$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139364.roa File: AS139364.roa (raw, json) Hash identifier: CKDHfAh+0pUjX0QOHhB+087RG1m9euVLaMApjh30jKs= Subject key identifier: F6:30:D8:3F:FD:DE:E8:91:F9:7D:96:4B:7C:B2:52:32:FE:15:C2:AD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 704BD20D470599A05F0164DDFCACAD89E32323F7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139364.roa Signing time: Tue 23 Sep 2025 08:00:00 +0000 ROA not before: Tue 23 Sep 2025 07:55:00 +0000 ROA not after: Tue 22 Sep 2026 08:00:00 +0000 asID: 139364 IP address blocks: 2401:cb20::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:4b:d2:0d:47:05:99:a0:5f:01:64:dd:fc:ac:ad:89:e3:23:23:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 23 07:55:00 2025 GMT Not After : Sep 22 08:00:00 2026 GMT Subject: CN=F630D83FFDDEE891F97D964B7CB25232FE15C2AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:07:3b:e1:71:48:49:5e:9f:72:60:94:57:f5: 69:02:7e:27:62:e9:92:6a:7a:7b:59:05:a7:a0:f5: 8e:b6:22:1b:ec:c2:a3:90:b7:9b:a2:c2:64:3a:05: f4:63:c8:9d:33:10:e7:89:8f:2d:90:8e:e1:fe:10: 9c:84:82:eb:2b:21:22:fe:87:1f:d6:9d:80:a1:5b: 14:d6:39:f4:cf:56:31:91:be:04:d6:3c:e4:cb:f7: 72:95:34:d1:f8:8d:d0:e4:7e:93:82:08:b8:87:6a: 0a:0e:34:8f:7e:0f:39:ab:92:df:fd:e8:11:73:9e: e3:cc:34:30:9c:c3:68:a3:f2:2b:35:a2:fc:9e:e4: 6c:0c:d3:33:fa:e8:d5:39:f0:a7:8f:1c:76:6e:fa: eb:a8:ad:8a:25:2e:41:82:25:35:ef:4b:d1:dd:d5: 32:7d:3e:d7:9a:0a:24:13:21:f1:c0:e0:9a:a9:1c: de:cd:ea:e0:fd:93:10:1e:b7:f9:41:32:f1:1b:3c: d7:6a:8b:5d:87:e6:0f:ff:c2:da:bc:5a:94:fb:b0: f0:b7:1c:dc:89:2b:65:7c:10:e3:02:63:0c:43:2d: fd:05:2f:8c:e0:1d:52:06:da:ba:79:7b:52:34:15: 20:47:9a:0a:c1:81:7f:75:46:ba:ca:10:bf:cb:0f: 76:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:30:D8:3F:FD:DE:E8:91:F9:7D:96:4B:7C:B2:52:32:FE:15:C2:AD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139364.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:cb20::/32 Signature Algorithm: sha256WithRSAEncryption 3f:8f:1c:77:0b:07:3b:0d:43:e5:b7:0b:4e:17:6f:8b:82:49: 75:72:ec:2d:73:89:f7:50:c7:d9:45:56:52:14:b2:fa:28:19: c0:83:1c:84:3b:92:7d:79:f1:79:7d:68:03:ed:7f:4e:6c:ff: 1e:b8:21:e8:92:f3:e9:47:71:b4:37:e8:13:3d:d2:45:a8:42: 7e:2c:e6:b1:1c:7a:51:70:ea:ef:37:c5:8a:00:9f:4c:19:30: f4:ac:e6:1f:4c:8c:c7:48:b7:8a:35:4b:f0:55:83:20:4a:ea: 9f:3e:fd:8d:3c:93:d9:cb:30:b2:8d:ce:97:dc:bd:1a:6d:98: 28:4b:f2:8d:6c:8d:88:f5:17:a3:e9:f8:d4:c7:10:9a:e2:d5: b0:5f:c0:0b:dc:24:21:4f:8b:3d:d9:51:22:22:3d:67:a4:73: d9:64:62:de:15:00:46:87:e5:32:c8:90:8f:e2:18:31:48:ed: 81:83:12:b6:30:f4:41:ec:a5:87:b4:f5:33:c6:f5:dd:a8:80: 92:10:51:c6:cc:89:fe:60:aa:16:47:3c:9f:96:a7:e9:7d:10: 99:aa:76:61:16:46:81:94:c0:9a:fd:ee:e8:b9:48:1a:e0:0c: 15:3d:94:79:e7:12:71:f7:1c:bf:18:d5:a1:e1:35:cc:db:65: 51:4e:7e:87 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUcEvSDUcFmaBfAWTd/KytieMjI/cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkyMzA3NTUwMFoX DTI2MDkyMjA4MDAwMFowMzExMC8GA1UEAxMoRjYzMEQ4M0ZGRERFRTg5MUY5N0Q5 NjRCN0NCMjUyMzJGRTE1QzJBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMsHO+FxSElen3JglFf1aQJ+J2Lpkmp6e1kFp6D1jrYiG+zCo5C3m6LCZDoF 9GPInTMQ54mPLZCO4f4QnISC6yshIv6HH9adgKFbFNY59M9WMZG+BNY85Mv3cpU0 0fiN0OR+k4IIuIdqCg40j34POauS3/3oEXOe48w0MJzDaKPyKzWi/J7kbAzTM/ro 1Tnwp48cdm7666itiiUuQYIlNe9L0d3VMn0+15oKJBMh8cDgmqkc3s3q4P2TEB63 +UEy8Rs812qLXYfmD//C2rxalPuw8Lcc3IkrZXwQ4wJjDEMt/QUvjOAdUgbaunl7 UjQVIEeaCsGBf3VGusoQv8sPdlUCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBT2MNg/ /d7okfl9lkt8slIy/hXCrTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTM2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQByyAwDQYJKoZIhvcNAQELBQADggEBAD+PHHcLBzsNQ+W3C04X b4uCSXVy7C1zifdQx9lFVlIUsvooGcCDHIQ7kn158Xl9aAPtf05s/x64IeiS8+lH cbQ36BM90kWoQn4s5rEcelFw6u83xYoAn0wZMPSs5h9MjMdIt4o1S/BVgyBK6p8+ /Y08k9nLMLKNzpfcvRptmChL8o1sjYj1F6Pp+NTHEJri1bBfwAvcJCFPiz3ZUSIi PWekc9lkYt4VAEaH5TLIkI/iGDFI7YGDErYw9EHspYe09TPG9d2ogJIQUcbMif5g qhZHPJ+Wp+l9EJmqdmEWRoGUwJr97ui5SBrgDBU9lHnnEnH3HL8Y1aHhNczbZVFO foc= -----END CERTIFICATE-----Generated at Mon Oct 20 03:03:45 2025 by rpki-client