$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131711.roa File: AS131711.roa (raw, json) Hash identifier: fRyGaIiR0bNzVh9j5rtnbaRZImkrcFvtafs5tkUHo24= Subject key identifier: 4E:6B:E0:A6:02:1C:93:73:D0:B3:C7:44:45:76:2B:9E:81:0C:2D:2D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 50207FD5D1255806985E4D815131DD21FA42A7F9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131711.roa Signing time: Tue 05 Aug 2025 09:33:16 +0000 ROA not before: Tue 05 Aug 2025 09:28:16 +0000 ROA not after: Tue 04 Aug 2026 09:33:16 +0000 asID: 131711 IP address blocks: 2402:1d20::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 13:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:20:7f:d5:d1:25:58:06:98:5e:4d:81:51:31:dd:21:fa:42:a7:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 5 09:28:16 2025 GMT Not After : Aug 4 09:33:16 2026 GMT Subject: CN=4E6BE0A6021C9373D0B3C74445762B9E810C2D2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6e:fa:92:88:cd:8c:5e:c6:30:94:32:7c:cd: 4a:69:6e:75:e8:a5:c5:b1:67:17:7d:19:cc:2f:e9: 98:a2:dc:74:bb:cd:6d:f2:40:9c:16:ec:df:00:0f: 18:d2:99:4d:07:d0:8a:ef:c9:6e:7a:01:1d:81:34: 65:4c:9e:cb:4b:12:8e:5c:56:e4:b1:93:51:fc:eb: 23:c0:9b:33:f0:e4:bc:bb:d1:12:1c:7c:97:02:57: db:1f:f4:2b:5a:12:26:71:ff:a3:02:33:eb:79:a6: 65:23:0f:c0:7d:3d:97:4c:88:f0:ea:18:d2:e5:b1: 88:77:6f:80:a7:81:82:9e:3b:c4:00:0a:10:05:2b: 95:cd:46:74:60:2b:9b:67:ae:a5:72:d6:25:65:36: f4:59:fd:3c:9f:6b:a7:76:45:1f:93:f5:dd:b8:cf: bd:c7:e9:c8:2d:df:80:ff:d8:39:0f:07:07:fa:cc: 03:c5:d0:d6:d8:a6:bc:a1:f7:ff:06:da:1a:a8:74: ac:7a:3d:86:44:fb:c6:69:c3:f2:b4:a8:81:d8:29: cc:73:26:e7:53:40:38:4d:c6:7f:46:e1:de:a7:22: 8b:e0:e6:00:05:e9:e1:5e:6e:94:1c:e0:62:36:95: d5:6b:36:45:ae:51:a2:dd:b0:2b:f2:e8:46:47:2d: 4a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:6B:E0:A6:02:1C:93:73:D0:B3:C7:44:45:76:2B:9E:81:0C:2D:2D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131711.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:1d20::/32 Signature Algorithm: sha256WithRSAEncryption 63:0d:ad:17:db:a6:73:01:26:c2:91:70:32:f5:14:8b:6b:84: d6:de:cf:16:64:f7:3a:b6:54:bd:5e:e2:ae:b8:d2:44:0a:d7: 67:03:fb:16:e2:43:e4:a9:0e:0f:c7:7f:35:63:de:c9:a6:d2: 10:44:5e:93:96:7f:1a:85:45:41:99:96:aa:a7:87:29:7a:6f: 4c:71:63:6a:c4:f6:32:20:6d:78:ba:6c:36:3e:f7:70:be:d2: 33:02:a5:96:19:b4:43:ff:d5:e9:b0:7b:27:24:82:d1:96:bb: ad:d8:39:04:91:a1:5d:ac:a0:b8:83:7c:c0:1a:6f:01:29:7f: 32:0f:11:e6:b4:af:ba:bd:53:85:92:23:66:5c:1e:e4:6b:ed: a6:c3:c8:1f:c3:98:03:e6:72:34:c0:cf:70:60:b6:7d:b3:9a: b3:65:c5:4a:d5:c4:3c:d6:8c:1d:f3:0d:d0:e7:fa:2a:72:bd: e9:eb:f0:72:09:dc:a1:d2:40:cd:7f:b8:7e:a2:41:c0:15:70: 7c:7b:8f:20:79:7e:0e:11:2f:81:7e:27:9d:aa:44:d4:98:69: 7a:23:34:e1:66:5b:79:17:c0:89:1d:82:2d:9d:31:3f:1f:13: 19:3d:4e:66:f1:af:94:5a:4a:a9:6f:81:a4:d3:5c:a0:27:8a: 3c:5e:47:d3 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUUCB/1dElWAaYXk2BUTHdIfpCp/kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgwNTA5MjgxNloX DTI2MDgwNDA5MzMxNlowMzExMC8GA1UEAxMoNEU2QkUwQTYwMjFDOTM3M0QwQjND NzQ0NDU3NjJCOUU4MTBDMkQyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMlu+pKIzYxexjCUMnzNSmludeilxbFnF30ZzC/pmKLcdLvNbfJAnBbs3wAP GNKZTQfQiu/JbnoBHYE0ZUyey0sSjlxW5LGTUfzrI8CbM/DkvLvREhx8lwJX2x/0 K1oSJnH/owIz63mmZSMPwH09l0yI8OoY0uWxiHdvgKeBgp47xAAKEAUrlc1GdGAr m2eupXLWJWU29Fn9PJ9rp3ZFH5P13bjPvcfpyC3fgP/YOQ8HB/rMA8XQ1timvKH3 /wbaGqh0rHo9hkT7xmnD8rSogdgpzHMm51NAOE3Gf0bh3qcii+DmAAXp4V5ulBzg YjaV1Ws2Ra5Rot2wK/LoRkctSnUCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBROa+Cm AhyTc9Czx0RFdiuegQwtLTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTcxMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQCHSAwDQYJKoZIhvcNAQELBQADggEBAGMNrRfbpnMBJsKRcDL1 FItrhNbezxZk9zq2VL1e4q640kQK12cD+xbiQ+SpDg/HfzVj3smm0hBEXpOWfxqF RUGZlqqnhyl6b0xxY2rE9jIgbXi6bDY+93C+0jMCpZYZtEP/1emweyckgtGWu63Y OQSRoV2soLiDfMAabwEpfzIPEea0r7q9U4WSI2ZcHuRr7abDyB/DmAPmcjTAz3Bg tn2zmrNlxUrVxDzWjB3zDdDn+ipyvenr8HIJ3KHSQM1/uH6iQcAVcHx7jyB5fg4R L4F+J52qRNSYaXojNOFmW3kXwIkdgi2dMT8fExk9Tmbxr5RaSqlvgaTTXKAnijxe R9M= -----END CERTIFICATE-----Generated at Wed Aug 6 03:59:31 2025 by rpki-client