$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139981.roa File: AS139981.roa (raw, json) Hash identifier: VTo8vRnkcUbEBupvEfoMncuKY9u12Icj7PzqfJ2wBMo= Subject key identifier: DC:BC:B6:B1:06:BF:A4:0D:54:1B:73:D4:01:8D:9B:14:10:11:73:9F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3C79CCBAC5E8303CC1872D6220B0271A55066E5F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139981.roa Signing time: Tue 28 Oct 2025 12:01:41 +0000 ROA not before: Tue 28 Oct 2025 11:56:41 +0000 ROA not after: Tue 27 Oct 2026 12:01:41 +0000 asID: 139981 IP address blocks: 103.71.160.0/22 maxlen: 24 103.80.98.0/23 maxlen: 24 202.74.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 05:03:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:79:cc:ba:c5:e8:30:3c:c1:87:2d:62:20:b0:27:1a:55:06:6e:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 28 11:56:41 2025 GMT Not After : Oct 27 12:01:41 2026 GMT Subject: CN=DCBCB6B106BFA40D541B73D4018D9B141011739F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2c:98:ee:4c:e2:f8:68:23:61:aa:6a:3c:63: 82:9c:02:f0:b0:7f:32:1b:98:45:1b:15:bb:a6:7b: ec:51:3a:c2:2d:25:14:45:d3:03:e3:7e:f0:f4:f3: a3:df:c0:9a:fa:d4:d2:7b:25:e9:fa:05:d8:5f:f3: 1b:b4:dd:e4:6f:76:7d:f7:8a:44:02:dd:25:30:3d: 68:5c:ef:43:c4:1b:22:e3:15:18:9d:68:f2:aa:eb: 8f:a7:11:ab:0c:4d:e0:bb:bf:bd:29:44:e9:63:9a: 16:56:9b:7e:37:19:34:b1:4f:4e:a1:ea:51:6d:9d: 37:26:f9:fa:dd:cd:e5:86:b8:5a:d4:a6:b1:4e:4c: 4e:61:6c:f4:b1:ca:a0:5e:83:08:7c:6b:8f:6b:d5: 54:2f:53:a0:f1:10:d7:41:f9:e7:c9:be:96:90:bc: b8:06:9a:ea:f5:d7:41:1c:a9:af:cd:17:b7:59:ec: 56:76:1d:91:84:8b:13:25:f7:e7:ad:3f:52:86:9e: d9:c1:c0:7d:38:cd:8a:4f:c6:53:8d:49:27:c8:0e: ec:d1:0d:5f:c6:a7:b1:06:28:8a:ef:e6:b4:8c:23: bc:9e:e2:5e:0f:c3:33:33:47:73:97:91:8f:ba:4b: 42:e5:09:d7:01:26:55:6c:9c:b2:3d:9d:08:1b:a8: 43:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:BC:B6:B1:06:BF:A4:0D:54:1B:73:D4:01:8D:9B:14:10:11:73:9F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139981.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.160.0/22 103.80.98.0/23 202.74.72.0/23 Signature Algorithm: sha256WithRSAEncryption 66:ba:0d:7d:cd:f5:8c:7e:00:c5:04:ca:15:c2:86:d9:9c:ec: e6:b7:d2:38:34:17:e0:21:11:53:49:91:e3:dd:18:61:8d:9f: 67:4f:d0:a4:e0:c0:42:37:4f:06:1c:13:1e:ec:ef:b1:d2:10: d8:2e:02:49:6f:66:d9:60:16:6d:51:39:41:b1:50:3c:7a:ae: 5b:38:fe:08:49:3d:43:d2:43:65:7b:5c:ae:10:50:ff:bc:e3: 45:b7:d2:7d:51:f5:16:c7:cf:45:e3:a5:1e:d9:83:1e:51:c8: 5d:a7:ff:80:2e:33:ec:3f:90:2c:9b:07:4b:8e:be:e4:59:64: 59:10:39:0b:8d:3d:7e:76:e5:24:e1:d2:c2:1e:fa:b1:20:e2: d0:d5:86:b0:b7:a1:ba:bf:fe:68:79:69:f5:3b:d9:4b:61:6b: ce:bd:2a:9a:c5:77:59:5c:d6:47:e3:a4:d1:59:f5:f1:69:36: 86:30:64:42:f0:7e:fb:05:39:15:1d:79:b5:cd:ce:df:7f:eb: 46:fc:48:85:fc:0f:76:82:fc:e2:a1:94:8a:e7:7a:d4:fd:96: ed:89:00:46:e8:8a:ab:97:38:cd:7e:9d:68:3b:bd:1b:5b:64: 3b:1a:0c:6d:f3:f1:1d:74:5b:60:33:f5:f2:01:79:27:46:e6: 26:2b:e0:2d -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUPHnMusXoMDzBhy1iILAnGlUGbl8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAyODExNTY0MVoX DTI2MTAyNzEyMDE0MVowMzExMC8GA1UEAxMoRENCQ0I2QjEwNkJGQTQwRDU0MUI3 M0Q0MDE4RDlCMTQxMDExNzM5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALQsmO5M4vhoI2GqajxjgpwC8LB/MhuYRRsVu6Z77FE6wi0lFEXTA+N+8PTz o9/AmvrU0nsl6foF2F/zG7Td5G92ffeKRALdJTA9aFzvQ8QbIuMVGJ1o8qrrj6cR qwxN4Lu/vSlE6WOaFlabfjcZNLFPTqHqUW2dNyb5+t3N5Ya4WtSmsU5MTmFs9LHK oF6DCHxrj2vVVC9ToPEQ10H558m+lpC8uAaa6vXXQRypr80Xt1nsVnYdkYSLEyX3 560/Uoae2cHAfTjNik/GU41JJ8gO7NENX8ansQYoiu/mtIwjvJ7iXg/DMzNHc5eR j7pLQuUJ1wEmVWycsj2dCBuoQ30CAwEAAaOCAdwwggHYMB0GA1UdDgQWBBTcvLax Br+kDVQbc9QBjZsUEBFznzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEAmdHoAMEAWdQYgMEAcpKSDANBgkqhkiG9w0BAQsFAAOCAQEAZroN fc31jH4AxQTKFcKG2Zzs5rfSODQX4CERU0mR490YYY2fZ0/QpODAQjdPBhwTHuzv sdIQ2C4CSW9m2WAWbVE5QbFQPHquWzj+CEk9Q9JDZXtcrhBQ/7zjRbfSfVH1FsfP ReOlHtmDHlHIXaf/gC4z7D+QLJsHS46+5FlkWRA5C409fnblJOHSwh76sSDi0NWG sLehur/+aHlp9TvZS2Frzr0qmsV3WVzWR+Ok0Vn18Wk2hjBkQvB++wU5FR15tc3O 33/rRvxIhfwPdoL84qGUiud61P2W7YkARuiKq5c4zX6daDu9G1tkOxoMbfPxHXRb YDP18gF5J0bmJivgLQ== -----END CERTIFICATE-----Generated at Mon Nov 3 06:43:32 2025 by rpki-client