$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137291.roa File: AS137291.roa (raw, json) Hash identifier: CEOWKqEvk3rKSdK2BTnec98TTZ4jWoz68GjbH23xwyg= Subject key identifier: E3:C4:54:D6:DE:2C:16:A1:FD:5E:42:AA:FF:DC:3C:32:82:12:CC:80 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 71031EADF2F326C5213AEAEC5F785A95FF93901A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137291.roa Signing time: Thu 16 Apr 2026 04:22:35 +0000 ROA not before: Thu 16 Apr 2026 04:17:35 +0000 ROA not after: Thu 15 Apr 2027 04:22:35 +0000 asID: 137291 IP address blocks: 103.107.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 00:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:03:1e:ad:f2:f3:26:c5:21:3a:ea:ec:5f:78:5a:95:ff:93:90:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 16 04:17:35 2026 GMT Not After : Apr 15 04:22:35 2027 GMT Subject: CN=E3C454D6DE2C16A1FD5E42AAFFDC3C328212CC80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ad:8c:a9:6e:59:fe:20:0d:7e:a8:83:54:11: a0:31:6f:e0:f7:71:78:4b:0d:48:1a:54:4a:0a:37: 0f:55:64:93:55:80:ec:28:51:d1:05:b2:de:6b:f7: cc:a1:3a:e8:be:b9:62:2d:88:82:3b:1a:6b:fd:1b: 06:62:60:a5:b8:68:c3:ee:c4:10:e0:f4:90:36:f4: a8:35:75:d6:5c:fc:39:69:3f:62:64:b3:ce:53:e5: d0:a3:f6:26:35:00:64:f5:d5:69:24:48:47:12:49: 92:b8:d7:33:39:57:21:18:1d:bc:ee:68:40:ad:06: 76:75:03:b0:0f:b1:78:70:b1:05:6a:a7:80:73:78: 71:52:07:de:a4:37:6b:59:29:e7:c1:0c:12:c9:49: 4a:a7:f0:52:56:1c:d1:4b:04:1d:56:90:93:76:5c: 71:29:e4:e4:7f:25:63:04:2d:b5:07:54:48:10:51: fc:57:45:45:c8:f2:02:b6:50:38:ab:03:fc:bd:52: 66:50:25:66:f8:fd:95:16:fc:5e:65:d4:4e:5d:c6: a7:00:20:37:76:81:59:80:60:7a:5b:c4:52:7d:21: 72:b3:08:ea:8a:30:98:60:76:12:0d:9f:75:6f:f6: 80:85:e1:a2:94:54:11:b1:a1:35:68:d8:8b:da:10: 71:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:C4:54:D6:DE:2C:16:A1:FD:5E:42:AA:FF:DC:3C:32:82:12:CC:80 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137291.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.116.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:55:96:5e:79:42:4d:1a:a6:65:76:36:39:9e:34:33:69:f8: 3e:26:38:5b:4b:67:e4:c2:2d:3e:5c:cf:c2:9c:23:f8:1b:63: 3d:0e:a9:45:99:cf:b1:97:b6:3d:97:7e:ef:42:80:5f:5b:d6: 15:fd:55:f5:68:35:a0:19:3b:d4:2c:27:a2:30:b0:85:f6:2f: bf:30:32:72:6f:f6:2b:50:8f:fd:7b:22:a7:7b:29:65:1c:f0: 94:96:e5:56:db:4b:70:f4:c7:84:09:ce:ab:8f:45:83:c0:55: 6e:2b:df:ca:d0:c1:cb:56:99:74:25:6e:e1:0a:5e:26:32:3c: 0c:7e:3b:d1:8b:3f:a8:8f:1c:9f:6e:c0:f7:c2:95:ae:8f:4c: 0b:ef:8c:73:2d:be:44:c8:29:35:34:36:98:2c:6a:a7:b8:53: 51:45:95:f5:bc:ea:b9:81:d4:98:c3:94:f5:71:59:07:31:df: 98:04:7f:24:7c:e8:d9:04:03:88:8c:f5:f1:7b:64:0b:5c:26: ad:32:21:5b:34:7a:32:96:ef:27:53:b5:80:a2:4f:b0:21:53: 9e:29:d5:c7:2f:62:5d:ab:7d:9e:24:a7:71:83:6f:71:40:e5: d4:8a:ff:58:11:1f:cb:64:58:be:3c:b2:0c:eb:fb:30:27:42: 98:cf:8e:a1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcQMerfLzJsUhOursX3half+TkBowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQxNjA0MTczNVoX DTI3MDQxNTA0MjIzNVowMzExMC8GA1UEAxMoRTNDNDU0RDZERTJDMTZBMUZENUU0 MkFBRkZEQzNDMzI4MjEyQ0M4MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANqtjKluWf4gDX6og1QRoDFv4PdxeEsNSBpUSgo3D1Vkk1WA7ChR0QWy3mv3 zKE66L65Yi2Igjsaa/0bBmJgpbhow+7EEOD0kDb0qDV11lz8OWk/YmSzzlPl0KP2 JjUAZPXVaSRIRxJJkrjXMzlXIRgdvO5oQK0GdnUDsA+xeHCxBWqngHN4cVIH3qQ3 a1kp58EMEslJSqfwUlYc0UsEHVaQk3ZccSnk5H8lYwQttQdUSBBR/FdFRcjyArZQ OKsD/L1SZlAlZvj9lRb8XmXUTl3GpwAgN3aBWYBgelvEUn0hcrMI6oowmGB2Eg2f dW/2gIXhopRUEbGhNWjYi9oQcQkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTjxFTW 3iwWof1eQqr/3DwyghLMgDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzI5MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmdrdDANBgkqhkiG9w0BAQsFAAOCAQEAX1WWXnlCTRqmZXY2OZ40 M2n4PiY4W0tn5MItPlzPwpwj+BtjPQ6pRZnPsZe2PZd+70KAX1vWFf1V9Wg1oBk7 1CwnojCwhfYvvzAycm/2K1CP/Xsip3spZRzwlJblVttLcPTHhAnOq49Fg8BVbivf ytDBy1aZdCVu4QpeJjI8DH470Ys/qI8cn27A98KVro9MC++Mcy2+RMgpNTQ2mCxq p7hTUUWV9bzquYHUmMOU9XFZBzHfmAR/JHzo2QQDiIz18XtkC1wmrTIhWzR6Mpbv J1O1gKJPsCFTninVxy9iXat9niSncYNvcUDl1Ir/WBEfy2RYvjyyDOv7MCdCmM+O oQ== -----END CERTIFICATE-----Generated at Fri Apr 17 16:02:45 2026 by rpki-client