$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139693.roa File: AS139693.roa (raw, json) Hash identifier: FhncPFEeaRPLfyz47s9lnYKXSF4gWuNiNeNXEqBI/PA= Subject key identifier: 77:8D:F8:EA:A0:AA:18:5F:CA:37:DF:83:0B:86:A6:FB:E7:8A:56:67 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 0D49061FDBD91ADD9F331D49A01F88C9202E0E9D Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139693.roa Signing time: Sat 02 May 2026 09:26:12 +0000 ROA not before: Sat 02 May 2026 09:21:12 +0000 ROA not after: Sat 01 May 2027 09:26:12 +0000 asID: 139693 IP address blocks: 163.61.187.0/24 maxlen: 24 2001:df5:1e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:49:06:1f:db:d9:1a:dd:9f:33:1d:49:a0:1f:88:c9:20:2e:0e:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:12 2026 GMT Not After : May 1 09:26:12 2027 GMT Subject: CN=778DF8EAA0AA185FCA37DF830B86A6FBE78A5667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:36:5d:3f:6f:f8:3e:88:a6:c8:e2:91:f1:bd: 39:d5:6f:10:ae:71:73:e1:92:29:a2:13:ea:33:0e: 5b:42:77:52:34:47:75:6a:1c:7d:0e:dc:ab:09:b8: 75:7a:7f:a0:06:e8:77:02:55:a9:cb:7c:54:cb:99: 0e:a3:ff:f6:3f:e2:ec:4f:ff:25:af:0d:a1:f9:25: 91:69:b9:43:a9:e6:75:91:40:98:e2:10:af:42:c5: 7f:7e:e4:0b:52:9e:fe:9f:e9:b1:a2:99:92:19:e5: 8f:76:ec:5d:c6:4e:7c:d5:84:ee:57:66:56:1a:6b: 1c:17:b5:b2:c1:82:6a:bc:33:3d:16:d7:6a:dc:ba: 2a:16:c2:64:60:94:dd:68:ce:2b:c2:cb:c8:9a:6a: 46:f7:32:6b:c8:29:13:1e:ad:ee:c4:fd:d9:c8:38: 6e:51:5f:90:7d:ba:03:31:5e:dc:f6:1f:e3:af:df: 4f:3f:52:a0:95:48:c6:7d:e5:6f:b3:12:1f:87:b1: 7d:5d:9a:48:a1:64:6e:5e:dc:93:68:98:e1:68:2a: 28:6d:f8:83:60:61:e2:24:ff:5c:cb:28:07:c8:88: 84:b2:ae:c3:3d:b1:2b:1a:31:7a:f0:de:92:5f:db: 6c:e1:5a:e1:f1:d6:58:c6:02:76:ee:0a:84:40:cd: f2:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:8D:F8:EA:A0:AA:18:5F:CA:37:DF:83:0B:86:A6:FB:E7:8A:56:67 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139693.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.187.0/24 IPv6: 2001:df5:1e40::/48 Signature Algorithm: sha256WithRSAEncryption 9b:78:36:bd:59:1c:3a:6a:12:6a:e5:1f:86:a4:46:48:17:41: c8:5a:16:a3:23:ea:82:d2:9d:66:49:cc:72:eb:f5:94:35:3e: 74:57:dd:8c:2c:26:1a:39:cf:45:a5:8b:14:71:d9:e3:60:cc: 9b:44:28:c9:8d:80:b7:7d:d2:59:04:23:17:5e:c0:0b:33:0d: 92:8c:f3:2e:da:28:02:09:c8:34:63:d7:b7:fc:05:0a:5c:fd: 05:76:eb:2f:83:96:4b:83:f7:71:69:9b:b9:b3:a1:44:03:f8: b4:b0:9a:82:19:fd:3d:ad:a4:29:d4:70:63:a8:91:b3:02:64: 46:d8:56:3c:1a:ad:a8:15:89:7b:0f:72:ca:c1:1f:c1:5d:32: 46:6d:5c:66:87:df:3e:53:a2:ba:df:4d:c2:d2:00:64:7d:a8: 29:16:34:01:1c:6e:13:fc:fe:ca:a8:f6:78:44:cb:57:b7:0b: 03:9d:e2:c6:f4:d8:dd:75:ae:eb:8a:e4:b9:e2:3a:38:56:22: 2e:7b:b9:fb:b7:8f:c8:d2:a5:e4:5b:ad:52:01:e1:9b:4a:38: c1:0f:c6:32:37:53:d6:27:1f:a9:ce:34:59:21:be:a5:7c:7f: ae:2e:73:1f:e3:67:9f:44:5b:48:0b:9a:20:bb:44:fb:cd:99: f1:33:ff:84 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDUkGH9vZGt2fMx1JoB+IySAuDp0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjExMloX DTI3MDUwMTA5MjYxMlowMzExMC8GA1UEAxMoNzc4REY4RUFBMEFBMTg1RkNBMzdE RjgzMEI4NkE2RkJFNzhBNTY2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK02XT9v+D6IpsjikfG9OdVvEK5xc+GSKaIT6jMOW0J3UjRHdWocfQ7cqwm4 dXp/oAbodwJVqct8VMuZDqP/9j/i7E//Ja8NofklkWm5Q6nmdZFAmOIQr0LFf37k C1Ke/p/psaKZkhnlj3bsXcZOfNWE7ldmVhprHBe1ssGCarwzPRbXaty6KhbCZGCU 3WjOK8LLyJpqRvcya8gpEx6t7sT92cg4blFfkH26AzFe3PYf46/fTz9SoJVIxn3l b7MSH4exfV2aSKFkbl7ck2iY4WgqKG34g2Bh4iT/XMsoB8iIhLKuwz2xKxoxevDe kl/bbOFa4fHWWMYCdu4KhEDN8m8CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBR3jfjq oKoYX8o334MLhqb754pWZzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5NjkzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAoz27MA8EAgACMAkDBwAgAQ31HkAwDQYJKoZIhvcNAQELBQADggEBAJt4 Nr1ZHDpqEmrlH4akRkgXQchaFqMj6oLSnWZJzHLr9ZQ1PnRX3YwsJho5z0WlixRx 2eNgzJtEKMmNgLd90lkEIxdewAszDZKM8y7aKAIJyDRj17f8BQpc/QV26y+DlkuD 93Fpm7mzoUQD+LSwmoIZ/T2tpCnUcGOokbMCZEbYVjwaragViXsPcsrBH8FdMkZt XGaH3z5TorrfTcLSAGR9qCkWNAEcbhP8/sqo9nhEy1e3CwOd4sb02N11ruuK5Lni OjhWIi57ufu3j8jSpeRbrVIB4ZtKOMEPxjI3U9YnH6nONFkhvqV8f64ucx/jZ59E W0gLmiC7RPvNmfEz/4Q= -----END CERTIFICATE-----Generated at Sun May 3 00:41:54 2026 by rpki-client