$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139398.roa File: AS139398.roa (raw, json) Hash identifier: hnW+9wRvCXwOQLGteiBDmgOLcicfUmgfF+DJwIOlO2E= Subject key identifier: 3A:75:9D:CE:DC:C5:E3:3B:7D:EA:CD:48:61:A5:17:FF:C3:2B:5D:4B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5F25380BD8D41B62561D237877317E15A555F134 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139398.roa Signing time: Mon 15 Sep 2025 04:45:31 +0000 ROA not before: Mon 15 Sep 2025 04:40:31 +0000 ROA not after: Mon 14 Sep 2026 04:45:31 +0000 asID: 139398 IP address blocks: 144.48.13.0/24 maxlen: 24 144.48.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:25:38:0b:d8:d4:1b:62:56:1d:23:78:77:31:7e:15:a5:55:f1:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 15 04:40:31 2025 GMT Not After : Sep 14 04:45:31 2026 GMT Subject: CN=3A759DCEDCC5E33B7DEACD4861A517FFC32B5D4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1a:e0:aa:f7:9e:9b:9a:47:ab:ba:4e:2f:ca: 2a:03:89:88:fc:c4:b2:74:87:71:70:8c:42:1f:6c: d2:6e:a1:8d:07:ae:4d:38:6c:47:79:21:1d:01:0c: 2c:8f:28:7a:c9:59:ae:6b:a4:dd:0c:02:58:29:95: eb:01:9a:83:99:3d:bc:bc:52:37:d8:7d:93:5c:83: be:49:15:06:e5:f2:68:82:3e:f1:91:0a:e2:f0:4a: 99:e1:d3:54:16:30:58:fa:40:1e:56:06:90:76:28: 40:18:45:e6:f0:2b:30:84:a3:10:54:69:78:9f:16: 5f:f4:95:03:eb:25:af:70:d7:1d:fa:1a:8e:f5:32: 05:7e:63:1b:5e:9e:68:09:c4:6a:c9:06:a7:a9:3f: a0:92:f6:12:8f:e9:9c:99:52:7c:33:a8:56:0d:db: 92:27:6d:fc:87:34:d9:40:a6:c6:d3:0b:f1:92:10: 2d:f3:a6:bd:40:65:dd:c5:5f:e6:7c:6b:47:55:92: 16:3b:ba:ee:29:57:63:72:94:cb:6d:f2:d7:4c:23: 63:dc:e3:5a:d6:1c:62:b3:92:2f:ed:d3:be:18:28: 88:3d:fa:6e:96:f8:bf:74:73:30:d1:15:60:3a:4c: 3d:f2:8e:df:a1:b1:36:5b:59:2e:ec:31:e2:50:1c: a7:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:75:9D:CE:DC:C5:E3:3B:7D:EA:CD:48:61:A5:17:FF:C3:2B:5D:4B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139398.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.48.13.0-144.48.14.255 Signature Algorithm: sha256WithRSAEncryption 56:cf:5c:b7:c7:12:86:8b:3a:2f:40:a8:95:f8:49:a4:b5:ea: 8e:07:a7:6e:0c:2f:20:6f:a1:51:46:e2:d7:db:3a:17:61:2e: d0:7b:c4:46:07:54:6a:0a:d3:90:a7:ac:81:25:fb:87:31:36: 9a:8c:d4:aa:55:97:97:55:b3:ba:6b:2e:bd:88:6b:8b:c5:69: 5c:37:dc:24:09:35:28:68:ed:de:b5:c8:4b:4a:34:c2:5b:02: 70:9d:56:1a:e4:5b:29:18:3b:73:15:c4:c1:63:41:f2:14:0f: a3:84:d0:09:05:a9:84:86:3f:52:a4:58:25:73:61:09:89:7a: 90:ec:75:1e:2b:d8:54:5c:90:bd:42:8f:9f:0d:7e:c1:54:d0: 39:4d:62:fe:f3:08:70:52:8c:c8:7e:26:0e:fe:29:98:86:43: d0:22:e1:38:92:3b:4f:7f:69:fa:2e:86:5f:fa:75:be:a4:0c: 36:6d:17:9d:c6:99:83:ef:f2:e7:b9:43:81:f1:ae:a3:63:5b: 39:0c:33:74:21:4d:81:94:56:11:46:96:a7:1a:bd:32:86:15: cb:7c:61:1a:17:af:9e:54:39:9b:a4:08:57:ac:ac:51:8b:e6: 02:20:05:d9:70:c2:8b:61:69:d1:bc:b5:0f:a2:dc:85:78:62: 18:e5:df:bf -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUXyU4C9jUG2JWHSN4dzF+FaVV8TQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkxNTA0NDAzMVoX DTI2MDkxNDA0NDUzMVowMzExMC8GA1UEAxMoM0E3NTlEQ0VEQ0M1RTMzQjdERUFD RDQ4NjFBNTE3RkZDMzJCNUQ0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMca4Kr3npuaR6u6Ti/KKgOJiPzEsnSHcXCMQh9s0m6hjQeuTThsR3khHQEM LI8oeslZrmuk3QwCWCmV6wGag5k9vLxSN9h9k1yDvkkVBuXyaII+8ZEK4vBKmeHT VBYwWPpAHlYGkHYoQBhF5vArMISjEFRpeJ8WX/SVA+slr3DXHfoajvUyBX5jG16e aAnEaskGp6k/oJL2Eo/pnJlSfDOoVg3bkidt/Ic02UCmxtML8ZIQLfOmvUBl3cVf 5nxrR1WSFju67ilXY3KUy23y10wjY9zjWtYcYrOSL+3TvhgoiD36bpb4v3RzMNEV YDpMPfKO36GxNltZLuwx4lAcp5UCAwEAAaOCAdgwggHUMB0GA1UdDgQWBBQ6dZ3O 3MXjO33qzUhhpRf/wytdSzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTM5OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAnBggrBgEFBQcBBwEB/wQYMBYw FAQCAAEwDjAMAwQAkDANAwQAkDAOMA0GCSqGSIb3DQEBCwUAA4IBAQBWz1y3xxKG izovQKiV+EmkteqOB6duDC8gb6FRRuLX2zoXYS7Qe8RGB1RqCtOQp6yBJfuHMTaa jNSqVZeXVbO6ay69iGuLxWlcN9wkCTUoaO3etchLSjTCWwJwnVYa5FspGDtzFcTB Y0HyFA+jhNAJBamEhj9SpFglc2EJiXqQ7HUeK9hUXJC9Qo+fDX7BVNA5TWL+8whw UozIfiYO/imYhkPQIuE4kjtPf2n6LoZf+nW+pAw2bRedxpmD7/LnuUOB8a6jY1s5 DDN0IU2BlFYRRpanGr0yhhXLfGEaF6+eVDmbpAhXrKxRi+YCIAXZcMKLYWnRvLUP otyFeGIY5d+/ -----END CERTIFICATE-----Generated at Mon Oct 20 06:23:45 2025 by rpki-client