$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138806.roa File: AS138806.roa (raw, json) Hash identifier: 5kNUis5uVnTPN5dgzWjp9enZPELWgv09KJzBl3ARFao= Subject key identifier: C1:03:AC:B0:6E:45:D5:C4:5A:51:FC:41:74:BF:2A:6F:A6:D1:B2:E1 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3F2BBD4F32C314F23F08C358686D00DE8B9CF8B5 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138806.roa Signing time: Sat 02 May 2026 21:03:59 +0000 ROA not before: Sat 02 May 2026 20:58:59 +0000 ROA not after: Sat 01 May 2027 21:03:59 +0000 asID: 138806 IP address blocks: 103.135.180.0/22 maxlen: 24 2001:df7:ed00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:2b:bd:4f:32:c3:14:f2:3f:08:c3:58:68:6d:00:de:8b:9c:f8:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 20:58:59 2026 GMT Not After : May 1 21:03:59 2027 GMT Subject: CN=C103ACB06E45D5C45A51FC4174BF2A6FA6D1B2E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:97:f6:ef:98:ea:f9:77:f5:05:20:e4:7b:10: 5c:1d:7c:4b:ea:be:45:a6:c2:e5:78:cb:d0:c2:2d: fc:6b:9b:d0:27:32:f3:99:0a:b5:97:20:92:1c:ae: 7c:e0:52:55:6f:bd:6d:a4:a0:04:b8:f3:46:6d:84: b2:ef:d9:36:25:92:0a:df:8d:21:96:ba:02:62:8a: 14:3a:37:9f:b1:bd:47:ce:54:72:19:0c:4a:f2:84: fe:75:27:c4:cf:04:c6:d3:fe:3b:4a:ac:33:e4:99: 02:ee:78:da:c1:72:e1:c6:33:77:f1:0b:b6:e6:1c: 85:72:20:fa:b8:6b:25:bf:78:f4:d6:0c:d2:6b:54: 29:5d:dd:69:6e:04:e5:a9:f2:6d:64:36:c6:8a:f2: b2:cf:c5:28:3a:f6:c2:1f:53:5c:50:41:ed:77:f6: f7:62:d7:8c:7e:07:72:f1:a1:d0:b3:a0:2e:fb:47: 41:ae:3b:a7:23:bf:d2:4b:e1:99:92:53:db:3c:47: 21:6a:14:71:4c:48:c5:e9:88:d5:01:4c:d6:c6:5a: c2:bc:eb:38:ff:cb:29:32:e0:85:22:8c:94:32:41: dc:b7:ea:e3:5a:b9:b3:fe:25:9d:c4:ec:c1:d0:a4: 5d:c6:75:bb:a1:67:de:53:61:26:d5:f3:25:ab:f4: ec:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:03:AC:B0:6E:45:D5:C4:5A:51:FC:41:74:BF:2A:6F:A6:D1:B2:E1 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138806.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.135.180.0/22 IPv6: 2001:df7:ed00::/48 Signature Algorithm: sha256WithRSAEncryption 5f:d7:35:91:11:fa:ca:72:53:7e:88:d2:2c:42:6d:53:b0:a4: 8f:ce:92:c1:e3:7f:70:83:72:9f:49:9f:b5:89:b1:0d:dc:2e: b1:21:a4:18:05:4d:67:12:dd:55:df:7f:c1:a1:f5:a9:7f:9b: d1:35:cb:9b:11:9e:5e:6a:28:e8:39:56:16:48:e5:46:36:ee: 51:b6:0a:94:e8:7f:24:16:62:18:be:4b:d0:6b:8c:3b:61:4f: b3:7e:8d:d6:cf:a9:97:bd:ed:11:51:8c:db:54:36:9e:37:30: 57:0d:87:c0:9d:e6:5b:f7:c2:0c:f0:df:0f:d5:98:1b:31:78: 0f:15:6b:0a:1b:ae:88:3d:7b:1c:9e:a8:44:b4:c0:c8:23:69: 84:b8:2b:eb:58:57:42:55:c8:a9:aa:14:e3:9d:a5:cd:10:09: e6:03:06:60:3e:00:be:25:f4:0d:f4:ee:2e:ed:1b:e6:f0:74: 4a:80:27:e9:18:20:65:87:b8:1c:07:3b:e5:9e:fe:ec:cd:78: d9:f3:78:4a:9b:47:6e:85:84:c9:30:37:3d:3d:b3:50:52:72: 34:7d:4e:0d:ec:d1:cd:5b:98:c1:59:85:d8:e5:47:d1:c5:f8: 71:09:63:91:7e:eb:8d:83:d8:be:05:92:3c:d5:17:3c:cf:ad: 5e:a3:6b:0e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPyu9TzLDFPI/CMNYaG0A3ouc+LUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIwNTg1OVoX DTI3MDUwMTIxMDM1OVowMzExMC8GA1UEAxMoQzEwM0FDQjA2RTQ1RDVDNDVBNTFG QzQxNzRCRjJBNkZBNkQxQjJFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOOX9u+Y6vl39QUg5HsQXB18S+q+RabC5XjL0MIt/Gub0Ccy85kKtZcgkhyu fOBSVW+9baSgBLjzRm2Esu/ZNiWSCt+NIZa6AmKKFDo3n7G9R85UchkMSvKE/nUn xM8ExtP+O0qsM+SZAu542sFy4cYzd/ELtuYchXIg+rhrJb949NYM0mtUKV3daW4E 5anybWQ2xoryss/FKDr2wh9TXFBB7Xf292LXjH4HcvGh0LOgLvtHQa47pyO/0kvh mZJT2zxHIWoUcUxIxemI1QFM1sZawrzrOP/LKTLghSKMlDJB3Lfq41q5s/4lncTs wdCkXcZ1u6Fn3lNhJtXzJav07CECAwEAAaOCAd0wggHZMB0GA1UdDgQWBBTBA6yw bkXVxFpR/EF0vypvptGy4TAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4ODA2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQCZ4e0MA8EAgACMAkDBwAgAQ337QAwDQYJKoZIhvcNAQELBQADggEBAF/X NZER+spyU36I0ixCbVOwpI/OksHjf3CDcp9Jn7WJsQ3cLrEhpBgFTWcS3VXff8Gh 9al/m9E1y5sRnl5qKOg5VhZI5UY27lG2CpTofyQWYhi+S9BrjDthT7N+jdbPqZe9 7RFRjNtUNp43MFcNh8Cd5lv3wgzw3w/VmBsxeA8Vawobrog9exyeqES0wMgjaYS4 K+tYV0JVyKmqFOOdpc0QCeYDBmA+AL4l9A307i7tG+bwdEqAJ+kYIGWHuBwHO+We /uzNeNnzeEqbR26FhMkwNz09s1BScjR9Tg3s0c1bmMFZhdjlR9HF+HEJY5F+642D 2L4FkjzVFzzPrV6jaw4= -----END CERTIFICATE-----Generated at Sun May 3 00:42:24 2026 by rpki-client