$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139428.roa File: AS139428.roa (raw, json) Hash identifier: KvhIbQABfrhbRbwi9a6aYrW0iwLhFYL975kPjOTCC6Q= Subject key identifier: 63:F1:B7:71:21:C5:19:F0:62:14:9A:2F:3C:E6:C5:2D:B4:82:A2:40 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 09F4F228619073720955844B0645704366586359 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139428.roa Signing time: Sat 02 May 2026 17:28:51 +0000 ROA not before: Sat 02 May 2026 17:23:51 +0000 ROA not after: Sat 01 May 2027 17:28:51 +0000 asID: 139428 IP address blocks: 103.144.146.0/23 maxlen: 24 103.183.98.0/23 maxlen: 24 2001:df1:c680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:f4:f2:28:61:90:73:72:09:55:84:4b:06:45:70:43:66:58:63:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 17:23:51 2026 GMT Not After : May 1 17:28:51 2027 GMT Subject: CN=63F1B77121C519F062149A2F3CE6C52DB482A240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:bb:fb:7f:60:ce:b2:9a:07:fd:49:d5:fd:ac: 69:47:fa:85:6b:1f:44:be:86:7c:93:da:d1:e5:05: a3:02:56:f9:7e:3a:15:29:4a:e2:45:6e:cd:f4:40: 49:88:47:a5:53:6f:cf:2f:9e:d1:d9:08:c0:bc:24: 7e:9b:82:31:2d:f0:b6:7c:c8:b2:82:7e:25:88:91: 13:64:86:8e:1c:7d:01:70:0b:9d:88:98:7c:ef:81: 12:6d:1e:a9:26:f2:e6:bf:90:5d:7b:1d:e1:70:bc: 6b:9a:e6:5c:97:83:a3:4f:a9:bf:29:bb:a6:55:4e: fc:2c:77:55:2d:f1:5b:9b:8c:a3:67:0a:c2:2b:2f: 6d:c7:83:54:1d:6b:0c:b4:54:7d:0a:d7:d9:1b:6e: 50:bc:e5:b6:e0:7c:ec:0d:bf:9e:5c:f0:46:8a:21: 01:5f:83:60:fc:3e:68:18:29:56:cd:b3:ed:00:aa: bf:79:36:e6:d3:f3:35:e8:4e:9e:a4:5c:f0:4a:21: c3:a9:0c:6f:58:89:e4:e7:c6:0d:be:38:b6:fe:d6: 9b:cf:14:91:49:80:84:6d:a5:6c:b3:66:27:d7:98: 51:91:a4:69:60:07:6c:c9:9c:45:d5:21:6b:80:d9: a1:4f:e9:62:27:86:a1:d8:8b:bb:b2:a8:57:c6:d7: 2f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F1:B7:71:21:C5:19:F0:62:14:9A:2F:3C:E6:C5:2D:B4:82:A2:40 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139428.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.146.0/23 103.183.98.0/23 IPv6: 2001:df1:c680::/48 Signature Algorithm: sha256WithRSAEncryption 74:60:7f:56:ab:ac:e3:db:6b:6b:79:98:4b:ad:6a:96:25:f2: 24:99:1a:cb:0f:30:d1:a2:55:85:6a:9e:0a:fb:58:02:cc:9c: cf:f8:59:06:16:ed:3d:c5:2b:ec:85:57:fc:e5:5c:cf:37:96: 33:a1:6c:94:7e:84:89:75:20:fe:ba:c0:24:4c:c7:b6:14:1f: 0a:2d:b0:21:e5:07:08:a2:75:76:4f:08:be:0f:7e:ad:9d:46: c6:c9:40:31:42:d4:0e:69:1e:77:df:44:2a:4b:73:8f:aa:e5: f6:5e:63:39:84:02:b3:76:51:67:b1:56:0c:f5:3b:6a:f1:c9: eb:d8:79:8b:10:cd:92:9e:b5:e7:d9:dc:5e:43:80:95:d1:7f: e4:92:b2:ba:df:b0:e6:98:50:f8:1c:3a:b9:d2:fe:73:ae:23: 9e:d4:e9:ca:52:4f:0a:b9:bf:0c:1f:7c:50:40:13:fa:40:d4: c1:94:e9:71:ed:cf:dc:0e:86:7b:55:13:5b:b3:10:cf:d4:88: b4:cd:be:c2:67:8b:f8:40:d0:4f:f6:1f:03:99:87:c7:23:02: 55:60:b7:c9:1b:02:ff:40:a7:f5:22:da:9b:1e:41:4e:3a:72: b6:a9:8b:8f:9f:7d:4d:8c:9a:eb:b2:41:67:85:da:ef:1b:a1: 29:62:eb:fc -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIUCfTyKGGQc3IJVYRLBkVwQ2ZYY1kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE3MjM1MVoX DTI3MDUwMTE3Mjg1MVowMzExMC8GA1UEAxMoNjNGMUI3NzEyMUM1MTlGMDYyMTQ5 QTJGM0NFNkM1MkRCNDgyQTI0MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOu7+39gzrKaB/1J1f2saUf6hWsfRL6GfJPa0eUFowJW+X46FSlK4kVuzfRA SYhHpVNvzy+e0dkIwLwkfpuCMS3wtnzIsoJ+JYiRE2SGjhx9AXALnYiYfO+BEm0e qSby5r+QXXsd4XC8a5rmXJeDo0+pvym7plVO/Cx3VS3xW5uMo2cKwisvbceDVB1r DLRUfQrX2RtuULzltuB87A2/nlzwRoohAV+DYPw+aBgpVs2z7QCqv3k25tPzNehO nqRc8Eohw6kMb1iJ5OfGDb44tv7Wm88UkUmAhG2lbLNmJ9eYUZGkaWAHbMmcRdUh a4DZoU/pYieGodiLu7KoV8bXL10CAwEAAaOCAeMwggHfMB0GA1UdDgQWBBRj8bdx IcUZ8GIUmi885sUttIKiQDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5NDI4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIA ATAMAwQBZ5CSAwQBZ7diMA8EAgACMAkDBwAgAQ3xxoAwDQYJKoZIhvcNAQELBQAD ggEBAHRgf1arrOPba2t5mEutapYl8iSZGssPMNGiVYVqngr7WALMnM/4WQYW7T3F K+yFV/zlXM83ljOhbJR+hIl1IP66wCRMx7YUHwotsCHlBwiidXZPCL4Pfq2dRsbJ QDFC1A5pHnffRCpLc4+q5fZeYzmEArN2UWexVgz1O2rxyevYeYsQzZKetefZ3F5D gJXRf+SSsrrfsOaYUPgcOrnS/nOuI57U6cpSTwq5vwwffFBAE/pA1MGU6XHtz9wO hntVE1uzEM/UiLTNvsJni/hA0E/2HwOZh8cjAlVgt8kbAv9Ap/Ui2pseQU46crap i4+ffU2MmuuyQWeF2u8boSli6/w= -----END CERTIFICATE-----Generated at Sun May 3 00:42:01 2026 by rpki-client