$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56237.roa File: AS56237.roa (raw, json) Hash identifier: Algm3FLzBcOvpL9GxeYMwo8sTrddBV76Zill0s2i0hY= Subject key identifier: 68:08:71:6C:D7:41:6F:47:DD:42:36:CA:7C:15:96:D6:3C:5E:3C:03 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 56C902DA729DC5FF132D35B9405CC2120E98AED5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56237.roa Signing time: Thu 11 Sep 2025 07:00:00 +0000 ROA not before: Thu 11 Sep 2025 06:55:00 +0000 ROA not after: Thu 10 Sep 2026 07:00:00 +0000 asID: 56237 IP address blocks: 121.50.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:c9:02:da:72:9d:c5:ff:13:2d:35:b9:40:5c:c2:12:0e:98:ae:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 11 06:55:00 2025 GMT Not After : Sep 10 07:00:00 2026 GMT Subject: CN=6808716CD7416F47DD4236CA7C1596D63C5E3C03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d8:94:24:6f:48:e0:fb:96:7b:47:63:79:97: 34:3d:de:f1:d9:98:a9:ea:f9:00:35:ed:15:7f:02: c2:af:e3:5e:07:b0:0b:b6:8e:9b:a9:24:66:fc:b5: d6:cc:f0:71:1a:07:06:d9:38:4b:5f:f9:d1:94:95: 7c:52:f7:ee:b0:4c:4a:5e:f5:e8:cc:da:f6:82:f4: df:82:f6:ea:5f:37:4d:f1:40:d1:f7:ce:b1:44:64: d4:84:f6:a0:0a:c8:7f:52:37:ec:ec:9c:4f:6b:a5: a5:17:49:8a:df:0a:2a:64:97:92:b8:fc:b1:95:7f: fd:50:97:40:9c:c5:d1:f8:de:5f:87:33:7c:0a:54: 90:3b:e4:a8:54:c0:dd:d0:ed:c1:12:3d:8b:84:6e: e1:28:fe:15:0c:cb:c0:b4:04:54:96:18:0d:34:0b: aa:2f:24:17:2a:7d:59:d0:f7:59:e0:02:ad:8d:c9: e6:27:bb:06:5a:a6:44:01:af:8a:1a:6e:92:8d:31: 0f:b7:b5:e7:44:73:26:42:1c:66:34:ee:b4:96:0e: b9:91:43:d7:76:b6:15:26:f3:2f:ef:d7:35:5d:3c: 05:69:31:60:21:75:8f:07:87:54:f7:d4:fe:41:9a: f5:e4:ab:bc:17:c5:46:23:33:8d:90:25:f2:6c:5b: 18:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:08:71:6C:D7:41:6F:47:DD:42:36:CA:7C:15:96:D6:3C:5E:3C:03 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.50.32.0/24 Signature Algorithm: sha256WithRSAEncryption 81:35:6a:20:66:c2:de:80:a7:f4:02:ea:ba:f7:bb:71:6f:d7: 43:ff:e5:2e:6d:bd:b8:a4:b7:83:ae:ca:45:34:78:38:13:12: ec:e9:6c:6f:64:bc:5f:1c:64:7a:d6:38:5e:49:51:5c:45:3c: 7f:5d:51:80:a5:79:5a:16:76:5e:a8:48:5d:ba:89:ea:dc:f6: 39:7b:33:5a:3a:a1:97:c5:2f:c4:91:62:e6:e2:9d:f9:88:f8: 0f:11:99:2b:b8:25:09:7a:2a:ae:64:58:c8:0c:02:d4:89:47: 08:f4:e8:c5:ea:a6:75:af:57:e4:99:d6:f4:ae:fe:45:cb:06: 67:a2:a4:57:3b:e6:a5:55:92:0b:16:82:91:67:94:0b:8a:95: 24:6d:3e:81:2d:62:54:61:24:88:21:b3:5f:97:35:77:e3:9f: 13:20:b6:fd:32:f5:e1:44:fa:91:e0:5b:ce:64:f9:15:53:6d: 16:3e:e8:4e:b5:be:1c:10:a7:5d:11:87:d6:86:6f:0c:d8:cd: 3d:0c:84:42:0d:a3:84:05:f3:bb:36:66:f7:3a:fa:59:20:95: fc:7f:ca:b9:98:0f:7f:e0:0e:13:14:0d:56:fc:61:32:f7:c5: 3b:df:27:c7:dc:92:e8:fc:e7:24:18:e8:de:2c:b4:55:d0:cc: 56:d4:6f:87 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUVskC2nKdxf8TLTW5QFzCEg6YrtUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkxMTA2NTUwMFoX DTI2MDkxMDA3MDAwMFowMzExMC8GA1UEAxMoNjgwODcxNkNENzQxNkY0N0RENDIz NkNBN0MxNTk2RDYzQzVFM0MwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJbYlCRvSOD7lntHY3mXND3e8dmYqer5ADXtFX8Cwq/jXgewC7aOm6kkZvy1 1szwcRoHBtk4S1/50ZSVfFL37rBMSl716Mza9oL034L26l83TfFA0ffOsURk1IT2 oArIf1I37OycT2ulpRdJit8KKmSXkrj8sZV//VCXQJzF0fjeX4czfApUkDvkqFTA 3dDtwRI9i4Ru4Sj+FQzLwLQEVJYYDTQLqi8kFyp9WdD3WeACrY3J5ie7BlqmRAGv ihpuko0xD7e150RzJkIcZjTutJYOuZFD13a2FSbzL+/XNV08BWkxYCF1jweHVPfU /kGa9eSrvBfFRiMzjZAl8mxbGGkCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRoCHFs 10FvR91CNsp8FZbWPF48AzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU2MjM3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAeTIgMA0GCSqGSIb3DQEBCwUAA4IBAQCBNWogZsLegKf0Auq697tx b9dD/+Uubb24pLeDrspFNHg4ExLs6WxvZLxfHGR61jheSVFcRTx/XVGApXlaFnZe qEhduonq3PY5ezNaOqGXxS/EkWLm4p35iPgPEZkruCUJeiquZFjIDALUiUcI9OjF 6qZ1r1fkmdb0rv5FywZnoqRXO+alVZILFoKRZ5QLipUkbT6BLWJUYSSIIbNflzV3 458TILb9MvXhRPqR4FvOZPkVU20WPuhOtb4cEKddEYfWhm8M2M09DIRCDaOEBfO7 Nmb3OvpZIJX8f8q5mA9/4A4TFA1W/GEy98U73yfH3JLo/OckGOjeLLRV0MxW1G+H -----END CERTIFICATE-----Generated at Mon Oct 20 03:04:07 2025 by rpki-client