$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS139742.roa File: AS139742.roa (raw, json) Hash identifier: Fplk6Cz9SzHxj5r3rk1+nOtCpV+jWKc4uyL5TvMPxoU= Subject key identifier: 8D:8E:09:7C:61:6B:70:C0:46:FE:A4:E3:B2:B5:34:84:B1:3C:A4:24 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 4D66C2613C78E3B0FE128DD172DA1F57346B9DCA Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS139742.roa Signing time: Sat 02 May 2026 09:25:08 +0000 ROA not before: Sat 02 May 2026 09:20:08 +0000 ROA not after: Sat 01 May 2027 09:25:08 +0000 asID: 139742 IP address blocks: 192.42.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:66:c2:61:3c:78:e3:b0:fe:12:8d:d1:72:da:1f:57:34:6b:9d:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:20:08 2026 GMT Not After : May 1 09:25:08 2027 GMT Subject: CN=8D8E097C616B70C046FEA4E3B2B53484B13CA424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:91:04:fd:5e:21:ed:d3:5c:86:3d:d7:6c:15: c8:d8:40:6f:1a:92:a1:13:85:8c:55:97:92:1b:29: 0a:04:e9:9b:f4:aa:4d:57:7a:4d:83:8e:b1:e6:0d: 3d:00:a4:8e:0a:bd:65:fd:cd:63:5f:73:c9:3c:fa: 9b:b8:fc:c9:67:3a:14:f7:49:6a:0d:b9:ea:f7:51: 1d:3a:96:c9:98:0b:cb:ad:86:3b:38:dd:dc:e0:69: 1e:75:b5:87:aa:e0:7a:93:ce:0c:10:88:36:5e:bf: b6:6e:b4:6e:42:a5:e6:d0:d9:84:f5:7e:c9:74:23: 89:34:67:e6:f4:9d:6a:c6:41:33:1b:3c:d1:2e:dd: 37:6d:ba:93:22:5b:42:e6:a3:f7:42:8b:4d:75:15: b6:39:8f:57:2a:c2:10:98:f1:3a:a4:8c:9c:1e:f5: b9:c2:f1:26:51:8a:6d:11:52:92:38:65:19:65:d0: 2a:34:71:2f:4a:ae:f0:24:1d:fd:b4:34:0d:cb:7a: f2:d1:8e:3f:6b:a7:c3:80:e2:b7:61:1f:0c:11:b2: 74:20:45:32:1c:28:bf:71:20:66:c3:eb:df:6d:89: 25:00:1d:23:08:16:6b:2c:d9:62:3e:a2:12:d8:3e: 58:66:30:7c:ea:97:90:30:c5:a0:f6:41:87:b3:3d: 4a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:8E:09:7C:61:6B:70:C0:46:FE:A4:E3:B2:B5:34:84:B1:3C:A4:24 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS139742.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.42.85.0/24 Signature Algorithm: sha256WithRSAEncryption 54:e7:e4:7a:a5:62:c6:b5:43:1b:32:03:c1:2c:fb:6c:77:6f: 31:87:aa:16:ad:bc:ba:50:fd:3e:72:c8:19:c9:f6:94:9a:46: 23:c3:8a:e3:3f:60:91:25:0a:07:d4:2a:fa:75:b7:61:54:1c: 2e:da:1b:55:b1:64:a4:03:80:34:e2:09:41:fb:e7:4e:87:87: c4:02:e0:c2:32:ec:02:cd:1a:43:07:ed:20:ba:31:98:71:5d: 3e:04:c0:37:f0:c4:9b:db:c2:15:b4:ae:9c:64:e2:30:34:8f: 35:af:d7:7a:67:13:2f:03:7a:59:b9:38:32:ad:06:a6:c2:18: dd:9b:20:c2:c1:cf:bf:2c:97:57:63:f9:32:a4:6f:1e:29:e3: 41:1c:02:96:2d:44:61:05:37:c0:0a:89:fa:23:9b:09:12:e6: cd:05:9a:aa:60:4e:65:59:8c:1a:6a:3b:49:8a:0c:d3:93:a5: 9d:d8:05:07:c5:29:1b:64:4f:f4:52:15:c4:fa:c6:66:2b:aa: 82:03:e0:2d:bf:c0:f9:eb:2a:8f:7c:29:dd:69:b9:86:86:de: b9:ef:2d:49:a5:c3:92:63:bb:4c:6f:6f:b3:ac:96:09:a7:45: 79:0c:90:b6:af:04:ec:36:77:b1:ff:4c:07:2d:02:ee:bc:11: ba:57:27:e8 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUTWbCYTx447D+Eo3RctofVzRrncowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MjAwOFoX DTI3MDUwMTA5MjUwOFowMzExMC8GA1UEAxMoOEQ4RTA5N0M2MTZCNzBDMDQ2RkVB NEUzQjJCNTM0ODRCMTNDQTQyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJmRBP1eIe3TXIY912wVyNhAbxqSoROFjFWXkhspCgTpm/SqTVd6TYOOseYN PQCkjgq9Zf3NY19zyTz6m7j8yWc6FPdJag256vdRHTqWyZgLy62GOzjd3OBpHnW1 h6rgepPODBCINl6/tm60bkKl5tDZhPV+yXQjiTRn5vSdasZBMxs80S7dN226kyJb Quaj90KLTXUVtjmPVyrCEJjxOqSMnB71ucLxJlGKbRFSkjhlGWXQKjRxL0qu8CQd /bQ0Dct68tGOP2unw4Dit2EfDBGydCBFMhwov3EgZsPr322JJQAdIwgWayzZYj6i Etg+WGYwfOqXkDDFoPZBh7M9SjkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSNjgl8 YWtwwEb+pOOytTSEsTykJDAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTM5NzQyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwCpVMA0GCSqGSIb3DQEBCwUAA4IBAQBU5+R6pWLGtUMbMgPBLPtsd28x h6oWrby6UP0+csgZyfaUmkYjw4rjP2CRJQoH1Cr6dbdhVBwu2htVsWSkA4A04glB ++dOh4fEAuDCMuwCzRpDB+0gujGYcV0+BMA38MSb28IVtK6cZOIwNI81r9d6ZxMv A3pZuTgyrQamwhjdmyDCwc+/LJdXY/kypG8eKeNBHAKWLURhBTfACon6I5sJEubN BZqqYE5lWYwaajtJigzTk6Wd2AUHxSkbZE/0UhXE+sZmK6qCA+Atv8D56yqPfCnd abmGht657y1JpcOSY7tMb2+zrJYJp0V5DJC2rwTsNnex/0wHLQLuvBG6Vyfo -----END CERTIFICATE-----Generated at Sat May 2 21:05:17 2026 by rpki-client