$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138064.roa File: AS138064.roa (raw, json) Hash identifier: TXYfiXlIV3+Cn9M61qurgSjvugbsIz1/D8ujdN7V11g= Subject key identifier: 3E:2A:BC:35:6C:64:E7:17:6B:F2:91:AD:00:14:BA:FF:65:7A:8C:BC Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 730C43B61FABA2D43F5822B07759CB32145229DB Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138064.roa Signing time: Sat 02 May 2026 08:37:01 +0000 ROA not before: Sat 02 May 2026 08:32:01 +0000 ROA not after: Sat 01 May 2027 08:37:01 +0000 asID: 138064 IP address blocks: 103.122.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:0c:43:b6:1f:ab:a2:d4:3f:58:22:b0:77:59:cb:32:14:52:29:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:32:01 2026 GMT Not After : May 1 08:37:01 2027 GMT Subject: CN=3E2ABC356C64E7176BF291AD0014BAFF657A8CBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:ed:77:aa:af:52:70:41:52:cd:3e:5e:7e:c7: 89:69:52:8c:e5:f8:8f:01:bd:34:b0:b8:38:53:14: f7:85:60:2e:ea:52:14:de:43:84:46:7a:94:ef:74: 6d:4a:01:d4:e3:c0:74:d9:00:11:88:5b:a7:b2:c6: dc:20:16:6d:4a:df:73:7c:4b:87:5a:ab:a5:0c:ff: 99:b3:42:f9:c0:d7:81:e6:f0:d0:60:9e:36:b3:30: 0c:e2:1d:be:d2:45:38:83:f5:fe:dd:5d:c2:b1:62: 6f:e8:c3:b2:8d:36:27:42:42:a0:5b:e6:8c:52:07: 27:69:9a:42:8d:97:7d:49:94:ec:1a:a9:0f:24:79: 43:ac:c9:8f:19:5a:42:d8:04:9b:53:dc:9e:4e:99: 5b:90:da:84:8e:fa:84:6e:84:62:cc:5e:9e:f2:d4: 2b:46:5a:7e:d4:e6:f3:7b:3b:db:39:4b:12:1d:00: 29:51:99:d3:21:3e:10:4e:a8:65:a1:de:22:05:c1: f0:4f:b8:1a:76:61:a4:8b:00:46:0b:38:91:6f:b9: bb:68:0f:77:c4:19:af:2f:55:52:65:a8:fa:f4:34: 8b:f5:b0:34:3c:5f:c6:07:c7:6b:07:fc:1d:c9:ff: 39:24:ef:bf:2c:2d:79:33:72:bf:e4:22:26:e1:1e: a2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:2A:BC:35:6C:64:E7:17:6B:F2:91:AD:00:14:BA:FF:65:7A:8C:BC X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138064.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.64.0/22 Signature Algorithm: sha256WithRSAEncryption 05:45:ec:69:31:29:d0:74:89:df:13:fb:69:89:83:e8:96:75: 8b:c5:28:32:d8:2e:51:70:dd:97:ee:e1:1d:2a:d1:b8:ca:03: 53:0e:de:84:a5:d2:3c:4c:1e:f1:8c:9a:1d:85:b5:c8:26:df: 47:00:40:39:25:5a:17:03:55:f7:2c:67:18:b0:70:9e:be:4f: c4:43:87:bb:65:91:db:fb:98:04:fc:2b:ca:2a:91:8b:fa:73: 9f:e4:88:3e:f3:4e:a1:83:27:dc:22:dc:02:9d:3a:fe:fa:1d: cc:e7:e8:cf:a4:1a:5d:cb:9e:7f:e3:81:7c:74:30:73:f5:c8: b5:6e:19:b1:59:92:88:48:ff:9f:33:62:e5:fc:61:f2:9f:1d: ac:81:80:e8:18:5a:2c:4f:14:cc:3d:4a:0c:d1:bc:0e:9f:e2: 5b:0b:e6:b7:fd:73:1c:2f:2f:ad:4b:ed:7d:7f:3c:43:8f:72: e1:85:6a:83:75:50:4b:8c:8b:91:01:85:41:71:7f:78:31:67: 86:4f:4f:3a:1a:9d:b8:1d:2d:70:0e:16:21:d8:90:85:ec:3c: 80:a9:35:f1:ef:4c:a3:39:3f:ea:56:65:d7:83:e0:a8:d1:44: 3b:4d:1a:3d:16:fa:75:de:cf:4e:7c:5a:fe:fd:6f:3b:a4:33: 97:af:c7:1d -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUcwxDth+rotQ/WCKwd1nLMhRSKdswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzIwMVoX DTI3MDUwMTA4MzcwMVowMzExMC8GA1UEAxMoM0UyQUJDMzU2QzY0RTcxNzZCRjI5 MUFEMDAxNEJBRkY2NTdBOENCQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJbtd6qvUnBBUs0+Xn7HiWlSjOX4jwG9NLC4OFMU94VgLupSFN5DhEZ6lO90 bUoB1OPAdNkAEYhbp7LG3CAWbUrfc3xLh1qrpQz/mbNC+cDXgebw0GCeNrMwDOId vtJFOIP1/t1dwrFib+jDso02J0JCoFvmjFIHJ2maQo2XfUmU7BqpDyR5Q6zJjxla QtgEm1Pcnk6ZW5DahI76hG6EYsxenvLUK0ZaftTm83s72zlLEh0AKVGZ0yE+EE6o ZaHeIgXB8E+4GnZhpIsARgs4kW+5u2gPd8QZry9VUmWo+vQ0i/WwNDxfxgfHawf8 Hcn/OSTvvywteTNyv+QiJuEeojMCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQ+Krw1 bGTnF2vyka0AFLr/ZXqMvDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4MDY0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCZ3pAMA0GCSqGSIb3DQEBCwUAA4IBAQAFRexpMSnQdInfE/tpiYPolnWL xSgy2C5RcN2X7uEdKtG4ygNTDt6EpdI8TB7xjJodhbXIJt9HAEA5JVoXA1X3LGcY sHCevk/EQ4e7ZZHb+5gE/CvKKpGL+nOf5Ig+806hgyfcItwCnTr++h3M5+jPpBpd y55/44F8dDBz9ci1bhmxWZKISP+fM2Ll/GHynx2sgYDoGFosTxTMPUoM0bwOn+Jb C+a3/XMcLy+tS+19fzxDj3LhhWqDdVBLjIuRAYVBcX94MWeGT086Gp24HS1wDhYh 2JCF7DyAqTXx70yjOT/qVmXXg+Co0UQ7TRo9Fvp13s9OfFr+/W87pDOXr8cd -----END CERTIFICATE-----Generated at Sun May 3 00:40:36 2026 by rpki-client