$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138128.roa File: AS138128.roa (raw, json) Hash identifier: q0/gu1/jQsaFOl5vO69jEb2QsfMKryTog64565xcbuk= Subject key identifier: 1F:90:7A:33:BD:39:A2:62:BC:99:CD:49:CF:84:0B:54:FB:82:27:E0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0ED838E180539A7223AB05934B9E0D5136D7FF56 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138128.roa Signing time: Wed 18 Jun 2025 07:00:00 +0000 ROA not before: Wed 18 Jun 2025 06:55:00 +0000 ROA not after: Wed 17 Jun 2026 07:00:00 +0000 asID: 138128 IP address blocks: 103.185.36.0/23 maxlen: 24 2407:7c0::/40 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:d8:38:e1:80:53:9a:72:23:ab:05:93:4b:9e:0d:51:36:d7:ff:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 18 06:55:00 2025 GMT Not After : Jun 17 07:00:00 2026 GMT Subject: CN=1F907A33BD39A262BC99CD49CF840B54FB8227E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:78:cd:30:dd:61:1d:75:7a:35:c5:4b:74:37: 1e:14:86:54:61:f3:00:80:38:cd:b8:50:84:20:6c: d0:c6:dc:23:28:1a:d0:d3:0d:e3:73:12:d3:5e:ae: 5b:21:7c:0c:43:36:9d:df:47:b6:bc:ab:6f:ad:36: 4e:ad:55:2e:6d:8a:9b:72:f4:83:01:94:b7:05:a6: 3d:4b:b5:60:b8:93:ec:79:ed:d1:38:23:f3:b4:63: bf:34:81:f0:5f:fb:fe:ed:ee:5c:1c:68:24:1a:27: cb:ef:41:f7:dc:52:d0:10:52:b6:7d:25:1b:65:82: e7:2a:0d:54:59:65:e0:44:11:3c:64:c6:7f:93:66: d2:70:aa:54:bf:d8:e9:d2:22:67:5a:8b:6d:57:e4: 70:35:1c:82:69:e3:a9:7f:5f:35:7b:e5:1e:81:39: 92:53:2b:db:2c:92:29:b0:ee:a7:e4:f4:3e:ce:89: 7a:d6:1c:83:9d:aa:b6:ef:8c:00:9d:da:15:06:3c: 6c:29:d5:26:cb:2c:49:ef:c5:b6:c6:68:b1:57:9b: 3e:fe:f7:8c:e4:e0:3d:ae:71:c5:06:9c:aa:63:5a: 6f:5d:72:51:f9:f0:23:69:c3:35:78:64:7f:8a:3d: 6d:14:8a:68:e0:6e:3d:52:2f:58:90:c8:36:f0:89: 41:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:90:7A:33:BD:39:A2:62:BC:99:CD:49:CF:84:0B:54:FB:82:27:E0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138128.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.36.0/23 IPv6: 2407:7c0::/40 Signature Algorithm: sha256WithRSAEncryption 44:12:a6:21:86:cf:f5:43:90:db:99:19:6f:8b:a4:30:2f:20: 4c:76:6f:5b:be:6a:7e:de:81:2e:e7:b5:3c:dd:ff:d6:b2:66: db:9e:42:fb:3b:33:12:c9:54:c3:1b:77:ae:ff:be:73:83:e5: 5f:11:5b:0c:7d:ee:6f:a6:58:4a:d1:27:f7:c9:8b:6b:5d:b6: 5c:68:1f:d4:99:41:a8:a7:85:98:a8:40:bb:67:cb:11:04:2a: e6:7c:eb:94:08:76:71:9e:58:5a:f7:fd:9b:c0:a3:8a:bc:b9: 76:69:91:b5:7f:72:d7:65:2c:33:6a:da:7f:ec:ed:f5:16:9a: 1f:08:61:69:c6:c4:20:e4:9a:70:1b:3f:85:3d:e0:c6:7e:56: ba:50:94:75:9d:a9:d5:60:da:73:88:f3:04:f4:e9:63:93:68: 62:29:61:b4:27:17:37:ae:27:df:41:81:6a:e8:7d:8b:33:d5: 77:b0:19:de:03:24:3c:aa:5f:bd:4b:b8:e7:2c:5f:cf:5d:7b: 84:be:24:8e:9a:39:7e:e3:20:49:7f:8f:e8:d9:c9:90:5f:e6: c4:f0:32:9a:0b:04:8b:ff:60:ff:2c:4e:6d:a6:93:be:f2:98: 34:ae:bd:a6:62:9b:13:df:ce:f0:75:7d:1d:22:82:72:88:53: 2d:b4:7c:e0 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgIUDtg44YBTmnIjqwWTS54NUTbX/1YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYxODA2NTUwMFoX DTI2MDYxNzA3MDAwMFowMzExMC8GA1UEAxMoMUY5MDdBMzNCRDM5QTI2MkJDOTlD RDQ5Q0Y4NDBCNTRGQjgyMjdFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANF4zTDdYR11ejXFS3Q3HhSGVGHzAIA4zbhQhCBs0MbcIyga0NMN43MS016u WyF8DEM2nd9Htryrb602Tq1VLm2Km3L0gwGUtwWmPUu1YLiT7Hnt0Tgj87RjvzSB 8F/7/u3uXBxoJBony+9B99xS0BBStn0lG2WC5yoNVFll4EQRPGTGf5Nm0nCqVL/Y 6dIiZ1qLbVfkcDUcgmnjqX9fNXvlHoE5klMr2yySKbDup+T0Ps6JetYcg52qtu+M AJ3aFQY8bCnVJsssSe/FtsZosVebPv73jOTgPa5xxQacqmNab11yUfnwI2nDNXhk f4o9bRSKaOBuPVIvWJDINvCJQUsCAwEAAaOCAeAwggHcMB0GA1UdDgQWBBQfkHoz vTmiYryZzUnPhAtU+4In4DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODEyOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAvBggrBgEFBQcBBwEB/wQgMB4w DAQCAAEwBgMEAWe5JDAOBAIAAjAIAwYAJAcHwAAwDQYJKoZIhvcNAQELBQADggEB AEQSpiGGz/VDkNuZGW+LpDAvIEx2b1u+an7egS7ntTzd/9ayZtueQvs7MxLJVMMb d67/vnOD5V8RWwx97m+mWErRJ/fJi2tdtlxoH9SZQainhZioQLtnyxEEKuZ865QI dnGeWFr3/ZvAo4q8uXZpkbV/ctdlLDNq2n/s7fUWmh8IYWnGxCDkmnAbP4U94MZ+ VrpQlHWdqdVg2nOI8wT06WOTaGIpYbQnFzeuJ99BgWrofYsz1XewGd4DJDyqX71L uOcsX89de4S+JI6aOX7jIEl/j+jZyZBf5sTwMpoLBIv/YP8sTm2mk77ymDSuvaZi mxPfzvB1fR0ignKIUy20fOA= -----END CERTIFICATE-----Generated at Sun Jun 29 12:13:40 2025 by rpki-client