$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS137379.roa File: AS137379.roa (raw, json) Hash identifier: 6ppaxgwGbC2dwA4j1ppal5JbEXKI52/23Ib2kXwP528= Subject key identifier: 2B:7E:B5:99:0F:45:D6:CA:8E:9B:FC:23:17:53:87:23:AC:13:9F:BD Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6CFEFAD480A10D272584C1738149CC6DE196741E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS137379.roa Signing time: Sat 02 May 2026 09:19:31 +0000 ROA not before: Sat 02 May 2026 09:14:31 +0000 ROA not after: Sat 01 May 2027 09:19:31 +0000 asID: 137379 IP address blocks: 103.119.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:fe:fa:d4:80:a1:0d:27:25:84:c1:73:81:49:cc:6d:e1:96:74:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:14:31 2026 GMT Not After : May 1 09:19:31 2027 GMT Subject: CN=2B7EB5990F45D6CA8E9BFC2317538723AC139FBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4f:f6:90:aa:72:ca:e3:21:90:6b:d0:e1:f0: 79:13:5d:51:57:be:87:c1:d7:02:92:12:bf:92:cc: af:99:b8:41:45:76:4c:a6:30:57:07:03:de:e6:ff: c3:ca:5c:3e:0e:fb:01:5d:95:9f:f5:2e:74:a9:d4: f4:ee:99:8a:ef:45:d8:1e:df:2f:4b:f5:85:f6:dd: f9:8e:36:ed:a8:32:06:67:5d:f0:b2:2b:88:a7:56: 4d:3e:e5:49:c4:75:d7:46:ab:b3:a3:31:92:27:02: 29:39:dc:54:ea:4b:51:91:2b:69:cd:93:87:78:0d: d1:4e:37:05:20:cb:fc:a8:af:29:1c:a1:8d:79:40: e8:63:cf:97:68:29:22:a6:9b:af:67:28:c5:ba:9f: 16:52:73:29:0e:94:d2:3a:32:b5:66:c8:05:e3:e8: 59:e3:4d:35:52:39:23:02:24:5e:56:7d:3f:1b:62: ed:e9:e0:80:08:5d:45:df:3e:85:52:8a:b6:1b:4d: 47:6a:37:3f:1a:24:d5:3c:3d:16:57:9b:8f:f5:83: fc:d5:13:1f:3a:d3:9b:1b:32:b5:eb:ae:f9:5b:dc: 88:13:dc:22:85:0a:1d:cd:08:89:68:7c:00:bf:10: e3:4e:b7:ac:38:dc:da:22:a9:32:2d:77:6a:66:3e: ec:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:7E:B5:99:0F:45:D6:CA:8E:9B:FC:23:17:53:87:23:AC:13:9F:BD X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS137379.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.138.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:28:76:2b:1a:9c:c4:e2:78:f6:39:59:d8:85:86:ab:e8:b1: 05:46:f2:b2:73:1f:e1:c0:35:f0:6b:53:28:47:42:5d:2c:0f: e7:18:3b:ce:3c:71:c6:7d:75:7c:3e:60:d5:84:f8:c1:a5:6f: 35:0a:b2:44:e4:82:b2:e7:9f:bc:20:21:22:be:e4:cc:c9:72: b0:86:5e:6d:93:11:8c:93:34:6a:c2:04:f5:95:c2:08:cd:a2: 62:74:d2:64:9b:a7:cd:7c:10:2b:e7:28:df:7a:61:55:b4:e7: f5:b8:4f:24:6a:9c:fb:b2:19:50:e7:92:61:56:ed:57:06:69: 35:d6:b9:d8:4f:a6:96:23:11:f1:ab:d7:23:16:a7:21:2b:a0: 7b:ee:35:eb:fb:f4:50:0f:73:db:15:08:2f:ec:ee:50:b9:44: 96:03:28:9b:01:67:a3:e3:fe:b2:2c:45:c4:7c:e8:bf:e9:bc: 97:e0:46:d4:e1:18:9c:ad:d4:60:73:a6:94:0e:f5:d9:41:86: 06:b9:37:2b:73:75:c5:31:9c:8f:3d:54:b6:2e:0e:93:71:9c: da:bf:e3:da:88:50:29:d0:19:b7:08:90:52:56:bf:da:7f:a4: c5:63:72:ce:87:2d:4d:de:6d:6c:1f:81:e9:18:97:dd:1b:68: 21:cb:bf:95 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUbP761IChDSclhMFzgUnMbeGWdB4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTQzMVoX DTI3MDUwMTA5MTkzMVowMzExMC8GA1UEAxMoMkI3RUI1OTkwRjQ1RDZDQThFOUJG QzIzMTc1Mzg3MjNBQzEzOUZCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJdP9pCqcsrjIZBr0OHweRNdUVe+h8HXApISv5LMr5m4QUV2TKYwVwcD3ub/ w8pcPg77AV2Vn/UudKnU9O6Ziu9F2B7fL0v1hfbd+Y427agyBmdd8LIriKdWTT7l ScR110ars6MxkicCKTncVOpLUZErac2Th3gN0U43BSDL/KivKRyhjXlA6GPPl2gp Iqabr2coxbqfFlJzKQ6U0joytWbIBePoWeNNNVI5IwIkXlZ9Pxti7enggAhdRd8+ hVKKthtNR2o3Pxok1Tw9Flebj/WD/NUTHzrTmxsyteuu+VvciBPcIoUKHc0IiWh8 AL8Q4063rDjc2iKpMi13amY+7M0CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQrfrWZ D0XWyo6b/CMXU4cjrBOfvTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM3Mzc5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ3eKMA0GCSqGSIb3DQEBCwUAA4IBAQCbKHYrGpzE4nj2OVnYhYar6LEF RvKycx/hwDXwa1MoR0JdLA/nGDvOPHHGfXV8PmDVhPjBpW81CrJE5IKy55+8ICEi vuTMyXKwhl5tkxGMkzRqwgT1lcIIzaJidNJkm6fNfBAr5yjfemFVtOf1uE8kapz7 shlQ55JhVu1XBmk11rnYT6aWIxHxq9cjFqchK6B77jXr+/RQD3PbFQgv7O5QuUSW AyibAWej4/6yLEXEfOi/6byX4EbU4RicrdRgc6aUDvXZQYYGuTcrc3XFMZyPPVS2 Lg6TcZzav+PaiFAp0Bm3CJBSVr/af6TFY3LOhy1N3m1sH4HpGJfdG2ghy7+V -----END CERTIFICATE-----Generated at Sun May 3 00:42:10 2026 by rpki-client