$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138131.roa File: AS138131.roa (raw, json) Hash identifier: UQRY6pcGzIgDepay2F3m7u2bw//4bIq1Poja2fJGvEg= Subject key identifier: 0F:2D:C4:CD:C4:9F:2B:28:FA:CE:A4:2E:ED:3B:EA:05:9E:94:94:CA Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1B01F63464222EC8CFF3A634E316766CBBEEB854 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138131.roa Signing time: Sat 02 May 2026 09:19:43 +0000 ROA not before: Sat 02 May 2026 09:14:43 +0000 ROA not after: Sat 01 May 2027 09:19:43 +0000 asID: 138131 IP address blocks: 103.164.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:01:f6:34:64:22:2e:c8:cf:f3:a6:34:e3:16:76:6c:bb:ee:b8:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:14:43 2026 GMT Not After : May 1 09:19:43 2027 GMT Subject: CN=0F2DC4CDC49F2B28FACEA42EED3BEA059E9494CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:38:5b:17:ef:5f:3f:98:b8:a4:dc:a7:15:d1: e1:8f:49:92:0d:90:88:da:a1:fe:9f:51:9e:9a:76: 32:2e:3a:89:8c:4e:ae:91:68:05:0e:78:24:86:50: 0e:61:cc:8b:ee:14:1a:83:50:96:f7:b2:65:8b:36: fe:82:7b:b6:2a:60:4c:83:a6:74:e3:03:db:25:c7: 34:9a:a3:c7:95:ee:eb:75:71:b2:6a:d8:92:31:e5: a5:b2:23:93:98:71:1a:68:a9:32:9a:4e:7b:35:b5: e7:39:8e:55:58:a0:a1:ee:e8:a4:85:50:a6:d1:b8: 09:e6:50:4c:29:0a:29:e8:97:aa:a4:ad:61:ce:5d: e8:5d:89:c9:c7:bf:9e:d4:d9:67:55:8c:99:07:a1: 04:bb:d7:ff:bf:05:8c:07:7d:fb:30:69:c8:ad:86: af:b8:60:56:3b:9b:ed:1b:d7:c2:48:68:ce:33:78: 4f:be:81:f2:7c:ab:76:eb:52:c3:86:f9:0e:9b:09: bc:03:0f:7d:52:c0:9a:7d:00:e1:67:c9:a3:b0:75: 20:c3:78:a4:5b:0a:62:8e:86:5d:24:18:90:d3:68: 61:98:d9:d3:8c:89:81:f7:53:de:9a:ce:e8:af:6a: b3:e4:9c:37:e8:87:ff:3f:7c:9c:af:3c:d0:b5:87: 7f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:2D:C4:CD:C4:9F:2B:28:FA:CE:A4:2E:ED:3B:EA:05:9E:94:94:CA X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.172.0/24 Signature Algorithm: sha256WithRSAEncryption 38:53:3c:3a:dc:20:f4:da:e0:0a:73:23:9a:06:a1:19:51:33: 41:23:83:49:f8:ea:73:b5:71:e1:71:83:1c:4a:eb:7b:db:27: 0a:26:c9:5e:80:a0:47:df:4b:cd:aa:fd:05:87:fa:46:0b:25: 8c:3e:02:0f:a7:e1:02:55:b5:dd:15:af:c1:95:4e:2d:01:79: 35:5d:1b:ae:d1:73:37:4d:1c:b9:60:f1:da:49:ee:b8:23:d7: ba:26:92:41:1a:6f:c1:5f:e8:0d:2e:74:c8:04:01:97:ff:d2: 1e:5b:fb:a3:74:1c:73:da:8d:3d:b2:89:ca:e3:f6:09:e8:f2: f6:77:d2:b9:1a:b2:be:c0:0d:c8:eb:09:ec:63:8c:6a:e3:fc: eb:36:c0:9f:03:22:b6:db:37:65:86:fe:b9:f4:be:49:60:5c: 18:e2:b1:3c:c1:fe:78:32:78:8d:7d:53:29:d5:4a:8e:97:dd: 03:1a:81:50:2d:99:4d:e6:f3:23:0f:c9:3b:1d:b1:4f:6f:42: 51:4b:05:e2:e5:05:fb:0f:d0:e0:8f:bd:62:14:4a:97:af:de: bf:18:c6:34:9d:28:c8:4c:ea:32:af:2c:e1:fa:c2:04:cf:a5: 99:55:4b:f3:bb:e9:b5:09:0b:0a:fe:13:a4:4f:3c:b0:37:bd: 9b:5f:ae:a6 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUGwH2NGQiLsjP86Y04xZ2bLvuuFQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTQ0M1oX DTI3MDUwMTA5MTk0M1owMzExMC8GA1UEAxMoMEYyREM0Q0RDNDlGMkIyOEZBQ0VB NDJFRUQzQkVBMDU5RTk0OTRDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMM4WxfvXz+YuKTcpxXR4Y9Jkg2QiNqh/p9Rnpp2Mi46iYxOrpFoBQ54JIZQ DmHMi+4UGoNQlveyZYs2/oJ7tipgTIOmdOMD2yXHNJqjx5Xu63VxsmrYkjHlpbIj k5hxGmipMppOezW15zmOVVigoe7opIVQptG4CeZQTCkKKeiXqqStYc5d6F2Jyce/ ntTZZ1WMmQehBLvX/78FjAd9+zBpyK2Gr7hgVjub7RvXwkhozjN4T76B8nyrdutS w4b5DpsJvAMPfVLAmn0A4WfJo7B1IMN4pFsKYo6GXSQYkNNoYZjZ04yJgfdT3prO 6K9qs+ScN+iH/z98nK880LWHf9MCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQPLcTN xJ8rKPrOpC7tO+oFnpSUyjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4MTMxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ6SsMA0GCSqGSIb3DQEBCwUAA4IBAQA4Uzw63CD02uAKcyOaBqEZUTNB I4NJ+OpztXHhcYMcSut72ycKJslegKBH30vNqv0Fh/pGCyWMPgIPp+ECVbXdFa/B lU4tAXk1XRuu0XM3TRy5YPHaSe64I9e6JpJBGm/BX+gNLnTIBAGX/9IeW/ujdBxz 2o09sonK4/YJ6PL2d9K5GrK+wA3I6wnsY4xq4/zrNsCfAyK22zdlhv659L5JYFwY 4rE8wf54MniNfVMp1UqOl90DGoFQLZlN5vMjD8k7HbFPb0JRSwXi5QX7D9Dgj71i FEqXr96/GMY0nSjITOoyryzh+sIEz6WZVUvzu+m1CQsK/hOkTzywN72bX66m -----END CERTIFICATE-----Generated at Sun May 3 01:40:03 2026 by rpki-client