$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138144.roa File: AS138144.roa (raw, json) Hash identifier: i40KpZQ4QV0j1qTXItQTnqGMSGQxGSbtIhvYZ+ZXmP8= Subject key identifier: 87:B3:9A:8A:B1:B6:38:E6:C1:0B:BC:95:C9:AE:A2:94:53:EC:1C:0E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 652DD9B262A0B02C27E501740BAE857819F79BF4 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138144.roa Signing time: Sat 02 May 2026 21:03:51 +0000 ROA not before: Sat 02 May 2026 20:58:51 +0000 ROA not after: Sat 01 May 2027 21:03:51 +0000 asID: 138144 IP address blocks: 103.134.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:2d:d9:b2:62:a0:b0:2c:27:e5:01:74:0b:ae:85:78:19:f7:9b:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 20:58:51 2026 GMT Not After : May 1 21:03:51 2027 GMT Subject: CN=87B39A8AB1B638E6C10BBC95C9AEA29453EC1C0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:23:17:e0:f3:2e:72:80:df:cb:53:f2:35:7a: 0d:93:05:7c:34:80:d3:1c:7e:ef:d2:5b:a1:af:31: b4:91:b5:61:52:ca:7c:07:54:2c:9d:a8:7d:92:86: 7a:89:d8:90:42:00:7f:fa:3c:b4:c0:13:b8:7d:c0: af:6c:89:de:3a:45:c9:71:38:b4:dc:fb:e4:e0:52: f4:ba:b7:0d:1a:53:ad:d5:e0:39:d3:4f:22:37:05: 01:f4:8b:3d:e3:63:b4:c7:4a:cd:00:e8:98:63:67: eb:f2:58:88:a5:02:d4:bc:6c:a6:85:32:14:12:bb: 11:10:8d:c0:b7:ff:e1:a0:dc:c9:47:c5:aa:8a:22: 02:a7:ee:80:33:be:11:fd:16:be:6e:ad:2e:99:ce: 66:31:dd:a5:ae:82:eb:bc:e1:30:16:31:8d:64:e0: 7a:4a:55:ca:bd:19:63:dd:02:c3:80:9b:10:07:c1: 5e:85:b3:76:ea:a4:4f:b2:a3:43:92:0b:c0:8c:de: c3:b5:7a:98:03:e8:26:f8:9f:47:5f:26:93:ba:3c: 64:89:b6:c6:67:cd:ca:af:7e:a0:9f:fb:48:f8:f3: 32:a9:a1:a9:c8:11:44:de:1d:85:3a:69:ad:db:a7: c1:52:b4:75:4f:c1:89:ab:35:92:34:cd:61:2f:b0: 3e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B3:9A:8A:B1:B6:38:E6:C1:0B:BC:95:C9:AE:A2:94:53:EC:1C:0E X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138144.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.17.0/24 Signature Algorithm: sha256WithRSAEncryption 57:8f:0d:76:65:55:35:3f:b0:a4:2b:2e:91:1c:19:b6:6b:ad: ce:12:fb:b4:e7:ca:04:44:d2:e7:fe:92:29:f4:a7:8b:e9:27: 18:96:be:5c:a2:8d:95:5f:64:e0:00:ee:d4:b7:82:7c:94:a1: d8:c7:3b:c0:52:eb:d5:eb:c4:ca:41:cd:91:e2:05:2c:b3:7f: 6c:f6:73:b1:73:f6:a2:65:27:1c:c6:03:aa:4f:70:59:bd:5f: 0b:16:bb:c5:14:47:96:8e:57:27:95:fe:fa:bd:4a:ae:cf:5c: f8:47:57:74:75:53:02:d0:ab:b4:5c:55:f8:04:34:4d:33:69: 3a:e4:7c:10:b0:9f:2e:fd:44:a6:2a:61:f0:10:99:46:b5:26: 3d:30:fb:61:64:b1:37:18:f6:76:14:b2:4f:35:2c:c7:a6:25: df:e5:69:f7:97:64:f8:08:79:b6:e7:88:14:2b:94:0d:18:79: 67:6b:ff:8a:1f:17:88:45:74:2b:cd:a7:b8:e0:9e:a7:1a:80: b0:06:f3:8a:87:05:3e:a1:43:9a:8a:cf:df:8e:38:3f:86:d5: e0:ea:1b:35:ca:87:f4:50:9d:79:32:8e:4e:2e:c8:c7:0a:dc: 1a:22:4f:74:b8:23:49:c1:59:6b:b7:0e:32:36:5a:71:88:7a: 65:83:11:72 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUZS3ZsmKgsCwn5QF0C66FeBn3m/QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIwNTg1MVoX DTI3MDUwMTIxMDM1MVowMzExMC8GA1UEAxMoODdCMzlBOEFCMUI2MzhFNkMxMEJC Qzk1QzlBRUEyOTQ1M0VDMUMwRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALkjF+DzLnKA38tT8jV6DZMFfDSA0xx+79Jboa8xtJG1YVLKfAdULJ2ofZKG eonYkEIAf/o8tMATuH3Ar2yJ3jpFyXE4tNz75OBS9Lq3DRpTrdXgOdNPIjcFAfSL PeNjtMdKzQDomGNn6/JYiKUC1LxspoUyFBK7ERCNwLf/4aDcyUfFqooiAqfugDO+ Ef0Wvm6tLpnOZjHdpa6C67zhMBYxjWTgekpVyr0ZY90Cw4CbEAfBXoWzduqkT7Kj Q5ILwIzew7V6mAPoJvifR18mk7o8ZIm2xmfNyq9+oJ/7SPjzMqmhqcgRRN4dhTpp rdunwVK0dU/Bias1kjTNYS+wPvMCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSHs5qK sbY45sELvJXJrqKUU+wcDjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4MTQ0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ4YRMA0GCSqGSIb3DQEBCwUAA4IBAQBXjw12ZVU1P7CkKy6RHBm2a63O Evu058oERNLn/pIp9KeL6ScYlr5coo2VX2TgAO7Ut4J8lKHYxzvAUuvV68TKQc2R 4gUss39s9nOxc/aiZSccxgOqT3BZvV8LFrvFFEeWjlcnlf76vUquz1z4R1d0dVMC 0Ku0XFX4BDRNM2k65HwQsJ8u/USmKmHwEJlGtSY9MPthZLE3GPZ2FLJPNSzHpiXf 5Wn3l2T4CHm254gUK5QNGHlna/+KHxeIRXQrzae44J6nGoCwBvOKhwU+oUOais/f jjg/htXg6hs1yof0UJ15Mo5OLsjHCtwaIk90uCNJwVlrtw4yNlpxiHplgxFy -----END CERTIFICATE-----Generated at Sun May 3 00:42:25 2026 by rpki-client