$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139403.roa File: AS139403.roa (raw, json) Hash identifier: vem5yyPocjKs3ywCCmBAMUP4C4qkbtTC16M+5pH7kbE= Subject key identifier: 20:A4:B1:BD:C4:8C:CA:2E:4B:7E:3C:24:AA:DB:99:29:37:37:BA:B3 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 61900ECB344A5AEDD8F9A6EC5EE283911AE778D8 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139403.roa Signing time: Sat 02 May 2026 21:06:21 +0000 ROA not before: Sat 02 May 2026 21:01:21 +0000 ROA not after: Sat 01 May 2027 21:06:21 +0000 asID: 139403 IP address blocks: 103.143.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:90:0e:cb:34:4a:5a:ed:d8:f9:a6:ec:5e:e2:83:91:1a:e7:78:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:01:21 2026 GMT Not After : May 1 21:06:21 2027 GMT Subject: CN=20A4B1BDC48CCA2E4B7E3C24AADB99293737BAB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:33:9d:49:99:07:ad:81:5e:cb:60:83:62:5a: 08:08:fa:14:ce:35:1b:9c:44:f8:76:a9:1f:fc:34: af:56:50:21:ac:71:46:6f:81:1c:af:d2:66:a5:0a: d8:40:b9:0f:ca:a2:11:01:c0:4f:24:1f:05:d6:48: 82:e0:85:56:ca:a2:c9:58:72:5b:e7:44:ed:7a:aa: 72:50:e0:9f:4a:8b:26:7c:65:ee:42:2a:2a:c1:00: f5:76:04:d6:c6:3b:a8:70:6e:84:7c:7a:c1:3d:cb: dc:c2:c3:f7:20:e7:d3:13:af:03:99:8b:83:f9:c4: 44:01:8b:6c:92:76:4f:45:d3:c0:fc:6f:47:4f:78: 46:a7:b3:3f:4b:c3:26:3e:c8:0c:11:33:0e:d8:31: ee:06:02:ba:54:d6:02:81:c0:37:3d:e9:b7:25:8e: 9e:11:8f:ab:53:dd:fb:40:77:e7:39:22:e2:90:77: 55:5b:ad:cb:ad:7f:84:7f:11:44:32:51:a4:51:5e: 5e:0a:f2:6c:fd:b8:57:e5:5f:a6:ee:41:88:40:37: 32:24:f5:7d:79:ac:69:a6:71:de:02:53:a3:dc:0d: 74:eb:df:97:f8:8f:0e:17:e0:6a:1d:dd:f5:3b:44: b2:83:71:2e:f9:ae:d5:43:32:c6:ff:3a:ea:c7:17: b2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:A4:B1:BD:C4:8C:CA:2E:4B:7E:3C:24:AA:DB:99:29:37:37:BA:B3 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139403.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.154.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:3f:cd:f7:5e:bc:1c:eb:08:c4:ce:ba:b8:96:5f:48:a9:9a: eb:1e:0d:13:11:b7:1b:bb:14:cc:09:6b:44:b4:4f:4c:9d:08: ac:57:3d:3c:96:da:f4:58:6c:0c:e1:d9:d0:b7:95:d4:a4:7b: b2:07:61:c8:87:68:c8:48:70:cf:b0:77:b0:cc:26:6b:2f:3a: 08:18:d7:a3:16:c6:6e:0e:ee:b0:1e:e2:e2:90:e8:da:4b:50: 49:4e:a4:07:7b:fc:29:93:78:38:11:7d:25:38:8c:ae:46:fd: 80:c6:d9:7d:6d:04:3b:d9:78:4f:fa:3c:2c:f4:65:25:2b:33: dd:6e:67:4f:51:ea:8d:92:d5:a2:f2:a0:23:64:04:96:61:dd: 49:2d:fc:94:51:63:2a:7e:8c:77:07:70:21:74:5e:cb:41:07: 42:43:61:11:f5:38:d3:f2:8f:9c:6a:fe:a6:21:87:85:00:f4: a6:ff:4a:75:74:73:10:5f:ac:72:b9:d4:fa:07:93:4b:0c:28: 89:fc:1d:70:31:5d:cc:7f:14:f3:56:a1:d4:48:91:18:33:96: 25:6c:84:85:71:59:60:1c:d2:a6:d6:c7:4f:e0:4a:73:1c:a4: 1e:aa:d7:ab:4a:e8:ce:39:14:35:f7:30:61:f8:0f:3e:6a:ff: 28:29:b2:c1 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUYZAOyzRKWu3Y+absXuKDkRrneNgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDEyMVoX DTI3MDUwMTIxMDYyMVowMzExMC8GA1UEAxMoMjBBNEIxQkRDNDhDQ0EyRTRCN0Uz QzI0QUFEQjk5MjkzNzM3QkFCMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKIznUmZB62BXstgg2JaCAj6FM41G5xE+HapH/w0r1ZQIaxxRm+BHK/SZqUK 2EC5D8qiEQHATyQfBdZIguCFVsqiyVhyW+dE7XqqclDgn0qLJnxl7kIqKsEA9XYE 1sY7qHBuhHx6wT3L3MLD9yDn0xOvA5mLg/nERAGLbJJ2T0XTwPxvR094RqezP0vD Jj7IDBEzDtgx7gYCulTWAoHANz3ptyWOnhGPq1Pd+0B35zki4pB3VVuty61/hH8R RDJRpFFeXgrybP24V+Vfpu5BiEA3MiT1fXmsaaZx3gJTo9wNdOvfl/iPDhfgah3d 9TtEsoNxLvmu1UMyxv866scXsqECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQgpLG9 xIzKLkt+PCSq25kpNze6szAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5NDAzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ4+aMA0GCSqGSIb3DQEBCwUAA4IBAQCLP833Xrwc6wjEzrq4ll9IqZrr Hg0TEbcbuxTMCWtEtE9MnQisVz08ltr0WGwM4dnQt5XUpHuyB2HIh2jISHDPsHew zCZrLzoIGNejFsZuDu6wHuLikOjaS1BJTqQHe/wpk3g4EX0lOIyuRv2Axtl9bQQ7 2XhP+jws9GUlKzPdbmdPUeqNktWi8qAjZASWYd1JLfyUUWMqfox3B3AhdF7LQQdC Q2ER9TjT8o+cav6mIYeFAPSm/0p1dHMQX6xyudT6B5NLDCiJ/B1wMV3MfxTzVqHU SJEYM5YlbISFcVlgHNKm1sdP4EpzHKQeqterSujOORQ19zBh+A8+av8oKbLB -----END CERTIFICATE-----Generated at Sun May 3 01:44:00 2026 by rpki-client