$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138840.roa File: AS138840.roa (raw, json) Hash identifier: b+27rfPm8Mr8z8FYLI55bCdirUGzhbpU5359YdkV0MU= Subject key identifier: 96:AB:5D:71:1D:AE:65:C5:92:BB:CE:FE:0D:3D:47:3A:18:C2:9F:F3 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 053F0C585E465E2F3A4C4700B1FF4DC9D0481835 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138840.roa Signing time: Tue 05 May 2026 10:05:09 +0000 ROA not before: Tue 05 May 2026 10:00:09 +0000 ROA not after: Tue 04 May 2027 10:05:09 +0000 asID: 138840 IP address blocks: 103.134.184.0/24 maxlen: 24 103.139.162.0/24 maxlen: 24 103.139.163.0/24 maxlen: 24 113.192.10.0/24 maxlen: 24 2404:2f80:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 01:12:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:3f:0c:58:5e:46:5e:2f:3a:4c:47:00:b1:ff:4d:c9:d0:48:18:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 5 10:00:09 2026 GMT Not After : May 4 10:05:09 2027 GMT Subject: CN=96AB5D711DAE65C592BBCEFE0D3D473A18C29FF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:59:33:0f:08:e5:3f:3a:28:2d:9e:69:fd:1e: d3:1c:5a:78:00:65:d4:28:06:03:6e:ea:db:c1:3c: 08:bc:9f:d9:47:fe:1c:42:e6:49:34:24:a1:2d:7e: d3:5e:30:5b:ad:fe:9c:4f:9d:f7:ca:c3:ed:95:1c: c8:e5:f1:94:90:2e:b4:fe:e3:6e:b7:86:26:c8:02: b4:ab:b7:20:d9:89:63:f3:85:ba:36:b3:90:58:1b: 3c:a7:81:68:39:0b:30:06:51:c1:cc:38:fd:25:b2: 2d:67:58:5e:26:f6:38:46:22:43:3f:f9:fc:cb:71: 0f:46:70:57:1f:f5:cd:8c:9c:c2:70:ec:c3:4d:fc: e5:2c:fc:6d:e9:88:63:9d:e1:65:90:ba:ff:f2:68: ef:96:b9:b2:fb:4e:7b:c6:c8:f6:6c:6e:06:7f:bd: 5e:46:c8:73:46:85:22:be:f7:fd:78:f0:04:27:74: 20:5f:be:1f:5d:50:70:01:b8:7c:28:67:bf:ad:9c: 88:94:be:a0:4a:01:c9:36:a5:0e:0f:1e:6c:0e:f7: a8:aa:cb:74:0e:f9:75:9c:09:a5:82:cd:9a:38:58: c0:03:5b:1f:d0:17:e1:bd:f2:d1:02:93:75:a1:6b: 31:d3:a3:12:cf:9b:43:d5:fb:92:a3:14:04:d2:7c: 05:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:AB:5D:71:1D:AE:65:C5:92:BB:CE:FE:0D:3D:47:3A:18:C2:9F:F3 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138840.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.184.0/24 103.139.162.0/23 113.192.10.0/24 IPv6: 2404:2f80:10::/48 Signature Algorithm: sha256WithRSAEncryption 4b:f0:42:d5:b7:9a:50:00:a1:ab:35:2c:a0:08:d6:08:15:ca: c0:ec:ae:e6:73:5f:45:6e:95:41:d2:10:1e:f8:79:05:02:e5: 32:a2:89:67:24:5c:6b:ca:9e:2b:81:ab:ce:e3:42:3a:0a:f2: b2:90:1e:f8:b2:ea:30:9a:c9:3d:c6:65:94:2e:4f:6b:53:09: 58:16:4b:c0:f3:54:bb:7f:71:33:c7:d5:5e:69:df:6a:82:77: b9:fe:bb:13:29:6a:be:0d:ba:06:fe:57:10:d5:77:de:b3:94: f7:52:58:a0:fe:f0:4b:02:e8:69:9a:1d:17:7a:54:04:f0:92: 4a:19:c2:48:30:f0:90:40:7d:a0:15:2b:23:fb:6d:c2:2e:19: 1e:db:a1:67:e3:68:91:61:55:e4:76:c0:15:9b:42:23:e4:42: 9c:bb:d6:3c:d8:c3:d3:6c:e8:22:11:cb:e5:74:47:c7:e3:0a: 37:e3:63:18:6f:74:8e:ee:64:b6:41:d8:5c:26:fb:51:34:9b: bb:90:7d:42:7f:7e:29:97:4c:1a:41:31:74:a7:a4:53:17:da: 98:e0:69:b0:81:98:7e:9c:3a:4d:af:1d:97:b2:0d:14:8a:b1: 72:12:5f:64:3d:3b:dd:39:74:53:bc:f5:8a:36:5b:c3:95:15: 60:a3:8f:78 -----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgIUBT8MWF5GXi86TEcAsf9NydBIGDUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwNTEwMDAwOVoX DTI3MDUwNDEwMDUwOVowMzExMC8GA1UEAxMoOTZBQjVENzExREFFNjVDNTkyQkJD RUZFMEQzRDQ3M0ExOEMyOUZGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANJZMw8I5T86KC2eaf0e0xxaeABl1CgGA27q28E8CLyf2Uf+HELmSTQkoS1+ 014wW63+nE+d98rD7ZUcyOXxlJAutP7jbreGJsgCtKu3INmJY/OFujazkFgbPKeB aDkLMAZRwcw4/SWyLWdYXib2OEYiQz/5/MtxD0ZwVx/1zYycwnDsw0385Sz8bemI Y53hZZC6//Jo75a5svtOe8bI9mxuBn+9XkbIc0aFIr73/XjwBCd0IF++H11QcAG4 fChnv62ciJS+oEoByTalDg8ebA73qKrLdA75dZwJpYLNmjhYwANbH9AX4b3y0QKT daFrMdOjEs+bQ9X7kqMUBNJ8BS0CAwEAAaOCAekwggHlMB0GA1UdDgQWBBSWq11x Ha5lxZK7zv4NPUc6GMKf8zAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4ODQwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAYBAIA ATASAwQAZ4a4AwQBZ4uiAwQAccAKMA8EAgACMAkDBwAkBC+AABAwDQYJKoZIhvcN AQELBQADggEBAEvwQtW3mlAAoas1LKAI1ggVysDsruZzX0VulUHSEB74eQUC5TKi iWckXGvKniuBq87jQjoK8rKQHviy6jCayT3GZZQuT2tTCVgWS8DzVLt/cTPH1V5p 32qCd7n+uxMpar4Nugb+VxDVd96zlPdSWKD+8EsC6GmaHRd6VATwkkoZwkgw8JBA faAVKyP7bcIuGR7boWfjaJFhVeR2wBWbQiPkQpy71jzYw9Ns6CIRy+V0R8fjCjfj YxhvdI7uZLZB2Fwm+1E0m7uQfUJ/fimXTBpBMXSnpFMX2pjgabCBmH6cOk2vHZey DRSKsXISX2Q9O905dFO89Yo2W8OVFWCjj3g= -----END CERTIFICATE-----Generated at Thu May 7 03:12:25 2026 by rpki-client