$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135438.roa File: AS135438.roa (raw, json) Hash identifier: LsIrbsIpRv81eU5UnGXfYRtPQGYu03f1UII4CUy/zNs= Subject key identifier: 9E:CA:0E:CA:17:A1:AF:FD:4D:E8:7C:95:C1:D6:39:2B:E8:5D:10:98 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 42CC398E934B401363E7CBC91610CB6CFDD2707D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135438.roa Signing time: Tue 05 Aug 2025 08:50:33 +0000 ROA not before: Tue 05 Aug 2025 08:45:33 +0000 ROA not after: Tue 04 Aug 2026 08:50:33 +0000 asID: 135438 IP address blocks: 2001:df5:dcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 13:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:cc:39:8e:93:4b:40:13:63:e7:cb:c9:16:10:cb:6c:fd:d2:70:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 5 08:45:33 2025 GMT Not After : Aug 4 08:50:33 2026 GMT Subject: CN=9ECA0ECA17A1AFFD4DE87C95C1D6392BE85D1098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6c:97:5e:87:3b:51:3b:7d:40:53:cb:dd:80: 5f:24:a9:b0:83:57:31:80:b7:93:e3:6b:36:ed:8e: 67:45:93:cd:63:05:56:57:6a:9e:1e:06:d7:fd:ac: 6d:15:17:22:89:f0:13:be:81:22:28:78:2f:be:34: 74:72:30:7d:64:81:df:c4:64:0b:80:68:df:de:3d: 22:8f:70:05:7e:03:1c:73:e9:af:ff:09:7d:35:a9: 0e:d4:28:a3:49:09:0d:ee:10:cd:bd:15:c1:6d:56: c4:97:a8:e6:81:82:7a:f8:28:3a:d9:f4:bd:f2:76: 0a:33:05:da:e1:f7:38:cc:13:12:d7:d7:54:32:4d: 40:49:d4:13:6c:47:90:54:34:8d:5a:e2:64:e2:7c: b0:d1:95:ab:c7:1a:ec:78:aa:ee:7d:16:86:53:24: c5:e1:44:89:9b:1d:a3:67:d5:95:ae:fd:c5:fb:8d: a1:2a:bf:79:b4:79:d3:27:d4:98:14:24:97:d2:d9: de:68:8a:4b:8f:c1:1c:d8:e1:e7:75:0e:4c:84:62: 48:7f:38:c0:8b:f7:30:a5:e3:cf:31:81:f2:4c:0a: c7:67:37:86:79:5b:de:d4:84:96:af:5b:1f:16:ce: fd:19:9e:ef:72:e3:bb:90:d0:15:88:39:c9:3e:3f: 51:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:CA:0E:CA:17:A1:AF:FD:4D:E8:7C:95:C1:D6:39:2B:E8:5D:10:98 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:dcc0::/48 Signature Algorithm: sha256WithRSAEncryption 7d:2d:2f:55:26:a0:63:5b:4a:1d:e8:33:32:68:49:96:97:75: 72:14:0c:29:76:6c:6b:63:4f:49:f8:04:b8:33:44:bd:69:4b: f2:44:96:58:7d:04:27:8d:cf:25:d1:75:a1:4e:19:f3:1d:fa: 51:af:fd:e4:d3:5a:5e:bf:dc:81:f2:8f:b3:74:e2:50:dc:22: 73:74:73:47:db:7d:e8:83:4d:0c:de:b7:5d:9b:a4:ac:5c:5a: 2f:bf:cf:b8:dc:d5:fc:bb:d3:b0:5d:e7:4c:33:b6:ef:5d:1e: 2c:72:5c:e0:e4:ed:80:40:30:f1:be:bf:8e:15:25:18:9b:bd: e9:be:ee:88:37:8a:a7:7e:cb:73:5a:fe:45:de:c6:95:5b:39: 42:1b:1f:cb:3c:04:f9:18:d7:50:ad:5f:6f:ce:e3:58:08:e3: 2d:f7:6b:36:d0:cf:b2:f8:0a:da:23:27:03:6a:9c:d4:3a:8e: 75:7a:d6:f9:ed:78:d8:ca:29:01:1d:80:70:92:c2:21:7b:01: 6e:8d:61:cf:f0:b8:57:50:a9:c2:05:1d:74:27:1f:05:7a:35: 19:d4:37:ac:fe:46:e7:6d:12:cd:d9:9a:48:09:7d:46:0f:e1: d5:1b:2c:11:a7:1b:f9:74:dd:93:3e:4e:a5:04:09:3c:24:98: 49:93:f0:d6 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUQsw5jpNLQBNj58vJFhDLbP3ScH0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgwNTA4NDUzM1oX DTI2MDgwNDA4NTAzM1owMzExMC8GA1UEAxMoOUVDQTBFQ0ExN0ExQUZGRDRERTg3 Qzk1QzFENjM5MkJFODVEMTA5ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALxsl16HO1E7fUBTy92AXySpsINXMYC3k+NrNu2OZ0WTzWMFVldqnh4G1/2s bRUXIonwE76BIih4L740dHIwfWSB38RkC4Bo3949Io9wBX4DHHPpr/8JfTWpDtQo o0kJDe4Qzb0VwW1WxJeo5oGCevgoOtn0vfJ2CjMF2uH3OMwTEtfXVDJNQEnUE2xH kFQ0jVriZOJ8sNGVq8ca7Hiq7n0WhlMkxeFEiZsdo2fVla79xfuNoSq/ebR50yfU mBQkl9LZ3miKS4/BHNjh53UOTIRiSH84wIv3MKXjzzGB8kwKx2c3hnlb3tSElq9b HxbO/Rme73Lju5DQFYg5yT4/UZkCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSeyg7K F6Gv/U3ofJXB1jkr6F0QmDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNTQzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfXcwDANBgkqhkiG9w0BAQsFAAOCAQEAfS0vVSagY1tKHegz MmhJlpd1chQMKXZsa2NPSfgEuDNEvWlL8kSWWH0EJ43PJdF1oU4Z8x36Ua/95NNa Xr/cgfKPs3TiUNwic3RzR9t96INNDN63XZukrFxaL7/PuNzV/LvTsF3nTDO2710e LHJc4OTtgEAw8b6/jhUlGJu96b7uiDeKp37Lc1r+Rd7GlVs5QhsfyzwE+RjXUK1f b87jWAjjLfdrNtDPsvgK2iMnA2qc1DqOdXrW+e142MopAR2AcJLCIXsBbo1hz/C4 V1CpwgUddCcfBXo1GdQ3rP5G520SzdmaSAl9Rg/h1RssEacb+XTdkz5OpQQJPCSY SZPw1g== -----END CERTIFICATE-----Generated at Wed Aug 6 03:59:00 2025 by rpki-client