$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139430.roa File: AS139430.roa (raw, json) Hash identifier: 0bKyKwggk30WrKHhwl0RACpUSIU5CchFt/++5ROQ08A= Subject key identifier: F7:F5:1E:4F:CD:19:C3:79:61:84:87:01:31:11:FC:58:96:92:8F:86 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7266760DC25CF82100EA75CA09A4EA9E80B7C090 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139430.roa Signing time: Sat 02 May 2026 08:37:10 +0000 ROA not before: Sat 02 May 2026 08:32:10 +0000 ROA not after: Sat 01 May 2027 08:37:10 +0000 asID: 139430 IP address blocks: 103.144.190.0/23 maxlen: 24 2001:df1:d780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:66:76:0d:c2:5c:f8:21:00:ea:75:ca:09:a4:ea:9e:80:b7:c0:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:32:10 2026 GMT Not After : May 1 08:37:10 2027 GMT Subject: CN=F7F51E4FCD19C379618487013111FC5896928F86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:63:6c:d4:37:2b:2a:f1:02:92:74:1c:0f:49: 3f:14:ad:b0:46:a9:4e:04:e9:1b:7a:06:dc:28:a5: 91:4e:1f:11:2a:9c:df:ca:c5:df:e6:59:a9:d1:e0: 2d:d6:ca:3c:82:6b:4b:54:72:88:6e:29:57:34:c8: c1:25:5e:fe:99:1c:67:19:61:05:5f:a7:ef:05:6e: 67:9a:0c:70:0e:33:3b:3c:eb:68:be:35:fb:3d:70: c9:65:93:3d:b0:38:91:e7:b8:44:78:5b:da:30:0c: 11:64:f7:54:1e:65:0e:24:10:c4:a2:c5:c1:f5:fd: 18:da:0e:92:64:43:61:45:da:4f:bb:25:41:52:d1: ef:8f:5b:c2:fb:25:42:a1:43:e1:0f:86:2b:e7:89: 4c:e6:52:c5:ec:71:6e:59:ab:1c:87:17:34:a9:02: b6:e8:b3:d5:b4:c1:eb:2f:77:30:6d:4d:b7:4f:16: 7a:a4:70:8d:1e:bd:a1:6e:5b:5e:96:e8:11:b8:e5: d1:30:21:8a:80:be:ec:08:5f:c6:8e:db:9a:da:d2: 77:d4:c3:9b:9b:47:18:bd:67:3c:60:41:76:1a:08: ff:bd:da:56:01:d8:f6:6a:fc:53:46:23:d4:67:b6: 4a:73:69:d1:98:a4:8c:db:14:77:70:07:74:fc:6b: 2a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:F5:1E:4F:CD:19:C3:79:61:84:87:01:31:11:FC:58:96:92:8F:86 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.190.0/23 IPv6: 2001:df1:d780::/48 Signature Algorithm: sha256WithRSAEncryption 3e:a4:de:c8:89:aa:06:16:b8:ce:34:61:e8:73:17:5f:51:b4: f4:5b:54:24:df:0b:d3:52:2f:cc:fd:8c:6a:db:d8:30:e3:f0: 06:f8:7f:07:1d:b5:3b:5c:a4:3b:2f:99:a3:dd:08:17:e6:9e: f3:17:17:97:82:a2:85:cc:49:72:ac:7c:7d:05:34:aa:4b:d4: de:1a:fe:35:20:95:00:b6:bb:89:89:b3:5a:6b:a2:d4:28:cf: e6:a5:98:04:9b:0f:34:47:7b:17:3f:fd:07:b5:6f:5f:a1:85: 7e:f2:aa:ca:e8:3a:53:06:a3:7e:e5:00:52:59:8b:ea:92:5b: 9a:51:54:36:fd:ea:3a:21:97:c3:26:25:9f:6a:2e:05:81:d8: 1c:99:3e:06:3b:1c:34:6a:be:cb:b7:e1:e0:61:9d:90:78:5c: 51:a2:dd:54:1c:49:f2:21:9d:99:17:dc:f4:d1:04:3d:50:0f: 86:47:06:92:1d:d1:d2:fe:0e:ca:96:61:7a:07:03:cf:1e:ee: 01:c3:a6:59:5c:3c:11:b4:8c:70:57:b8:0b:96:8f:60:c1:3f: 5a:6e:21:1b:8d:a6:40:9b:23:d7:91:df:de:53:a3:e7:1e:a7: 4f:ae:cb:28:6a:bd:04:f5:5c:d5:88:1c:dd:26:d1:74:c7:42: 36:fd:ac:2e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcmZ2DcJc+CEA6nXKCaTqnoC3wJAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzIxMFoX DTI3MDUwMTA4MzcxMFowMzExMC8GA1UEAxMoRjdGNTFFNEZDRDE5QzM3OTYxODQ4 NzAxMzExMUZDNTg5NjkyOEY4NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVjbNQ3KyrxApJ0HA9JPxStsEapTgTpG3oG3CilkU4fESqc38rF3+ZZqdHg LdbKPIJrS1RyiG4pVzTIwSVe/pkcZxlhBV+n7wVuZ5oMcA4zOzzraL41+z1wyWWT PbA4kee4RHhb2jAMEWT3VB5lDiQQxKLFwfX9GNoOkmRDYUXaT7slQVLR749bwvsl QqFD4Q+GK+eJTOZSxexxblmrHIcXNKkCtuiz1bTB6y93MG1Nt08WeqRwjR69oW5b XpboEbjl0TAhioC+7Ahfxo7bmtrSd9TDm5tHGL1nPGBBdhoI/73aVgHY9mr8U0Yj 1Ge2SnNp0ZikjNsUd3AHdPxrKs0CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBT39R5P zRnDeWGEhwExEfxYlpKPhjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5NDMwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBZ5C+MA8EAgACMAkDBwAgAQ3x14AwDQYJKoZIhvcNAQELBQADggEBAD6k 3siJqgYWuM40YehzF19RtPRbVCTfC9NSL8z9jGrb2DDj8Ab4fwcdtTtcpDsvmaPd CBfmnvMXF5eCooXMSXKsfH0FNKpL1N4a/jUglQC2u4mJs1protQoz+almASbDzRH exc//Qe1b1+hhX7yqsroOlMGo37lAFJZi+qSW5pRVDb96johl8MmJZ9qLgWB2ByZ PgY7HDRqvsu34eBhnZB4XFGi3VQcSfIhnZkX3PTRBD1QD4ZHBpId0dL+DsqWYXoH A88e7gHDpllcPBG0jHBXuAuWj2DBP1puIRuNpkCbI9eR395To+cep0+uyyhqvQT1 XNWIHN0m0XTHQjb9rC4= -----END CERTIFICATE-----Generated at Sun May 3 00:41:45 2026 by rpki-client