$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139983.roa File: AS139983.roa (raw, json) Hash identifier: jLQZRV2CrLy2m0/U8oHRpE2410Kyi7u2kIz3cV22+/U= Subject key identifier: 09:F2:0B:16:8C:E6:92:E3:39:C3:00:2D:31:F7:09:1C:FC:54:08:27 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0492E053F93CF6669957E94624689A66400FBE01 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139983.roa Signing time: Mon 02 Jun 2025 02:23:02 +0000 ROA not before: Mon 02 Jun 2025 02:18:02 +0000 ROA not after: Mon 01 Jun 2026 02:23:02 +0000 asID: 139983 IP address blocks: 103.148.48.0/23 maxlen: 24 103.167.222.0/24 maxlen: 24 2405:cb40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:92:e0:53:f9:3c:f6:66:99:57:e9:46:24:68:9a:66:40:0f:be:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 2 02:18:02 2025 GMT Not After : Jun 1 02:23:02 2026 GMT Subject: CN=09F20B168CE692E339C3002D31F7091CFC540827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7a:1b:d2:3e:d6:c0:7e:38:b4:d1:34:45:6a: 63:db:13:c8:9a:a4:21:9b:ff:ce:3b:20:5b:e0:07: f6:38:05:3d:b1:b9:d3:38:5f:5a:8e:04:65:96:d0: 08:18:d5:17:6d:e3:c1:12:f1:39:d9:47:ab:24:f9: 5d:91:7b:cd:54:8c:6d:73:95:e1:80:a5:43:4a:da: 44:41:bb:36:48:2e:6e:a0:2a:19:0f:75:0f:b0:03: 4b:35:9b:ca:9c:0c:63:b7:f8:b2:20:36:08:32:16: f0:ff:34:6e:2b:44:3f:bb:b2:d6:0a:94:48:7e:f8: a2:46:b2:99:10:f6:ac:9e:13:fd:2e:2d:16:44:6c: e8:aa:1f:aa:4f:49:8f:1e:fd:dc:0f:d6:07:c9:ff: 79:75:99:ef:9b:e1:13:f2:ef:93:f5:21:4d:15:78: 62:d3:f7:0c:78:f3:e9:05:7e:1c:11:12:45:7d:6c: 06:36:f3:0a:0b:44:54:e5:89:15:5c:99:46:19:06: 4f:05:7b:05:06:b9:fe:cc:f2:05:cd:41:8f:a0:17: 6b:86:81:54:08:dc:8c:88:6d:6a:48:4a:98:66:8f: 82:c5:43:2a:a9:ff:a8:e2:fe:c6:5d:26:b9:12:03: fa:8a:00:53:85:25:3f:a4:b8:bb:67:85:fd:2a:ce: 12:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F2:0B:16:8C:E6:92:E3:39:C3:00:2D:31:F7:09:1C:FC:54:08:27 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139983.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.48.0/23 103.167.222.0/24 IPv6: 2405:cb40::/32 Signature Algorithm: sha256WithRSAEncryption 6c:ce:b9:55:36:0f:0d:8b:9a:c3:0a:ca:f5:56:38:be:b8:58: ac:58:6f:07:b4:fd:64:bf:57:d3:5d:ee:fd:49:7c:83:d7:55: cc:e5:37:03:7f:fb:29:c8:26:b7:68:86:ed:b2:6f:62:33:f0: 59:35:8a:d0:c4:d5:f2:74:f0:2f:8f:4c:e2:05:42:86:06:af: c5:bc:19:d5:28:b2:42:d0:6f:c6:15:9d:62:4a:ff:21:fd:de: ae:28:9d:f4:ce:72:cc:6a:da:fb:2d:5d:24:60:94:b5:44:dc: 44:72:46:2c:89:a9:46:02:32:e3:74:4c:a5:d6:02:52:d7:97: 47:b5:e5:db:4b:dc:f3:16:b8:04:4f:45:9f:7f:86:f4:13:00: e0:ad:00:2a:5a:ee:f3:e1:39:a8:e4:59:e9:22:66:46:f8:f8: bd:a7:d6:f3:13:40:98:5f:85:89:54:e0:c2:b0:c7:8c:9a:32: 62:89:55:f4:98:e8:eb:52:4b:5d:da:df:07:71:5b:d2:e7:e2: 48:8e:fe:3c:e0:64:a9:dc:da:92:b7:ce:f0:8f:1c:55:fe:38: a8:b5:bd:55:ba:96:95:fc:06:42:74:bc:31:a4:7a:9e:80:fa: 40:c6:f6:46:27:bc:3f:cc:a6:2c:3a:88:6b:e6:f9:d6:ef:69: 30:33:41:c2 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUBJLgU/k89maZV+lGJGiaZkAPvgEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMjAyMTgwMloX DTI2MDYwMTAyMjMwMlowMzExMC8GA1UEAxMoMDlGMjBCMTY4Q0U2OTJFMzM5QzMw MDJEMzFGNzA5MUNGQzU0MDgyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALJ6G9I+1sB+OLTRNEVqY9sTyJqkIZv/zjsgW+AH9jgFPbG50zhfWo4EZZbQ CBjVF23jwRLxOdlHqyT5XZF7zVSMbXOV4YClQ0raREG7NkgubqAqGQ91D7ADSzWb ypwMY7f4siA2CDIW8P80bitEP7uy1gqUSH74okaymRD2rJ4T/S4tFkRs6Kofqk9J jx793A/WB8n/eXWZ75vhE/Lvk/UhTRV4YtP3DHjz6QV+HBESRX1sBjbzCgtEVOWJ FVyZRhkGTwV7BQa5/szyBc1Bj6AXa4aBVAjcjIhtakhKmGaPgsVDKqn/qOL+xl0m uRID+ooAU4UlP6S4u2eF/SrOEmMCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBQJ8gsW jOaS4znDAC0x9wkc/FQIJzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk4My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAWeUMAMEAGen3jANBAIAAjAHAwUAJAXLQDANBgkqhkiG9w0BAQsF AAOCAQEAbM65VTYPDYuawwrK9VY4vrhYrFhvB7T9ZL9X013u/Ul8g9dVzOU3A3/7 Kcgmt2iG7bJvYjPwWTWK0MTV8nTwL49M4gVChgavxbwZ1SiyQtBvxhWdYkr/If3e riid9M5yzGra+y1dJGCUtUTcRHJGLImpRgIy43RMpdYCUteXR7Xl20vc8xa4BE9F n3+G9BMA4K0AKlru8+E5qORZ6SJmRvj4vafW8xNAmF+FiVTgwrDHjJoyYolV9Jjo 61JLXdrfB3Fb0ufiSI7+POBkqdzakrfO8I8cVf44qLW9VbqWlfwGQnS8MaR6noD6 QMb2Rie8P8ymLDqIa+b51u9pMDNBwg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:12:27 2025 by rpki-client