$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139981.roa File: AS139981.roa (raw, json) Hash identifier: JI/qHFFXqgZAUu7vYfAI40kCSd6ppbvNyRR+ayUptjA= Subject key identifier: 35:AD:AA:08:EF:A9:4E:11:39:2C:F7:1D:A0:9C:10:BC:15:D2:2C:EC Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 26BFBB3ADDD7A19AF4F25E8E38E7B32635917AED Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139981.roa Signing time: Sat 02 May 2026 21:29:17 +0000 ROA not before: Sat 02 May 2026 21:24:17 +0000 ROA not after: Sat 01 May 2027 21:29:17 +0000 asID: 139981 IP address blocks: 103.71.160.0/22 maxlen: 24 103.80.98.0/23 maxlen: 24 202.74.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:bf:bb:3a:dd:d7:a1:9a:f4:f2:5e:8e:38:e7:b3:26:35:91:7a:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:24:17 2026 GMT Not After : May 1 21:29:17 2027 GMT Subject: CN=35ADAA08EFA94E11392CF71DA09C10BC15D22CEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3e:de:3d:ca:b6:a7:03:82:03:be:5e:7a:7d: aa:e4:0e:ae:36:de:01:d6:2f:b4:6c:78:da:ce:38: 62:ed:3e:e3:6f:af:bb:71:cc:ea:85:58:dd:c2:9c: 21:aa:6a:2d:10:18:0c:f5:2e:2a:1b:07:13:ac:71: c5:bc:ac:22:45:be:b8:3f:a6:1b:db:91:92:fa:aa: 48:93:31:3b:c8:dd:29:9e:89:ce:c8:34:a9:1c:e6: bc:2e:38:74:a3:2f:82:f4:e7:83:4e:44:72:21:99: 13:86:93:b5:b3:ba:a4:a2:b2:51:f4:a6:5d:91:64: 36:b4:d6:d8:6b:21:31:cf:98:87:d6:8c:59:1c:06: 7b:63:71:1d:d1:e7:82:7d:74:60:35:77:06:b0:d3: b3:2b:c4:5c:bd:15:71:5f:8a:3c:81:93:69:27:65: 13:8e:59:d8:76:02:10:34:a8:53:25:53:ed:85:a4: 04:70:d4:2b:45:97:74:60:0f:5c:c0:2d:e3:39:6e: 47:89:79:c7:41:bb:3b:cc:0a:d0:e5:cf:58:e8:17: 82:3c:ef:54:37:cb:b1:e5:e6:e0:59:60:81:ac:89: db:d7:6e:3a:f3:28:0f:e3:13:2a:01:11:25:29:a8: a4:e1:34:46:ba:29:aa:f6:3e:7b:2b:1b:71:59:a5: 81:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:AD:AA:08:EF:A9:4E:11:39:2C:F7:1D:A0:9C:10:BC:15:D2:2C:EC X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139981.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.160.0/22 103.80.98.0/23 202.74.72.0/23 Signature Algorithm: sha256WithRSAEncryption 07:17:a2:78:fc:a5:46:dd:ab:8c:39:74:58:78:3b:5b:72:22: cb:c5:7f:86:d8:fd:5e:6f:4a:81:a2:23:44:1b:d4:29:1e:47: 46:07:27:6e:25:43:0b:73:80:0b:a6:51:57:3d:0e:4f:6b:9d: 66:26:fe:98:76:d1:81:10:de:ed:91:75:b9:3c:ed:c8:90:72: b8:9a:c7:f9:bd:28:a6:8a:ea:b3:62:e1:ed:1c:58:95:98:89: 8f:fb:98:26:23:51:a2:90:d7:1e:74:c4:fc:6f:01:45:85:45: 12:09:1a:b4:9d:5b:ca:53:ee:68:7e:60:d6:3f:c8:50:cc:81: e1:ec:b6:8e:75:bf:1d:2a:e7:ea:0c:79:c7:82:12:94:59:6f: b1:f5:9c:b9:d2:f2:39:0e:66:70:77:4d:5e:a1:41:e0:1e:c3: e1:b7:1b:4e:7a:98:76:10:8a:8a:b2:2e:42:94:5a:45:c8:65: 4e:3d:ff:d0:23:04:4d:44:62:0a:d0:e5:de:14:76:a4:f5:ba: 56:6c:5f:4d:d5:b3:61:58:35:9d:fa:e4:a5:1e:4a:69:db:8f: d3:a1:63:63:a9:4c:ec:96:3d:76:cc:eb:a8:bf:4e:d6:db:05: 66:43:f5:3b:11:b3:1f:8e:ff:bf:b1:6d:44:97:e4:8f:f3:26: 05:82:75:d2 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUJr+7Ot3XoZr08l6OOOezJjWReu0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjQxN1oX DTI3MDUwMTIxMjkxN1owMzExMC8GA1UEAxMoMzVBREFBMDhFRkE5NEUxMTM5MkNG NzFEQTA5QzEwQkMxNUQyMkNFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALY+3j3KtqcDggO+Xnp9quQOrjbeAdYvtGx42s44Yu0+42+vu3HM6oVY3cKc IapqLRAYDPUuKhsHE6xxxbysIkW+uD+mG9uRkvqqSJMxO8jdKZ6Jzsg0qRzmvC44 dKMvgvTng05EciGZE4aTtbO6pKKyUfSmXZFkNrTW2GshMc+Yh9aMWRwGe2NxHdHn gn10YDV3BrDTsyvEXL0VcV+KPIGTaSdlE45Z2HYCEDSoUyVT7YWkBHDUK0WXdGAP XMAt4zluR4l5x0G7O8wK0OXPWOgXgjzvVDfLseXm4FlggayJ29duOvMoD+MTKgER JSmopOE0RropqvY+eysbcVmlgc0CAwEAAaOCAdgwggHUMB0GA1UdDgQWBBQ1raoI 76lOETks9x2gnBC8FdIs7DAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5OTgxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIA ATASAwQCZ0egAwQBZ1BiAwQBykpIMA0GCSqGSIb3DQEBCwUAA4IBAQAHF6J4/KVG 3auMOXRYeDtbciLLxX+G2P1eb0qBoiNEG9QpHkdGByduJUMLc4ALplFXPQ5Pa51m Jv6YdtGBEN7tkXW5PO3IkHK4msf5vSimiuqzYuHtHFiVmImP+5gmI1GikNcedMT8 bwFFhUUSCRq0nVvKU+5ofmDWP8hQzIHh7LaOdb8dKufqDHnHghKUWW+x9Zy50vI5 DmZwd01eoUHgHsPhtxtOeph2EIqKsi5ClFpFyGVOPf/QIwRNRGIK0OXeFHak9bpW bF9N1bNhWDWd+uSlHkpp24/ToWNjqUzslj12zOuov07W2wVmQ/U7EbMfjv+/sW1E l+SP8yYFgnXS -----END CERTIFICATE-----Generated at Sun May 3 00:42:19 2026 by rpki-client