$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139974.roa File: AS139974.roa (raw, json) Hash identifier: +riOwjqfXk+41CHcE9lI7ik0i+zuVdcmomrCxn5jdHU= Subject key identifier: EE:23:A2:F2:CB:BA:4B:C0:CC:AD:FF:DA:30:59:1E:FE:1D:02:55:D3 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7761D027F9E87A28AC5C1ED2BBC79FE37AFB452D Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139974.roa Signing time: Sat 02 May 2026 21:08:08 +0000 ROA not before: Sat 02 May 2026 21:03:08 +0000 ROA not after: Sat 01 May 2027 21:08:08 +0000 asID: 139974 IP address blocks: 103.147.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:61:d0:27:f9:e8:7a:28:ac:5c:1e:d2:bb:c7:9f:e3:7a:fb:45:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:03:08 2026 GMT Not After : May 1 21:08:08 2027 GMT Subject: CN=EE23A2F2CBBA4BC0CCADFFDA30591EFE1D0255D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e5:b7:2c:9f:41:f5:8d:b3:6b:de:98:ea:c4: 0a:3e:b9:fd:c3:1f:b8:06:14:2d:00:01:9d:21:37: 94:e2:64:cb:70:a9:3e:4a:1b:eb:e1:62:e7:e8:5d: 58:b2:6e:4b:16:3f:13:02:a1:3f:30:36:d3:23:78: b3:31:4a:82:4e:b5:1c:8e:36:a7:12:b5:2f:20:4e: c7:b3:65:4a:45:e5:9d:d7:28:fa:1b:8a:45:e3:18: 9d:6f:03:e3:ae:45:b1:3e:8c:55:27:3b:34:8f:1f: 3a:e3:17:90:d7:ac:54:1b:2c:06:0c:df:94:66:be: a4:e6:ff:cf:3d:c2:25:05:6b:96:bc:37:ec:90:6f: b0:2b:39:56:4b:3a:9f:34:51:85:30:0d:23:b2:09: 4a:92:16:41:b9:71:ce:ff:69:05:46:7a:80:f2:e1: e8:03:43:a6:24:89:16:69:06:14:96:b4:a2:8f:de: b6:66:8c:1f:91:45:6b:e3:33:00:fb:d4:b4:64:38: aa:dc:95:b6:7c:46:86:9e:d7:fd:15:07:0b:5b:7a: d1:06:c8:4a:a5:55:1f:68:3f:45:39:45:e9:89:86: 6d:09:e4:0c:c6:36:bc:34:87:f3:97:e0:bc:8a:8e: 72:b2:e6:57:d1:56:ac:fc:79:c5:31:c0:17:45:47: 6f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:23:A2:F2:CB:BA:4B:C0:CC:AD:FF:DA:30:59:1E:FE:1D:02:55:D3 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139974.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.251.0/24 Signature Algorithm: sha256WithRSAEncryption 44:30:dc:23:be:07:26:c6:5d:dc:db:2e:0b:9b:fe:5c:b4:e4: de:f6:32:78:1b:72:0d:9f:1d:ed:28:bf:00:53:35:55:32:d3: 76:78:68:77:45:07:ed:ae:05:58:30:61:c1:8c:99:c0:df:bf: 19:93:96:b2:fe:f4:7e:2c:2a:de:69:05:2c:5a:1c:2e:de:6f: 62:04:4a:7e:9d:46:7e:55:2b:d3:95:1c:73:0a:b7:57:f2:43: ca:9f:83:1e:db:c2:62:a9:12:4a:9d:7a:8d:2f:d8:c8:48:e8: 0b:ce:67:47:8c:71:18:30:40:c1:6e:c4:cb:65:fb:11:1f:a8: 51:83:2b:ff:60:e4:d4:65:56:98:ea:f6:7a:d5:57:10:a2:a6: 14:c9:dd:18:12:18:32:c4:cc:75:1f:4c:b7:14:b3:71:37:6a: 29:41:54:13:3d:87:61:c1:e1:f7:52:b0:65:53:15:39:d1:aa: ff:4d:9e:bf:90:b9:a3:cb:2b:69:a4:50:b0:0d:b3:51:68:48: 30:cf:1e:e9:c8:69:e1:fa:fd:0c:47:54:36:70:1d:3e:0d:08: 8d:6f:6a:0e:af:bb:01:2a:6d:7f:9d:8b:1a:9e:29:a4:2e:9e: 81:9f:9a:6a:2a:29:47:9a:59:05:e2:8c:a7:c3:db:05:f3:9c: 11:4e:b6:d0 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUd2HQJ/noeiisXB7Su8ef43r7RS0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDMwOFoX DTI3MDUwMTIxMDgwOFowMzExMC8GA1UEAxMoRUUyM0EyRjJDQkJBNEJDMENDQURG RkRBMzA1OTFFRkUxRDAyNTVEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALXltyyfQfWNs2vemOrECj65/cMfuAYULQABnSE3lOJky3CpPkob6+Fi5+hd WLJuSxY/EwKhPzA20yN4szFKgk61HI42pxK1LyBOx7NlSkXlndco+huKReMYnW8D 465FsT6MVSc7NI8fOuMXkNesVBssBgzflGa+pOb/zz3CJQVrlrw37JBvsCs5Vks6 nzRRhTANI7IJSpIWQblxzv9pBUZ6gPLh6ANDpiSJFmkGFJa0oo/etmaMH5FFa+Mz APvUtGQ4qtyVtnxGhp7X/RUHC1t60QbISqVVH2g/RTlF6YmGbQnkDMY2vDSH85fg vIqOcrLmV9FWrPx5xTHAF0VHb38CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTuI6Ly y7pLwMyt/9owWR7+HQJV0zAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5OTc0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ5P7MA0GCSqGSIb3DQEBCwUAA4IBAQBEMNwjvgcmxl3c2y4Lm/5ctOTe 9jJ4G3INnx3tKL8AUzVVMtN2eGh3RQftrgVYMGHBjJnA378Zk5ay/vR+LCreaQUs Whwu3m9iBEp+nUZ+VSvTlRxzCrdX8kPKn4Me28JiqRJKnXqNL9jISOgLzmdHjHEY MEDBbsTLZfsRH6hRgyv/YOTUZVaY6vZ61VcQoqYUyd0YEhgyxMx1H0y3FLNxN2op QVQTPYdhweH3UrBlUxU50ar/TZ6/kLmjyytppFCwDbNRaEgwzx7pyGnh+v0MR1Q2 cB0+DQiNb2oOr7sBKm1/nYsanimkLp6Bn5pqKilHmlkF4oynw9sF85wRTrbQ -----END CERTIFICATE-----Generated at Sun May 3 00:40:41 2026 by rpki-client