$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS134526.roa File: AS134526.roa (raw, json) Hash identifier: zm7RvSPixsishW3oUplVBG1XDAh6YwQAFhDYGYKGkuU= Subject key identifier: 29:B6:22:95:DA:25:15:DE:D8:7E:0B:93:3D:0C:75:E3:C7:EA:F0:02 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5B4491DC6BFA7EFF60B604816A6B0850B53610E7 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS134526.roa Signing time: Tue 24 Feb 2026 02:39:34 +0000 ROA not before: Tue 24 Feb 2026 02:34:34 +0000 ROA not after: Tue 23 Feb 2027 02:39:34 +0000 asID: 134526 IP address blocks: 165.101.24.0/23 maxlen: 23 165.101.24.0/24 maxlen: 24 165.101.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:44:91:dc:6b:fa:7e:ff:60:b6:04:81:6a:6b:08:50:b5:36:10:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 24 02:34:34 2026 GMT Not After : Feb 23 02:39:34 2027 GMT Subject: CN=29B62295DA2515DED87E0B933D0C75E3C7EAF002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:99:41:04:f8:ee:33:10:ec:14:ee:e9:1e:ba: c2:b7:59:7c:9b:62:28:b3:0e:14:07:42:d0:09:23: f9:e2:fc:e5:d3:f1:4f:45:aa:c1:b8:e4:62:79:a4: 5c:97:b5:5a:5a:79:4f:e2:38:fe:59:ea:13:c1:c8: 6b:2f:22:15:92:d6:16:8c:8c:3a:c8:2d:99:f6:b8: ad:d2:da:3d:f7:17:3f:29:ca:a8:37:13:f4:e3:8f: 25:c3:bf:6e:49:90:4f:ed:02:59:f9:43:2b:c6:be: 03:45:1e:21:07:ff:ef:a8:68:d0:b3:72:f5:65:11: b1:ae:7a:5c:e0:82:7a:78:a3:fd:4d:ec:4f:f7:76: aa:ef:0d:51:2c:d2:e3:a9:0c:fc:73:9d:fe:56:87: 35:b3:61:75:ba:5a:54:72:f9:7b:93:73:a5:17:5b: 9d:35:a6:50:c6:22:f3:da:f1:02:f5:19:a6:da:8a: 05:ff:df:c0:18:65:a5:3c:18:29:85:2f:49:72:9b: 96:7f:3e:90:be:1f:ad:cc:b2:1f:f1:fa:5c:36:98: bd:9e:4e:c6:8e:ca:5b:bd:df:4b:7a:72:51:29:35: 1d:74:3e:df:8b:b8:5d:dc:bb:ed:39:18:b2:6c:9e: 24:aa:91:b2:99:bc:72:a6:99:25:73:b5:b9:42:de: 9a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B6:22:95:DA:25:15:DE:D8:7E:0B:93:3D:0C:75:E3:C7:EA:F0:02 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS134526.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.24.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:65:54:d1:30:12:cc:1e:11:7d:00:45:ef:e4:29:61:bb:6c: 0c:86:63:69:5c:ba:95:af:81:3e:51:56:b0:b6:26:52:b8:cc: 18:91:dd:d1:41:2b:78:f1:99:25:a7:ee:59:2a:4a:5b:2e:57: 14:c0:da:7e:bf:a8:49:08:cf:ac:7f:79:e8:1c:69:88:a5:32: 8a:cf:b0:de:f3:47:47:d3:20:06:0f:ca:6c:fc:5b:3a:e8:26: f5:43:da:d7:d3:10:54:b4:a6:76:2d:7c:66:0b:df:d0:22:71: 51:70:e4:63:80:57:6a:b3:35:7a:1d:70:f5:65:0b:6d:c6:be: 93:e5:e2:19:4b:d8:2f:d8:e6:ac:ab:23:1d:99:84:fe:5c:7c: 3e:53:5e:2d:30:49:7f:ea:27:ed:1b:07:93:11:ad:ff:01:15: 67:70:ca:26:c2:df:ac:be:13:89:c6:d2:ad:8f:56:c1:43:fa: 87:2c:eb:f4:d0:e6:f6:9c:e4:a1:c2:2d:19:e4:95:9b:39:73: ae:1a:5f:8f:3b:57:30:22:5c:fc:a3:ea:6c:81:91:d2:7b:a5: d3:27:2b:ac:e5:48:86:b6:e3:00:0c:bc:be:e3:fc:4f:72:8b: 9c:ce:d0:d0:b8:a7:14:21:e1:43:3e:51:c3:e3:27:4c:39:1e: 78:38:fd:08 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUW0SR3Gv6fv9gtgSBamsIULU2EOcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDIyNDAyMzQzNFoX DTI3MDIyMzAyMzkzNFowMzExMC8GA1UEAxMoMjlCNjIyOTVEQTI1MTVERUQ4N0Uw QjkzM0QwQzc1RTNDN0VBRjAwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL6ZQQT47jMQ7BTu6R66wrdZfJtiKLMOFAdC0Akj+eL85dPxT0WqwbjkYnmk XJe1Wlp5T+I4/lnqE8HIay8iFZLWFoyMOsgtmfa4rdLaPfcXPynKqDcT9OOPJcO/ bkmQT+0CWflDK8a+A0UeIQf/76ho0LNy9WURsa56XOCCenij/U3sT/d2qu8NUSzS 46kM/HOd/laHNbNhdbpaVHL5e5NzpRdbnTWmUMYi89rxAvUZptqKBf/fwBhlpTwY KYUvSXKbln8+kL4frcyyH/H6XDaYvZ5Oxo7KW73fS3pyUSk1HXQ+34u4Xdy77TkY smyeJKqRspm8cqaZJXO1uULemnECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQptiKV 2iUV3th+C5M9DHXjx+rwAjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzNDUyNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaVlGDANBgkqhkiG9w0BAQsFAAOCAQEAf2VU0TASzB4RfQBF7+Qp YbtsDIZjaVy6la+BPlFWsLYmUrjMGJHd0UErePGZJafuWSpKWy5XFMDafr+oSQjP rH956BxpiKUyis+w3vNHR9MgBg/KbPxbOugm9UPa19MQVLSmdi18Zgvf0CJxUXDk Y4BXarM1eh1w9WULbca+k+XiGUvYL9jmrKsjHZmE/lx8PlNeLTBJf+on7RsHkxGt /wEVZ3DKJsLfrL4TicbSrY9WwUP6hyzr9NDm9pzkocItGeSVmzlzrhpfjztXMCJc /KPqbIGR0nul0ycrrOVIhrbjAAy8vuP8T3KLnM7Q0LinFCHhQz5Rw+MnTDkeeDj9 CA== -----END CERTIFICATE-----Generated at Mon Mar 2 09:34:51 2026 by rpki-client