9d: 52:f6:3e:5a:4c:9c:c4:56:0c:aa:19:44:fb:91:84: fb:07:b4:63:6d:4f:3c:4c:e9:80:e5:3d:11:13:d3: 65:9a:05:cc:7e:fe:9d:2c:9d:15:f8:40:18:0b:d8: e4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:2F:93:16:E9:77:3A:05:A1:8F:82:9E:33:68:21:F5:6D:5B:CE:11 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135444.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.74.5.0/24 IPv6: 2001:df1:a9c0::/48 Signature Algorithm: sha256WithRSAEncryption 54:f4:b0:09:d5:36:cd:cf:da:77:c7:23:ab:70:58:ac:9b:dd: 6d:71:67:22:81:5c:ae:37:5e:b3:d3:02:08:ac:2a:5b:60:cb: 7f:00:dc:f4:9b:78:45:e1:ec:51:d7:e3:cf:6c:aa:a7:b7:5b: de:3e:9a:5c:72:86:61:4f:dd:58:d3:fd:47:e9:dc:0a:47:16: 65:d4:6f:16:22:fb:32:78:cb:63:23:4f:33:6b:74:0e:38:21: cf:74:11:c3:5e:d7:eb:12:5b:c0:7a:80:6a:25:a9:9d:00:45: 5d:bb:93:3d:82:f2:3e:0a:f6:2c:db:26:71:1b:de:5f:0e:0c: cf:e1:92:ab:5f:db:89:ee:b6:12:96:21:1a:07:d6:27:e1:ab: e8:aa:41:9e:96:d4:df:29:19:7c:52:47:78:c2:10:3f:6e:4f: 00:06:88:c8:b6:9a:d3:8d:88:99:8a:4b:9d:ff:13:a2:74:13: e4:64:60:1e:f7:0e:29:f7:c0:b9:99:92:5a:df:7d:f1:69:b8: 29:72:63:04:58:de:8c:73:63:83:39:97:12:81:5e:d3:a6:58: fd:39:09:83:b8:22:80:43:24:a2:8d:6c:97:1c:2e:56:02:bb: a1:53:46:db:3c:2a:af:84:d9:41:16:a8:1e:f9:c4:bf:7a:f7: 63:26:37:14 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUcl3vGu6KYzaWiLn6EqEmSzQFOvgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkyOTA0NTUwMFoX DTI2MDkyODA1MDAwMFowMzExMC8GA1UEAxMoOTAyRjkzMTZFOTc3M0EwNUExOEY4 MjlFMzM2ODIxRjU2RDVCQ0UxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANEWIjXyE24WQZZ92tS4Kx5URi+bkFrg4AV7jJcj8i3LoNoggCfdkZG0fsvy cFfCjPiqLVP9yAMWkWzlGZErGsrOTQm9Z2TcDnNeqiwBgpBEsxstI8Wu+ShiJnM2 f4oXqkbMov4M5Pw+XESagiK5nswq9RuHitcEYE20ez3rWMcSULD3S0c3hZmhj6H6 pAH04v8PuICmhMn/JT4S+TL/t4m5NN8eEf3hJO5YVe3JcrXqG7MFnxQ2an1oBZOt XD4naLhREDswu4bCtOkoTyDE7zydUvY+WkycxFYMqhlE+5GE+we0Y21PPEzpgOU9 ERPTZZoFzH7+nSydFfhAGAvY5N8CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSQL5MW 6Xc6BaGPgp4zaCH1bVvOETAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNTQ0NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGdKBTAPBAIAAjAJAwcAIAEN8anAMA0GCSqGSIb3DQEBCwUAA4IB AQBU9LAJ1TbNz9p3xyOrcFism91tcWcigVyuN16z0wIIrCpbYMt/ANz0m3hF4exR 1+PPbKqnt1vePppccoZhT91Y0/1H6dwKRxZl1G8WIvsyeMtjI08za3QOOCHPdBHD XtfrElvAeoBqJamdAEVdu5M9gvI+CvYs2yZxG95fDgzP4ZKrX9uJ7rYSliEaB9Yn 4avoqkGeltTfKRl8Ukd4whA/bk8ABojItprTjYiZikud/xOidBPkZGAe9w4p98C5 mZJa333xabgpcmMEWN6Mc2ODOZcSgV7Tplj9OQmDuCKAQySijWyXHC5WAruhU0bb PCqvhNlBFqge+cS/evdjJjcU -----END CERTIFICATE-----Generated at Tue Oct 21 11:28:13 2025 by rpki-client