$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139384.roa File: AS139384.roa (raw, json) Hash identifier: vNcYpjywqG91BBO6DOipC2cIJMuhbro4OncrixA+eHg= Subject key identifier: 2D:66:AB:F3:2C:28:FF:A7:DB:D2:B9:E8:4A:74:39:4B:3E:3A:05:75 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3180BD78BE52F35455F7F096887CDB68629314BC Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139384.roa Signing time: Sat 02 May 2026 21:25:01 +0000 ROA not before: Sat 02 May 2026 21:20:01 +0000 ROA not after: Sat 01 May 2027 21:25:01 +0000 asID: 139384 IP address blocks: 103.142.224.0/24 maxlen: 24 2001:df1:5c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:80:bd:78:be:52:f3:54:55:f7:f0:96:88:7c:db:68:62:93:14:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:20:01 2026 GMT Not After : May 1 21:25:01 2027 GMT Subject: CN=2D66ABF32C28FFA7DBD2B9E84A74394B3E3A0575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:66:e4:9f:07:1b:dd:9a:41:76:86:92:b6:c5: a3:eb:65:bc:d0:01:29:15:5b:fd:c5:2b:0c:8f:f9: 00:83:15:f9:59:91:22:5d:f8:22:23:0d:68:54:16: e6:32:7e:cd:a1:c9:b0:96:59:36:84:28:b1:b4:e8: 4d:24:fe:e1:bd:dd:d5:77:98:50:1c:bd:eb:46:41: 36:d7:f3:a4:da:43:df:6e:d6:8b:49:f7:b8:d2:33: b2:bc:28:e2:97:53:c4:9d:b1:ea:eb:ac:32:ec:7f: 20:0b:90:da:db:c6:a1:20:0b:01:7e:6b:d0:e5:c7: e7:fd:0f:74:c6:39:0e:9e:18:f9:d3:84:23:3c:e3: a8:a6:22:f0:0a:85:14:b2:96:5f:e4:a9:4f:17:81: 97:01:89:80:0b:4e:06:6b:97:c4:7b:8e:e6:f0:48: af:86:11:3b:f5:35:85:e0:82:c5:b4:0d:6b:31:2b: 33:96:19:3e:7f:7b:23:08:ae:62:42:19:a2:71:82: 0f:16:b8:ab:0d:c3:ec:79:5c:78:00:f8:f2:20:38: ca:3b:c3:41:b7:89:ed:11:c7:29:5c:c2:48:45:83: 05:1a:5a:d4:d2:3a:c4:6a:9a:59:4a:77:52:ba:f6: d0:10:84:9e:82:96:c4:ee:62:fa:a2:2b:7d:71:e2: b1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:66:AB:F3:2C:28:FF:A7:DB:D2:B9:E8:4A:74:39:4B:3E:3A:05:75 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139384.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.224.0/24 IPv6: 2001:df1:5c80::/48 Signature Algorithm: sha256WithRSAEncryption 53:e3:8d:86:a4:e9:fe:50:c6:83:f1:52:6f:7d:a9:26:37:d0: 30:9b:06:2d:dd:b8:dd:a7:d7:4f:45:e4:40:d1:3f:06:6c:e6: 95:62:26:0e:0b:44:c0:aa:33:af:57:20:5b:29:44:11:a9:bd: dd:f8:75:c8:f9:06:67:c5:3a:32:d4:db:27:ba:13:3a:f5:00: 48:14:7c:35:67:fe:d1:56:da:cc:bf:89:df:6b:a6:d5:88:8a: 85:e6:68:27:0e:42:e5:20:f3:d9:48:17:13:39:53:30:2c:0f: 2a:d7:51:29:4e:68:51:57:52:d7:80:e9:82:eb:0b:6f:73:98: db:86:7c:de:76:ad:3f:b1:02:44:43:49:64:05:a9:a4:77:1c: 25:fa:d7:2b:85:3b:9f:28:1c:ed:d3:94:94:61:cf:39:be:74: a7:76:ed:5f:27:81:c9:6d:5d:f1:af:c3:06:a3:cd:5e:4f:8e: 63:74:73:cb:cd:64:2c:22:62:01:e9:1b:4a:67:d2:05:ff:ab: a0:29:e9:7b:2f:25:2c:9f:42:92:77:24:9b:c3:5b:a2:ee:58: 85:1e:17:ac:89:fd:63:7b:26:d9:5d:90:87:2b:be:06:bb:c0: 92:01:3f:44:a1:7b:a4:25:53:0c:28:d0:7e:4f:de:58:3e:4c: ec:cc:22:3c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMYC9eL5S81RV9/CWiHzbaGKTFLwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjAwMVoX DTI3MDUwMTIxMjUwMVowMzExMC8GA1UEAxMoMkQ2NkFCRjMyQzI4RkZBN0RCRDJC OUU4NEE3NDM5NEIzRTNBMDU3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVm5J8HG92aQXaGkrbFo+tlvNABKRVb/cUrDI/5AIMV+VmRIl34IiMNaFQW 5jJ+zaHJsJZZNoQosbToTST+4b3d1XeYUBy960ZBNtfzpNpD327Wi0n3uNIzsrwo 4pdTxJ2x6uusMux/IAuQ2tvGoSALAX5r0OXH5/0PdMY5Dp4Y+dOEIzzjqKYi8AqF FLKWX+SpTxeBlwGJgAtOBmuXxHuO5vBIr4YRO/U1heCCxbQNazErM5YZPn97Iwiu YkIZonGCDxa4qw3D7HlceAD48iA4yjvDQbeJ7RHHKVzCSEWDBRpa1NI6xGqaWUp3 Urr20BCEnoKWxO5i+qIrfXHisfsCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBQtZqvz LCj/p9vSuehKdDlLPjoFdTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5Mzg0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAZ47gMA8EAgACMAkDBwAgAQ3xXIAwDQYJKoZIhvcNAQELBQADggEBAFPj jYak6f5QxoPxUm99qSY30DCbBi3duN2n109F5EDRPwZs5pViJg4LRMCqM69XIFsp RBGpvd34dcj5BmfFOjLU2ye6Ezr1AEgUfDVn/tFW2sy/id9rptWIioXmaCcOQuUg 89lIFxM5UzAsDyrXUSlOaFFXUteA6YLrC29zmNuGfN52rT+xAkRDSWQFqaR3HCX6 1yuFO58oHO3TlJRhzzm+dKd27V8ngcltXfGvwwajzV5PjmN0c8vNZCwiYgHpG0pn 0gX/q6Ap6XsvJSyfQpJ3JJvDW6LuWIUeF6yJ/WN7JtldkIcrvga7wJIBP0She6Ql Uwwo0H5P3lg+TOzMIjw= -----END CERTIFICATE-----Generated at Sun May 3 00:42:13 2026 by rpki-client