$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138864.roa File: AS138864.roa (raw, json) Hash identifier: u9VpXmgEqFz7re+A8RxZ9cNTMZ5beznHuXKu/RGHCqs= Subject key identifier: 89:25:0A:E5:93:DD:34:C0:32:DA:41:3F:F3:0A:EC:19:05:F6:EA:9E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 274E8F64535D1DD94DCA451D7867B58AAF5A6E1F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138864.roa Signing time: Tue 11 Nov 2025 06:00:01 +0000 ROA not before: Tue 11 Nov 2025 05:55:01 +0000 ROA not after: Tue 10 Nov 2026 06:00:01 +0000 asID: 138864 IP address blocks: 103.139.174.0/24 maxlen: 24 2407:74c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Nov 2025 16:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:4e:8f:64:53:5d:1d:d9:4d:ca:45:1d:78:67:b5:8a:af:5a:6e:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:01 2025 GMT Not After : Nov 10 06:00:01 2026 GMT Subject: CN=89250AE593DD34C032DA413FF30AEC1905F6EA9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:72:d0:69:6c:85:87:4d:eb:90:03:54:10:cb: 59:97:de:89:9a:35:56:2d:4d:b1:10:f6:af:62:12: 0c:a0:57:26:1e:61:f8:5c:ad:df:54:3c:26:0c:90: 33:99:69:a2:c6:f2:4b:82:0f:fb:17:b5:58:eb:43: 59:60:cf:ba:e9:9d:76:04:dd:01:70:f6:32:60:a9: e6:fb:83:86:d8:31:c6:e2:7e:8d:58:ef:ba:74:e0: 98:94:09:83:3f:9e:e2:89:66:d2:b0:68:f8:90:5b: 2b:c3:16:91:f2:24:cf:27:ba:c6:32:77:e2:0a:0b: ac:24:1a:ab:42:53:fe:e3:41:6b:36:f2:46:dc:ba: 99:78:8c:1d:d6:be:a4:98:5b:6a:16:18:c4:bb:8b: 79:62:99:36:dc:b9:ae:10:4c:81:e7:fc:b8:9e:60: 52:59:93:14:10:47:6b:fb:b2:bc:f7:a5:7f:51:fa: cc:3d:08:80:16:89:46:6d:45:24:0f:66:e7:22:f4: ea:a7:4d:1b:e5:29:b9:0c:03:df:1a:11:40:0a:e0: 04:a7:f1:9b:ff:85:d1:50:2e:0a:e6:71:eb:0d:d5: c2:a6:0a:80:fb:e1:83:f6:f8:e9:7a:d9:05:14:e7: fa:8b:ec:e7:e6:1d:bb:f3:4e:ab:08:dc:19:12:99: f4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:25:0A:E5:93:DD:34:C0:32:DA:41:3F:F3:0A:EC:19:05:F6:EA:9E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138864.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.174.0/24 IPv6: 2407:74c0::/32 Signature Algorithm: sha256WithRSAEncryption 83:d8:44:31:15:42:6c:89:12:36:1f:81:81:1d:e3:61:ef:05: 86:12:ad:52:36:f9:21:fe:72:bb:db:c6:02:bf:64:28:59:9f: 91:d5:20:15:cc:88:da:1d:52:b7:82:f7:28:38:70:12:be:88: d7:ab:35:ee:26:1f:fb:12:ac:33:58:af:46:62:3a:29:63:0a: 81:63:83:6f:01:37:9c:bc:52:38:46:df:37:4e:b5:07:15:e8: 36:6b:f5:7d:5d:65:f8:43:dd:26:bf:6b:ae:23:94:8f:50:a5: d8:92:07:b2:46:37:5a:03:8f:af:f6:a3:dd:89:ab:09:dd:81: ee:65:54:71:3f:49:4c:b7:0b:6c:8e:b2:ae:b2:19:6e:c8:3a: b8:28:e7:e8:c0:48:1e:50:78:89:11:5d:0f:d1:87:ab:40:18: b3:c0:dc:d5:4a:c7:dc:b5:1b:ce:9d:53:3a:ae:ac:a0:43:68: 34:5b:ea:fe:6c:71:e4:6c:8d:56:a0:bd:c6:a7:f7:ac:ec:d2: 15:8b:bc:09:6d:4b:d8:9e:84:22:ac:6b:62:16:b0:c1:62:f1: 6a:0f:af:f4:fd:c9:2c:98:56:25:8f:db:ae:bb:35:ab:ca:c3: 7a:47:fe:a1:96:5f:e0:67:ea:4c:57:5d:c6:e8:31:ee:1d:de: 77:e2:9b:8e -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUJ06PZFNdHdlNykUdeGe1iq9abh8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwMVoX DTI2MTExMDA2MDAwMVowMzExMC8GA1UEAxMoODkyNTBBRTU5M0REMzRDMDMyREE0 MTNGRjMwQUVDMTkwNUY2RUE5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANZy0GlshYdN65ADVBDLWZfeiZo1Vi1NsRD2r2ISDKBXJh5h+Fyt31Q8JgyQ M5lposbyS4IP+xe1WOtDWWDPuumddgTdAXD2MmCp5vuDhtgxxuJ+jVjvunTgmJQJ gz+e4olm0rBo+JBbK8MWkfIkzye6xjJ34goLrCQaq0JT/uNBazbyRty6mXiMHda+ pJhbahYYxLuLeWKZNty5rhBMgef8uJ5gUlmTFBBHa/uyvPelf1H6zD0IgBaJRm1F JA9m5yL06qdNG+UpuQwD3xoRQArgBKfxm/+F0VAuCuZx6w3VwqYKgPvhg/b46XrZ BRTn+ovs5+Ydu/NOqwjcGRKZ9BsCAwEAAaOCAd8wggHbMB0GA1UdDgQWBBSJJQrl k900wDLaQT/zCuwZBfbqnjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODg2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAGeLrjANBAIAAjAHAwUAJAd0wDANBgkqhkiG9w0BAQsFAAOCAQEA g9hEMRVCbIkSNh+BgR3jYe8FhhKtUjb5If5yu9vGAr9kKFmfkdUgFcyI2h1St4L3 KDhwEr6I16s17iYf+xKsM1ivRmI6KWMKgWODbwE3nLxSOEbfN061BxXoNmv1fV1l +EPdJr9rriOUj1Cl2JIHskY3WgOPr/aj3YmrCd2B7mVUcT9JTLcLbI6yrrIZbsg6 uCjn6MBIHlB4iRFdD9GHq0AYs8Dc1UrH3LUbzp1TOq6soENoNFvq/mxx5GyNVqC9 xqf3rOzSFYu8CW1L2J6EIqxrYhawwWLxag+v9P3JLJhWJY/brrs1q8rDekf+oZZf 4GfqTFddxugx7h3ed+Kbjg== -----END CERTIFICATE-----Generated at Sat Nov 15 13:44:49 2025 by rpki-client