$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS139328.roa File: AS139328.roa (raw, json) Hash identifier: qtigyNDkcyInRndArRKS2xbJnSDTKUJnhsVDZ+KyEvQ= Subject key identifier: 19:92:10:2A:CD:7E:04:71:FA:4E:8D:31:95:70:F7:78:66:98:A0:DE Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 193347C5359AEA5243B4AD932E249453410D3771 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS139328.roa Signing time: Sat 02 May 2026 09:23:05 +0000 ROA not before: Sat 02 May 2026 09:18:05 +0000 ROA not after: Sat 01 May 2027 09:23:05 +0000 asID: 139328 IP address blocks: 165.101.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:33:47:c5:35:9a:ea:52:43:b4:ad:93:2e:24:94:53:41:0d:37:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:05 2026 GMT Not After : May 1 09:23:05 2027 GMT Subject: CN=1992102ACD7E0471FA4E8D319570F7786698A0DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:3f:4a:df:f7:b2:7f:5a:9b:d0:d0:96:46:cb: 9e:69:77:89:3d:89:33:2c:23:00:21:a6:5b:b8:1f: e1:0d:dc:c7:f4:d9:67:44:a3:7f:16:8a:a3:70:e7: e9:2b:50:a6:f0:33:d2:13:bd:0f:e2:a6:24:50:81: 88:91:bc:3f:20:ba:f7:2a:fa:e0:5e:81:33:91:97: 7b:b6:1d:1a:07:15:52:06:9b:f1:85:1d:99:4a:31: 37:3b:1b:07:ea:db:73:4c:c8:b5:4a:fb:3d:ad:00: ee:8f:6c:31:55:92:15:d1:1f:0e:42:d3:6a:0c:fc: 53:a3:10:50:5a:66:3b:8f:1f:7c:9e:fe:27:79:77: 36:70:d4:80:0a:48:79:aa:e0:1c:09:51:78:99:65: cc:81:7c:d0:56:55:51:65:85:42:7d:2d:2d:b1:f1: e5:57:f9:2d:c9:e2:b2:23:ba:f8:3f:e5:5a:28:96: e8:fb:ab:52:fd:23:69:a7:9c:e0:32:f5:03:fb:31: 8c:83:fc:2f:60:d9:5f:c6:32:bb:4b:94:94:87:24: 90:ba:e7:7b:36:62:ef:ea:d4:6b:83:31:8e:5c:47: a3:22:3e:c2:56:0e:03:57:84:71:22:33:d2:ab:20: 9a:46:fb:5a:cc:04:50:e2:22:e4:5c:fe:e6:b6:d9: 6a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:92:10:2A:CD:7E:04:71:FA:4E:8D:31:95:70:F7:78:66:98:A0:DE X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS139328.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.56.0/24 Signature Algorithm: sha256WithRSAEncryption 69:69:0e:c7:c0:3e:06:75:04:f1:27:e9:d2:4b:5a:b1:84:e3: c0:ae:e8:9d:e6:be:cc:15:95:46:ca:59:de:d9:2d:eb:93:ed: 14:3e:6f:38:1e:7d:7f:5e:64:fc:8d:c7:5d:7b:a0:26:da:5b: 72:8c:25:fe:34:6a:b7:39:44:1a:7c:60:4d:a7:43:82:16:d6: ce:06:2a:f3:d4:bf:39:3e:f6:21:6a:53:de:60:4c:3d:b8:83: ab:75:c3:68:28:4c:fb:28:bc:f4:dd:28:08:31:8a:37:16:d1: 14:fe:1f:e6:32:99:63:61:32:85:1f:26:bf:00:23:60:db:91: e6:13:42:ae:0b:86:8a:9e:3a:9f:ea:69:c2:f2:01:f2:e6:4c: 1c:39:56:fe:49:4d:6f:c1:42:7c:37:37:06:2d:70:5a:59:6d: 59:ab:dd:77:d9:6c:ad:7c:22:2e:8e:45:36:63:e0:bf:49:24: 3b:38:fb:aa:39:92:1c:4a:d9:d4:21:f9:bd:f9:78:95:4e:15: 4d:8b:d2:f6:df:1d:10:7f:b6:e5:5d:54:28:a8:00:95:73:d2: af:c9:20:72:96:df:53:45:fc:2c:66:72:f8:0a:8e:41:07:22: 97:cd:7e:5f:e6:08:f9:48:35:97:ff:19:55:b4:79:89:df:63: f2:42:57:0b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUGTNHxTWa6lJDtK2TLiSUU0ENN3EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTgwNVoX DTI3MDUwMTA5MjMwNVowMzExMC8GA1UEAxMoMTk5MjEwMkFDRDdFMDQ3MUZBNEU4 RDMxOTU3MEY3Nzg2Njk4QTBERTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO8/St/3sn9am9DQlkbLnml3iT2JMywjACGmW7gf4Q3cx/TZZ0SjfxaKo3Dn 6StQpvAz0hO9D+KmJFCBiJG8PyC69yr64F6BM5GXe7YdGgcVUgab8YUdmUoxNzsb B+rbc0zItUr7Pa0A7o9sMVWSFdEfDkLTagz8U6MQUFpmO48ffJ7+J3l3NnDUgApI eargHAlReJllzIF80FZVUWWFQn0tLbHx5Vf5LcnisiO6+D/lWiiW6PurUv0jaaec 4DL1A/sxjIP8L2DZX8Yyu0uUlIckkLrnezZi7+rUa4MxjlxHoyI+wlYOA1eEcSIz 0qsgmkb7WswEUOIi5Fz+5rbZakECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQZkhAq zX4EcfpOjTGVcPd4Zpig3jAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTM5MzI4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQApWU4MA0GCSqGSIb3DQEBCwUAA4IBAQBpaQ7HwD4GdQTxJ+nSS1qxhOPA ruid5r7MFZVGylne2S3rk+0UPm84Hn1/XmT8jcdde6Am2ltyjCX+NGq3OUQafGBN p0OCFtbOBirz1L85PvYhalPeYEw9uIOrdcNoKEz7KLz03SgIMYo3FtEU/h/mMplj YTKFHya/ACNg25HmE0KuC4aKnjqf6mnC8gHy5kwcOVb+SU1vwUJ8NzcGLXBaWW1Z q9132WytfCIujkU2Y+C/SSQ7OPuqOZIcStnUIfm9+XiVThVNi9L23x0Qf7blXVQo qACVc9KvySBylt9TRfwsZnL4Co5BByKXzX5f5gj5SDWX/xlVtHmJ32PyQlcL -----END CERTIFICATE-----Generated at Sat May 2 21:05:06 2026 by rpki-client