$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138874.roa File: AS138874.roa (raw, json) Hash identifier: onciBrRxP7tORvENMaDpYvJVN0t8KaPUflm/ZzLChbE= Subject key identifier: 82:44:94:FA:FF:6D:B3:D6:D6:CE:8F:92:06:38:54:2A:56:9F:AC:17 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 0F8F88BC36A78AB4FAE14778A6550EBB4C4C0240 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138874.roa Signing time: Sat 02 May 2026 21:05:47 +0000 ROA not before: Sat 02 May 2026 21:00:47 +0000 ROA not after: Sat 01 May 2027 21:05:47 +0000 asID: 138874 IP address blocks: 103.140.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:8f:88:bc:36:a7:8a:b4:fa:e1:47:78:a6:55:0e:bb:4c:4c:02:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:00:47 2026 GMT Not After : May 1 21:05:47 2027 GMT Subject: CN=824494FAFF6DB3D6D6CE8F920638542A569FAC17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:96:6b:b8:87:92:36:82:82:d6:af:3b:a9:53: c0:08:ca:16:89:22:f2:5d:f7:18:6b:71:86:73:c4: a4:93:6b:1b:a4:d2:51:fd:72:a1:46:e3:99:c4:cf: be:6f:bc:c1:2f:29:81:d5:0c:51:3d:22:d2:bc:09: 28:af:cf:21:9d:bd:e5:6b:d9:2b:9f:87:49:00:47: 21:d4:a6:a6:ba:79:25:d0:da:78:de:d2:36:79:c8: 19:41:1d:fe:21:d4:0d:09:0b:d4:d2:db:d2:3e:b5: bd:a9:ff:4b:86:47:91:e7:9c:db:a1:11:ae:cf:79: 0d:75:bf:7c:da:42:66:b0:b1:b5:fb:5f:3d:e3:72: 4f:04:86:20:e8:5f:60:d3:4c:4f:e3:ba:2d:58:08: 31:4d:9b:ef:87:90:78:31:a2:af:ef:10:96:a2:60: b9:b1:37:d6:a2:fb:73:3a:a4:0f:c3:57:ed:2a:15: d4:3f:fa:14:69:05:60:ca:8c:ef:37:a1:84:09:33: e6:e3:bd:a8:4c:89:53:7d:6a:7f:52:73:b5:98:c5: 33:00:21:46:de:e7:e6:41:3f:e9:3c:ca:e8:72:f7: b4:10:62:8f:65:fd:1e:53:5f:5d:25:ec:a9:98:c8: 4a:75:e5:ed:75:4c:a9:b0:aa:c1:85:bf:23:c4:de: c4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:44:94:FA:FF:6D:B3:D6:D6:CE:8F:92:06:38:54:2A:56:9F:AC:17 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138874.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.76.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:35:22:fb:7f:f0:4a:4c:c8:3e:39:d9:78:48:30:8a:84:9e: 95:12:28:6a:96:d1:ae:aa:41:16:b1:cf:ef:4b:31:06:8e:c6: c4:e3:4c:af:7c:fe:5f:cb:4c:ed:bd:57:98:cc:54:75:65:24: 9d:86:9d:4c:35:17:64:62:8f:cb:83:80:0b:cb:b6:c0:cd:08: f0:2e:dc:f0:f9:32:64:69:e3:1a:a0:cd:d0:d3:5f:1b:87:2f: 0b:2d:cf:66:3d:50:6e:f9:a5:5b:24:d3:84:ff:ba:99:da:e6: 60:0d:fc:7e:9c:87:e1:88:dd:bc:85:2e:8f:5c:94:45:82:05: 43:07:17:a8:ad:2d:5a:99:6b:70:a8:19:c7:8d:15:4f:f6:d1: 36:e1:00:25:0f:8b:14:67:8a:2e:1a:cd:e8:96:5f:9a:8d:ee: ae:53:bd:bf:c4:b7:4d:13:96:d7:a5:e2:30:26:1b:f3:a8:39: ab:9d:75:d8:ba:7a:52:08:86:e4:85:cc:a7:50:45:85:5e:77: 2f:5d:f1:e0:3a:73:5e:dc:99:aa:e0:f9:35:6e:fc:3f:aa:a5: 9c:a3:d1:87:29:18:b2:2f:de:62:39:ad:04:fe:e4:0c:9c:d6: bb:e5:bf:57:fa:08:b7:70:7a:75:0f:a0:74:47:d3:31:a2:75: b1:97:8a:e3 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUD4+IvDanirT64Ud4plUOu0xMAkAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDA0N1oX DTI3MDUwMTIxMDU0N1owMzExMC8GA1UEAxMoODI0NDk0RkFGRjZEQjNENkQ2Q0U4 RjkyMDYzODU0MkE1NjlGQUMxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK+Wa7iHkjaCgtavO6lTwAjKFoki8l33GGtxhnPEpJNrG6TSUf1yoUbjmcTP vm+8wS8pgdUMUT0i0rwJKK/PIZ295WvZK5+HSQBHIdSmprp5JdDaeN7SNnnIGUEd /iHUDQkL1NLb0j61van/S4ZHkeec26ERrs95DXW/fNpCZrCxtftfPeNyTwSGIOhf YNNMT+O6LVgIMU2b74eQeDGir+8QlqJgubE31qL7czqkD8NX7SoV1D/6FGkFYMqM 7zehhAkz5uO9qEyJU31qf1JztZjFMwAhRt7n5kE/6TzK6HL3tBBij2X9HlNfXSXs qZjISnXl7XVMqbCqwYW/I8TexP0CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSCRJT6 /22z1tbOj5IGOFQqVp+sFzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4ODc0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ4xMMA0GCSqGSIb3DQEBCwUAA4IBAQA9NSL7f/BKTMg+Odl4SDCKhJ6V EihqltGuqkEWsc/vSzEGjsbE40yvfP5fy0ztvVeYzFR1ZSSdhp1MNRdkYo/Lg4AL y7bAzQjwLtzw+TJkaeMaoM3Q018bhy8LLc9mPVBu+aVbJNOE/7qZ2uZgDfx+nIfh iN28hS6PXJRFggVDBxeorS1amWtwqBnHjRVP9tE24QAlD4sUZ4ouGs3oll+aje6u U72/xLdNE5bXpeIwJhvzqDmrnXXYunpSCIbkhcynUEWFXncvXfHgOnNe3Jmq4Pk1 bvw/qqWco9GHKRiyL95iOa0E/uQMnNa75b9X+gi3cHp1D6B0R9MxonWxl4rj -----END CERTIFICATE-----Generated at Sun May 3 00:42:03 2026 by rpki-client