$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138863.roa File: AS138863.roa (raw, json) Hash identifier: 3CbDcKLSEegUl7f3g18b2nSZfUflU62HeX7WTm6CAHw= Subject key identifier: 8E:85:DE:0D:B8:0B:E2:6E:D7:C9:C1:69:E4:3A:80:86:1C:19:D4:C2 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3F74935C3C47237C6B3368FA91D02406CEE3C9A9 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138863.roa Signing time: Sat 02 May 2026 08:36:01 +0000 ROA not before: Sat 02 May 2026 08:31:01 +0000 ROA not after: Sat 01 May 2027 08:36:01 +0000 asID: 138863 IP address blocks: 103.139.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:74:93:5c:3c:47:23:7c:6b:33:68:fa:91:d0:24:06:ce:e3:c9:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:31:01 2026 GMT Not After : May 1 08:36:01 2027 GMT Subject: CN=8E85DE0DB80BE26ED7C9C169E43A80861C19D4C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e2:00:af:a0:8b:a9:67:b4:c2:b8:2e:d1:de: 49:62:aa:7e:71:ec:a9:ac:aa:a9:81:ec:6d:9d:96: e9:11:2d:e8:b0:b1:a2:2e:20:18:d8:ab:63:ba:6b: 60:ce:70:78:01:23:49:4c:cb:33:f5:8b:ec:4f:9d: 97:49:7a:8d:b7:ed:8f:da:67:f3:3f:a2:d1:91:7a: d2:85:9f:74:16:af:32:bb:b9:20:80:f7:03:7d:7b: 73:44:ec:a7:60:67:b8:d5:50:8a:36:3d:b2:9a:cc: 2a:bc:fa:4d:0a:72:a8:e6:f2:6c:27:00:d5:29:88: c4:bc:d6:11:e5:5a:25:96:54:fe:80:c5:7f:1e:c1: d9:f3:65:ba:04:14:0e:7b:38:a9:df:9f:30:2a:0d: 78:c6:65:51:e9:66:f5:6e:3a:65:fc:06:41:a4:8c: 6b:b8:3a:7d:1d:cf:bf:75:2b:39:76:b9:b4:55:da: d4:2a:a6:07:86:d6:f7:64:47:06:38:ec:9d:86:e9: 51:e1:e8:a7:62:43:3a:49:cd:01:c4:33:4a:68:5a: ac:d6:70:b0:99:a5:bc:42:e3:6f:35:c2:94:86:34: 6f:05:a6:bb:34:cf:91:d1:6f:76:ac:51:5c:f3:9d: d7:07:ad:87:72:c2:b6:3c:42:85:38:1c:0f:7a:71: 24:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:85:DE:0D:B8:0B:E2:6E:D7:C9:C1:69:E4:3A:80:86:1C:19:D4:C2 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138863.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.166.0/23 Signature Algorithm: sha256WithRSAEncryption 97:ad:5e:0d:9e:d5:46:ee:f2:ca:bd:0a:c5:e8:63:12:36:52: 42:6b:d1:5c:0c:f2:2c:38:48:76:9f:5c:35:6a:14:9d:95:e4: 5a:d2:19:75:bd:79:62:ed:3a:df:c0:7e:87:f8:d4:7b:28:d2: ed:cc:28:f8:43:c0:4c:aa:b6:43:d1:e6:23:a8:0f:cd:22:83: 8f:58:06:b3:2a:23:61:a8:6e:cf:03:55:46:d5:19:0f:78:da: 18:a6:a9:23:94:33:e1:95:ec:da:76:03:b9:26:5c:49:00:da: a3:4d:5a:28:a4:11:fe:bc:d5:67:72:74:4b:40:3c:5a:2f:94: 04:9d:dd:d2:21:e2:a2:d0:9f:1d:f3:bd:bc:31:5f:a2:04:c0: af:bb:b4:6e:ee:c5:aa:e7:1f:16:b0:b0:33:21:0e:67:7f:15: 2d:25:95:3d:cb:d4:ee:c1:52:b0:e6:d4:3f:4d:be:ac:9e:ab: 31:85:7c:5a:70:35:8a:0f:7a:a8:70:d0:5d:6e:4c:e5:5f:0c: ac:23:bd:4b:63:8c:0d:da:a6:7b:8f:e8:c7:27:fa:c2:9c:47: 10:d5:0e:2c:ef:e6:44:b2:8c:3c:e2:a0:1f:47:84:6d:87:92: 56:73:45:18:3f:25:a2:36:9c:c5:8d:32:7d:81:11:2b:97:15: 73:56:32:c3 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUP3STXDxHI3xrM2j6kdAkBs7jyakwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzEwMVoX DTI3MDUwMTA4MzYwMVowMzExMC8GA1UEAxMoOEU4NURFMERCODBCRTI2RUQ3QzlD MTY5RTQzQTgwODYxQzE5RDRDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANjiAK+gi6lntMK4LtHeSWKqfnHsqayqqYHsbZ2W6REt6LCxoi4gGNirY7pr YM5weAEjSUzLM/WL7E+dl0l6jbftj9pn8z+i0ZF60oWfdBavMru5IID3A317c0Ts p2BnuNVQijY9sprMKrz6TQpyqObybCcA1SmIxLzWEeVaJZZU/oDFfx7B2fNlugQU Dns4qd+fMCoNeMZlUelm9W46ZfwGQaSMa7g6fR3Pv3UrOXa5tFXa1CqmB4bW92RH BjjsnYbpUeHop2JDOknNAcQzSmharNZwsJmlvELjbzXClIY0bwWmuzTPkdFvdqxR XPOd1weth3LCtjxChTgcD3pxJAMCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSOhd4N uAvibtfJwWnkOoCGHBnUwjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4ODYzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ4umMA0GCSqGSIb3DQEBCwUAA4IBAQCXrV4NntVG7vLKvQrF6GMSNlJC a9FcDPIsOEh2n1w1ahSdleRa0hl1vXli7TrfwH6H+NR7KNLtzCj4Q8BMqrZD0eYj qA/NIoOPWAazKiNhqG7PA1VG1RkPeNoYpqkjlDPhlezadgO5JlxJANqjTVoopBH+ vNVncnRLQDxaL5QEnd3SIeKi0J8d8728MV+iBMCvu7Ru7sWq5x8WsLAzIQ5nfxUt JZU9y9TuwVKw5tQ/Tb6snqsxhXxacDWKD3qocNBdbkzlXwysI71LY4wN2qZ7j+jH J/rCnEcQ1Q4s7+ZEsow84qAfR4Rth5JWc0UYPyWiNpzFjTJ9gRErlxVzVjLD -----END CERTIFICATE-----Generated at Sun May 3 01:44:41 2026 by rpki-client