$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139640.roa File: AS139640.roa (raw, json) Hash identifier: RsbIVHNjUUtFhOH4uYuFjcggk8ojWykSbdO9pF3Ouec= Subject key identifier: 40:AC:D6:FF:7C:83:63:69:55:25:ED:F8:E7:0C:6D:0E:20:63:BC:15 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 64E10231E59999E16B72C982C90C62A23B12436C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139640.roa Signing time: Thu 09 Oct 2025 01:24:31 +0000 ROA not before: Thu 09 Oct 2025 01:19:31 +0000 ROA not after: Thu 08 Oct 2026 01:24:31 +0000 asID: 139640 IP address blocks: 202.6.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e1:02:31:e5:99:99:e1:6b:72:c9:82:c9:0c:62:a2:3b:12:43:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 9 01:19:31 2025 GMT Not After : Oct 8 01:24:31 2026 GMT Subject: CN=40ACD6FF7C8363695525EDF8E70C6D0E2063BC15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:62:69:1c:c4:9d:4e:1d:b3:e1:d9:2a:d8:22: dc:b2:80:78:68:5a:7e:fc:c3:99:74:a7:47:e3:a5: 6f:20:1e:c1:0f:f0:ae:f0:6c:47:91:71:30:ad:f9: b5:ee:ff:e9:af:2a:a6:a8:e8:d6:23:2d:cf:f1:92: e3:e4:aa:f2:db:df:b5:8b:1b:93:8d:ce:03:0d:78: 56:f0:6a:ee:cc:33:62:3e:aa:51:bb:8a:28:43:b4: 0c:09:04:46:9f:cf:6c:97:64:d4:30:c7:5b:55:f5: 3e:7a:8e:12:b9:a9:a1:60:8c:15:59:45:e0:f6:8c: 78:4c:7b:c7:d3:ee:05:9d:5f:e3:53:d1:2d:c6:03: d9:64:8f:d3:61:13:d7:77:00:ed:8a:9f:7f:7c:7b: 9c:fa:f9:06:5c:e3:25:68:3e:54:bc:72:6c:7c:6f: 83:43:37:e4:47:b8:41:6f:68:b9:83:63:32:63:30: 95:9b:6a:9b:26:2e:14:44:14:c6:b5:a0:8a:df:3c: 56:cf:6e:d9:b0:59:3a:e6:46:04:4c:6b:7c:bf:f2: 8c:79:27:49:c1:00:fe:3f:51:50:d3:21:ac:62:b8: b3:98:d7:c3:1d:55:22:10:50:af:db:45:b2:23:e0: 88:59:03:c2:0a:d2:2f:13:31:08:58:b7:37:2f:0b: 36:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:AC:D6:FF:7C:83:63:69:55:25:ED:F8:E7:0C:6D:0E:20:63:BC:15 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139640.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.6.200.0/23 Signature Algorithm: sha256WithRSAEncryption 20:f6:93:ab:f5:31:b1:80:8e:29:3d:bf:6a:69:b1:67:ec:75: ed:bd:e3:dd:d8:4d:d6:1e:30:38:66:18:96:51:c8:05:9d:25: f8:fd:97:90:10:6f:66:10:f1:e6:38:f1:60:3c:e2:b5:76:7b: ee:ce:e5:c8:d0:a5:93:98:2c:f9:af:86:0f:58:9a:1e:b1:8a: d1:c0:a4:74:71:5e:93:09:4d:1b:53:7c:c6:04:2a:e6:fa:34: ad:cc:01:bd:54:cd:33:98:16:26:8c:8a:57:ed:e5:f1:bd:6d: 7e:f1:a7:fd:1e:0e:c9:2f:91:14:bf:69:81:d6:15:69:a4:24: cd:bd:76:30:01:9f:eb:73:93:96:f1:44:5b:30:c3:70:f4:51: ff:af:b0:c9:5c:a9:a5:5e:7d:d3:c0:24:8b:60:ca:6c:e5:36: 95:73:ed:93:f0:3e:9e:5b:d5:4d:66:d3:96:b6:dd:3d:34:1c: bd:33:57:36:6f:4e:ec:2a:02:27:6c:62:d0:31:7d:38:15:8b: 8f:a0:94:c8:e1:67:22:cb:81:b9:ae:1f:b1:90:11:02:f7:c0: 59:a6:04:4d:13:a0:03:b6:b7:0e:6d:e6:dc:cb:85:4a:02:63: b1:8d:65:65:97:8f:2d:7a:4b:8c:f4:ef:14:f7:58:a0:c7:92: a1:e6:f4:f6 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZOECMeWZmeFrcsmCyQxiojsSQ2wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAwOTAxMTkzMVoX DTI2MTAwODAxMjQzMVowMzExMC8GA1UEAxMoNDBBQ0Q2RkY3QzgzNjM2OTU1MjVF REY4RTcwQzZEMEUyMDYzQkMxNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdiaRzEnU4ds+HZKtgi3LKAeGhafvzDmXSnR+OlbyAewQ/wrvBsR5FxMK35 te7/6a8qpqjo1iMtz/GS4+Sq8tvftYsbk43OAw14VvBq7swzYj6qUbuKKEO0DAkE Rp/PbJdk1DDHW1X1PnqOErmpoWCMFVlF4PaMeEx7x9PuBZ1f41PRLcYD2WSP02ET 13cA7Yqff3x7nPr5BlzjJWg+VLxybHxvg0M35Ee4QW9ouYNjMmMwlZtqmyYuFEQU xrWgit88Vs9u2bBZOuZGBExrfL/yjHknScEA/j9RUNMhrGK4s5jXwx1VIhBQr9tF siPgiFkDwgrSLxMxCFi3Ny8LNm0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRArNb/ fINjaVUl7fjnDG0OIGO8FTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTY0MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAcoGyDANBgkqhkiG9w0BAQsFAAOCAQEAIPaTq/UxsYCOKT2/ammx Z+x17b3j3dhN1h4wOGYYllHIBZ0l+P2XkBBvZhDx5jjxYDzitXZ77s7lyNClk5gs +a+GD1iaHrGK0cCkdHFekwlNG1N8xgQq5vo0rcwBvVTNM5gWJoyKV+3l8b1tfvGn /R4OyS+RFL9pgdYVaaQkzb12MAGf63OTlvFEWzDDcPRR/6+wyVyppV5908Aki2DK bOU2lXPtk/A+nlvVTWbTlrbdPTQcvTNXNm9O7CoCJ2xi0DF9OBWLj6CUyOFnIsuB ua4fsZARAvfAWaYETROgA7a3Dm3m3MuFSgJjsY1lZZePLXpLjPTvFPdYoMeSoeb0 9g== -----END CERTIFICATE-----Generated at Sun Oct 19 12:51:27 2025 by rpki-client