$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138809.roa File: AS138809.roa (raw, json) Hash identifier: Ps9w4/SzcR0bBaxCrJkknjyLVVKFvVCywyZQy1eFsu8= Subject key identifier: A0:88:89:CB:AA:72:91:1F:17:F7:50:C4:D2:0E:27:A1:A5:39:49:F1 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 105BD2A9816610B9A927FDF18C42B0D0C5D8AD88 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138809.roa Signing time: Fri 08 Aug 2025 05:00:00 +0000 ROA not before: Fri 08 Aug 2025 04:55:00 +0000 ROA not after: Fri 07 Aug 2026 05:00:00 +0000 asID: 138809 IP address blocks: 103.134.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 07:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:5b:d2:a9:81:66:10:b9:a9:27:fd:f1:8c:42:b0:d0:c5:d8:ad:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 8 04:55:00 2025 GMT Not After : Aug 7 05:00:00 2026 GMT Subject: CN=A08889CBAA72911F17F750C4D20E27A1A53949F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c2:2b:88:41:dc:b6:58:74:64:e3:35:7d:cb: cb:6c:41:1f:17:51:e5:5a:e4:08:96:57:5e:5d:bb: d0:3b:c2:a8:3c:63:c7:36:d1:d3:91:e9:ec:d9:de: f0:6f:09:52:6e:2e:c1:df:2e:39:fc:0a:5e:b0:8f: 5c:36:d8:4b:ea:6a:73:34:2a:c5:bc:4c:4d:e0:2f: ab:76:d2:2c:ac:33:0b:e6:b8:7e:0c:c5:69:af:db: 4a:a2:cc:5d:7d:2c:dc:4f:29:3e:3c:cb:48:78:31: dd:d2:1e:de:09:20:66:40:93:33:87:31:35:ba:37: 16:42:bf:98:c9:12:71:2b:53:2b:ea:26:06:a3:8a: 6f:11:b4:df:e3:a6:58:84:7e:2d:94:40:e1:d3:15: e1:a4:72:ac:de:d0:8d:f2:5b:6b:76:d7:44:62:bc: 1e:2d:a6:ba:ad:58:cf:57:6c:b3:13:0b:32:2a:1b: 64:fd:ea:76:24:8d:cf:f7:00:3f:8b:48:79:52:eb: 28:8f:0b:6d:6f:b6:ab:f7:59:06:bf:4d:12:99:82: 88:c7:90:aa:73:ce:9f:a9:83:69:1f:7a:2f:6d:0d: 55:ad:a3:da:15:94:d6:4c:c0:28:a1:04:ad:e4:e8: 42:84:40:9a:36:6c:30:d0:f9:32:2c:f0:88:43:c3: 1d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:88:89:CB:AA:72:91:1F:17:F7:50:C4:D2:0E:27:A1:A5:39:49:F1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138809.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.228.0/22 Signature Algorithm: sha256WithRSAEncryption 7e:81:85:0c:34:04:2d:d6:76:7f:9b:5e:10:06:7f:6d:cb:ad: 35:6e:7a:95:48:39:0f:cf:fd:d1:a3:6c:1e:07:12:48:32:ec: 85:97:35:7f:8f:63:ec:fe:be:b3:01:b7:bc:07:94:46:47:69: 45:31:52:00:54:03:d0:55:3b:01:8a:c8:b7:6f:f9:bf:99:4c: 71:e5:2e:fa:bb:95:98:92:78:fb:c6:82:2c:60:94:4b:cd:9b: 83:f0:7a:3d:0f:c4:be:c7:e1:ef:01:25:ad:95:12:b5:f3:03: 6f:dc:12:eb:52:98:34:68:69:ed:2c:5a:73:9c:fc:dd:c4:ec: 48:88:a7:aa:9c:94:08:f8:61:44:79:84:36:d4:74:61:fb:cc: 16:a3:85:ed:a0:e9:06:e1:12:4a:f8:7a:41:57:42:12:09:c4: cd:dc:6d:7b:b0:92:27:0d:f1:0c:33:b8:2d:f2:a4:bd:a3:e1: 14:dc:1f:66:7c:68:86:ba:4a:8d:43:5c:35:e3:74:88:40:e6: 20:dd:1f:e6:ba:b7:92:f2:1c:b7:22:e2:a7:87:cd:88:8c:18: 33:33:6f:0b:21:0a:00:39:ea:1e:12:1e:68:17:10:92:e7:64: c4:e5:7b:8e:6a:a6:ce:9f:92:7e:69:5a:7f:a3:3f:57:80:63: ba:1e:cf:9f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUEFvSqYFmELmpJ/3xjEKw0MXYrYgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgwODA0NTUwMFoX DTI2MDgwNzA1MDAwMFowMzExMC8GA1UEAxMoQTA4ODg5Q0JBQTcyOTExRjE3Rjc1 MEM0RDIwRTI3QTFBNTM5NDlGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJrCK4hB3LZYdGTjNX3Ly2xBHxdR5VrkCJZXXl270DvCqDxjxzbR05Hp7Nne 8G8JUm4uwd8uOfwKXrCPXDbYS+pqczQqxbxMTeAvq3bSLKwzC+a4fgzFaa/bSqLM XX0s3E8pPjzLSHgx3dIe3gkgZkCTM4cxNbo3FkK/mMkScStTK+omBqOKbxG03+Om WIR+LZRA4dMV4aRyrN7QjfJba3bXRGK8Hi2muq1Yz1dssxMLMiobZP3qdiSNz/cA P4tIeVLrKI8LbW+2q/dZBr9NEpmCiMeQqnPOn6mDaR96L20NVa2j2hWU1kzAKKEE reToQoRAmjZsMND5MizwiEPDHfMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSgiInL qnKRHxf3UMTSDiehpTlJ8TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgwOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmeG5DANBgkqhkiG9w0BAQsFAAOCAQEAfoGFDDQELdZ2f5teEAZ/ bcutNW56lUg5D8/90aNsHgcSSDLshZc1f49j7P6+swG3vAeURkdpRTFSAFQD0FU7 AYrIt2/5v5lMceUu+ruVmJJ4+8aCLGCUS82bg/B6PQ/Evsfh7wElrZUStfMDb9wS 61KYNGhp7Sxac5z83cTsSIinqpyUCPhhRHmENtR0YfvMFqOF7aDpBuESSvh6QVdC EgnEzdxte7CSJw3xDDO4LfKkvaPhFNwfZnxohrpKjUNcNeN0iEDmIN0f5rq3kvIc tyLip4fNiIwYMzNvCyEKADnqHhIeaBcQkudkxOV7jmqmzp+Sfmlaf6M/V4Bjuh7P nw== -----END CERTIFICATE-----Generated at Sat Aug 23 08:54:37 2025 by rpki-client