$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138880.roa File: AS138880.roa (raw, json) Hash identifier: +CZrGbpY68X/JNFdynxmltpBKdxk44X8tVGsnXynhew= Subject key identifier: 8C:F2:30:C5:D0:A0:BF:97:F0:21:B6:F4:27:6B:2B:62:57:90:C9:F6 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 43CDABCCB83811449F68D0C59A81E221921D579E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138880.roa Signing time: Sat 02 May 2026 21:24:04 +0000 ROA not before: Sat 02 May 2026 21:19:04 +0000 ROA not after: Sat 01 May 2027 21:24:04 +0000 asID: 138880 IP address blocks: 103.140.184.0/24 maxlen: 24 2001:df0:e180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:cd:ab:cc:b8:38:11:44:9f:68:d0:c5:9a:81:e2:21:92:1d:57:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:19:04 2026 GMT Not After : May 1 21:24:04 2027 GMT Subject: CN=8CF230C5D0A0BF97F021B6F4276B2B625790C9F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:11:df:fb:26:b0:ea:ed:81:70:42:b5:b7:e6: 94:96:0d:61:31:5c:55:18:3c:83:f4:ee:5f:82:5e: 2b:fb:9b:86:fd:1c:44:e8:72:e5:bd:e7:80:e0:b1: 39:6b:57:52:58:fb:1a:cf:b2:99:55:8f:0a:f7:19: cc:84:58:8f:d3:24:9a:ab:c4:13:1d:fa:15:3f:0a: 64:82:eb:e0:5e:44:9d:37:52:6a:26:36:f7:aa:46: fc:c3:97:5c:b8:be:ce:20:86:be:2c:92:cc:32:54: f6:4b:fe:46:5d:e5:30:ef:10:29:46:ae:0e:fd:a4: fa:28:82:b8:45:69:17:bf:d1:69:01:b5:80:a3:a6: 07:89:ff:30:2d:4d:bb:69:34:9d:4c:e7:35:b0:35: 1d:62:eb:ad:58:86:40:50:32:fb:70:8c:66:c7:6d: 6b:36:d6:b1:9f:04:9e:fe:eb:93:66:7d:31:97:2c: 6b:17:f1:7c:76:b2:84:05:f6:2f:01:94:4d:87:9a: bb:16:62:c0:81:49:23:3f:87:1a:9f:0d:39:83:25: 05:5b:f9:8b:ac:87:1e:e5:c4:74:66:94:d9:5a:c8: d0:5d:ac:2c:f5:29:98:a1:2f:3f:10:ff:7a:f6:78: 8d:13:ef:32:ef:f4:4e:ec:35:36:1d:79:f2:3b:ed: 15:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:F2:30:C5:D0:A0:BF:97:F0:21:B6:F4:27:6B:2B:62:57:90:C9:F6 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138880.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.184.0/24 IPv6: 2001:df0:e180::/48 Signature Algorithm: sha256WithRSAEncryption 20:b2:19:af:6e:7c:38:bd:93:16:e8:1c:01:63:8f:d0:50:aa: 2c:19:c1:35:20:f2:bf:37:c0:d2:a2:5b:76:6d:3c:14:01:e6: b1:65:a0:d8:58:89:eb:5c:25:d8:ba:21:59:2f:f3:5b:38:83: f2:34:21:57:02:3f:b8:fc:3d:53:f0:0b:50:1b:9a:d1:40:5d: 6c:87:bd:bc:fe:6a:e5:72:99:df:1c:48:f3:ab:ca:c1:02:4a: c3:69:3d:3f:ac:e7:e6:84:ea:24:7b:75:ad:b9:85:6c:00:31: 45:c8:4c:09:62:c2:8e:0a:ce:9a:fb:7c:6e:ca:7e:5f:e3:39: ac:dd:20:d4:7b:72:6e:a7:47:4d:dd:68:ee:ef:b9:a5:46:4a: fc:68:aa:2f:a7:55:59:18:46:dd:78:a7:e0:7d:c1:95:e4:5b: 35:58:65:1f:e6:e5:76:1c:cd:0e:21:07:13:f9:e7:d3:14:c8: f3:55:03:68:dd:aa:a4:01:5e:94:0f:2f:90:82:7d:81:e6:d9: 8f:fd:d9:a3:85:4d:03:26:a2:43:31:50:f0:1a:14:f3:6b:55: 0a:a0:e1:ef:54:b3:e3:7f:57:0f:b4:97:44:92:ff:e5:90:73: 1b:92:92:ef:7d:21:de:c1:97:1b:d5:27:cb:f9:17:49:7e:cd: 91:da:3c:e6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQ82rzLg4EUSfaNDFmoHiIZIdV54wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTkwNFoX DTI3MDUwMTIxMjQwNFowMzExMC8GA1UEAxMoOENGMjMwQzVEMEEwQkY5N0YwMjFC NkY0Mjc2QjJCNjI1NzkwQzlGNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIgR3/smsOrtgXBCtbfmlJYNYTFcVRg8g/TuX4JeK/ubhv0cROhy5b3ngOCx OWtXUlj7Gs+ymVWPCvcZzIRYj9MkmqvEEx36FT8KZILr4F5EnTdSaiY296pG/MOX XLi+ziCGviySzDJU9kv+Rl3lMO8QKUauDv2k+iiCuEVpF7/RaQG1gKOmB4n/MC1N u2k0nUznNbA1HWLrrViGQFAy+3CMZsdtazbWsZ8Env7rk2Z9MZcsaxfxfHayhAX2 LwGUTYeauxZiwIFJIz+HGp8NOYMlBVv5i6yHHuXEdGaU2VrI0F2sLPUpmKEvPxD/ evZ4jRPvMu/0Tuw1Nh158jvtFVUCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBSM8jDF 0KC/l/AhtvQnaytiV5DJ9jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4ODgwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAZ4y4MA8EAgACMAkDBwAgAQ3w4YAwDQYJKoZIhvcNAQELBQADggEBACCy Ga9ufDi9kxboHAFjj9BQqiwZwTUg8r83wNKiW3ZtPBQB5rFloNhYietcJdi6IVkv 81s4g/I0IVcCP7j8PVPwC1AbmtFAXWyHvbz+auVymd8cSPOrysECSsNpPT+s5+aE 6iR7da25hWwAMUXITAliwo4Kzpr7fG7Kfl/jOazdINR7cm6nR03daO7vuaVGSvxo qi+nVVkYRt14p+B9wZXkWzVYZR/m5XYczQ4hBxP559MUyPNVA2jdqqQBXpQPL5CC fYHm2Y/92aOFTQMmokMxUPAaFPNrVQqg4e9Us+N/Vw+0l0SS/+WQcxuSku99Id7B lxvVJ8v5F0l+zZHaPOY= -----END CERTIFICATE-----Generated at Sun May 3 00:42:17 2026 by rpki-client