$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139412.roa File: AS139412.roa (raw, json) Hash identifier: RwDUJtou4NZ4n12LKychaXvv1uPXCzTbXHjPFyk9KlY= Subject key identifier: BE:FB:D5:A1:53:B9:D0:C6:99:48:86:06:50:78:18:22:F3:F5:69:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 18F058FD23C80E618589667FBF57E2A4E9C75FB2 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139412.roa Signing time: Sat 02 May 2026 21:06:43 +0000 ROA not before: Sat 02 May 2026 21:01:43 +0000 ROA not after: Sat 01 May 2027 21:06:43 +0000 asID: 139412 IP address blocks: 103.143.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:f0:58:fd:23:c8:0e:61:85:89:66:7f:bf:57:e2:a4:e9:c7:5f:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:01:43 2026 GMT Not After : May 1 21:06:43 2027 GMT Subject: CN=BEFBD5A153B9D0C69948860650781822F3F5699E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:28:7c:8e:2e:db:fe:bc:16:a8:34:13:a3:38: 4c:e6:45:47:6a:1d:10:ed:d6:36:ab:a5:7a:77:43: 71:08:50:c1:88:93:b5:40:22:d2:86:3a:cd:2c:d9: 49:a3:55:28:86:cb:22:6d:d0:ed:6a:ec:9a:2f:43: f9:4f:ca:4c:64:be:b9:cd:19:78:77:e3:dc:11:ba: 76:bb:1d:95:4d:73:11:4a:aa:e5:44:4e:85:15:7a: 79:ed:7b:b6:b8:ad:65:66:a5:09:b5:24:94:db:41: 52:f2:8a:6a:97:33:15:90:10:5f:da:db:f3:1a:da: 84:3c:7d:71:cd:26:59:43:38:22:d6:82:18:80:28: 70:03:90:e2:6b:01:5b:c5:72:84:15:66:41:fe:ec: 4f:6d:83:75:66:f6:47:26:b3:8c:35:f6:40:c8:11: 35:f8:fa:15:26:b0:04:4a:16:1e:d0:34:7e:ac:79: 81:5c:20:98:bc:3a:bd:bd:45:7b:7f:3c:4c:66:bc: 5d:e2:20:02:a5:73:d3:6b:cf:f3:4a:10:e0:53:48: 3e:1e:64:3b:8e:aa:15:03:d4:c6:cb:88:5b:16:07: dd:b5:0d:43:3f:29:b8:d9:56:b2:af:20:36:02:a0: 8f:2d:ae:62:12:a3:16:75:09:cb:08:05:28:e7:26: 5b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:FB:D5:A1:53:B9:D0:C6:99:48:86:06:50:78:18:22:F3:F5:69:9E X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139412.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.224.0/23 Signature Algorithm: sha256WithRSAEncryption 59:9f:68:28:88:ad:01:2e:69:7a:a1:91:7b:9c:cc:83:bf:69: b3:6e:2c:27:73:c9:cf:f9:61:a8:9d:ae:e5:af:ae:5d:21:c5: e8:50:61:b9:f8:1f:01:2b:25:97:66:bd:f5:75:0d:4c:09:1a: 96:ee:ca:a2:34:e4:6c:32:06:16:ae:d5:59:7c:71:c9:6d:4c: 88:81:91:34:65:77:ae:d1:cb:fe:89:ba:48:d1:64:51:77:b6: cd:86:ac:9c:a5:8d:d2:82:17:75:76:c3:1e:b9:f4:bc:d7:b3: ed:b1:b9:dd:ec:f9:14:43:e0:98:ae:a2:46:cc:5a:de:92:69: 4d:06:6f:db:23:e4:6b:b5:4c:af:99:5a:d9:3f:68:71:c3:3a: 12:d1:3e:ea:11:4a:d0:3c:80:ac:c9:9c:7e:6f:07:e3:d4:a2: 10:dc:5e:ba:43:57:14:a7:f3:b0:1d:8b:9e:30:a2:86:f5:b9: 52:b1:c3:4f:28:18:b2:3b:8e:75:8c:ca:d5:c4:05:fb:1a:da: 23:e6:81:08:6b:45:7b:6e:a3:63:6f:03:5e:c3:24:9d:8d:20: 84:3c:e8:a6:aa:da:37:d8:21:11:50:80:bf:fb:c2:3b:73:bb: 7c:a7:51:e7:d3:48:14:6c:b2:a1:6f:6e:20:e2:27:a5:d5:98: 7a:fa:75:2e -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUGPBY/SPIDmGFiWZ/v1fipOnHX7IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDE0M1oX DTI3MDUwMTIxMDY0M1owMzExMC8GA1UEAxMoQkVGQkQ1QTE1M0I5RDBDNjk5NDg4 NjA2NTA3ODE4MjJGM0Y1Njk5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALwofI4u2/68Fqg0E6M4TOZFR2odEO3WNqulendDcQhQwYiTtUAi0oY6zSzZ SaNVKIbLIm3Q7Wrsmi9D+U/KTGS+uc0ZeHfj3BG6drsdlU1zEUqq5UROhRV6ee17 tritZWalCbUklNtBUvKKapczFZAQX9rb8xrahDx9cc0mWUM4ItaCGIAocAOQ4msB W8VyhBVmQf7sT22DdWb2RyazjDX2QMgRNfj6FSawBEoWHtA0fqx5gVwgmLw6vb1F e388TGa8XeIgAqVz02vP80oQ4FNIPh5kO46qFQPUxsuIWxYH3bUNQz8puNlWsq8g NgKgjy2uYhKjFnUJywgFKOcmW+sCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBS++9Wh U7nQxplIhgZQeBgi8/VpnjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5NDEyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ4/gMA0GCSqGSIb3DQEBCwUAA4IBAQBZn2goiK0BLml6oZF7nMyDv2mz biwnc8nP+WGona7lr65dIcXoUGG5+B8BKyWXZr31dQ1MCRqW7sqiNORsMgYWrtVZ fHHJbUyIgZE0ZXeu0cv+ibpI0WRRd7bNhqycpY3Sghd1dsMeufS817Ptsbnd7PkU Q+CYrqJGzFrekmlNBm/bI+RrtUyvmVrZP2hxwzoS0T7qEUrQPICsyZx+bwfj1KIQ 3F66Q1cUp/OwHYueMKKG9blSscNPKBiyO451jMrVxAX7Gtoj5oEIa0V7bqNjbwNe wySdjSCEPOimqto32CERUIC/+8I7c7t8p1Hn00gUbLKhb24g4iel1Zh6+nUu -----END CERTIFICATE-----Generated at Sun May 3 00:42:14 2026 by rpki-client