$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56239.roa File: AS56239.roa (raw, json) Hash identifier: y1EqdCvG5jzUWBROO6kH0a21yvDTeoLs3Lni9J3RwlE= Subject key identifier: C8:1E:B5:0E:AF:8C:0D:EE:01:B8:E1:14:34:8F:CB:54:F7:EF:64:F3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 30181E9430DDE00BDA29181BA70C207298B4C7F7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56239.roa Signing time: Tue 23 Sep 2025 10:00:00 +0000 ROA not before: Tue 23 Sep 2025 09:55:00 +0000 ROA not after: Tue 22 Sep 2026 10:00:00 +0000 asID: 56239 IP address blocks: 103.157.64.0/23 maxlen: 24 210.211.16.0/21 maxlen: 24 2407:ff40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:18:1e:94:30:dd:e0:0b:da:29:18:1b:a7:0c:20:72:98:b4:c7:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 23 09:55:00 2025 GMT Not After : Sep 22 10:00:00 2026 GMT Subject: CN=C81EB50EAF8C0DEE01B8E114348FCB54F7EF64F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fb:fb:01:de:ff:9b:fe:f3:18:8a:4e:60:04: 99:f8:dc:73:d7:63:48:7f:dd:54:82:68:ed:26:da: 70:06:67:39:2e:da:08:ff:c4:8c:28:81:76:a5:fe: a2:80:ac:73:74:68:9d:f3:de:3f:17:cf:db:47:95: 63:96:b9:6c:28:f8:21:e5:03:d0:79:35:59:b9:6e: b5:f0:60:c2:eb:36:50:53:5d:b2:64:78:09:ca:5b: 32:4b:84:07:80:c3:f4:33:87:57:9b:c6:46:cc:e9: 2d:ab:75:4b:82:fa:db:f4:0b:af:36:4c:41:78:ad: 39:89:e9:b0:b4:3b:41:e9:2f:9c:0e:7f:b2:7f:24: 68:fb:89:ee:f5:c8:2f:55:3e:0a:87:10:1d:0a:e1: 6d:90:35:f9:1b:10:ab:f7:8e:56:8a:af:f1:2a:c3: 33:e6:4e:5f:2a:ce:39:3d:65:9a:f4:27:bb:32:32: a9:a6:e2:28:e0:9f:22:94:52:f8:d8:37:00:39:1f: 4f:81:1b:c3:60:b7:da:a1:6b:85:1a:a4:b4:0a:5a: 7c:99:8c:7e:30:51:df:9e:4a:17:b7:fc:6c:9c:2e: 78:b2:ad:f8:fb:21:0f:2e:c1:ec:03:ba:58:10:c8: 33:82:6f:ea:ae:96:fb:15:f9:3e:61:a1:21:54:b6: 10:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:1E:B5:0E:AF:8C:0D:EE:01:B8:E1:14:34:8F:CB:54:F7:EF:64:F3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.64.0/23 210.211.16.0/21 IPv6: 2407:ff40::/32 Signature Algorithm: sha256WithRSAEncryption 8d:6d:4a:5f:a4:1d:3a:85:65:c5:07:e6:23:ea:c6:63:36:d5: 86:f3:31:8c:fb:16:9e:a0:7c:af:df:d7:42:d0:2c:09:bc:99: 39:17:be:90:7e:dc:18:c0:1f:df:ad:0e:92:c2:03:19:d7:1b: a4:61:6f:6d:42:e2:7a:f6:c9:d8:56:48:95:98:76:ca:15:cd: bd:4b:b9:21:8d:95:c2:0e:c4:34:46:f5:0f:8e:d5:a1:d1:17: b8:12:57:43:1a:bd:14:3f:4a:5c:26:cc:35:92:1b:73:e9:36: a2:9d:7b:f7:38:0e:3a:39:27:73:df:f9:19:f2:81:d5:47:eb: 90:4a:2f:14:a0:9a:78:c4:6a:88:8b:d0:d5:76:25:5c:8d:47: 2e:d0:98:1d:4f:bc:a8:09:89:af:8f:25:06:14:3d:3d:c4:46: fd:a8:12:9f:42:5e:4a:3e:25:7f:3e:b4:fa:88:53:30:42:7a: a3:6c:51:61:a1:f0:d0:d8:5f:72:4e:0a:21:ff:3e:ca:a9:1b: dc:c5:f3:47:65:7d:7f:1b:8d:13:0d:66:fc:e2:0f:b0:41:a3: 88:99:05:86:18:92:c6:be:80:25:ee:b5:24:12:8c:44:3d:8b: c7:bf:42:69:96:f9:c7:7e:27:db:b1:1b:67:54:f8:51:2b:65: d6:83:82:db -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUMBgelDDd4AvaKRgbpwwgcpi0x/cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkyMzA5NTUwMFoX DTI2MDkyMjEwMDAwMFowMzExMC8GA1UEAxMoQzgxRUI1MEVBRjhDMERFRTAxQjhF MTE0MzQ4RkNCNTRGN0VGNjRGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM/7+wHe/5v+8xiKTmAEmfjcc9djSH/dVIJo7SbacAZnOS7aCP/EjCiBdqX+ ooCsc3RonfPePxfP20eVY5a5bCj4IeUD0Hk1WblutfBgwus2UFNdsmR4CcpbMkuE B4DD9DOHV5vGRszpLat1S4L62/QLrzZMQXitOYnpsLQ7QekvnA5/sn8kaPuJ7vXI L1U+CocQHQrhbZA1+RsQq/eOVoqv8SrDM+ZOXyrOOT1lmvQnuzIyqabiKOCfIpRS +Ng3ADkfT4Ebw2C32qFrhRqktApafJmMfjBR355KF7f8bJwueLKt+PshDy7B7AO6 WBDIM4Jv6q6W+xX5PmGhIVS2EIUCAwEAAaOCAeQwggHgMB0GA1UdDgQWBBTIHrUO r4wN7gG44RQ0j8tU9+9k8zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU2MjM5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ51AAwQD0tMQMA0EAgACMAcDBQAkB/9AMA0GCSqGSIb3DQEBCwUA A4IBAQCNbUpfpB06hWXFB+Yj6sZjNtWG8zGM+xaeoHyv39dC0CwJvJk5F76QftwY wB/frQ6SwgMZ1xukYW9tQuJ69snYVkiVmHbKFc29S7khjZXCDsQ0RvUPjtWh0Re4 EldDGr0UP0pcJsw1khtz6TainXv3OA46OSdz3/kZ8oHVR+uQSi8UoJp4xGqIi9DV diVcjUcu0JgdT7yoCYmvjyUGFD09xEb9qBKfQl5KPiV/PrT6iFMwQnqjbFFhofDQ 2F9yTgoh/z7KqRvcxfNHZX1/G40TDWb84g+wQaOImQWGGJLGvoAl7rUkEoxEPYvH v0JplvnHfifbsRtnVPhRK2XWg4Lb -----END CERTIFICATE-----Generated at Mon Oct 20 08:51:38 2025 by rpki-client