$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139409.roa File: AS139409.roa (raw, json) Hash identifier: FR82lpvlibyef9MdOZ0jSiEfIsPoLhqn6lLgLlsm/sE= Subject key identifier: 54:D5:30:CD:7F:2B:44:35:6B:1D:20:DD:0D:F0:98:32:DB:60:4B:DB Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3FF10D3310EF3FEDF2512985CC23B0FCCB831874 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139409.roa Signing time: Sat 02 May 2026 21:06:25 +0000 ROA not before: Sat 02 May 2026 21:01:25 +0000 ROA not after: Sat 01 May 2027 21:06:25 +0000 asID: 139409 IP address blocks: 103.143.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:f1:0d:33:10:ef:3f:ed:f2:51:29:85:cc:23:b0:fc:cb:83:18:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:01:25 2026 GMT Not After : May 1 21:06:25 2027 GMT Subject: CN=54D530CD7F2B44356B1D20DD0DF09832DB604BDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6c:3f:c3:9d:92:d6:90:50:3b:5f:5b:a8:0a: b4:46:29:41:2c:93:ee:e5:26:b6:41:40:64:5e:6f: 0b:b1:2d:8e:30:01:36:6f:10:23:8a:ab:66:4b:fa: 18:20:04:36:7b:b7:5e:0c:88:7a:f9:82:1d:54:26: ff:a8:fa:a6:36:d1:05:8a:7b:77:b9:38:d5:ef:17: 61:c8:94:1e:90:f7:9f:92:88:06:25:6f:d4:23:9b: 3b:f7:af:a4:6a:6a:00:10:0a:6a:2a:c2:48:d5:62: aa:5f:a7:a9:40:d5:54:b8:e2:94:ba:57:8b:8f:f5: 45:cd:8c:ff:81:a8:e0:67:74:49:a7:a9:dc:f0:82: 05:28:43:23:8b:92:b4:83:70:73:c3:95:cb:72:86: 23:5d:ac:42:67:ea:cb:44:ae:c3:03:82:9b:45:cf: 20:67:f7:99:06:8d:40:d9:32:e9:c2:59:5e:24:5e: fe:76:b2:68:f4:ec:74:21:60:d0:3a:f1:ff:cf:15: f8:96:22:5d:5e:9b:e8:67:f0:7a:da:e8:9a:99:b5: 47:71:45:2f:80:db:b2:7c:cb:d4:4b:6a:3f:27:b2: e8:8e:13:fc:51:fb:f0:e9:40:4a:f7:1d:f3:d8:0f: 4e:23:f7:bf:58:a2:90:35:1a:89:fe:cc:7f:10:94: 56:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D5:30:CD:7F:2B:44:35:6B:1D:20:DD:0D:F0:98:32:DB:60:4B:DB X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139409.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.196.0/23 Signature Algorithm: sha256WithRSAEncryption 72:d1:ff:db:6c:90:a2:ba:45:93:2e:92:21:0e:5b:5a:96:2b: 71:6d:8f:59:e3:5b:af:92:d6:a9:f2:c3:ce:3d:7a:0a:11:ce: 10:3c:2e:42:24:65:51:55:c4:dc:6f:ee:c7:f7:dd:26:78:a4: a4:03:98:3d:b9:ab:81:85:6f:19:70:f4:b3:e6:13:fc:f1:8e: 8d:3b:62:29:c4:2e:d7:53:bf:ef:96:77:ad:da:bc:8e:e9:e6: 98:bf:ca:35:b4:98:35:b8:5e:bb:62:e5:fa:d4:9a:37:e5:cd: a5:aa:75:d6:6d:a1:90:3d:f6:ac:45:96:21:3f:a5:a7:89:12: 3b:cc:2e:6b:3f:2d:6a:5a:01:b5:f8:66:37:52:84:73:1d:79: 58:dd:1f:1d:3d:39:4e:6e:13:59:de:8a:a0:67:88:e1:88:2f: 1f:8e:bf:8e:6e:da:6b:b9:79:fb:6e:3c:55:c2:13:b4:e5:5d: 17:99:53:c8:c9:de:3d:f9:06:07:b8:8a:45:c7:a1:51:82:76: e1:13:dd:da:ac:63:07:bc:40:6a:9f:7d:df:c6:38:d4:4a:f3: 43:ba:fa:6e:b0:51:de:de:85:a6:3d:65:37:d8:6e:af:82:6c: e8:0a:d4:d0:48:2d:bd:dc:b4:5e:52:64:02:de:67:3e:58:2e: 05:b6:74:da -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUP/ENMxDvP+3yUSmFzCOw/MuDGHQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDEyNVoX DTI3MDUwMTIxMDYyNVowMzExMC8GA1UEAxMoNTRENTMwQ0Q3RjJCNDQzNTZCMUQy MEREMERGMDk4MzJEQjYwNEJEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOFsP8OdktaQUDtfW6gKtEYpQSyT7uUmtkFAZF5vC7EtjjABNm8QI4qrZkv6 GCAENnu3XgyIevmCHVQm/6j6pjbRBYp7d7k41e8XYciUHpD3n5KIBiVv1CObO/ev pGpqABAKairCSNViql+nqUDVVLjilLpXi4/1Rc2M/4Go4Gd0Saep3PCCBShDI4uS tINwc8OVy3KGI12sQmfqy0SuwwOCm0XPIGf3mQaNQNky6cJZXiRe/nayaPTsdCFg 0Drx/88V+JYiXV6b6Gfwetrompm1R3FFL4DbsnzL1EtqPyey6I4T/FH78OlASvcd 89gPTiP3v1iikDUaif7MfxCUVusCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRU1TDN fytENWsdIN0N8Jgy22BL2zAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5NDA5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ4/EMA0GCSqGSIb3DQEBCwUAA4IBAQBy0f/bbJCiukWTLpIhDltalitx bY9Z41uvktap8sPOPXoKEc4QPC5CJGVRVcTcb+7H990meKSkA5g9uauBhW8ZcPSz 5hP88Y6NO2IpxC7XU7/vlnet2ryO6eaYv8o1tJg1uF67YuX61Jo35c2lqnXWbaGQ PfasRZYhP6WniRI7zC5rPy1qWgG1+GY3UoRzHXlY3R8dPTlObhNZ3oqgZ4jhiC8f jr+ObtpruXn7bjxVwhO05V0XmVPIyd49+QYHuIpFx6FRgnbhE93arGMHvEBqn33f xjjUSvNDuvpusFHe3oWmPWU32G6vgmzoCtTQSC293LReUmQC3mc+WC4FtnTa -----END CERTIFICATE-----Generated at Sun May 3 00:40:42 2026 by rpki-client