$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139993.roa File: AS139993.roa (raw, json) Hash identifier: zv6S6q57Y5crEexuIvi/xLEtY/AoxzGR/WYClKi53QA= Subject key identifier: B3:9C:14:BE:9E:83:90:97:12:E2:DD:57:FC:2F:9D:5F:AD:17:A5:5C Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 38186C93C832095A9DDE1C02FFFFB4D6590B277F Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139993.roa Signing time: Sat 02 May 2026 21:08:21 +0000 ROA not before: Sat 02 May 2026 21:03:21 +0000 ROA not after: Sat 01 May 2027 21:08:21 +0000 asID: 139993 IP address blocks: 103.148.112.0/23 maxlen: 24 2001:df2:d080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:18:6c:93:c8:32:09:5a:9d:de:1c:02:ff:ff:b4:d6:59:0b:27:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:03:21 2026 GMT Not After : May 1 21:08:21 2027 GMT Subject: CN=B39C14BE9E83909712E2DD57FC2F9D5FAD17A55C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:a2:53:66:e7:10:88:0b:f2:7f:29:38:0e:5c: e8:b3:f2:db:52:1d:48:07:a5:9f:ea:79:84:10:a2: d0:e0:91:35:73:47:52:0d:68:c0:3e:9c:19:c8:49: 4b:18:6c:3c:58:b4:21:22:18:db:80:58:d6:db:57: 23:69:13:ba:51:57:2b:f9:44:12:93:e2:47:3e:c5: 2f:ba:6b:d9:e3:74:f3:68:4e:0f:d9:14:e4:4c:c7: 65:81:7a:37:ba:5e:fe:b4:34:5a:ed:3b:49:81:2c: 52:1d:62:c7:a2:f1:67:e3:92:7f:2d:71:08:71:6a: e3:89:28:e8:e1:c7:0b:6c:6e:88:9f:af:f2:68:ad: 5a:80:85:f2:72:b0:02:0c:4d:b2:6a:43:8d:0a:e4: c9:96:db:07:ce:07:a2:e3:2c:82:41:b4:06:dd:1c: 25:e9:c9:6d:64:25:bf:f3:4f:0b:70:2a:76:b2:22: 9a:ac:3b:1b:b5:28:01:90:89:c4:ab:64:23:6c:14: 5c:ab:c4:82:77:cd:e3:c5:e5:1d:a7:11:5f:89:56: af:cd:05:bb:0f:b5:b0:96:d5:f7:6c:45:34:3d:59: a6:6d:06:40:f0:99:2f:4b:77:d5:46:8c:e0:29:3d: b8:dc:de:a0:87:4b:b2:e3:cf:15:a8:76:0b:35:ea: 79:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:9C:14:BE:9E:83:90:97:12:E2:DD:57:FC:2F:9D:5F:AD:17:A5:5C X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139993.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.112.0/23 IPv6: 2001:df2:d080::/48 Signature Algorithm: sha256WithRSAEncryption 5c:46:39:af:bc:1c:56:56:2a:61:05:45:c7:ae:57:45:e4:b7: 85:46:eb:a1:cd:67:9d:f9:98:5d:b3:61:23:93:f7:be:03:5a: 9b:fc:38:3d:ab:72:7c:54:35:96:8f:66:21:40:22:e5:2f:a9: 69:a6:17:58:39:a5:c4:49:9a:0d:14:99:d4:23:20:0a:b0:8b: cd:ad:3c:34:84:00:a8:2c:c0:af:ac:46:f1:b3:80:e8:26:8c: 97:87:25:2f:84:f0:0c:c2:a5:98:9f:84:4f:3a:85:4f:00:e0: f3:11:51:df:6d:bf:0e:1d:fd:ee:37:18:f9:b1:b9:d2:fd:0a: cc:98:91:48:26:e9:f7:31:c3:95:b6:2b:12:a7:0e:82:d1:6d: 9f:c2:c4:e5:33:a7:89:a6:75:80:5d:b0:89:2a:4d:76:da:24: 9a:56:b1:ed:06:82:57:79:00:88:35:8c:90:b9:92:e3:e2:30: 77:7a:a9:22:5b:d4:46:20:ed:a1:9e:98:72:84:22:d1:17:23: fc:09:ba:81:60:02:bd:74:7d:65:99:1a:30:cf:d6:3a:8f:16: db:62:1d:e9:b3:80:30:a3:26:d5:df:f0:ec:71:d4:9e:22:71: e2:80:c0:6a:7b:91:90:24:65:9b:05:5f:05:3b:a6:d2:99:69: 53:99:8d:fc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOBhsk8gyCVqd3hwC//+01lkLJ38wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDMyMVoX DTI3MDUwMTIxMDgyMVowMzExMC8GA1UEAxMoQjM5QzE0QkU5RTgzOTA5NzEyRTJE RDU3RkMyRjlENUZBRDE3QTU1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIGiU2bnEIgL8n8pOA5c6LPy21IdSAeln+p5hBCi0OCRNXNHUg1owD6cGchJ SxhsPFi0ISIY24BY1ttXI2kTulFXK/lEEpPiRz7FL7pr2eN082hOD9kU5EzHZYF6 N7pe/rQ0Wu07SYEsUh1ix6LxZ+OSfy1xCHFq44ko6OHHC2xuiJ+v8mitWoCF8nKw AgxNsmpDjQrkyZbbB84HouMsgkG0Bt0cJenJbWQlv/NPC3AqdrIimqw7G7UoAZCJ xKtkI2wUXKvEgnfN48XlHacRX4lWr80Fuw+1sJbV92xFND1Zpm0GQPCZL0t31UaM 4Ck9uNzeoIdLsuPPFah2CzXqeYsCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBSznBS+ noOQlxLi3Vf8L51frRelXDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5OTkzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBZ5RwMA8EAgACMAkDBwAgAQ3y0IAwDQYJKoZIhvcNAQELBQADggEBAFxG Oa+8HFZWKmEFRceuV0Xkt4VG66HNZ535mF2zYSOT974DWpv8OD2rcnxUNZaPZiFA IuUvqWmmF1g5pcRJmg0UmdQjIAqwi82tPDSEAKgswK+sRvGzgOgmjJeHJS+E8AzC pZifhE86hU8A4PMRUd9tvw4d/e43GPmxudL9CsyYkUgm6fcxw5W2KxKnDoLRbZ/C xOUzp4mmdYBdsIkqTXbaJJpWse0Ggld5AIg1jJC5kuPiMHd6qSJb1EYg7aGemHKE ItEXI/wJuoFgAr10fWWZGjDP1jqPFttiHemzgDCjJtXf8Oxx1J4iceKAwGp7kZAk ZZsFXwU7ptKZaVOZjfw= -----END CERTIFICATE-----Generated at Tue May 5 08:13:58 2026 by rpki-client