$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142367.roa File: AS142367.roa (raw, json) Hash identifier: C/PPrG26QQRK2k6ZCbKvnr65ZJ6uKoNE85BKa2T9fzs= Subject key identifier: 67:1D:E7:86:D0:32:71:27:85:45:E8:21:FD:D0:4E:0F:47:C9:4D:1E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 481ABCBDE1DC6629EC8D867FF37249AC825740F7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142367.roa Signing time: Fri 22 Aug 2025 10:20:28 +0000 ROA not before: Fri 22 Aug 2025 10:15:28 +0000 ROA not after: Fri 21 Aug 2026 10:20:28 +0000 asID: 142367 IP address blocks: 103.167.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:1a:bc:bd:e1:dc:66:29:ec:8d:86:7f:f3:72:49:ac:82:57:40:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 22 10:15:28 2025 GMT Not After : Aug 21 10:20:28 2026 GMT Subject: CN=671DE786D03271278545E821FDD04E0F47C94D1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:bf:8b:05:da:0e:14:35:44:75:26:e4:6d:23: 65:9d:9d:00:8f:f3:39:f2:88:1d:f9:86:09:0c:93: 2c:aa:bf:38:48:3d:5c:ff:dc:9a:8a:58:39:e9:0c: 18:d5:30:97:bc:a6:08:2b:cb:39:0c:9f:c4:8c:69: e0:5f:67:c2:fd:ca:82:29:a6:63:ea:0d:09:68:58: 12:2d:b2:0e:70:02:99:02:d1:07:45:ca:90:f1:d4: 4c:55:31:d6:e4:3d:8c:9e:5a:81:e1:e2:68:20:df: 23:2d:04:a3:a4:e1:c8:12:e6:c4:02:dc:6b:c7:31: 0d:aa:73:8d:a9:38:e0:30:50:27:95:ec:66:98:43: 5e:86:a2:5a:27:12:54:6f:01:4e:eb:81:5d:30:56: 60:5a:da:c3:e0:e1:73:d9:be:99:f8:62:dd:3e:da: fd:3d:cf:db:f5:69:48:e1:85:49:7f:ea:84:b1:eb: 58:5d:6c:6a:d1:88:92:6c:eb:18:ad:22:89:7b:3b: 95:6d:b6:a7:2f:59:75:6d:1c:27:40:16:ef:8f:12: 1d:69:9c:40:00:43:0c:10:f4:1a:45:09:72:a8:80: 5d:e9:6a:59:eb:7e:dc:11:31:96:30:40:f5:ad:41: 22:c6:8a:8b:5c:21:9c:2a:8a:18:e3:0a:2f:88:59: 08:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:1D:E7:86:D0:32:71:27:85:45:E8:21:FD:D0:4E:0F:47:C9:4D:1E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142367.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.217.0/24 Signature Algorithm: sha256WithRSAEncryption 10:09:a8:88:60:15:5b:2c:d2:23:8f:0c:ce:ae:13:f6:12:a1: 44:09:d7:6e:7f:2e:b5:be:5c:d1:da:ef:55:50:f6:0b:49:87: 13:04:2c:79:d2:75:65:4c:6b:51:6b:52:0a:56:64:63:cc:11: 8b:76:54:f9:7d:ed:84:83:d6:aa:5f:42:98:81:f7:6e:96:c2: f6:64:87:89:c8:79:0e:25:94:a0:6a:b2:c6:d0:e6:91:69:51: 87:e3:19:35:40:36:b4:c4:d0:f8:a6:b1:43:62:22:1d:cb:a2: 35:13:ea:53:c7:62:f4:57:d1:ce:ce:99:ce:cb:f6:ba:c1:00: 90:75:83:1c:bb:5f:9e:af:2a:88:05:00:0a:3a:cd:d3:01:1e: 4c:c1:33:ce:5d:f5:92:9b:0e:53:e8:8f:aa:74:21:10:08:6a: f5:fb:57:f8:c3:7b:af:cb:ec:f4:48:71:13:c9:55:74:82:df: a1:2f:c9:c7:3c:98:43:2c:a2:68:2e:d9:f0:f8:1d:dc:aa:e0: bd:90:9f:6c:d9:e4:7d:60:11:df:bd:d6:a8:f3:93:bc:9f:44: 1a:93:11:36:0e:7c:f1:b5:14:7d:8d:7f:b9:f3:b8:db:45:77: 30:70:14:95:e3:be:d6:f4:ae:37:88:52:c8:7c:29:69:70:8b: 0c:1a:fb:26 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUSBq8veHcZinsjYZ/83JJrIJXQPcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgyMjEwMTUyOFoX DTI2MDgyMTEwMjAyOFowMzExMC8GA1UEAxMoNjcxREU3ODZEMDMyNzEyNzg1NDVF ODIxRkREMDRFMEY0N0M5NEQxRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOa/iwXaDhQ1RHUm5G0jZZ2dAI/zOfKIHfmGCQyTLKq/OEg9XP/cmopYOekM GNUwl7ymCCvLOQyfxIxp4F9nwv3KgimmY+oNCWhYEi2yDnACmQLRB0XKkPHUTFUx 1uQ9jJ5ageHiaCDfIy0Eo6ThyBLmxALca8cxDapzjak44DBQJ5XsZphDXoaiWicS VG8BTuuBXTBWYFraw+Dhc9m+mfhi3T7a/T3P2/VpSOGFSX/qhLHrWF1satGIkmzr GK0iiXs7lW22py9ZdW0cJ0AW748SHWmcQABDDBD0GkUJcqiAXelqWet+3BExljBA 9a1BIsaKi1whnCqKGOMKL4hZCDMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRnHeeG 0DJxJ4VF6CH90E4PR8lNHjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM2Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGen2TANBgkqhkiG9w0BAQsFAAOCAQEAEAmoiGAVWyzSI48Mzq4T 9hKhRAnXbn8utb5c0drvVVD2C0mHEwQsedJ1ZUxrUWtSClZkY8wRi3ZU+X3thIPW ql9CmIH3bpbC9mSHich5DiWUoGqyxtDmkWlRh+MZNUA2tMTQ+KaxQ2IiHcuiNRPq U8di9FfRzs6Zzsv2usEAkHWDHLtfnq8qiAUACjrN0wEeTMEzzl31kpsOU+iPqnQh EAhq9ftX+MN7r8vs9EhxE8lVdILfoS/JxzyYQyyiaC7Z8Pgd3KrgvZCfbNnkfWAR 373WqPOTvJ9EGpMRNg588bUUfY1/ufO420V3MHAUleO+1vSuN4hSyHwpaXCLDBr7 Jg== -----END CERTIFICATE-----Generated at Sat Aug 23 12:01:58 2025 by rpki-client