$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137352.roa File: AS137352.roa (raw, json) Hash identifier: r+XobokPBBsyV9tL03SMQAARobKbubzc5gCHLoeNxQ0= Subject key identifier: 8A:0C:BE:7A:23:30:AA:20:8A:C0:F0:8E:56:E4:EE:E7:94:73:6C:0E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3D4CB0B7C1423EECAE50523271387656E2C45B56 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137352.roa Signing time: Tue 03 Jun 2025 08:02:52 +0000 ROA not before: Tue 03 Jun 2025 07:57:52 +0000 ROA not after: Tue 02 Jun 2026 08:02:52 +0000 asID: 137352 IP address blocks: 103.113.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 11:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:4c:b0:b7:c1:42:3e:ec:ae:50:52:32:71:38:76:56:e2:c4:5b:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 07:57:52 2025 GMT Not After : Jun 2 08:02:52 2026 GMT Subject: CN=8A0CBE7A2330AA208AC0F08E56E4EEE794736C0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1b:0c:62:df:86:c0:ea:3b:b5:d0:92:80:88: 1f:90:8b:01:df:2b:24:59:95:8c:79:2d:54:8b:8b: 69:a5:5b:51:da:bd:a6:80:9a:28:61:0c:3b:2e:68: d2:3c:cd:9a:9b:22:94:4c:91:62:5d:fd:77:34:94: 18:97:dc:98:f1:b6:77:6b:10:2c:e7:a4:9c:58:de: f2:99:21:11:94:93:b8:36:5b:fb:89:3d:1d:ad:6f: 06:3f:51:26:24:51:75:89:38:cc:ec:e9:d0:c4:80: b3:58:54:db:c6:08:9b:94:e4:47:40:30:bf:49:81: ce:7b:83:96:2f:3e:d2:c2:3f:72:8d:14:f5:40:94: d2:b0:43:e7:d3:1b:73:1b:37:82:e6:fd:6b:f4:ef: e1:ce:88:e1:67:1a:74:5d:8f:e2:12:f9:f0:68:1f: 31:b3:56:cc:cc:e8:26:7a:2a:a8:f4:43:30:a7:42: 8e:fe:36:46:cc:5e:ab:32:74:0f:71:90:d3:a5:4d: ec:2a:ad:dd:33:97:b5:d8:42:4a:6f:6f:58:84:0c: 82:55:54:b7:f3:b4:5d:aa:62:3c:b9:dc:99:ae:ea: 14:d8:93:24:13:1d:a3:7c:ee:34:a0:2c:01:4b:a1: 50:cb:7b:a4:3a:b6:94:92:f4:f1:92:54:4a:f1:39: 9c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:0C:BE:7A:23:30:AA:20:8A:C0:F0:8E:56:E4:EE:E7:94:73:6C:0E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137352.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.113.170.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:44:3c:fc:35:d5:c7:67:9c:31:8b:63:af:a6:f0:12:34:bf: e6:9d:ed:89:6f:52:df:ee:c4:78:e6:a3:c9:b9:fe:b7:4f:53: fa:b4:4f:3a:e8:bb:99:9a:df:3c:84:5e:3c:6e:45:d8:ef:2e: 2f:d4:c0:83:46:8a:55:f9:7c:10:0c:8e:cf:1a:58:fc:3b:06: fd:50:d0:6f:74:0f:86:c4:7c:88:8d:44:6b:fd:7b:38:4f:5b: 8c:aa:08:68:0c:0d:86:cc:31:8a:ab:5d:65:a1:1f:5e:fe:63: a5:92:22:ba:bf:b7:79:6c:6d:9f:27:94:cc:20:72:60:bc:45: ef:b8:7d:59:2c:63:f9:b4:5a:dd:f2:47:ce:8d:b6:38:7c:32: d1:11:8f:e9:a0:53:da:d2:8a:ce:92:08:e5:b6:99:0a:49:9c: c4:4e:f0:95:d9:e7:af:7e:20:db:e2:69:c9:8e:96:7b:48:5b: 9a:dc:61:24:be:9a:aa:3d:c5:60:cc:c9:57:a1:2f:08:58:f7: 26:24:fc:cf:8f:ea:d7:1b:84:e0:8b:30:c7:c5:ef:e0:43:a4: fc:ff:c4:26:40:d7:3e:b1:cf:66:2b:54:d6:b4:fe:77:72:79: 2c:3c:90:11:d7:36:25:f0:a5:51:e1:ef:05:66:3c:69:41:89: 3b:ec:c9:00 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPUywt8FCPuyuUFIycTh2VuLEW1YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMzA3NTc1MloX DTI2MDYwMjA4MDI1MlowMzExMC8GA1UEAxMoOEEwQ0JFN0EyMzMwQUEyMDhBQzBG MDhFNTZFNEVFRTc5NDczNkMwRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKsbDGLfhsDqO7XQkoCIH5CLAd8rJFmVjHktVIuLaaVbUdq9poCaKGEMOy5o 0jzNmpsilEyRYl39dzSUGJfcmPG2d2sQLOeknFje8pkhEZSTuDZb+4k9Ha1vBj9R JiRRdYk4zOzp0MSAs1hU28YIm5TkR0Awv0mBznuDli8+0sI/co0U9UCU0rBD59Mb cxs3gub9a/Tv4c6I4WcadF2P4hL58GgfMbNWzMzoJnoqqPRDMKdCjv42RsxeqzJ0 D3GQ06VN7Cqt3TOXtdhCSm9vWIQMglVUt/O0XapiPLncma7qFNiTJBMdo3zuNKAs AUuhUMt7pDq2lJL08ZJUSvE5nAUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSKDL56 IzCqIIrA8I5W5O7nlHNsDjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM1Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdxqjANBgkqhkiG9w0BAQsFAAOCAQEAj0Q8/DXVx2ecMYtjr6bw EjS/5p3tiW9S3+7EeOajybn+t09T+rRPOui7mZrfPIRePG5F2O8uL9TAg0aKVfl8 EAyOzxpY/DsG/VDQb3QPhsR8iI1Ea/17OE9bjKoIaAwNhswxiqtdZaEfXv5jpZIi ur+3eWxtnyeUzCByYLxF77h9WSxj+bRa3fJHzo22OHwy0RGP6aBT2tKKzpII5baZ CkmcxE7wldnnr34g2+JpyY6We0hbmtxhJL6aqj3FYMzJV6EvCFj3JiT8z4/q1xuE 4Iswx8Xv4EOk/P/EJkDXPrHPZitU1rT+d3J5LDyQEdc2JfClUeHvBWY8aUGJO+zJ AA== -----END CERTIFICATE-----Generated at Mon Jun 16 01:31:35 2025 by rpki-client