$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139396.roa File: AS139396.roa (raw, json) Hash identifier: CUvTMA7ZiLGCqV0ldS5vJx78vpj1ZlZ3rj7iO8p5Zus= Subject key identifier: C3:E0:80:D4:49:37:58:F7:A1:BA:C9:BF:86:3F:F1:F8:03:DD:1A:17 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 58FB9EFE6C2ACBBC35A091A684DDEFA94CE7112C Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139396.roa Signing time: Sat 02 May 2026 09:27:36 +0000 ROA not before: Sat 02 May 2026 09:22:36 +0000 ROA not after: Sat 01 May 2027 09:27:36 +0000 asID: 139396 IP address blocks: 45.113.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:fb:9e:fe:6c:2a:cb:bc:35:a0:91:a6:84:dd:ef:a9:4c:e7:11:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:22:36 2026 GMT Not After : May 1 09:27:36 2027 GMT Subject: CN=C3E080D4493758F7A1BAC9BF863FF1F803DD1A17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cd:ac:dc:df:1c:2d:f9:c6:96:9a:9c:b2:b1: a9:4e:3e:f0:93:2c:01:04:34:64:fb:01:9b:ac:02: be:84:16:c1:e8:1c:6e:02:59:22:fb:9c:fe:0e:21: ea:bf:aa:86:f8:7f:45:ae:05:16:38:77:2e:fe:ca: 95:b4:88:b0:c5:a7:1d:87:86:1b:d2:0b:5c:3c:33: f6:e4:61:3b:12:0d:54:f4:e1:a9:f2:74:0d:f2:98: 60:8a:18:e5:10:63:51:e8:80:7c:07:39:64:97:f7: 8d:f8:90:ce:d3:75:40:1e:a4:51:fd:8f:90:a8:72: 64:14:12:f3:0e:fe:70:6b:38:75:8f:cc:a0:90:2c: cb:69:b3:af:42:6d:0d:19:8d:01:d0:48:12:85:fb: d8:45:67:e8:7e:2d:f7:ae:28:b3:b2:eb:10:9c:70: 79:a1:80:d8:84:47:ab:c2:bf:6c:4f:19:79:7e:5b: 01:15:32:d8:69:94:57:38:ee:e9:85:7c:96:a2:a7: e7:ee:6b:b1:98:9a:b6:d8:30:75:a1:53:68:fc:f8: 41:2f:7a:11:af:7a:76:e5:02:02:94:f6:6d:d5:a2: 58:f3:5d:54:18:48:c8:e7:97:9d:10:a5:b7:99:73: 14:08:0c:45:5d:e5:fb:b9:71:34:2f:51:20:95:0b: 5d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E0:80:D4:49:37:58:F7:A1:BA:C9:BF:86:3F:F1:F8:03:DD:1A:17 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139396.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.113.228.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:17:3e:f1:12:ad:88:08:5f:b4:53:a1:d3:0e:4d:68:9e:03: fb:a9:8e:ad:59:64:aa:e7:ab:bb:ff:d7:9e:bd:c7:8c:c3:5d: 46:22:b2:31:6f:6f:65:06:ac:0a:5d:c0:23:be:c3:a7:a5:61: b7:03:a4:03:31:5d:b4:83:d9:11:95:13:a0:c7:56:41:9e:01: 7b:72:7f:94:11:9c:c7:bb:5f:3a:f1:6a:f7:40:46:16:db:0c: a6:6a:6b:8d:0d:8f:80:09:de:05:c7:40:5a:75:89:4b:79:31: 02:c1:c6:ff:c1:bb:52:a6:37:ad:ba:ef:b6:3d:25:52:97:72: b4:82:b8:52:41:6d:74:ab:ff:1b:23:4d:a4:5e:f0:2a:cb:f7: 63:da:df:33:c9:2c:19:81:34:0e:72:d2:b9:b4:50:f2:89:af: 68:aa:6f:19:11:05:25:c9:f6:ea:99:46:ad:a9:64:a9:7e:9f: df:56:56:6e:42:74:a1:c4:d2:31:d0:b5:45:2e:73:ac:8c:13: c3:37:4d:9c:17:f6:a7:91:86:94:5e:14:e1:0e:e7:99:0c:d3: bb:ee:74:76:c8:5f:fc:b4:09:72:e1:87:a9:19:ba:46:b2:6f: 0c:16:b4:56:8e:9b:a4:93:4e:b9:f5:29:ec:10:52:49:4b:94: 05:13:4c:3f -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUWPue/mwqy7w1oJGmhN3vqUznESwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjIzNloX DTI3MDUwMTA5MjczNlowMzExMC8GA1UEAxMoQzNFMDgwRDQ0OTM3NThGN0ExQkFD OUJGODYzRkYxRjgwM0REMUExNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3NrNzfHC35xpaanLKxqU4+8JMsAQQ0ZPsBm6wCvoQWwegcbgJZIvuc/g4h 6r+qhvh/Ra4FFjh3Lv7KlbSIsMWnHYeGG9ILXDwz9uRhOxINVPThqfJ0DfKYYIoY 5RBjUeiAfAc5ZJf3jfiQztN1QB6kUf2PkKhyZBQS8w7+cGs4dY/MoJAsy2mzr0Jt DRmNAdBIEoX72EVn6H4t964os7LrEJxweaGA2IRHq8K/bE8ZeX5bARUy2GmUVzju 6YV8lqKn5+5rsZiattgwdaFTaPz4QS96Ea96duUCApT2bdWiWPNdVBhIyOeXnRCl t5lzFAgMRV3l+7lxNC9RIJULXeUCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTD4IDU STdY96G6yb+GP/H4A90aFzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5Mzk2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCLXHkMA0GCSqGSIb3DQEBCwUAA4IBAQAfFz7xEq2ICF+0U6HTDk1ongP7 qY6tWWSq56u7/9eevceMw11GIrIxb29lBqwKXcAjvsOnpWG3A6QDMV20g9kRlROg x1ZBngF7cn+UEZzHu1868Wr3QEYW2wymamuNDY+ACd4Fx0BadYlLeTECwcb/wbtS pjetuu+2PSVSl3K0grhSQW10q/8bI02kXvAqy/dj2t8zySwZgTQOctK5tFDyia9o qm8ZEQUlyfbqmUatqWSpfp/fVlZuQnShxNIx0LVFLnOsjBPDN02cF/ankYaUXhTh DueZDNO77nR2yF/8tAly4YepGbpGsm8MFrRWjpukk0659SnsEFJJS5QFE0w/ -----END CERTIFICATE-----Generated at Sun May 3 01:44:53 2026 by rpki-client