$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135482.roa File: AS135482.roa (raw, json) Hash identifier: vZje1sNKK3a2GrmqOOioRF+t5Z6tB8EDWvOj41MHY20= Subject key identifier: 65:A5:7F:3B:69:EA:29:9B:10:AC:BE:B1:6E:72:0F:8A:75:2B:63:9A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 30E8B3968B8419DD317D0E23D9F2E213A9B7036C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135482.roa Signing time: Mon 23 Jun 2025 04:05:43 +0000 ROA not before: Mon 23 Jun 2025 04:00:43 +0000 ROA not after: Mon 22 Jun 2026 04:05:43 +0000 asID: 135482 IP address blocks: 103.118.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:e8:b3:96:8b:84:19:dd:31:7d:0e:23:d9:f2:e2:13:a9:b7:03:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 23 04:00:43 2025 GMT Not After : Jun 22 04:05:43 2026 GMT Subject: CN=65A57F3B69EA299B10ACBEB16E720F8A752B639A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:34:f8:6e:cc:4e:75:f7:a6:31:5f:d2:07:a9: 8a:f9:73:63:53:74:69:40:4e:85:c9:4b:28:7f:7b: b0:7a:00:f8:b2:97:0d:36:37:fa:a5:73:d1:a4:61: b4:05:72:ce:4a:c1:8b:04:0b:e2:4d:89:14:5c:fb: 34:0d:57:42:29:c4:ec:ed:f9:1f:86:ed:81:db:82: 9e:3a:d1:4f:a0:7b:61:aa:af:8b:e8:22:42:28:08: d8:37:f7:af:86:ff:4e:9a:b7:74:72:dd:cf:7b:88: 19:df:64:80:c3:c7:8f:c0:42:a0:37:0d:80:4d:24: b9:71:8c:b5:ee:2b:8c:7a:f0:12:18:8e:7b:b3:a2: fe:93:fe:b1:46:9d:66:ea:50:55:30:ce:68:dd:fc: 4e:a4:e8:d1:9c:90:82:70:65:9a:b3:4b:e1:b5:d2: e9:83:a0:49:66:86:3d:16:e0:a6:fb:a4:ba:c5:70: d5:7b:5f:f5:8d:ea:92:78:3b:00:0d:3a:96:f8:2a: eb:7b:47:d9:0a:44:c5:42:52:15:e5:a7:0e:71:55: 2b:dc:71:34:30:ad:69:44:fc:1d:65:27:3f:21:32: b3:7c:ed:b1:1e:03:03:42:c2:08:d8:01:a3:2c:73: b1:18:19:67:53:1c:7c:d8:a3:96:1c:05:48:5c:56: bb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A5:7F:3B:69:EA:29:9B:10:AC:BE:B1:6E:72:0F:8A:75:2B:63:9A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135482.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.82.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:0a:2d:b7:51:64:21:7b:40:74:7e:5f:cd:a3:e2:de:21:a0: f1:c2:8e:4d:e9:b0:ca:61:3f:0b:8f:ee:91:96:5d:9c:5e:8b: de:d9:88:0c:c0:4c:16:c0:22:5e:51:32:95:0a:3d:54:8f:ae: ae:35:9b:05:bc:28:10:e1:13:1f:0c:7b:c9:70:a5:a4:ec:4f: f2:82:86:49:14:43:8a:26:c7:d6:20:b7:45:c7:c6:79:df:31: 9c:db:21:f1:29:95:6a:60:e1:f2:92:c1:98:dc:f6:f9:cc:49: 98:29:0a:57:42:27:f5:bb:91:e3:d2:65:2e:db:77:49:85:bc: b2:10:e6:c0:6a:87:9f:c8:dc:c1:11:a4:7e:6f:52:07:3c:da: 71:78:5d:0b:71:9e:9e:e9:29:f1:86:8d:f2:86:6b:ca:5a:22: 2b:74:c2:7c:f6:ee:f0:f8:0a:3c:d7:35:18:d9:64:e9:12:ae: 3e:b2:4f:85:60:3d:75:b4:06:08:fa:28:c9:f5:70:63:f2:21: a7:e9:08:9e:c1:d9:d7:6f:0b:bb:7e:80:6c:de:cf:89:00:e9: 1d:ae:99:bb:da:0d:dc:be:99:d0:01:6b:57:a0:df:b6:98:14: 3a:28:2d:e1:84:ce:dd:5e:db:35:1f:4c:fd:40:02:5a:a6:41: 0b:7a:04:74 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMOizlouEGd0xfQ4j2fLiE6m3A2wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYyMzA0MDA0M1oX DTI2MDYyMjA0MDU0M1owMzExMC8GA1UEAxMoNjVBNTdGM0I2OUVBMjk5QjEwQUNC RUIxNkU3MjBGOEE3NTJCNjM5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOg0+G7MTnX3pjFf0gepivlzY1N0aUBOhclLKH97sHoA+LKXDTY3+qVz0aRh tAVyzkrBiwQL4k2JFFz7NA1XQinE7O35H4btgduCnjrRT6B7Yaqvi+giQigI2Df3 r4b/Tpq3dHLdz3uIGd9kgMPHj8BCoDcNgE0kuXGMte4rjHrwEhiOe7Oi/pP+sUad ZupQVTDOaN38TqTo0ZyQgnBlmrNL4bXS6YOgSWaGPRbgpvukusVw1Xtf9Y3qkng7 AA06lvgq63tH2QpExUJSFeWnDnFVK9xxNDCtaUT8HWUnPyEys3ztsR4DA0LCCNgB oyxzsRgZZ1McfNijlhwFSFxWux0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRlpX87 aeopmxCsvrFucg+KdStjmjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNTQ4Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd2UjANBgkqhkiG9w0BAQsFAAOCAQEAbwott1FkIXtAdH5fzaPi 3iGg8cKOTemwymE/C4/ukZZdnF6L3tmIDMBMFsAiXlEylQo9VI+urjWbBbwoEOET Hwx7yXClpOxP8oKGSRRDiibH1iC3RcfGed8xnNsh8SmVamDh8pLBmNz2+cxJmCkK V0In9buR49JlLtt3SYW8shDmwGqHn8jcwRGkfm9SBzzacXhdC3Genukp8YaN8oZr yloiK3TCfPbu8PgKPNc1GNlk6RKuPrJPhWA9dbQGCPooyfVwY/Ihp+kInsHZ128L u36AbN7PiQDpHa6Zu9oN3L6Z0AFrV6DftpgUOigt4YTO3V7bNR9M/UACWqZBC3oE dA== -----END CERTIFICATE-----Generated at Sun Jun 29 12:20:43 2025 by rpki-client