$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138881.roa File: AS138881.roa (raw, json) Hash identifier: VrrhUlXsccuo9/2ONidOd/pdQWTOz6mHONXL3AvRcsc= Subject key identifier: BE:D0:2C:9D:41:D1:A9:85:6F:8B:F2:22:6B:68:72:62:87:1A:76:C2 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 47B8DE9D4370C4BF6EFE211ED7F2B1EC02274F02 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138881.roa Signing time: Sat 02 May 2026 21:30:29 +0000 ROA not before: Sat 02 May 2026 21:25:29 +0000 ROA not after: Sat 01 May 2027 21:30:29 +0000 asID: 138881 IP address blocks: 203.210.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:b8:de:9d:43:70:c4:bf:6e:fe:21:1e:d7:f2:b1:ec:02:27:4f:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:25:29 2026 GMT Not After : May 1 21:30:29 2027 GMT Subject: CN=BED02C9D41D1A9856F8BF2226B687262871A76C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:dd:f8:eb:7f:f8:d6:2c:cd:04:54:c5:8f:9d: d7:35:94:28:24:0b:0c:f2:17:bb:13:77:e4:79:51: f6:b2:d6:c5:f0:4f:01:0a:84:8b:6e:38:dc:e1:0c: 87:49:7a:df:7f:a2:2c:aa:a1:79:9c:79:b0:0b:5d: 91:53:26:40:e5:d6:c5:ea:5d:ad:47:4b:f3:11:3f: ef:ad:b3:13:ad:63:eb:38:45:5d:4e:ff:b2:71:5c: 50:3e:8e:76:70:d2:2f:8a:f3:8f:ac:d0:7d:35:49: ec:4d:70:87:ab:40:1d:97:61:55:36:e2:3f:a1:d7: 4b:10:1e:83:87:d5:e8:59:1b:0c:ce:c4:2b:fa:ea: fc:8c:17:e8:e3:5e:2e:8e:4c:c8:f8:64:b1:4a:3c: d3:51:68:9f:4c:e7:4f:52:28:7c:63:da:7b:1c:64: 41:b4:b6:47:94:70:c8:d9:21:73:68:6e:85:15:96: 17:16:fd:f7:9d:11:a0:4b:04:76:e5:52:7d:fe:5d: f0:fa:67:9c:38:89:31:5b:38:7b:4f:73:33:82:fc: 47:63:4d:9e:65:e6:df:24:be:ab:58:ca:a2:e3:f4: f7:cc:26:ea:53:4e:14:91:70:92:5a:8e:a4:9f:4c: da:40:61:39:15:91:ae:4b:57:8a:1e:b7:32:7b:c1: 7f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:D0:2C:9D:41:D1:A9:85:6F:8B:F2:22:6B:68:72:62:87:1A:76:C2 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138881.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.210.94.0/23 Signature Algorithm: sha256WithRSAEncryption 79:1c:f4:07:eb:94:74:7f:3d:07:25:99:e5:77:f2:87:b8:10: fd:7a:69:62:4b:9d:d3:a7:fc:40:56:c7:96:30:56:ac:15:11: e0:17:24:6a:c9:d5:49:0d:92:25:89:b1:20:bf:e9:8a:89:bb: 2e:58:91:b2:08:f4:b5:3a:82:37:2b:7f:89:d8:aa:1b:20:5c: d5:bd:36:41:5d:56:2b:dc:ea:1c:b8:75:e1:f4:39:ee:6e:61: 2c:75:f4:32:39:39:ea:61:4e:10:66:fa:f8:58:cc:8d:c8:40: 3f:83:c1:ba:ee:13:36:53:56:9f:af:3f:83:70:03:ff:21:f6: 1b:58:75:ef:e7:e8:4b:03:78:fd:a2:86:3f:c2:91:f0:8d:8e: 6b:52:4f:4e:d1:97:33:01:95:77:ba:c2:1a:5e:83:a9:24:56: cc:6d:7f:ea:c4:ce:dc:1d:06:b2:fb:84:07:fa:5d:69:67:9f: 4d:54:fd:64:49:ec:6b:be:31:16:0a:f4:e0:37:0e:fb:bc:79: a5:b4:bd:7a:27:de:6e:0d:c1:23:0d:15:72:9f:64:37:e7:86: c3:59:89:a3:71:58:25:ac:68:da:57:ff:05:12:8b:6e:4b:2d: 06:04:a5:74:a4:83:0f:00:33:cf:f1:9c:67:4c:06:3b:f7:58: df:fb:83:75 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUR7jenUNwxL9u/iEe1/Kx7AInTwIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjUyOVoX DTI3MDUwMTIxMzAyOVowMzExMC8GA1UEAxMoQkVEMDJDOUQ0MUQxQTk4NTZGOEJG MjIyNkI2ODcyNjI4NzFBNzZDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANbd+Ot/+NYszQRUxY+d1zWUKCQLDPIXuxN35HlR9rLWxfBPAQqEi2443OEM h0l633+iLKqheZx5sAtdkVMmQOXWxepdrUdL8xE/762zE61j6zhFXU7/snFcUD6O dnDSL4rzj6zQfTVJ7E1wh6tAHZdhVTbiP6HXSxAeg4fV6FkbDM7EK/rq/IwX6ONe Lo5MyPhksUo801Fon0znT1IofGPaexxkQbS2R5RwyNkhc2huhRWWFxb9950RoEsE duVSff5d8PpnnDiJMVs4e09zM4L8R2NNnmXm3yS+q1jKouP098wm6lNOFJFwklqO pJ9M2kBhORWRrktXih63MnvBf2kCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBS+0Cyd QdGphW+L8iJraHJihxp2wjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4ODgxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBy9JeMA0GCSqGSIb3DQEBCwUAA4IBAQB5HPQH65R0fz0HJZnld/KHuBD9 emliS53Tp/xAVseWMFasFRHgFyRqydVJDZIlibEgv+mKibsuWJGyCPS1OoI3K3+J 2KobIFzVvTZBXVYr3OocuHXh9DnubmEsdfQyOTnqYU4QZvr4WMyNyEA/g8G67hM2 U1afrz+DcAP/IfYbWHXv5+hLA3j9ooY/wpHwjY5rUk9O0ZczAZV3usIaXoOpJFbM bX/qxM7cHQay+4QH+l1pZ59NVP1kSexrvjEWCvTgNw77vHmltL16J95uDcEjDRVy n2Q354bDWYmjcVglrGjaV/8FEotuSy0GBKV0pIMPADPP8ZxnTAY791jf+4N1 -----END CERTIFICATE-----Generated at Sun May 3 00:42:32 2026 by rpki-client