$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138124.roa File: AS138124.roa (raw, json) Hash identifier: RdzF3evgl22B4+J10q+plyGZJIKenmzyClSBEOXHqUQ= Subject key identifier: 09:FD:AD:47:37:8F:0C:72:43:BB:71:C7:21:99:98:E9:B4:98:0F:CC Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1BBE01819BC60AFE2B30A07EB563209E63FDBD8B Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138124.roa Signing time: Sat 02 May 2026 21:03:33 +0000 ROA not before: Sat 02 May 2026 20:58:33 +0000 ROA not after: Sat 01 May 2027 21:03:33 +0000 asID: 138124 IP address blocks: 103.132.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:be:01:81:9b:c6:0a:fe:2b:30:a0:7e:b5:63:20:9e:63:fd:bd:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 20:58:33 2026 GMT Not After : May 1 21:03:33 2027 GMT Subject: CN=09FDAD47378F0C7243BB71C7219998E9B4980FCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:96:ab:61:0a:74:cf:62:56:ea:ca:00:e0:40: 4c:5f:3f:04:53:aa:3d:87:c5:06:07:d4:61:ea:eb: 26:a3:06:3d:58:ef:e0:6b:64:e8:7b:b8:ad:94:50: a4:2c:56:2d:a3:50:93:9c:92:82:fc:c1:89:bc:c7: f4:70:e6:50:e7:2b:e6:e0:8e:ed:57:c0:15:a7:64: 75:8c:12:fc:14:22:1d:67:34:31:fd:ed:bd:15:b7: 79:b9:37:1f:7d:d2:56:60:10:c5:bf:8c:1f:f4:71: cd:8d:57:de:14:ac:4b:55:68:ea:18:55:96:b5:b2: 00:5b:cc:51:e3:0e:37:28:4a:46:c5:46:d3:61:0d: 67:a5:58:43:cf:7e:d5:e3:18:af:d3:45:e6:c8:82: d0:89:53:96:21:a1:da:8b:a4:da:e3:75:c8:39:a6: 1d:89:02:db:3b:ee:60:04:50:a4:b2:ba:bc:56:b5: cd:3c:34:15:64:fc:1e:f5:74:f4:6a:ee:1f:fb:ba: 90:07:ff:76:78:d2:6f:40:54:10:36:a5:84:2d:7c: 93:0e:46:46:da:27:40:bc:38:b7:85:b4:4a:d2:d8: 8d:c2:8d:65:fc:24:72:e6:e7:b2:f1:08:f6:d2:91: f9:e4:6a:d9:92:55:d8:1b:4d:f8:1e:db:ec:a1:dc: 67:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:FD:AD:47:37:8F:0C:72:43:BB:71:C7:21:99:98:E9:B4:98:0F:CC X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138124.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.124.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:30:7c:ca:76:0a:0d:2d:6b:e6:07:89:c0:9d:3d:75:9d:33: f0:e9:81:36:c2:0f:31:c8:5d:1a:5b:c6:b7:b6:a7:43:40:a0: 1d:c0:87:da:4c:d0:0e:50:4c:63:cd:1e:c7:c3:7e:8e:24:61: be:fe:c6:52:07:60:35:b6:41:09:15:6d:77:88:8a:56:2b:8f: 57:56:9f:34:20:7b:b7:75:ef:ab:c9:33:99:b2:36:aa:1a:cd: ce:af:9e:be:d9:fd:54:6e:da:f7:d2:86:77:4b:d6:1c:07:2e: 81:38:e9:d2:fb:d4:0d:db:31:0a:08:b4:d2:9d:f7:ef:19:37: d2:0a:75:6b:1b:90:6f:80:6d:de:20:70:5e:a1:06:0f:51:17: 40:ac:f2:a5:a2:75:4a:5d:64:68:16:bd:0f:ef:38:de:b4:c3: 98:33:a7:25:c4:58:53:fa:2f:ad:45:ca:95:fc:48:55:16:46: 63:75:11:75:64:58:b2:36:e0:f1:ed:6b:c1:b3:65:c6:3b:ca: c6:0a:d1:5d:49:f7:c8:31:e0:76:19:63:d8:ad:f9:cb:f0:b2: 86:fe:4d:8d:ef:cc:45:3a:d3:45:4a:51:75:d3:80:99:73:0e: fd:6c:9f:76:db:74:4c:46:12:6b:5f:10:7f:48:39:2e:62:0b: d5:aa:42:93 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUG74BgZvGCv4rMKB+tWMgnmP9vYswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIwNTgzM1oX DTI3MDUwMTIxMDMzM1owMzExMC8GA1UEAxMoMDlGREFENDczNzhGMEM3MjQzQkI3 MUM3MjE5OTk4RTlCNDk4MEZDQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJqWq2EKdM9iVurKAOBATF8/BFOqPYfFBgfUYerrJqMGPVjv4Gtk6Hu4rZRQ pCxWLaNQk5ySgvzBibzH9HDmUOcr5uCO7VfAFadkdYwS/BQiHWc0Mf3tvRW3ebk3 H33SVmAQxb+MH/RxzY1X3hSsS1Vo6hhVlrWyAFvMUeMONyhKRsVG02ENZ6VYQ89+ 1eMYr9NF5siC0IlTliGh2ouk2uN1yDmmHYkC2zvuYARQpLK6vFa1zTw0FWT8HvV0 9GruH/u6kAf/dnjSb0BUEDalhC18kw5GRtonQLw4t4W0StLYjcKNZfwkcubnsvEI 9tKR+eRq2ZJV2BtN+B7b7KHcZ4UCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQJ/a1H N48MckO7ccchmZjptJgPzDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4MTI0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ4R8MA0GCSqGSIb3DQEBCwUAA4IBAQA6MHzKdgoNLWvmB4nAnT11nTPw 6YE2wg8xyF0aW8a3tqdDQKAdwIfaTNAOUExjzR7Hw36OJGG+/sZSB2A1tkEJFW13 iIpWK49XVp80IHu3de+ryTOZsjaqGs3Or56+2f1Ubtr30oZ3S9YcBy6BOOnS+9QN 2zEKCLTSnffvGTfSCnVrG5BvgG3eIHBeoQYPURdArPKlonVKXWRoFr0P7zjetMOY M6clxFhT+i+tRcqV/EhVFkZjdRF1ZFiyNuDx7WvBs2XGO8rGCtFdSffIMeB2GWPY rfnL8LKG/k2N78xFOtNFSlF104CZcw79bJ9223RMRhJrXxB/SDkuYgvVqkKT -----END CERTIFICATE-----Generated at Sun May 3 00:40:31 2026 by rpki-client