$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138144.roa File: AS138144.roa (raw, json) Hash identifier: lqrPRoOSN53V/W4Vtc5t+/4667QihELL7u35qORwIwU= Subject key identifier: 65:F3:A7:0D:E3:A5:B9:9C:14:A9:F9:3D:A5:2D:03:20:BF:02:D5:DC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5FBBB43323148D9BFCBBE541B308A3D6FF4F5AA1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138144.roa Signing time: Sat 01 Nov 2025 02:00:00 +0000 ROA not before: Sat 01 Nov 2025 01:55:00 +0000 ROA not after: Sat 31 Oct 2026 02:00:00 +0000 asID: 138144 IP address blocks: 103.134.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 00:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:bb:b4:33:23:14:8d:9b:fc:bb:e5:41:b3:08:a3:d6:ff:4f:5a:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 1 01:55:00 2025 GMT Not After : Oct 31 02:00:00 2026 GMT Subject: CN=65F3A70DE3A5B99C14A9F93DA52D0320BF02D5DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ba:c7:e9:0c:3e:e6:ee:be:95:39:af:58:39: 85:37:f2:66:de:a2:83:5c:6f:67:ee:6e:fd:14:0c: e4:4c:39:42:49:cc:df:d4:9f:cf:9c:40:2f:fb:69: 3e:89:e3:07:25:99:d6:c0:c0:dc:cb:88:e2:82:0c: 14:0e:6b:1b:c7:65:2a:6d:05:8c:a8:57:26:ec:1c: 4a:ad:a3:3c:be:02:07:99:2c:44:c1:0b:4a:8a:1b: ae:33:e9:f1:c2:e9:b4:87:f3:3e:fe:31:97:3f:ba: 15:2d:78:e6:e1:9e:3b:6c:9f:f4:1c:9f:86:a5:e3: 25:5d:02:c8:f9:da:54:a7:8c:e4:88:cd:e8:d8:6b: 11:91:2a:64:36:ce:2b:dd:1d:4a:67:23:2b:1e:70: f8:06:1d:fb:8d:e2:d2:48:ea:c2:46:c3:09:96:1c: a8:ee:cb:3b:f6:e2:e5:4e:71:ea:47:ac:83:da:1f: d1:73:2d:bf:db:44:bb:0b:45:6b:a1:e3:20:45:35: 5b:6c:21:57:8e:48:f7:3d:42:e3:55:b1:7c:f2:28: 2a:3d:33:b1:8a:70:18:29:4a:f3:3f:47:76:0b:dd: ab:98:64:2f:fb:c0:a9:d5:8e:13:33:cc:29:90:1d: a1:d2:d1:6a:09:aa:f5:1c:54:44:65:eb:f1:e4:06: 60:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F3:A7:0D:E3:A5:B9:9C:14:A9:F9:3D:A5:2D:03:20:BF:02:D5:DC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138144.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.17.0/24 Signature Algorithm: sha256WithRSAEncryption 91:56:01:16:ee:ed:30:99:e0:c9:be:cb:a0:af:cf:0c:2c:8e: 76:d4:7f:35:4d:1e:c6:b0:9f:d5:c9:1a:27:c3:67:55:b1:0e: d9:04:85:68:2f:54:71:dc:80:f9:48:8c:7f:a4:aa:a7:6f:15: 9a:37:c4:55:f9:56:a4:d5:c7:ee:85:85:84:12:04:3d:80:cb: 9d:53:fe:31:0a:8a:eb:74:e1:ce:bb:58:6c:20:9f:a9:08:fe: 1f:43:94:35:5a:b3:86:32:ec:57:13:a7:0f:3e:fb:c5:4c:53: 6d:6f:ee:2f:fc:be:ec:52:04:54:44:a0:c5:6c:fe:f9:9a:31: 49:b3:45:7c:cd:e3:62:ab:27:16:0c:4e:11:4f:71:c8:83:ba: 19:d2:d7:83:1c:b8:4d:ad:be:8a:eb:b1:a7:b5:7c:25:db:90: 38:44:a4:04:08:77:c2:e3:2c:21:e4:ef:ff:21:c5:9c:96:5a: 3c:80:8a:fe:66:a2:3b:40:c5:8f:07:dc:8b:8e:99:58:c2:1b: 35:37:c6:e2:34:5c:67:3b:27:6f:ac:a9:3f:a2:22:3b:f0:23: e7:d8:61:86:c4:88:07:2b:1c:33:08:be:1b:3a:f6:ce:f4:a7: a5:3a:dd:46:58:ef:29:f0:f8:fe:29:7b:fa:9e:81:bf:5a:d5: cf:5e:cd:63 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUX7u0MyMUjZv8u+VBswij1v9PWqEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwMTAxNTUwMFoX DTI2MTAzMTAyMDAwMFowMzExMC8GA1UEAxMoNjVGM0E3MERFM0E1Qjk5QzE0QTlG OTNEQTUyRDAzMjBCRjAyRDVEQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN26x+kMPubuvpU5r1g5hTfyZt6ig1xvZ+5u/RQM5Ew5QknM39Sfz5xAL/tp PonjByWZ1sDA3MuI4oIMFA5rG8dlKm0FjKhXJuwcSq2jPL4CB5ksRMELSoobrjPp 8cLptIfzPv4xlz+6FS145uGeO2yf9ByfhqXjJV0CyPnaVKeM5IjN6NhrEZEqZDbO K90dSmcjKx5w+AYd+43i0kjqwkbDCZYcqO7LO/bi5U5x6kesg9of0XMtv9tEuwtF a6HjIEU1W2whV45I9z1C41WxfPIoKj0zsYpwGClK8z9Hdgvdq5hkL/vAqdWOEzPM KZAdodLRagmq9RxURGXr8eQGYBUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRl86cN 46W5nBSp+T2lLQMgvwLV3DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODE0NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeGETANBgkqhkiG9w0BAQsFAAOCAQEAkVYBFu7tMJngyb7LoK/P DCyOdtR/NU0exrCf1ckaJ8NnVbEO2QSFaC9UcdyA+UiMf6Sqp28VmjfEVflWpNXH 7oWFhBIEPYDLnVP+MQqK63ThzrtYbCCfqQj+H0OUNVqzhjLsVxOnDz77xUxTbW/u L/y+7FIEVESgxWz++ZoxSbNFfM3jYqsnFgxOEU9xyIO6GdLXgxy4Ta2+iuuxp7V8 JduQOESkBAh3wuMsIeTv/yHFnJZaPICK/maiO0DFjwfci46ZWMIbNTfG4jRcZzsn b6ypP6IiO/Aj59hhhsSIByscMwi+Gzr2zvSnpTrdRljvKfD4/il7+p6Bv1rVz17N Yw== -----END CERTIFICATE-----Generated at Mon Nov 3 19:33:22 2025 by rpki-client