$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138045.roa File: AS138045.roa (raw, json) Hash identifier: JxnEQ8Sn5msLm+A7eFoliulL0sUapF8e0epma9JnQuM= Subject key identifier: DD:6E:F4:45:4D:42:9F:93:4D:7C:CE:D7:3E:D0:FA:AF:D8:A0:31:F3 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 34C19417788D63965B14D3F1A046622C1843B6E4 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138045.roa Signing time: Sat 02 May 2026 09:25:25 +0000 ROA not before: Sat 02 May 2026 09:20:25 +0000 ROA not after: Sat 01 May 2027 09:25:25 +0000 asID: 138045 IP address blocks: 163.61.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:c1:94:17:78:8d:63:96:5b:14:d3:f1:a0:46:62:2c:18:43:b6:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:20:25 2026 GMT Not After : May 1 09:25:25 2027 GMT Subject: CN=DD6EF4454D429F934D7CCED73ED0FAAFD8A031F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:eb:53:02:c8:8e:b3:ea:39:36:4d:33:8f:0c: 1d:bf:98:5e:2d:da:19:0c:bc:56:e5:2c:92:63:03: c7:f5:0f:91:49:46:b0:93:16:7c:51:3b:83:a8:56: 5a:e3:71:21:23:5e:e9:b1:17:ce:07:44:da:26:4d: 3f:54:93:c0:53:d6:f8:54:8b:17:e4:30:57:e7:b1: 43:12:00:3e:03:94:44:2c:26:17:cf:c7:9e:29:e6: ea:34:c4:b0:36:95:96:00:32:5c:40:db:1a:d8:4f: 25:c5:27:d7:5b:b0:00:3f:d6:0a:c9:31:d8:fa:4c: dd:fa:07:15:8e:84:cc:41:f6:7d:90:82:99:0a:bc: 71:72:73:f3:21:15:34:ea:2e:2c:00:19:32:68:1d: ba:ee:18:dc:51:2c:f1:1f:97:6d:22:ae:a3:5e:42: a5:a0:c4:f7:41:50:c5:ec:02:a4:c9:f2:15:d7:b3: 2e:00:60:5e:6c:02:66:e1:ee:09:14:38:35:1b:e7: 57:37:fa:b3:92:9c:3d:61:40:17:f9:06:ce:0f:8c: 04:e5:66:38:7c:16:f6:11:e7:3c:f4:d5:97:55:96: 3e:6d:2e:3c:3e:ff:ed:a3:18:45:73:a3:e6:a9:45: d5:8b:04:84:7e:ab:aa:99:dd:b5:a2:3c:f5:fd:84: 14:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:6E:F4:45:4D:42:9F:93:4D:7C:CE:D7:3E:D0:FA:AF:D8:A0:31:F3 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138045.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.77.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:15:48:59:ae:64:ab:38:71:f2:63:e8:ad:e9:a8:f4:ca:e1: fb:1e:01:0b:fc:d3:0c:ce:db:a3:2f:9d:1d:3c:ee:7d:64:17: a7:d0:0a:84:38:9c:e2:0d:18:b2:22:ec:95:93:c1:8a:a7:54: a7:42:33:45:de:8b:a3:9a:fb:ea:57:95:8a:17:c1:16:de:7c: 8f:88:74:aa:f6:89:d1:9c:2a:4c:22:c2:20:90:58:1a:bf:40: 46:75:37:ad:57:19:87:b6:96:20:82:48:16:14:3a:89:96:6c: 5c:45:a9:c2:23:91:e7:f3:a0:b8:04:28:f2:84:1c:46:58:80: de:cd:1a:7b:57:09:11:8f:6b:3d:f1:05:08:11:09:a4:77:ae: 61:6f:09:fa:b8:46:33:41:be:9f:13:b0:52:26:c1:95:fb:c7: 06:cc:4d:e7:a7:32:8b:bb:eb:34:e7:4b:eb:2a:10:06:87:5e: 92:02:49:18:96:38:9b:a3:db:53:b3:1e:2e:31:14:21:e2:88: bd:de:02:e0:4c:3c:60:b6:f0:98:89:18:ff:5d:f4:fd:05:b9: 6c:c1:46:32:48:d7:6e:98:81:d2:6d:4f:4e:8d:34:31:4a:6a: 39:12:a1:42:97:05:2f:66:0d:47:86:16:b1:6a:b6:49:8d:dd: b2:d9:a9:85 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUNMGUF3iNY5ZbFNPxoEZiLBhDtuQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjAyNVoX DTI3MDUwMTA5MjUyNVowMzExMC8GA1UEAxMoREQ2RUY0NDU0RDQyOUY5MzREN0ND RUQ3M0VEMEZBQUZEOEEwMzFGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJTrUwLIjrPqOTZNM48MHb+YXi3aGQy8VuUskmMDx/UPkUlGsJMWfFE7g6hW WuNxISNe6bEXzgdE2iZNP1STwFPW+FSLF+QwV+exQxIAPgOURCwmF8/Hninm6jTE sDaVlgAyXEDbGthPJcUn11uwAD/WCskx2PpM3foHFY6EzEH2fZCCmQq8cXJz8yEV NOouLAAZMmgduu4Y3FEs8R+XbSKuo15CpaDE90FQxewCpMnyFdezLgBgXmwCZuHu CRQ4NRvnVzf6s5KcPWFAF/kGzg+MBOVmOHwW9hHnPPTVl1WWPm0uPD7/7aMYRXOj 5qlF1YsEhH6rqpndtaI89f2EFPsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTdbvRF TUKfk018ztc+0Pqv2KAx8zAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4MDQ1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAoz1NMA0GCSqGSIb3DQEBCwUAA4IBAQBbFUhZrmSrOHHyY+it6aj0yuH7 HgEL/NMMztujL50dPO59ZBen0AqEOJziDRiyIuyVk8GKp1SnQjNF3oujmvvqV5WK F8EW3nyPiHSq9onRnCpMIsIgkFgav0BGdTetVxmHtpYggkgWFDqJlmxcRanCI5Hn 86C4BCjyhBxGWIDezRp7VwkRj2s98QUIEQmkd65hbwn6uEYzQb6fE7BSJsGV+8cG zE3npzKLu+s050vrKhAGh16SAkkYljibo9tTsx4uMRQh4oi93gLgTDxgtvCYiRj/ XfT9BblswUYySNdumIHSbU9OjTQxSmo5EqFClwUvZg1HhhaxarZJjd2y2amF -----END CERTIFICATE-----Generated at Sun May 3 00:40:19 2026 by rpki-client