$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138842.roa File: AS138842.roa (raw, json) Hash identifier: gGChVzylB2sMHbeY1NJ5r13xZED2OXo88WGyP9RJMJw= Subject key identifier: 56:C2:53:B6:D5:B5:AE:20:3F:41:55:72:2C:BE:33:38:52:41:3F:79 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 454127A844D26A952DDC855807872B82B1AB84C5 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138842.roa Signing time: Sat 02 May 2026 21:13:33 +0000 ROA not before: Sat 02 May 2026 21:08:33 +0000 ROA not after: Sat 01 May 2027 21:13:33 +0000 asID: 138842 IP address blocks: 103.155.106.0/23 maxlen: 24 103.176.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:41:27:a8:44:d2:6a:95:2d:dc:85:58:07:87:2b:82:b1:ab:84:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:08:33 2026 GMT Not After : May 1 21:13:33 2027 GMT Subject: CN=56C253B6D5B5AE203F4155722CBE333852413F79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:85:05:1a:cc:c9:3f:45:8e:31:89:66:c4:80: 7e:08:e3:ea:c4:6b:c1:f7:83:28:1c:42:58:a8:65: 16:fc:5a:6d:41:4e:e0:fc:ad:8a:ff:f5:03:0c:5f: d1:2a:21:51:ea:d6:ef:82:99:1f:36:0e:36:99:d2: 64:f1:1b:16:41:8d:8a:77:e4:84:e9:83:92:9d:6f: de:8b:db:4f:2b:dd:bf:da:fb:78:92:1c:e6:c4:3c: 5e:2a:b7:12:04:0c:f7:49:be:80:29:a8:7d:7a:73: 71:91:2c:05:b2:54:af:5e:9d:6d:15:c7:a8:1f:bf: f7:73:c4:64:2b:86:3a:c8:36:28:00:d3:fa:00:5f: c3:24:47:32:31:98:6c:f5:76:2a:5f:a9:93:b9:83: 7d:1a:29:a8:fa:52:c5:8e:f5:0e:a2:b0:cc:b7:b6: cb:8e:ab:bc:67:52:f9:57:05:5a:0b:85:49:2c:a9: bd:d5:85:74:2f:d6:d2:84:db:a8:0a:9c:9c:ed:2c: 0a:5a:45:90:17:43:76:fb:9d:42:81:bb:0e:31:33: 3d:30:a9:05:ae:82:c1:56:7d:6b:94:80:41:7c:36: 2d:04:79:33:26:ce:7e:61:e3:95:b0:a2:2e:ab:24: 03:62:29:1c:f6:f6:85:f5:75:c8:01:1b:ca:9d:6a: e9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:C2:53:B6:D5:B5:AE:20:3F:41:55:72:2C:BE:33:38:52:41:3F:79 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138842.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.106.0/23 103.176.26.0/23 Signature Algorithm: sha256WithRSAEncryption 41:af:c4:fe:de:5d:10:ff:46:35:a6:95:38:cb:d9:41:83:2c: e6:f9:8f:1d:74:c7:21:84:9e:9e:db:a0:e4:30:dc:dc:04:77: 64:86:87:99:59:f3:7f:db:3b:25:f7:71:85:7b:56:b4:e7:ab: 91:c8:f9:f5:04:33:22:e4:74:f1:67:fd:ca:05:1d:57:86:e9: ab:98:2d:64:e3:61:be:a5:c1:fe:ec:b2:00:fb:86:c9:da:83: 0f:46:d8:d0:4f:c1:80:92:4e:b5:e5:2c:27:60:b2:88:b3:d4: b9:95:8b:a0:83:1d:bf:60:fc:a2:08:98:1b:c7:00:57:ed:8d: 02:f2:e2:c4:c0:27:8a:9d:08:22:c9:c7:42:b5:c4:1c:95:57: e6:ec:d9:d9:7d:0a:37:97:d6:2a:73:a2:4e:37:c6:36:8e:6a: 2c:cc:aa:e1:1d:7d:75:77:76:5d:f2:95:c3:05:b2:29:84:e0: 71:36:e8:fa:6a:52:43:2c:2c:74:65:77:4e:03:08:e3:98:7f: bf:d9:da:e2:1c:bd:05:5f:9b:76:59:55:39:0f:f2:2d:b4:85: 28:65:03:42:37:26:c5:ea:34:77:e4:1c:59:13:72:e6:a2:7b: 4b:e3:ea:6c:00:2b:c0:d7:99:7b:fb:a4:bb:26:26:36:fc:8f: 41:0a:a6:c7 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIURUEnqETSapUt3IVYB4crgrGrhMUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDgzM1oX DTI3MDUwMTIxMTMzM1owMzExMC8GA1UEAxMoNTZDMjUzQjZENUI1QUUyMDNGNDE1 NTcyMkNCRTMzMzg1MjQxM0Y3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALaFBRrMyT9FjjGJZsSAfgjj6sRrwfeDKBxCWKhlFvxabUFO4Pytiv/1Awxf 0SohUerW74KZHzYONpnSZPEbFkGNinfkhOmDkp1v3ovbTyvdv9r7eJIc5sQ8Xiq3 EgQM90m+gCmofXpzcZEsBbJUr16dbRXHqB+/93PEZCuGOsg2KADT+gBfwyRHMjGY bPV2Kl+pk7mDfRopqPpSxY71DqKwzLe2y46rvGdS+VcFWguFSSypvdWFdC/W0oTb qAqcnO0sClpFkBdDdvudQoG7DjEzPTCpBa6CwVZ9a5SAQXw2LQR5MybOfmHjlbCi LqskA2IpHPb2hfV1yAEbyp1q6ckCAwEAAaOCAdIwggHOMB0GA1UdDgQWBBRWwlO2 1bWuID9BVXIsvjM4UkE/eTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4ODQyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIA ATAMAwQBZ5tqAwQBZ7AaMA0GCSqGSIb3DQEBCwUAA4IBAQBBr8T+3l0Q/0Y1ppU4 y9lBgyzm+Y8ddMchhJ6e26DkMNzcBHdkhoeZWfN/2zsl93GFe1a056uRyPn1BDMi 5HTxZ/3KBR1XhumrmC1k42G+pcH+7LIA+4bJ2oMPRtjQT8GAkk615SwnYLKIs9S5 lYuggx2/YPyiCJgbxwBX7Y0C8uLEwCeKnQgiycdCtcQclVfm7NnZfQo3l9Yqc6JO N8Y2jmoszKrhHX11d3Zd8pXDBbIphOBxNuj6alJDLCx0ZXdOAwjjmH+/2driHL0F X5t2WVU5D/IttIUoZQNCNybF6jR35BxZE3LmontL4+psACvA15l7+6S7JiY2/I9B CqbH -----END CERTIFICATE-----Generated at Sun May 3 00:42:34 2026 by rpki-client