$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS135072.roa File: AS135072.roa (raw, json) Hash identifier: uO71BdfJ9eCwD9AsTGHEUq9GOL2RQIg4mb22fuDI3Xw= Subject key identifier: D1:9D:B3:67:E6:8F:B3:C9:5F:0C:F0:14:DE:47:C0:4B:93:B9:C6:67 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 10CCB6E3B9990B5141F0A05AA79A6C4684EBF673 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS135072.roa Signing time: Tue 24 Feb 2026 03:26:36 +0000 ROA not before: Tue 24 Feb 2026 03:21:36 +0000 ROA not after: Tue 23 Feb 2027 03:26:36 +0000 asID: 135072 IP address blocks: 198.15.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:cc:b6:e3:b9:99:0b:51:41:f0:a0:5a:a7:9a:6c:46:84:eb:f6:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 24 03:21:36 2026 GMT Not After : Feb 23 03:26:36 2027 GMT Subject: CN=D19DB367E68FB3C95F0CF014DE47C04B93B9C667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:de:2a:2a:da:fb:38:9e:bc:cf:8b:dd:db:5e: a2:87:1e:8c:3d:01:72:ab:67:33:f9:dc:48:70:43: 31:5f:1d:b9:4c:28:3c:b6:80:0b:8c:c2:c4:98:53: 89:29:87:f9:65:f5:17:3c:0f:45:07:5b:71:eb:e1: 6e:85:21:a0:5d:83:37:21:c6:44:a5:c1:22:8f:85: 82:76:ed:1e:41:43:d4:68:88:3d:a1:18:73:d5:ed: 51:35:dc:7e:5d:4d:40:42:ad:4a:59:b4:d0:df:bb: 2d:45:ce:a1:85:7e:76:bc:6a:07:f5:2e:81:7b:35: 9a:78:4f:1b:53:c1:ed:e1:83:c5:0f:d6:e0:66:a8: 48:79:5e:2f:8b:53:59:97:05:a3:48:15:a6:7c:cd: 35:64:3f:4b:22:3b:e3:6c:ab:8c:98:c9:49:71:ed: 91:f9:a3:64:eb:2b:ce:58:2a:2c:a5:3c:2e:15:a3: c0:7c:d2:b5:7f:b8:88:52:dd:05:7d:15:b5:f6:6d: f1:08:5d:0c:cb:44:4b:f3:00:51:30:02:b4:00:ee: fe:97:2a:bc:75:98:96:e8:e1:54:23:55:db:96:94: f3:d0:73:66:cf:dc:1a:d4:de:a4:0f:95:cf:37:e1: 10:5e:3a:8b:b1:89:ca:6a:ef:03:ff:bf:9d:2e:2c: 98:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:9D:B3:67:E6:8F:B3:C9:5F:0C:F0:14:DE:47:C0:4B:93:B9:C6:67 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS135072.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.15.28.0/24 Signature Algorithm: sha256WithRSAEncryption 23:6a:25:c0:c2:cc:b6:ca:01:66:aa:e7:ff:cf:f1:f2:30:fb: 3e:92:af:76:99:51:63:1f:65:5b:fd:99:23:3f:d6:2f:27:53: ac:3b:9d:da:24:3c:f8:99:7f:b8:1b:d9:d7:cd:66:d3:be:49: fe:81:3a:85:4e:d9:5d:94:9c:f7:2e:eb:e6:61:05:46:b5:53: d0:7c:ad:25:b6:01:69:48:2c:d7:28:72:8c:2d:35:81:ed:82: ac:b3:40:c2:2a:11:45:b0:77:aa:24:94:26:48:9a:e4:e3:1b: 5d:22:5c:db:c1:ed:29:ca:d5:f4:36:06:e8:6e:53:43:85:88: 3e:eb:8d:56:f9:e4:bb:eb:c5:a4:b7:c7:6e:75:de:e4:43:55: 59:75:0c:2b:26:04:70:8f:e1:1c:ab:94:a5:a4:bc:72:5f:e2: ca:ca:2c:89:36:01:10:81:7a:ce:54:a3:1f:66:a1:c4:c7:05: 9d:15:c6:b2:d7:ac:be:f0:a3:ea:2d:a2:5c:71:62:5d:23:9a: cc:ff:43:84:62:a3:92:d6:b9:2e:11:18:99:04:93:46:fb:c9: 0f:c6:67:ea:7e:d8:0d:10:87:a2:83:2d:2c:39:20:0e:24:e3: 4c:a7:eb:ef:be:c1:ed:c5:5e:72:fd:58:ed:4b:73:c7:e6:d8: 75:f5:e4:49 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUEMy247mZC1FB8KBap5psRoTr9nMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDIyNDAzMjEzNloX DTI3MDIyMzAzMjYzNlowMzExMC8GA1UEAxMoRDE5REIzNjdFNjhGQjNDOTVGMENG MDE0REU0N0MwNEI5M0I5QzY2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJfeKira+zievM+L3dteoocejD0BcqtnM/ncSHBDMV8duUwoPLaAC4zCxJhT iSmH+WX1FzwPRQdbcevhboUhoF2DNyHGRKXBIo+FgnbtHkFD1GiIPaEYc9XtUTXc fl1NQEKtSlm00N+7LUXOoYV+drxqB/UugXs1mnhPG1PB7eGDxQ/W4GaoSHleL4tT WZcFo0gVpnzNNWQ/SyI742yrjJjJSXHtkfmjZOsrzlgqLKU8LhWjwHzStX+4iFLd BX0VtfZt8QhdDMtES/MAUTACtADu/pcqvHWYlujhVCNV25aU89BzZs/cGtTepA+V zzfhEF46i7GJymrvA/+/nS4smFcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTRnbNn 5o+zyV8M8BTeR8BLk7nGZzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzNTA3Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMYPHDANBgkqhkiG9w0BAQsFAAOCAQEAI2olwMLMtsoBZqrn/8/x 8jD7PpKvdplRYx9lW/2ZIz/WLydTrDud2iQ8+Jl/uBvZ181m075J/oE6hU7ZXZSc 9y7r5mEFRrVT0HytJbYBaUgs1yhyjC01ge2CrLNAwioRRbB3qiSUJkia5OMbXSJc 28HtKcrV9DYG6G5TQ4WIPuuNVvnku+vFpLfHbnXe5ENVWXUMKyYEcI/hHKuUpaS8 cl/iysosiTYBEIF6zlSjH2ahxMcFnRXGstesvvCj6i2iXHFiXSOazP9DhGKjkta5 LhEYmQSTRvvJD8Zn6n7YDRCHooMtLDkgDiTjTKfr777B7cVecv1Y7Utzx+bYdfXk SQ== -----END CERTIFICATE-----Generated at Mon Mar 2 09:34:51 2026 by rpki-client