$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139398.roa File: AS139398.roa (raw, json) Hash identifier: yefYRhKXG8aBDEk12QE8hj13JdJgCzOHwq4GVQDbRyA= Subject key identifier: 44:E2:98:08:6A:8D:F3:CD:0E:7B:37:2B:64:51:95:83:4A:B3:1A:82 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 589E67ED795D56E5365578C2EEC95806CE15B17F Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139398.roa Signing time: Sat 02 May 2026 09:23:31 +0000 ROA not before: Sat 02 May 2026 09:18:31 +0000 ROA not after: Sat 01 May 2027 09:23:31 +0000 asID: 139398 IP address blocks: 144.48.13.0/24 maxlen: 24 144.48.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:9e:67:ed:79:5d:56:e5:36:55:78:c2:ee:c9:58:06:ce:15:b1:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:18:31 2026 GMT Not After : May 1 09:23:31 2027 GMT Subject: CN=44E298086A8DF3CD0E7B372B645195834AB31A82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:58:49:68:df:06:28:cc:ce:82:1e:df:bd:66: cb:5f:d1:e8:de:89:e5:56:1a:e5:e2:01:10:cf:50: c9:11:6a:f7:5b:31:b6:03:46:af:b1:2b:87:2d:07: c5:ff:3f:45:5d:5e:62:f6:33:ab:fe:6d:39:4d:81: c6:8c:57:ed:84:75:75:7a:89:83:14:b0:64:32:74: 83:1e:7b:c9:93:30:5d:a4:22:26:b5:eb:7d:96:97: 1a:60:dc:e5:7c:7c:2f:35:da:9d:93:ff:4e:2d:75: 0b:5e:a0:b4:10:3b:9f:dc:7b:f0:98:45:a0:f6:67: 48:a1:01:af:d2:97:a3:57:c8:7a:5a:b3:ed:59:f9: 55:30:78:90:44:c7:c5:a5:5f:2c:c8:36:7c:b6:f3: 85:ff:b0:e8:0e:cd:fe:a3:40:52:8b:2a:5b:5a:ab: 84:06:2f:13:76:e4:c1:71:4a:dd:d3:09:9a:9e:45: da:ec:c7:59:22:86:dc:b7:df:38:be:b1:7f:98:17: 7d:ee:75:4e:3e:76:26:03:63:bf:3e:4e:75:a4:73: 34:57:dd:80:73:f3:9d:45:ca:6e:d7:dc:89:76:97: b1:01:9c:6b:21:5e:b9:f0:c7:64:ee:39:72:4b:68: bf:44:fb:48:7b:2b:92:ad:f4:4d:f7:2e:96:00:1f: 64:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:E2:98:08:6A:8D:F3:CD:0E:7B:37:2B:64:51:95:83:4A:B3:1A:82 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139398.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.48.13.0-144.48.14.255 Signature Algorithm: sha256WithRSAEncryption 44:6a:4b:72:bc:ec:ea:8e:65:c2:86:3a:7c:8f:e9:30:b6:16: c3:5e:ab:27:1a:4a:d1:8a:f9:aa:49:79:84:95:90:1d:3c:79: 99:b1:65:fc:5a:f6:9b:3a:f5:ef:db:50:59:47:fa:48:24:62: ac:fa:b5:c7:88:8c:9c:76:21:ff:e6:06:52:f6:60:7e:b4:eb: 69:62:30:7e:39:0b:78:60:f6:ca:28:d3:ae:2b:8a:ab:18:48: a9:dc:da:54:db:05:8a:63:82:0f:68:21:40:1e:c7:c2:5e:39: 32:a9:58:a2:24:02:a4:23:7e:ff:9b:09:d5:67:a7:77:aa:f0: 9d:00:e7:37:fd:9b:4c:71:9f:ac:e0:38:92:f8:2b:11:19:ad: 44:84:a8:3f:52:79:cb:d5:de:cf:39:30:6a:80:f0:2e:44:15: 53:48:85:bf:f7:b0:0f:6e:1c:88:9b:bd:84:bf:84:37:80:58: 60:38:af:14:df:94:c2:fa:72:21:25:7c:1b:bb:d3:2c:11:57: 71:98:56:84:bd:5f:dc:cd:3f:ab:eb:fa:93:68:6b:23:17:71: e9:77:b0:71:aa:e5:bf:59:47:c5:17:6e:0c:9f:a1:18:86:b6: 14:c7:0c:e4:fc:36:f5:34:6c:a5:a5:ab:01:50:26:26:f5:fd: 1f:36:bd:ef -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIUWJ5n7XldVuU2VXjC7slYBs4VsX8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTgzMVoX DTI3MDUwMTA5MjMzMVowMzExMC8GA1UEAxMoNDRFMjk4MDg2QThERjNDRDBFN0Iz NzJCNjQ1MTk1ODM0QUIzMUE4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJFYSWjfBijMzoIe371my1/R6N6J5VYa5eIBEM9QyRFq91sxtgNGr7Erhy0H xf8/RV1eYvYzq/5tOU2BxoxX7YR1dXqJgxSwZDJ0gx57yZMwXaQiJrXrfZaXGmDc 5Xx8LzXanZP/Ti11C16gtBA7n9x78JhFoPZnSKEBr9KXo1fIelqz7Vn5VTB4kETH xaVfLMg2fLbzhf+w6A7N/qNAUosqW1qrhAYvE3bkwXFK3dMJmp5F2uzHWSKG3Lff OL6xf5gXfe51Tj52JgNjvz5OdaRzNFfdgHPznUXKbtfciXaXsQGcayFeufDHZO45 cktov0T7SHsrkq30TfculgAfZNkCAwEAAaOCAdQwggHQMB0GA1UdDgQWBBRE4pgI ao3zzQ57NytkUZWDSrMagjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5Mzk4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIA ATAOMAwDBACQMA0DBACQMA4wDQYJKoZIhvcNAQELBQADggEBAERqS3K87OqOZcKG OnyP6TC2FsNeqycaStGK+apJeYSVkB08eZmxZfxa9ps69e/bUFlH+kgkYqz6tceI jJx2If/mBlL2YH6062liMH45C3hg9soo064riqsYSKnc2lTbBYpjgg9oIUAex8Je OTKpWKIkAqQjfv+bCdVnp3eq8J0A5zf9m0xxn6zgOJL4KxEZrUSEqD9SecvV3s85 MGqA8C5EFVNIhb/3sA9uHIibvYS/hDeAWGA4rxTflML6ciElfBu70ywRV3GYVoS9 X9zNP6vr+pNoayMXcel3sHGq5b9ZR8UXbgyfoRiGthTHDOT8NvU0bKWlqwFQJib1 /R82ve8= -----END CERTIFICATE-----Generated at Sun May 3 00:42:18 2026 by rpki-client