$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59132.roa File: AS59132.roa (raw, json) Hash identifier: bMHqRrm5CcMzD+DoN1z8ySMwbiG03pALCb7vymUlPPw= Subject key identifier: 4E:5B:44:5D:CD:EA:59:A1:8C:B8:B6:7A:1A:06:BB:21:B0:DF:8F:0A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 79411DEAC6CAC7B44D65CB2BA5F12DE93C6CC98A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59132.roa Signing time: Wed 10 Sep 2025 03:25:27 +0000 ROA not before: Wed 10 Sep 2025 03:20:27 +0000 ROA not after: Wed 09 Sep 2026 03:25:27 +0000 asID: 59132 IP address blocks: 103.183.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:41:1d:ea:c6:ca:c7:b4:4d:65:cb:2b:a5:f1:2d:e9:3c:6c:c9:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 10 03:20:27 2025 GMT Not After : Sep 9 03:25:27 2026 GMT Subject: CN=4E5B445DCDEA59A18CB8B67A1A06BB21B0DF8F0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:81:86:07:71:b8:7e:ad:9f:12:b9:36:04:59: 1d:b5:30:43:49:bb:5e:78:b2:1e:8c:c2:6f:0c:17: 5e:83:ae:35:e1:6e:df:2a:92:c3:c1:9b:2b:e2:63: b6:03:7c:d2:2f:7a:4f:1f:71:10:a3:84:81:79:01: 99:e2:6c:78:cf:1d:94:f1:94:28:f5:8e:34:3b:da: 57:7f:90:a4:60:a3:da:67:b6:29:c0:b9:76:d8:49: 1d:08:e6:55:ae:42:fc:0e:b1:bd:4f:e1:c5:87:19: f0:57:2c:57:74:af:f0:25:01:19:13:25:f0:e6:4c: 79:69:db:3f:3e:ae:81:4a:98:43:b1:59:c5:8f:20: 43:a6:1d:de:37:71:eb:d4:df:5c:50:52:f6:21:31: 84:8a:cf:6a:2a:82:32:09:7f:0d:f3:e8:6a:6a:48: ad:49:d4:52:51:7f:5b:9d:19:7a:d0:54:7b:d5:86: b8:bd:12:2a:16:a8:c3:a0:5e:9e:72:ce:c0:35:39: 78:c6:6c:dc:d2:1f:7a:3d:3d:c5:6c:c7:2f:f7:39: c4:fc:8e:34:19:57:c9:6b:bd:7a:e4:16:8d:23:2c: 08:7c:9a:3c:34:41:9f:e0:6b:30:d7:63:91:ae:f9: 5b:43:c2:a3:ca:80:fd:74:af:a1:5e:21:39:52:f3: a3:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:5B:44:5D:CD:EA:59:A1:8C:B8:B6:7A:1A:06:BB:21:B0:DF:8F:0A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.255.0/24 Signature Algorithm: sha256WithRSAEncryption 55:97:93:93:96:89:c6:97:70:3f:ba:08:81:41:4f:24:a2:21: 49:20:e5:11:db:b9:e3:64:3e:4b:c3:f8:90:ab:38:3e:f6:48: ee:dc:7d:2e:dd:62:33:b7:8c:86:60:50:a4:04:cf:6f:5b:cd: d2:18:68:54:be:ed:c4:62:79:05:87:05:98:33:95:fa:11:44: 95:a0:72:fd:79:8a:36:f9:d8:3a:33:1f:fb:02:83:f2:c1:57: 99:04:5c:46:00:74:2b:33:cd:ab:58:d4:ab:ac:b7:2e:4b:d7: b4:83:29:c6:ab:a0:9a:77:74:d3:aa:05:ee:19:83:90:27:ca: fa:3d:c0:d9:2d:08:b9:2d:70:fd:54:5d:35:0e:36:b7:9c:8e: 11:12:61:3a:e8:8c:e2:5d:29:c8:d0:a1:19:e8:d4:4e:ac:da: 32:23:12:2b:94:4d:fa:47:aa:6d:8e:f4:06:3d:4b:09:38:4b: 00:2a:5a:0a:34:ed:05:a8:f9:c8:24:de:08:e0:25:e7:ea:92: d6:8c:10:05:30:48:93:41:f4:0b:2a:ca:f3:9b:0b:56:27:57: 57:5e:3a:0c:2d:4a:dc:f5:11:77:c9:8f:28:ca:03:ad:1e:3f: 8d:6c:f6:b2:e7:36:7d:d3:15:14:b0:f0:23:97:bc:aa:5d:eb: a0:50:48:0d -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUeUEd6sbKx7RNZcsrpfEt6TxsyYowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkxMDAzMjAyN1oX DTI2MDkwOTAzMjUyN1owMzExMC8GA1UEAxMoNEU1QjQ0NURDREVBNTlBMThDQjhC NjdBMUEwNkJCMjFCMERGOEYwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALOBhgdxuH6tnxK5NgRZHbUwQ0m7XniyHozCbwwXXoOuNeFu3yqSw8GbK+Jj tgN80i96Tx9xEKOEgXkBmeJseM8dlPGUKPWONDvaV3+QpGCj2me2KcC5dthJHQjm Va5C/A6xvU/hxYcZ8FcsV3Sv8CUBGRMl8OZMeWnbPz6ugUqYQ7FZxY8gQ6Yd3jdx 69TfXFBS9iExhIrPaiqCMgl/DfPoampIrUnUUlF/W50ZetBUe9WGuL0SKhaow6Be nnLOwDU5eMZs3NIfej09xWzHL/c5xPyONBlXyWu9euQWjSMsCHyaPDRBn+BrMNdj ka75W0PCo8qA/XSvoV4hOVLzo70CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBROW0Rd zepZoYy4tnoaBrshsN+PCjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU5MTMyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ7f/MA0GCSqGSIb3DQEBCwUAA4IBAQBVl5OTlonGl3A/ugiBQU8k oiFJIOUR27njZD5Lw/iQqzg+9kju3H0u3WIzt4yGYFCkBM9vW83SGGhUvu3EYnkF hwWYM5X6EUSVoHL9eYo2+dg6Mx/7AoPywVeZBFxGAHQrM82rWNSrrLcuS9e0gynG q6Cad3TTqgXuGYOQJ8r6PcDZLQi5LXD9VF01Dja3nI4REmE66IziXSnI0KEZ6NRO rNoyIxIrlE36R6ptjvQGPUsJOEsAKloKNO0FqPnIJN4I4CXn6pLWjBAFMEiTQfQL KsrzmwtWJ1dXXjoMLUrc9RF3yY8oygOtHj+NbPay5zZ90xUUsPAjl7yqXeugUEgN -----END CERTIFICATE-----Generated at Mon Oct 20 18:12:43 2025 by rpki-client