$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139412.roa File: AS139412.roa (raw, json) Hash identifier: sixYh82OOhd6rOBaLP8oEbcAcE6YRfJ9B6sIGswlPBE= Subject key identifier: CA:A2:3E:9E:24:B8:E8:E2:CB:81:46:7C:E9:7D:CD:59:51:98:08:DC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 522463FD6D59E88BFDE7782DB3E6E97960AACE75 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139412.roa Signing time: Wed 25 Mar 2026 10:00:00 +0000 ROA not before: Wed 25 Mar 2026 09:55:00 +0000 ROA not after: Wed 24 Mar 2027 10:00:00 +0000 asID: 139412 IP address blocks: 103.143.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 16:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:24:63:fd:6d:59:e8:8b:fd:e7:78:2d:b3:e6:e9:79:60:aa:ce:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 25 09:55:00 2026 GMT Not After : Mar 24 10:00:00 2027 GMT Subject: CN=CAA23E9E24B8E8E2CB81467CE97DCD59519808DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:63:ce:30:ae:37:f7:fc:8e:4a:59:ab:bf:95: 79:d7:7a:46:d3:be:a9:bc:f8:7b:4f:06:41:5f:4b: cf:6d:6c:5e:53:e1:00:84:1e:f6:45:d6:c0:d0:c8: 98:98:e7:2f:0d:0c:43:c1:48:0e:29:0f:ff:2e:42: 62:fd:25:69:f2:64:b4:ad:19:cd:9e:4d:90:04:03: e8:55:7d:f0:7f:ef:54:d6:e5:83:cf:96:35:08:c2: a1:c7:78:9c:ba:da:a7:dc:1c:30:2e:b3:e8:52:26: 65:97:b7:fb:53:32:33:d4:72:b0:1f:f0:a9:6a:1a: 0a:b7:94:69:86:77:61:01:00:c8:72:82:0b:0b:5b: 80:d0:af:c7:1e:9f:31:74:d9:87:fe:25:5f:fc:80: 1c:0b:11:ba:79:74:02:d9:12:1f:a2:c0:64:32:15: de:15:70:45:c2:9e:1f:20:f2:dc:ec:75:77:b3:e7: 42:18:1e:05:ac:f4:ea:ff:48:88:eb:fc:1a:66:26: 39:56:aa:dc:57:4d:c1:53:22:c0:c8:d1:61:5b:34: c1:0a:a5:3e:59:4d:d3:35:2e:c1:93:ce:d9:b8:76: e5:54:05:00:56:93:ba:55:ac:78:fe:13:80:8f:5f: 45:e2:b2:5d:13:55:c3:d3:5f:7b:d2:1a:a5:ae:83: cd:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:A2:3E:9E:24:B8:E8:E2:CB:81:46:7C:E9:7D:CD:59:51:98:08:DC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139412.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.224.0/23 Signature Algorithm: sha256WithRSAEncryption 04:93:0f:99:4a:e4:7d:0b:cb:26:a8:22:f4:df:89:95:14:61: f3:4a:d3:9e:6c:36:5f:b4:9c:ba:bd:12:f6:99:03:30:34:8e: e8:e5:ca:dd:8b:d5:a8:09:45:eb:45:6d:8c:6c:e0:fd:5a:42: f9:1d:ee:9c:d5:78:48:8f:78:86:c1:80:30:8c:d5:33:57:dc: 87:14:96:4c:74:92:3d:46:48:22:07:6b:50:92:9c:a0:f5:f6: ec:13:4b:36:25:02:78:ff:45:0c:ef:dc:7d:87:9a:63:15:b5: 2f:91:1c:9e:f4:6b:d2:02:08:ca:9a:12:db:f4:74:01:f0:8c: fd:cd:03:07:b2:50:7c:ea:41:c7:6f:8f:e2:28:97:ce:81:3b: 0e:b3:d9:29:0a:85:af:60:4e:fa:cd:d5:eb:44:26:f1:2d:44: d9:de:cf:1d:fe:10:de:ea:f7:0f:66:05:10:fa:9a:ad:99:f4: a7:ba:f3:31:b1:9f:67:02:53:59:75:ce:91:3d:60:a1:77:4d: 42:48:46:5f:31:3d:be:cd:d1:07:83:fa:81:33:cd:ca:c5:d3: 52:f1:c3:c8:9d:60:62:39:07:89:1c:b4:24:64:e0:22:75:4c: 0a:a5:7b:5f:e5:7d:a3:f6:75:8d:3e:f8:8b:44:6f:fe:fc:a8: af:12:3e:19 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUiRj/W1Z6Iv953gts+bpeWCqznUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMyNTA5NTUwMFoX DTI3MDMyNDEwMDAwMFowMzExMC8GA1UEAxMoQ0FBMjNFOUUyNEI4RThFMkNCODE0 NjdDRTk3RENENTk1MTk4MDhEQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANdjzjCuN/f8jkpZq7+Vedd6RtO+qbz4e08GQV9Lz21sXlPhAIQe9kXWwNDI mJjnLw0MQ8FIDikP/y5CYv0lafJktK0ZzZ5NkAQD6FV98H/vVNblg8+WNQjCocd4 nLrap9wcMC6z6FImZZe3+1MyM9RysB/wqWoaCreUaYZ3YQEAyHKCCwtbgNCvxx6f MXTZh/4lX/yAHAsRunl0AtkSH6LAZDIV3hVwRcKeHyDy3Ox1d7PnQhgeBaz06v9I iOv8GmYmOVaq3FdNwVMiwMjRYVs0wQqlPllN0zUuwZPO2bh25VQFAFaTulWseP4T gI9fReKyXRNVw9Nfe9Iapa6DzV8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTKoj6e JLjo4suBRnzpfc1ZUZgI3DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTQxMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeP4DANBgkqhkiG9w0BAQsFAAOCAQEABJMPmUrkfQvLJqgi9N+J lRRh80rTnmw2X7Scur0S9pkDMDSO6OXK3YvVqAlF60VtjGzg/VpC+R3unNV4SI94 hsGAMIzVM1fchxSWTHSSPUZIIgdrUJKcoPX27BNLNiUCeP9FDO/cfYeaYxW1L5Ec nvRr0gIIypoS2/R0AfCM/c0DB7JQfOpBx2+P4iiXzoE7DrPZKQqFr2BO+s3V60Qm 8S1E2d7PHf4Q3ur3D2YFEPqarZn0p7rzMbGfZwJTWXXOkT1goXdNQkhGXzE9vs3R B4P6gTPNysXTUvHDyJ1gYjkHiRy0JGTgInVMCqV7X+V9o/Z1jT74i0Rv/vyorxI+ GQ== -----END CERTIFICATE-----Generated at Thu Mar 26 12:31:20 2026 by rpki-client