$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139950.roa File: AS139950.roa (raw, json) Hash identifier: 4jrt/pOTXmEiU3OP+FVO8DnUxkuthWvcpVwPRv6U8MU= Subject key identifier: 65:04:27:E9:BF:C6:E9:0B:AF:A6:03:C5:BA:F0:75:94:7B:C8:22:11 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3EF2FC3AC92A74842290F07B367641422D60FA68 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139950.roa Signing time: Sat 02 May 2026 21:08:16 +0000 ROA not before: Sat 02 May 2026 21:03:16 +0000 ROA not after: Sat 01 May 2027 21:08:16 +0000 asID: 139950 IP address blocks: 103.147.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:f2:fc:3a:c9:2a:74:84:22:90:f0:7b:36:76:41:42:2d:60:fa:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:03:16 2026 GMT Not After : May 1 21:08:16 2027 GMT Subject: CN=650427E9BFC6E90BAFA603C5BAF075947BC82211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:87:75:5f:ef:8f:21:9a:ef:47:b7:08:68:b8: 0b:92:29:6b:df:57:e1:2b:b3:6b:89:8f:58:90:64: 73:ed:77:cc:91:5f:3c:56:e6:94:66:2c:27:97:bd: 10:5b:7d:97:2e:11:51:cd:b0:dd:ca:80:0a:8b:bb: 13:93:91:6a:7e:ed:de:84:e3:78:64:9d:ae:5a:21: 0c:e5:c1:95:bd:7c:f6:00:e1:9b:23:5b:19:e4:95: 40:53:89:2a:b6:f7:1e:21:ed:81:57:58:f9:79:42: 3d:f5:22:5f:ef:41:78:39:7d:ce:c7:62:fa:d2:b7: 39:06:d5:8c:7f:c4:5b:18:f1:0a:65:5d:2b:09:a4: ae:28:35:34:6b:7b:91:7d:9a:42:51:18:c5:76:25: a8:11:51:0f:5d:bd:82:7f:e2:e3:1a:02:b5:26:8c: fd:bc:35:6d:63:9d:c1:3a:95:05:39:f8:22:2e:ab: 88:e1:69:26:9b:af:68:e2:c3:c9:36:1a:19:5a:90: 06:fc:d4:0a:03:2c:8a:49:39:2b:ca:bd:d3:bb:41: 1c:9a:6f:50:f9:3c:87:2a:a9:86:7a:a2:ff:ec:f0: 3d:d6:f6:f0:b0:ad:5c:3d:0e:99:b9:fb:78:f8:76: 04:ab:09:9f:52:49:68:aa:5d:23:fc:8b:f8:08:e6: e8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:04:27:E9:BF:C6:E9:0B:AF:A6:03:C5:BA:F0:75:94:7B:C8:22:11 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139950.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.68.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:83:e8:53:f2:82:f0:7e:bc:f3:da:05:5f:25:66:38:7b:99: 69:65:63:6b:07:24:a8:b0:40:71:5c:f8:1c:b0:dd:d5:52:2d: 89:77:c6:5f:20:10:2d:06:5e:bd:24:a2:87:f8:6f:72:df:90: 32:0a:72:81:fa:03:9c:3b:e2:44:a5:ee:3e:fd:f4:dd:cb:cc: 3b:5d:dd:7e:23:ea:21:16:68:6c:42:a1:cb:f7:29:aa:a2:a7: 7e:38:39:89:fa:6b:ae:ad:0e:1a:f1:cc:9b:5f:3f:ee:69:8e: 2a:17:13:24:28:98:47:3c:5b:17:03:a3:0b:fc:e3:2f:9b:f4: 3b:44:80:83:fe:2b:f5:76:6a:92:a1:d2:39:4a:ba:6b:4f:f2: 14:0c:77:09:89:ad:1d:81:8d:73:db:41:44:35:43:3a:67:7a: 10:65:f5:1e:b6:94:34:3f:9d:42:d7:57:e1:ac:05:6c:22:27: ca:59:f4:fc:84:b1:f8:3b:3f:7a:3c:32:b1:d1:c2:ee:49:64: c0:df:ee:26:61:44:42:9d:f5:ba:68:c5:25:40:37:a9:f3:c2: 4d:aa:e7:61:04:42:b1:7a:70:71:be:c2:32:f6:11:2c:c4:4d: a3:a4:e4:e7:f0:7e:6c:48:da:49:a1:bc:a1:94:1e:74:59:96: 28:2b:16:49 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUPvL8OskqdIQikPB7NnZBQi1g+mgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDMxNloX DTI3MDUwMTIxMDgxNlowMzExMC8GA1UEAxMoNjUwNDI3RTlCRkM2RTkwQkFGQTYw M0M1QkFGMDc1OTQ3QkM4MjIxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+HdV/vjyGa70e3CGi4C5Ipa99X4Suza4mPWJBkc+13zJFfPFbmlGYsJ5e9 EFt9ly4RUc2w3cqACou7E5ORan7t3oTjeGSdrlohDOXBlb189gDhmyNbGeSVQFOJ Krb3HiHtgVdY+XlCPfUiX+9BeDl9zsdi+tK3OQbVjH/EWxjxCmVdKwmkrig1NGt7 kX2aQlEYxXYlqBFRD129gn/i4xoCtSaM/bw1bWOdwTqVBTn4Ii6riOFpJpuvaOLD yTYaGVqQBvzUCgMsikk5K8q907tBHJpvUPk8hyqphnqi/+zwPdb28LCtXD0Ombn7 ePh2BKsJn1JJaKpdI/yL+Ajm6AsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRlBCfp v8bpC6+mA8W68HWUe8giETAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5OTUwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ5NEMA0GCSqGSIb3DQEBCwUAA4IBAQCMg+hT8oLwfrzz2gVfJWY4e5lp ZWNrBySosEBxXPgcsN3VUi2Jd8ZfIBAtBl69JKKH+G9y35AyCnKB+gOcO+JEpe4+ /fTdy8w7Xd1+I+ohFmhsQqHL9ymqoqd+ODmJ+muurQ4a8cybXz/uaY4qFxMkKJhH PFsXA6ML/OMvm/Q7RICD/iv1dmqSodI5SrprT/IUDHcJia0dgY1z20FENUM6Z3oQ ZfUetpQ0P51C11fhrAVsIifKWfT8hLH4Oz96PDKx0cLuSWTA3+4mYURCnfW6aMUl QDep88JNqudhBEKxenBxvsIy9hEsxE2jpOTn8H5sSNpJobyhlB50WZYoKxZJ -----END CERTIFICATE-----Generated at Sun May 3 01:44:04 2026 by rpki-client