$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139406.roa File: AS139406.roa (raw, json) Hash identifier: OzYdLzjQycKO5AhhgDbk9DfvwwmYFOj+m0XhxQ5FxWc= Subject key identifier: F2:75:20:A9:75:95:EB:FD:6C:28:C1:FD:78:2E:CF:40:E8:98:D1:30 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 64336573DAB1A49F585BBBDAB3C0868DBAB7A4D8 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139406.roa Signing time: Sat 02 May 2026 21:06:31 +0000 ROA not before: Sat 02 May 2026 21:01:31 +0000 ROA not after: Sat 01 May 2027 21:06:31 +0000 asID: 139406 IP address blocks: 103.143.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:33:65:73:da:b1:a4:9f:58:5b:bb:da:b3:c0:86:8d:ba:b7:a4:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:01:31 2026 GMT Not After : May 1 21:06:31 2027 GMT Subject: CN=F27520A97595EBFD6C28C1FD782ECF40E898D130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:82:aa:22:e5:f2:23:d4:9c:04:94:f2:e9:08: 5b:c3:d2:77:d7:95:bf:6f:88:d6:b2:5d:37:0c:e5: 1d:7d:85:06:9d:8f:15:10:7f:f2:78:8f:ed:07:fe: a6:d9:8c:9c:e2:7f:d9:43:85:26:9e:4d:ab:06:34: ec:8d:65:16:a8:29:2e:18:86:a7:be:6a:a1:1d:65: 06:a6:01:33:51:3a:b7:f5:d8:c6:50:ac:8a:81:7e: 87:a2:1b:06:27:88:fc:3c:95:67:e2:1b:fe:6a:14: d3:e8:23:10:10:db:8f:ae:29:be:68:b3:16:b8:09: 27:90:8f:b2:b4:c9:8a:8a:96:e1:cb:e7:09:d9:7a: ab:41:8d:20:d2:dd:84:93:8e:dc:7f:dc:3a:be:28: 18:15:e6:2e:97:1b:3f:6d:0c:cc:fc:c5:eb:be:e4: 55:da:bc:e5:c8:4d:d5:57:e1:99:b0:2f:e5:fb:42: ab:36:d9:63:a1:a6:cb:cb:36:5f:87:9f:4e:8f:1b: 99:46:a4:d6:df:c6:fc:5b:0c:b4:1e:62:16:bc:de: e4:fe:1c:8e:94:4d:87:b7:2e:ca:80:59:11:07:de: 46:3e:74:e0:75:cc:36:c3:a1:b5:64:84:55:59:bd: cc:a1:57:39:85:4f:8c:17:7d:8c:f6:24:24:d7:f7: 8b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:75:20:A9:75:95:EB:FD:6C:28:C1:FD:78:2E:CF:40:E8:98:D1:30 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139406.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.198.0/23 Signature Algorithm: sha256WithRSAEncryption 03:52:9f:24:26:0c:0c:47:7d:ed:ce:23:30:1b:5f:7b:7f:90: f3:3b:9d:b3:1f:5d:86:c2:6f:a5:be:20:09:06:19:53:3c:bb: 47:30:2c:80:99:55:47:c8:2f:4d:57:83:5f:b5:a6:7b:57:db: 79:b2:30:23:44:d8:c5:b8:5b:1d:32:15:a0:4a:8d:42:a1:f4: ba:d5:cd:f4:56:e3:fc:93:e0:2d:88:a7:37:74:22:e1:7f:19: d6:23:58:bf:34:69:dd:71:a4:5a:6b:00:2d:8b:55:3e:eb:21: a5:ce:3f:13:45:0c:c4:e4:84:ae:e1:8a:d7:3a:fa:bf:12:29: df:77:0a:aa:97:47:05:ff:ce:a8:a1:4c:0c:0d:dc:94:41:ff: 5c:81:fc:b2:95:aa:92:b8:68:c3:38:fb:05:2b:c0:43:24:07: 89:62:64:b2:d5:87:91:49:a4:77:18:d5:5c:88:02:72:58:51: dc:09:9e:15:49:79:25:39:e4:3a:96:26:a0:ed:ee:11:2c:c2: 8f:d6:2e:7d:d4:71:13:2e:a1:f7:4d:42:f6:47:03:3e:a9:bd: 49:e1:da:07:06:3a:65:a9:9d:35:90:ec:48:78:4d:41:15:ba: 86:b6:17:ef:44:a8:1f:8c:30:53:ef:17:e7:86:2e:4e:03:8b: 70:da:e7:4c -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUZDNlc9qxpJ9YW7vas8CGjbq3pNgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDEzMVoX DTI3MDUwMTIxMDYzMVowMzExMC8GA1UEAxMoRjI3NTIwQTk3NTk1RUJGRDZDMjhD MUZENzgyRUNGNDBFODk4RDEzMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANOCqiLl8iPUnASU8ukIW8PSd9eVv2+I1rJdNwzlHX2FBp2PFRB/8niP7Qf+ ptmMnOJ/2UOFJp5NqwY07I1lFqgpLhiGp75qoR1lBqYBM1E6t/XYxlCsioF+h6Ib BieI/DyVZ+Ib/moU0+gjEBDbj64pvmizFrgJJ5CPsrTJioqW4cvnCdl6q0GNINLd hJOO3H/cOr4oGBXmLpcbP20MzPzF677kVdq85chN1VfhmbAv5ftCqzbZY6Gmy8s2 X4efTo8bmUak1t/G/FsMtB5iFrze5P4cjpRNh7cuyoBZEQfeRj504HXMNsOhtWSE VVm9zKFXOYVPjBd9jPYkJNf3i2kCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTydSCp dZXr/Wwowf14Ls9A6JjRMDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5NDA2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ4/GMA0GCSqGSIb3DQEBCwUAA4IBAQADUp8kJgwMR33tziMwG197f5Dz O52zH12Gwm+lviAJBhlTPLtHMCyAmVVHyC9NV4NftaZ7V9t5sjAjRNjFuFsdMhWg So1CofS61c30VuP8k+AtiKc3dCLhfxnWI1i/NGndcaRaawAti1U+6yGlzj8TRQzE 5ISu4YrXOvq/Einfdwqql0cF/86ooUwMDdyUQf9cgfyylaqSuGjDOPsFK8BDJAeJ YmSy1YeRSaR3GNVciAJyWFHcCZ4VSXklOeQ6liag7e4RLMKP1i591HETLqH3TUL2 RwM+qb1J4doHBjplqZ01kOxIeE1BFbqGthfvRKgfjDBT7xfnhi5OA4tw2udM -----END CERTIFICATE-----Generated at Sun May 3 00:42:20 2026 by rpki-client