$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138095.roa File: AS138095.roa (raw, json) Hash identifier: UNaQgqjJU9pmrxKv+VRHg2Zu6i0AxVTWpdy0cmH9UXE= Subject key identifier: C1:39:72:6F:96:C1:DB:63:28:E1:00:1F:0B:9F:FD:18:18:42:AB:C0 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 514847F28AA9B2203136EFE0CA1258D6DC16512E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138095.roa Signing time: Sat 02 May 2026 08:36:49 +0000 ROA not before: Sat 02 May 2026 08:31:49 +0000 ROA not after: Sat 01 May 2027 08:36:49 +0000 asID: 138095 IP address blocks: 103.124.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:48:47:f2:8a:a9:b2:20:31:36:ef:e0:ca:12:58:d6:dc:16:51:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:31:49 2026 GMT Not After : May 1 08:36:49 2027 GMT Subject: CN=C139726F96C1DB6328E1001F0B9FFD181842ABC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:46:2a:10:7e:3e:43:13:03:b4:52:e2:03:42: ee:e0:15:f3:59:4b:fb:63:21:ef:bc:ba:09:68:02: ad:c1:67:1c:08:25:20:fd:db:f6:da:b6:54:a6:f8: 10:51:f4:ce:c6:39:28:6f:22:d8:ff:25:68:93:52: 2c:fd:52:46:68:09:2c:79:62:ba:0a:0d:89:2e:c9: 89:9e:a9:dd:31:ea:87:eb:34:b6:69:b0:39:9a:95: b5:df:04:b7:c1:fd:87:82:e4:3c:50:2a:78:0a:7c: 33:34:e6:22:82:18:50:99:fd:bc:1a:fb:af:28:83: 7e:d4:0a:9d:e6:05:75:4f:bd:54:19:a1:73:ea:24: 79:10:f3:a9:7b:45:c5:a5:e1:e0:39:a1:e3:6e:bb: f3:54:32:48:76:3d:6a:88:d8:76:a1:cc:b4:ab:5c: ca:f0:40:f4:2a:43:8b:d3:b7:7e:63:2a:2d:12:30: 17:f3:28:d4:d6:82:60:de:bb:e3:63:fc:c1:f0:d4: 9e:41:c0:47:63:8b:cf:fa:5d:62:76:58:4d:69:40: e2:0d:62:62:9b:53:4b:16:6c:78:4a:e6:71:d5:1c: 42:16:f2:57:db:dc:6a:7a:f5:59:88:94:31:2b:52: 24:5d:37:aa:43:09:48:b4:37:2e:20:11:3f:16:5a: 85:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:39:72:6F:96:C1:DB:63:28:E1:00:1F:0B:9F:FD:18:18:42:AB:C0 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138095.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.8.0/24 Signature Algorithm: sha256WithRSAEncryption 10:16:5d:d6:7f:fa:8c:be:c8:c1:b5:91:ba:f1:b8:17:50:ac: c7:86:5b:34:fc:38:9a:f2:7a:4e:60:68:3b:9e:9b:b6:d7:11: b1:c9:29:3f:1b:fb:d0:2f:9c:59:0a:94:e4:55:c3:26:11:31: 6c:18:65:0c:28:a8:50:90:5a:9e:26:5b:a7:5d:22:99:81:79: b9:75:c2:4e:64:5c:d4:8f:4d:da:d7:13:52:f6:8e:43:1e:26: c1:41:e8:df:50:8b:bf:9b:90:02:64:54:01:7f:b3:44:9b:fa: 99:be:0b:9a:7a:04:e5:ea:7c:fc:99:50:73:74:cf:c3:26:18: 30:41:f3:59:59:34:d3:ab:40:30:36:98:ad:82:56:c3:83:3b: 69:cb:36:b8:1b:36:f2:37:cc:0d:f7:5c:24:1f:95:34:dd:71: 82:9c:6b:f5:62:f9:75:d8:42:e6:a3:66:da:01:aa:31:53:62: aa:8c:0c:b8:f2:ea:bc:84:71:30:63:5b:1e:d3:05:00:80:04: c1:58:83:e2:89:19:64:52:5d:f6:5e:82:ed:fb:a5:0f:64:c8: 1f:64:8c:81:b3:cf:22:ca:0c:cd:99:80:77:3f:9c:09:f2:a9: ab:30:aa:3a:53:c7:48:ac:96:3c:5d:35:0a:e1:af:eb:ea:69: 09:45:ee:e1 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUUUhH8oqpsiAxNu/gyhJY1twWUS4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzE0OVoX DTI3MDUwMTA4MzY0OVowMzExMC8GA1UEAxMoQzEzOTcyNkY5NkMxREI2MzI4RTEw MDFGMEI5RkZEMTgxODQyQUJDMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFGKhB+PkMTA7RS4gNC7uAV81lL+2Mh77y6CWgCrcFnHAglIP3b9tq2VKb4 EFH0zsY5KG8i2P8laJNSLP1SRmgJLHliugoNiS7JiZ6p3THqh+s0tmmwOZqVtd8E t8H9h4LkPFAqeAp8MzTmIoIYUJn9vBr7ryiDftQKneYFdU+9VBmhc+okeRDzqXtF xaXh4Dmh426781QySHY9aojYdqHMtKtcyvBA9CpDi9O3fmMqLRIwF/Mo1NaCYN67 42P8wfDUnkHAR2OLz/pdYnZYTWlA4g1iYptTSxZseErmcdUcQhbyV9vcanr1WYiU MStSJF03qkMJSLQ3LiARPxZahQECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTBOXJv lsHbYyjhAB8Ln/0YGEKrwDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4MDk1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ3wIMA0GCSqGSIb3DQEBCwUAA4IBAQAQFl3Wf/qMvsjBtZG68bgXUKzH hls0/Dia8npOYGg7npu21xGxySk/G/vQL5xZCpTkVcMmETFsGGUMKKhQkFqeJlun XSKZgXm5dcJOZFzUj03a1xNS9o5DHibBQejfUIu/m5ACZFQBf7NEm/qZvguaegTl 6nz8mVBzdM/DJhgwQfNZWTTTq0AwNpitglbDgztpyza4GzbyN8wN91wkH5U03XGC nGv1Yvl12ELmo2baAaoxU2KqjAy48uq8hHEwY1se0wUAgATBWIPiiRlkUl32XoLt +6UPZMgfZIyBs88iygzNmYB3P5wJ8qmrMKo6U8dIrJY8XTUK4a/r6mkJRe7h -----END CERTIFICATE-----Generated at Sun May 3 00:40:38 2026 by rpki-client