$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137310.roa File: AS137310.roa (raw, json) Hash identifier: n9ZIRfmF9Acnf5G1c1z6fvvb3ctQMyyUvAXoJzVnUZE= Subject key identifier: FD:02:97:9D:00:87:A6:77:D1:4F:75:ED:41:26:CD:54:F8:38:33:AE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 52EED78381C5B1DA852885998A0E01E4AF0573E0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137310.roa Signing time: Mon 21 Jul 2025 04:00:00 +0000 ROA not before: Mon 21 Jul 2025 03:55:00 +0000 ROA not after: Mon 20 Jul 2026 04:00:00 +0000 asID: 137310 IP address blocks: 103.109.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 13:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:ee:d7:83:81:c5:b1:da:85:28:85:99:8a:0e:01:e4:af:05:73:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 21 03:55:00 2025 GMT Not After : Jul 20 04:00:00 2026 GMT Subject: CN=FD02979D0087A677D14F75ED4126CD54F83833AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8e:8a:1d:c8:03:56:d9:0b:5a:68:75:76:0d: ff:ca:fa:77:e7:b1:17:03:7f:dc:02:c5:d5:11:48: 05:70:ae:52:d9:20:4f:4c:7d:7c:e8:22:49:40:ce: 18:d1:a2:45:ba:cf:85:86:b5:1d:93:6c:55:6c:4b: 01:fb:72:2b:7f:d5:38:a0:f2:d2:81:c0:c1:90:a6: 30:89:22:f9:d8:7d:3f:92:6f:ce:b9:ed:0c:ca:bb: aa:c1:8f:5c:76:73:8d:92:b9:1d:5f:9b:c1:23:42: a0:cb:c6:07:32:a6:97:10:0f:8e:1a:31:53:89:b1: 0f:66:df:aa:82:87:b0:d9:f8:68:a7:09:6c:25:1b: a3:68:97:87:ff:f4:ab:bc:33:54:0e:a4:04:fb:79: 22:4a:e1:61:00:fd:14:76:97:34:63:75:73:aa:7f: e3:24:8a:bb:6b:6c:89:c6:c6:81:39:ed:3f:70:6b: 8e:19:e1:a2:51:2b:de:a2:23:6e:84:72:f7:c4:12: 55:64:58:7d:f5:df:3a:a1:63:f7:d1:66:7b:01:24: 99:4f:3d:d2:8f:03:00:bb:4a:b4:e0:5d:f7:4d:7c: 0e:cd:0b:54:07:d7:ca:86:fd:1c:a2:6e:70:6d:4e: c7:25:bf:3d:ff:81:15:d8:a0:02:d9:e9:1f:89:53: ff:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:02:97:9D:00:87:A6:77:D1:4F:75:ED:41:26:CD:54:F8:38:33:AE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137310.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.0.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:ff:21:11:09:e5:40:4e:1f:ca:81:3a:1b:a0:72:99:24:7f: 8e:8c:6f:22:f3:9b:0f:fd:d7:a3:28:0c:d2:96:0f:37:d0:ef: 19:f9:81:01:1e:ea:5b:19:ba:78:5d:2c:76:4a:8c:ee:7d:dc: 6f:1c:55:94:38:6e:45:ad:99:9b:8d:43:db:73:24:5b:53:8e: 62:c7:c6:28:c8:c3:9d:6f:48:01:81:34:95:f4:0c:d4:10:03: ac:93:65:72:10:7f:46:42:85:b5:f5:83:7f:1f:57:e5:d7:35: b2:57:d3:f4:b9:f1:cb:4d:4f:62:b7:94:b8:08:7c:3b:42:04: 87:fc:4a:1f:8a:01:ec:87:51:35:10:4e:e5:34:02:34:f9:8b: 06:01:b7:ce:2d:73:d1:32:a9:06:07:f5:77:0f:bf:a7:2a:1f: 5a:b2:c9:14:87:31:66:77:b3:39:02:3a:4a:83:d8:26:2d:86: 4a:6e:43:13:8b:be:dc:9f:7a:3d:3d:86:e0:6d:f8:06:a2:a0: 54:4a:26:38:42:15:2b:36:3b:50:a6:00:1c:fb:48:8f:db:31: 63:1d:ee:f3:be:66:f8:3f:03:06:40:9a:28:8d:6f:4f:27:d7: 96:3c:d5:17:82:b6:59:86:b2:f3:8b:9c:35:f5:67:2e:da:45: 10:27:4c:d0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUu7Xg4HFsdqFKIWZig4B5K8Fc+AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcyMTAzNTUwMFoX DTI2MDcyMDA0MDAwMFowMzExMC8GA1UEAxMoRkQwMjk3OUQwMDg3QTY3N0QxNEY3 NUVENDEyNkNENTRGODM4MzNBRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMyOih3IA1bZC1podXYN/8r6d+exFwN/3ALF1RFIBXCuUtkgT0x9fOgiSUDO GNGiRbrPhYa1HZNsVWxLAftyK3/VOKDy0oHAwZCmMIki+dh9P5JvzrntDMq7qsGP XHZzjZK5HV+bwSNCoMvGBzKmlxAPjhoxU4mxD2bfqoKHsNn4aKcJbCUbo2iXh//0 q7wzVA6kBPt5IkrhYQD9FHaXNGN1c6p/4ySKu2tsicbGgTntP3BrjhnholEr3qIj boRy98QSVWRYffXfOqFj99FmewEkmU890o8DALtKtOBd9018Ds0LVAfXyob9HKJu cG1OxyW/Pf+BFdigAtnpH4lT/7MCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT9Aped AIemd9FPde1BJs1U+DgzrjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzMxMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmdtADANBgkqhkiG9w0BAQsFAAOCAQEAav8hEQnlQE4fyoE6G6By mSR/joxvIvObD/3XoygM0pYPN9DvGfmBAR7qWxm6eF0sdkqM7n3cbxxVlDhuRa2Z m41D23MkW1OOYsfGKMjDnW9IAYE0lfQM1BADrJNlchB/RkKFtfWDfx9X5dc1slfT 9Lnxy01PYreUuAh8O0IEh/xKH4oB7IdRNRBO5TQCNPmLBgG3zi1z0TKpBgf1dw+/ pyofWrLJFIcxZnezOQI6SoPYJi2GSm5DE4u+3J96PT2G4G34BqKgVEomOEIVKzY7 UKYAHPtIj9sxYx3u875m+D8DBkCaKI1vTyfXljzVF4K2WYay84ucNfVnLtpFECdM 0A== -----END CERTIFICATE-----Generated at Wed Aug 6 05:51:27 2025 by rpki-client