$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138062.roa File: AS138062.roa (raw, json) Hash identifier: Bzym6K/epO/pJYju8MZGnbMQC56q2Nzm558K9iW8XMY= Subject key identifier: AD:10:3E:1E:BC:B5:FA:90:8C:F1:C1:7C:8E:C7:EF:EA:2B:10:5A:AF Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 15C9961FCDED8B0C2A9F32C89EABF11FB4F2E481 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138062.roa Signing time: Sat 02 May 2026 18:50:12 +0000 ROA not before: Sat 02 May 2026 18:45:12 +0000 ROA not after: Sat 01 May 2027 18:50:12 +0000 asID: 138062 IP address blocks: 103.129.220.0/23 maxlen: 24 103.129.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c9:96:1f:cd:ed:8b:0c:2a:9f:32:c8:9e:ab:f1:1f:b4:f2:e4:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 18:45:12 2026 GMT Not After : May 1 18:50:12 2027 GMT Subject: CN=AD103E1EBCB5FA908CF1C17C8EC7EFEA2B105AAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a3:ee:70:8c:43:ce:79:13:db:ff:b2:dc:94: e3:1b:12:f9:e8:24:16:b8:dd:92:81:ac:44:0e:8a: 35:b2:63:b0:76:e3:33:6c:58:20:0f:b2:93:43:4a: 05:2d:5f:01:d6:d8:07:64:3d:85:09:9f:ce:b0:30: 3a:62:1f:b2:8b:cc:53:22:c1:ac:f2:22:fa:db:2e: 08:7b:7b:35:02:d9:66:a3:e9:31:90:4a:02:74:ce: 38:a9:c5:99:14:80:65:bd:36:f1:df:88:6e:6b:1b: 31:0b:19:15:41:ad:fe:20:82:22:5b:28:14:3d:d1: c5:37:a3:94:6d:87:8d:10:21:03:a1:13:59:80:2c: 9f:ec:02:8d:ee:cc:1e:34:aa:1b:97:96:9c:84:87: 7e:b1:a0:b8:61:f2:eb:e1:9e:e8:a6:41:9b:ae:5d: f8:24:d0:28:af:1d:24:29:4a:b3:5c:70:d8:a0:48: 27:43:6b:36:3a:e4:f7:5a:50:df:8c:54:27:b3:3a: 6d:4c:db:6a:bd:92:f9:f5:16:7d:26:c6:d7:b9:b6: f0:b6:1d:f5:2f:35:2f:f7:de:36:2f:d7:00:74:d4: 06:a7:06:90:e5:31:7d:eb:92:4f:6c:9d:9f:48:eb: 1b:26:5c:a2:9d:f4:fd:55:89:4e:73:4d:b5:bb:30: 1e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:10:3E:1E:BC:B5:FA:90:8C:F1:C1:7C:8E:C7:EF:EA:2B:10:5A:AF X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138062.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.220.0/22 Signature Algorithm: sha256WithRSAEncryption 21:1d:8b:60:30:02:ae:5e:5c:73:6f:f2:25:b3:86:3c:6a:d0: ef:8a:e1:a6:f7:3b:8d:c6:41:40:45:b8:90:7c:54:c5:d9:57: 58:9c:0c:83:e3:6f:da:48:c5:18:80:7d:51:ba:4e:6a:8b:9d: ec:fd:44:eb:09:08:9e:89:e7:a8:a6:a5:04:48:88:76:bf:83: 32:a3:df:5f:8c:2b:19:75:97:34:b5:c3:cb:59:4f:06:ca:18: a6:4d:01:07:42:61:99:54:e4:11:33:de:b3:d6:4a:ba:41:23: ac:c7:bd:f8:83:fc:9f:57:0c:44:41:a5:8f:15:1b:72:4f:69: b4:92:00:ca:d1:03:ba:33:06:da:40:14:11:5f:4c:2e:8b:83: 7d:c7:32:9d:5f:79:0b:92:64:f2:7d:50:59:2b:e9:54:4a:41: c1:ed:93:c0:c7:0a:7a:f6:ae:8a:48:8a:15:2a:d4:8e:86:49: 0d:89:12:c3:d9:6a:ee:b8:40:7a:dd:eb:58:fb:05:9c:4a:ea: e5:28:dc:34:36:c5:cc:2e:a9:b4:dc:58:40:9e:33:f8:7d:a7: 2f:66:b8:8c:7b:cb:4f:aa:95:2e:bc:27:90:bc:16:e6:27:c7: e6:d4:24:1f:ea:13:9d:c4:ea:4f:2a:75:f3:64:f1:0f:34:e6: 7a:f6:74:25 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUFcmWH83tiwwqnzLInqvxH7Ty5IEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE4NDUxMloX DTI3MDUwMTE4NTAxMlowMzExMC8GA1UEAxMoQUQxMDNFMUVCQ0I1RkE5MDhDRjFD MTdDOEVDN0VGRUEyQjEwNUFBRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM2j7nCMQ855E9v/styU4xsS+egkFrjdkoGsRA6KNbJjsHbjM2xYIA+yk0NK BS1fAdbYB2Q9hQmfzrAwOmIfsovMUyLBrPIi+tsuCHt7NQLZZqPpMZBKAnTOOKnF mRSAZb028d+IbmsbMQsZFUGt/iCCIlsoFD3RxTejlG2HjRAhA6ETWYAsn+wCje7M HjSqG5eWnISHfrGguGHy6+Ge6KZBm65d+CTQKK8dJClKs1xw2KBIJ0NrNjrk91pQ 34xUJ7M6bUzbar2S+fUWfSbG17m28LYd9S81L/feNi/XAHTUBqcGkOUxfeuST2yd n0jrGyZcop30/VWJTnNNtbswHrkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBStED4e vLX6kIzxwXyOx+/qKxBarzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4MDYyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCZ4HcMA0GCSqGSIb3DQEBCwUAA4IBAQAhHYtgMAKuXlxzb/Ils4Y8atDv iuGm9zuNxkFARbiQfFTF2VdYnAyD42/aSMUYgH1Ruk5qi53s/UTrCQieieeopqUE SIh2v4Myo99fjCsZdZc0tcPLWU8GyhimTQEHQmGZVOQRM96z1kq6QSOsx734g/yf VwxEQaWPFRtyT2m0kgDK0QO6MwbaQBQRX0wui4N9xzKdX3kLkmTyfVBZK+lUSkHB 7ZPAxwp69q6KSIoVKtSOhkkNiRLD2WruuEB63etY+wWcSurlKNw0NsXMLqm03FhA njP4facvZriMe8tPqpUuvCeQvBbmJ8fm1CQf6hOdxOpPKnXzZPEPNOZ69nQl -----END CERTIFICATE-----Generated at Sun May 3 01:44:39 2026 by rpki-client