$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138833.roa File: AS138833.roa (raw, json) Hash identifier: 8HCZ9dROmt4uI2K1KUjUIjB6L2VxJNP4/AZLZmdj8Bk= Subject key identifier: E8:68:11:1F:5B:B8:CD:65:72:1E:71:84:87:1F:0E:4D:85:10:70:92 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 11BAA6B69D6A872EB9894E1076CD4D5EF10A8977 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138833.roa Signing time: Sat 02 May 2026 08:36:04 +0000 ROA not before: Sat 02 May 2026 08:31:04 +0000 ROA not after: Sat 01 May 2027 08:36:04 +0000 asID: 138833 IP address blocks: 103.137.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:ba:a6:b6:9d:6a:87:2e:b9:89:4e:10:76:cd:4d:5e:f1:0a:89:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:31:04 2026 GMT Not After : May 1 08:36:04 2027 GMT Subject: CN=E868111F5BB8CD65721E7184871F0E4D85107092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b5:09:4e:21:e6:5a:e1:ef:e0:d0:c2:21:e5: 84:29:be:78:61:7c:f3:86:21:0f:ca:7c:ee:94:7a: e2:f2:05:bc:54:a0:0d:2e:37:a1:5b:ce:e0:51:d4: 7f:73:68:05:d8:2b:8c:9b:08:26:b8:51:d7:50:fa: 23:85:db:54:9d:b9:52:ab:d9:53:c1:da:a0:eb:e4: fa:87:34:19:9c:e5:b2:2f:42:df:15:5b:b3:e3:f3: 87:16:c3:cc:31:e2:2b:6b:d8:5c:37:8c:94:74:00: c9:e3:8e:95:b0:fe:e7:b5:52:05:ba:16:61:6f:1e: 9f:57:24:b9:14:69:07:f6:f6:11:2d:be:c5:cb:26: 2a:8d:2e:c8:37:3b:65:88:93:6b:10:eb:f9:45:63: 84:69:a3:11:98:52:5d:cd:d6:05:ca:b5:a0:bd:39: 90:9e:73:f1:31:96:1a:89:41:3c:54:aa:ab:50:12: fe:a5:f1:93:11:36:84:17:59:db:13:00:93:71:91: 30:0a:09:6a:ed:d7:55:c1:44:83:8e:5a:4a:05:80: 2a:07:29:bd:ff:fa:8b:c1:ac:e3:86:51:de:f8:1a: be:10:eb:8d:f5:85:30:aa:83:ca:98:a7:dd:26:e0: 40:4c:39:91:61:01:19:1d:2e:89:73:81:41:f0:1e: 2b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:68:11:1F:5B:B8:CD:65:72:1E:71:84:87:1F:0E:4D:85:10:70:92 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.254.0/23 Signature Algorithm: sha256WithRSAEncryption 28:3c:25:77:b6:c8:ba:33:33:46:4d:e3:f8:f8:8e:de:ef:87: 68:fc:8b:f4:8f:9e:f4:2f:b4:a1:ed:de:ad:4d:49:e4:14:34: bd:1f:c7:9f:3a:75:80:f8:c3:a0:db:d4:3d:14:14:a4:c8:14: ff:a8:2e:5d:8b:dd:6d:97:1a:40:8a:20:4b:52:5f:66:db:7f: de:4e:95:16:7b:2e:66:0c:d1:5f:59:c0:c0:3d:49:af:d3:a9: 65:e7:7b:2e:d6:17:18:b0:45:53:30:ca:d2:78:cf:35:f9:fb: cc:3d:56:66:96:a4:07:73:25:d3:ab:17:6f:3b:4d:a0:fe:ce: d1:ab:cc:c3:3d:3e:84:31:0f:85:62:76:32:10:a5:81:c4:f0: 8e:db:6e:34:01:b6:b1:ca:9f:52:9c:5a:a7:6c:de:1e:16:1e: 6a:01:40:b5:f4:d6:98:2a:4a:63:f0:bd:d4:84:81:71:1e:2e: 52:11:8c:0f:37:78:cd:76:3d:1e:9f:17:7c:97:47:ba:3a:65: 7e:d9:d4:1e:f0:68:62:7d:f5:3f:9a:df:a4:a3:6a:ac:a1:e7: 83:2d:96:09:d4:ad:b2:63:cc:ad:19:d6:44:09:aa:8e:c2:fe: 3d:7c:52:91:18:92:2e:15:fa:d4:ff:d2:3b:56:7f:5d:68:f8: 43:35:a6:d3 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUEbqmtp1qhy65iU4Qds1NXvEKiXcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzEwNFoX DTI3MDUwMTA4MzYwNFowMzExMC8GA1UEAxMoRTg2ODExMUY1QkI4Q0Q2NTcyMUU3 MTg0ODcxRjBFNEQ4NTEwNzA5MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKG1CU4h5lrh7+DQwiHlhCm+eGF884YhD8p87pR64vIFvFSgDS43oVvO4FHU f3NoBdgrjJsIJrhR11D6I4XbVJ25UqvZU8HaoOvk+oc0GZzlsi9C3xVbs+PzhxbD zDHiK2vYXDeMlHQAyeOOlbD+57VSBboWYW8en1ckuRRpB/b2ES2+xcsmKo0uyDc7 ZYiTaxDr+UVjhGmjEZhSXc3WBcq1oL05kJ5z8TGWGolBPFSqq1AS/qXxkxE2hBdZ 2xMAk3GRMAoJau3XVcFEg45aSgWAKgcpvf/6i8Gs44ZR3vgavhDrjfWFMKqDypin 3SbgQEw5kWEBGR0uiXOBQfAeKz8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBToaBEf W7jNZXIecYSHHw5NhRBwkjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4ODMzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ4n+MA0GCSqGSIb3DQEBCwUAA4IBAQAoPCV3tsi6MzNGTeP4+I7e74do /Iv0j570L7Sh7d6tTUnkFDS9H8efOnWA+MOg29Q9FBSkyBT/qC5di91tlxpAiiBL Ul9m23/eTpUWey5mDNFfWcDAPUmv06ll53su1hcYsEVTMMrSeM81+fvMPVZmlqQH cyXTqxdvO02g/s7Rq8zDPT6EMQ+FYnYyEKWBxPCO2240Abaxyp9SnFqnbN4eFh5q AUC19NaYKkpj8L3UhIFxHi5SEYwPN3jNdj0enxd8l0e6OmV+2dQe8GhiffU/mt+k o2qsoeeDLZYJ1K2yY8ytGdZECaqOwv49fFKRGJIuFfrU/9I7Vn9daPhDNabT -----END CERTIFICATE-----Generated at Sun May 3 01:44:55 2026 by rpki-client