$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138863.roa File: AS138863.roa (raw, json) Hash identifier: Q/6kBkPfAz+aDqsLDwQSKfb8QPbyAvDXLWrdRq3mwTs= Subject key identifier: B5:52:32:71:E6:7B:12:A0:B1:96:3A:74:51:71:4E:AA:A3:9C:7F:96 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4E20F10DEB18E606E9C8EE47FCA0CEDC649731B3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138863.roa Signing time: Tue 11 Nov 2025 06:00:25 +0000 ROA not before: Tue 11 Nov 2025 05:55:25 +0000 ROA not after: Tue 10 Nov 2026 06:00:25 +0000 asID: 138863 IP address blocks: 103.139.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Nov 2025 08:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:20:f1:0d:eb:18:e6:06:e9:c8:ee:47:fc:a0:ce:dc:64:97:31:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:25 2025 GMT Not After : Nov 10 06:00:25 2026 GMT Subject: CN=B5523271E67B12A0B1963A7451714EAAA39C7F96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:00:c5:22:e3:91:ea:63:97:46:f7:bb:5d:8b: af:28:f0:07:47:c2:a6:26:8f:5f:01:e8:dd:9a:70: 5c:e3:33:dd:6e:bd:55:7d:61:c3:c0:46:d5:91:e6: 3d:0f:b8:d5:c2:fa:02:e7:8b:8e:33:98:08:1d:73: 3e:1f:67:bf:a8:98:22:18:4f:22:84:2c:34:c6:45: 5c:de:95:69:0c:d9:34:01:ae:48:10:55:57:a8:9a: 83:8c:cd:fb:05:3a:7c:10:f9:55:6a:9c:cb:e3:87: a6:ef:23:c6:30:16:58:44:85:1f:82:65:45:8f:f6: 64:15:e3:fa:ab:45:ab:86:1c:d0:2c:f8:52:4a:c0: 94:9d:b9:bf:ae:d6:1d:a3:e4:41:41:b2:55:92:6b: f8:7c:9a:99:fb:af:c5:1d:e8:63:04:2b:3d:d6:23: b5:b7:6d:c0:d3:60:94:a2:74:d0:02:ca:5b:4c:45: 64:b9:9f:1b:5c:74:8a:a6:8d:3e:0c:1e:ee:0f:87: 97:d6:b4:88:62:12:99:9f:47:f2:74:cc:6c:69:5b: dd:a1:b1:b1:6e:35:ec:cd:27:37:29:44:89:41:6f: 81:5d:b8:56:9e:2e:6d:15:13:3c:04:9b:4e:2d:7d: 1b:af:5c:7a:e8:ec:d0:2b:5e:99:10:46:23:1b:3a: 3d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:52:32:71:E6:7B:12:A0:B1:96:3A:74:51:71:4E:AA:A3:9C:7F:96 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138863.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.166.0/23 Signature Algorithm: sha256WithRSAEncryption 62:c1:af:50:c4:be:e1:62:57:6a:ee:70:f8:48:f1:ea:38:10: d0:63:c6:1c:23:83:57:d7:9e:7c:40:90:08:6c:64:c1:81:a0: 7e:04:e1:6b:7e:47:16:1b:8b:1f:ff:93:44:83:5a:11:f5:8f: 89:71:c8:18:d2:b4:74:2b:8a:c6:53:0b:e8:b9:aa:1a:f7:d5: 17:9c:3d:e6:bf:02:0b:2a:19:5b:cd:ac:ec:d2:4c:cf:a1:73: 62:7b:bb:62:fc:cf:df:14:54:49:65:b1:0f:cf:71:f6:42:b6: bc:c9:63:2c:56:56:60:01:e0:b8:db:82:81:05:38:65:58:3b: 01:f5:e0:1d:0c:7f:7e:f7:a7:a4:d8:66:ae:6c:cf:5c:36:7a: cf:b1:0c:6a:90:c3:7f:7d:26:d5:3d:6f:e0:42:c3:8b:d9:ad: 2e:7c:03:59:24:ef:4b:0f:5d:b4:97:30:23:60:f5:38:6b:f8: a8:cd:4d:92:5a:18:45:a3:25:9b:67:e1:c0:eb:e6:a5:d9:cb: e5:91:db:8c:ea:6d:20:99:b0:91:7a:1c:af:c1:0c:32:b1:2c: a1:53:b1:f2:6e:25:17:1c:05:74:82:a1:42:ee:38:ec:85:14: fc:4d:f8:05:1d:25:36:3d:cd:25:4b:3c:ed:84:2e:a9:84:27: d5:da:99:18 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTiDxDesY5gbpyO5H/KDO3GSXMbMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyNVoX DTI2MTExMDA2MDAyNVowMzExMC8GA1UEAxMoQjU1MjMyNzFFNjdCMTJBMEIxOTYz QTc0NTE3MTRFQUFBMzlDN0Y5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANIAxSLjkepjl0b3u12LryjwB0fCpiaPXwHo3ZpwXOMz3W69VX1hw8BG1ZHm PQ+41cL6AueLjjOYCB1zPh9nv6iYIhhPIoQsNMZFXN6VaQzZNAGuSBBVV6iag4zN +wU6fBD5VWqcy+OHpu8jxjAWWESFH4JlRY/2ZBXj+qtFq4Yc0Cz4UkrAlJ25v67W HaPkQUGyVZJr+HyamfuvxR3oYwQrPdYjtbdtwNNglKJ00ALKW0xFZLmfG1x0iqaN Pgwe7g+Hl9a0iGISmZ9H8nTMbGlb3aGxsW417M0nNylEiUFvgV24Vp4ubRUTPASb Ti19G69ceujs0CtemRBGIxs6PUUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS1UjJx 5nsSoLGWOnRRcU6qo5x/ljAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODg2My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeLpjANBgkqhkiG9w0BAQsFAAOCAQEAYsGvUMS+4WJXau5w+Ejx 6jgQ0GPGHCODV9eefECQCGxkwYGgfgTha35HFhuLH/+TRINaEfWPiXHIGNK0dCuK xlML6LmqGvfVF5w95r8CCyoZW82s7NJMz6FzYnu7YvzP3xRUSWWxD89x9kK2vMlj LFZWYAHguNuCgQU4ZVg7AfXgHQx/fvenpNhmrmzPXDZ6z7EMapDDf30m1T1v4ELD i9mtLnwDWSTvSw9dtJcwI2D1OGv4qM1NkloYRaMlm2fhwOvmpdnL5ZHbjOptIJmw kXocr8EMMrEsoVOx8m4lFxwFdIKhQu447IUU/E34BR0lNj3NJUs87YQuqYQn1dqZ GA== -----END CERTIFICATE-----Generated at Tue Nov 18 01:52:40 2025 by rpki-client