$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140479.roa File: AS140479.roa (raw, json) Hash identifier: eXawwuajX01Je4eV/kEOgC1Y2Tmyq/X2Y0mApsVqbHo= Subject key identifier: B3:1F:DC:90:5E:BE:3F:3E:24:C5:E5:4D:9C:F6:0C:E5:01:A7:5C:D7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 577721C3AFDE6C3DF155E7E7AFC3A4247CD52B78 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140479.roa Signing time: Fri 15 Aug 2025 09:00:00 +0000 ROA not before: Fri 15 Aug 2025 08:55:00 +0000 ROA not after: Fri 14 Aug 2026 09:00:00 +0000 asID: 140479 IP address blocks: 103.154.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:77:21:c3:af:de:6c:3d:f1:55:e7:e7:af:c3:a4:24:7c:d5:2b:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 15 08:55:00 2025 GMT Not After : Aug 14 09:00:00 2026 GMT Subject: CN=B31FDC905EBE3F3E24C5E54D9CF60CE501A75CD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:96:b2:10:36:ac:6c:aa:49:67:87:cc:ea:47: ab:13:55:c2:79:4a:e6:9e:a6:4f:d7:0b:84:28:bd: 3b:63:25:c5:d6:09:b4:92:4d:ce:52:6f:4c:ba:49: 11:02:69:71:52:d9:ff:51:4c:5a:14:d5:e1:3c:0d: 70:0c:f4:c3:1a:1f:34:9e:13:70:c6:b2:35:48:4c: 31:38:eb:62:5d:e2:11:a1:84:24:92:ad:1c:bb:c5: bd:35:00:ec:5c:11:1b:22:85:44:12:5e:e8:fc:d5: f3:ef:92:2e:1d:58:e5:c1:03:6d:3a:f4:45:cd:e1: eb:47:59:bf:62:13:3d:d1:1f:6b:24:26:d2:62:c7: ab:dd:e2:09:3b:b7:bb:15:07:24:87:d0:76:cd:58: 60:a5:10:d8:08:f5:6c:ab:7f:78:1d:1b:84:8c:0d: d8:70:61:04:ed:df:64:24:be:23:07:a1:f7:1e:bc: e7:5b:32:33:8c:5b:5e:ff:aa:39:c6:e2:58:a7:9b: 40:1b:f9:85:a6:a0:78:46:45:ed:49:b0:f7:69:60: a9:f6:cd:89:0e:80:9a:b8:27:f2:cd:31:5e:c7:e5: 87:ed:e1:e4:6f:d2:cf:b8:c1:32:00:3f:b8:30:07: bd:9d:f0:9d:31:ba:bc:05:99:5b:bd:af:e6:1e:70: 77:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:1F:DC:90:5E:BE:3F:3E:24:C5:E5:4D:9C:F6:0C:E5:01:A7:5C:D7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140479.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.52.0/23 Signature Algorithm: sha256WithRSAEncryption 35:3a:7f:44:d8:fa:53:f2:01:00:36:a1:5c:2e:b8:fd:6f:1e: 52:97:67:7a:87:02:17:dc:71:fe:5b:3d:93:50:c8:4b:3e:0d: 7a:c7:b7:47:4d:0f:2b:40:e0:9c:1e:c8:dc:38:bb:b1:f0:22: 8b:2f:e9:ad:c9:72:1c:96:b7:87:75:88:5a:04:b3:3a:64:13: 0f:91:98:ec:95:ed:09:53:81:ff:4c:81:97:0e:1d:35:ad:2f: d5:b6:08:27:0f:8c:05:8f:31:49:78:0f:c7:b4:06:26:c5:b7: b0:98:00:a4:1e:2b:16:15:23:b2:79:d0:c8:20:a3:2e:31:90: 25:ec:14:09:6d:12:c9:34:84:30:d7:74:85:50:7c:02:c5:82: f2:7c:84:5b:f8:e5:83:e4:81:28:38:5a:70:10:2f:d7:e8:45: 74:ad:57:b2:6a:c7:a0:1e:cf:a6:38:92:d7:c6:79:db:11:cb: e8:ac:62:98:d3:1d:fd:de:e8:94:5c:51:b7:42:83:eb:2c:57: 56:6a:55:fa:b3:13:66:54:05:0f:35:03:0c:c3:2f:ba:41:5f: 75:1b:18:c3:bc:59:1d:29:e4:05:7d:f0:c1:3b:4b:ed:36:5d: 1f:cf:a3:93:12:73:18:d5:29:c1:1c:7b:b2:ac:c9:43:32:ba: b8:b4:81:4a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUV3chw6/ebD3xVefnr8OkJHzVK3gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgxNTA4NTUwMFoX DTI2MDgxNDA5MDAwMFowMzExMC8GA1UEAxMoQjMxRkRDOTA1RUJFM0YzRTI0QzVF NTREOUNGNjBDRTUwMUE3NUNENzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPqWshA2rGyqSWeHzOpHqxNVwnlK5p6mT9cLhCi9O2MlxdYJtJJNzlJvTLpJ EQJpcVLZ/1FMWhTV4TwNcAz0wxofNJ4TcMayNUhMMTjrYl3iEaGEJJKtHLvFvTUA 7FwRGyKFRBJe6PzV8++SLh1Y5cEDbTr0Rc3h60dZv2ITPdEfayQm0mLHq93iCTu3 uxUHJIfQds1YYKUQ2Aj1bKt/eB0bhIwN2HBhBO3fZCS+Iweh9x6851syM4xbXv+q OcbiWKebQBv5haageEZF7Umw92lgqfbNiQ6Amrgn8s0xXsflh+3h5G/Sz7jBMgA/ uDAHvZ3wnTG6vAWZW72v5h5wd8cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSzH9yQ Xr4/PiTF5U2c9gzlAadc1zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeaNDANBgkqhkiG9w0BAQsFAAOCAQEANTp/RNj6U/IBADahXC64 /W8eUpdneocCF9xx/ls9k1DISz4Nese3R00PK0DgnB7I3Di7sfAiiy/prclyHJa3 h3WIWgSzOmQTD5GY7JXtCVOB/0yBlw4dNa0v1bYIJw+MBY8xSXgPx7QGJsW3sJgA pB4rFhUjsnnQyCCjLjGQJewUCW0SyTSEMNd0hVB8AsWC8nyEW/jlg+SBKDhacBAv 1+hFdK1XsmrHoB7PpjiS18Z52xHL6KximNMd/d7olFxRt0KD6yxXVmpV+rMTZlQF DzUDDMMvukFfdRsYw7xZHSnkBX3wwTtL7TZdH8+jkxJzGNUpwRx7sqzJQzK6uLSB Sg== -----END CERTIFICATE-----Generated at Sat Aug 23 12:02:04 2025 by rpki-client