$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139997.roa File: AS139997.roa (raw, json) Hash identifier: ON3IbmQbez6cVnbdJeAffH9vrmt2oxY4Klw1PDh+WhI= Subject key identifier: A4:B9:A9:4C:35:CC:3D:FA:11:D9:56:9E:52:6C:2F:0F:23:0D:25:69 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0B732D1EE2BB48A56353AEA100988154F408B8F2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139997.roa Signing time: Wed 08 Oct 2025 07:00:00 +0000 ROA not before: Wed 08 Oct 2025 06:55:00 +0000 ROA not after: Wed 07 Oct 2026 07:00:00 +0000 asID: 139997 IP address blocks: 103.148.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:73:2d:1e:e2:bb:48:a5:63:53:ae:a1:00:98:81:54:f4:08:b8:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 8 06:55:00 2025 GMT Not After : Oct 7 07:00:00 2026 GMT Subject: CN=A4B9A94C35CC3DFA11D9569E526C2F0F230D2569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a9:dd:a5:0e:9f:0b:1a:12:7b:27:64:48:4d: 52:a3:e0:be:e9:a9:76:5e:94:89:e9:18:50:cd:44: 49:cf:65:5d:0d:63:44:da:1e:ac:e8:44:29:f3:3e: c2:4e:74:35:83:8f:12:3b:bd:d3:a6:a8:ba:ca:96: 2f:86:67:19:47:3a:0d:4c:77:e3:ca:75:32:43:d1: 17:4c:df:25:6f:c7:dc:54:77:7e:2e:bd:ef:e2:12: 93:53:cd:ab:ef:71:65:7f:d9:a7:0f:ce:28:af:db: 00:2a:7a:65:d4:d1:53:eb:5d:f5:ea:2d:c0:37:14: c0:24:98:74:15:f2:ca:36:3e:2d:2c:26:17:45:fd: 87:94:e9:45:42:bb:c8:b8:ff:83:18:83:f0:2e:1c: 9b:95:d7:58:e7:cf:a7:00:14:a2:6d:d4:a2:31:b4: d8:0f:6e:34:be:5c:fd:ca:e9:4f:66:db:78:28:56: cf:a8:49:5e:ac:f3:9c:68:03:c7:34:ea:d7:00:d7: d5:80:df:3b:a6:cd:65:07:c5:f5:d3:23:08:e4:e6: fe:85:3e:0b:43:4f:3b:86:3e:99:56:9c:c9:86:e6: ec:00:a1:87:df:68:1b:82:49:65:f2:80:ff:48:44: 6c:18:9b:3a:8a:fe:86:a3:cf:82:6b:21:b4:b4:95: 6c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:B9:A9:4C:35:CC:3D:FA:11:D9:56:9E:52:6C:2F:0F:23:0D:25:69 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139997.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.200.0/23 Signature Algorithm: sha256WithRSAEncryption 57:ed:27:c9:9c:0a:bc:50:7b:06:09:99:80:b7:46:06:d9:6e: e7:3f:be:75:74:a3:84:18:bc:56:c9:b7:a0:53:63:1e:5f:1a: 99:e4:74:25:70:ce:27:7c:3c:97:ce:34:ad:86:11:d8:b5:36: a8:70:64:aa:ee:05:76:a1:5c:3f:bf:7d:9d:e6:88:3a:a3:ab: dd:74:42:1e:0d:ec:be:8e:16:49:2e:84:de:c9:07:d3:c6:43: 33:da:68:bc:7b:a2:35:07:c7:d5:0a:f5:30:e2:0c:1a:54:96: 05:38:d6:44:af:0d:dc:4a:68:fc:24:8c:82:a4:81:a0:bb:d6: 8f:ff:8a:3a:be:89:46:92:ac:55:ab:7b:3f:e3:23:12:30:64: 80:76:b8:00:11:b7:5b:2e:bf:36:4f:68:38:69:96:e0:a8:a9: d3:8a:63:48:87:e2:47:38:fb:5b:9e:d0:7a:3e:5b:90:a4:9d: 62:d1:08:49:33:b9:c8:56:3e:e1:33:e3:b0:48:21:de:d2:16: 7c:07:a2:7c:77:03:a8:09:78:9c:fb:6b:a8:aa:98:ac:85:56: e4:a6:e9:ae:8c:30:1b:db:ab:c6:5b:cd:28:0d:7a:86:c8:75: 84:1d:22:b0:ad:d0:c0:5c:00:74:15:1a:5b:62:4e:65:54:2d: a1:77:fa:3d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUC3MtHuK7SKVjU66hAJiBVPQIuPIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAwODA2NTUwMFoX DTI2MTAwNzA3MDAwMFowMzExMC8GA1UEAxMoQTRCOUE5NEMzNUNDM0RGQTExRDk1 NjlFNTI2QzJGMEYyMzBEMjU2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANqp3aUOnwsaEnsnZEhNUqPgvumpdl6UiekYUM1ESc9lXQ1jRNoerOhEKfM+ wk50NYOPEju906aousqWL4ZnGUc6DUx348p1MkPRF0zfJW/H3FR3fi697+ISk1PN q+9xZX/Zpw/OKK/bACp6ZdTRU+td9eotwDcUwCSYdBXyyjY+LSwmF0X9h5TpRUK7 yLj/gxiD8C4cm5XXWOfPpwAUom3UojG02A9uNL5c/crpT2bbeChWz6hJXqzznGgD xzTq1wDX1YDfO6bNZQfF9dMjCOTm/oU+C0NPO4Y+mVacyYbm7AChh99oG4JJZfKA /0hEbBibOor+hqPPgmshtLSVbG0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSkualM Ncw9+hHZVp5SbC8PIw0laTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeUyDANBgkqhkiG9w0BAQsFAAOCAQEAV+0nyZwKvFB7BgmZgLdG Btlu5z++dXSjhBi8Vsm3oFNjHl8ameR0JXDOJ3w8l840rYYR2LU2qHBkqu4FdqFc P799neaIOqOr3XRCHg3svo4WSS6E3skH08ZDM9povHuiNQfH1Qr1MOIMGlSWBTjW RK8N3Epo/CSMgqSBoLvWj/+KOr6JRpKsVat7P+MjEjBkgHa4ABG3Wy6/Nk9oOGmW 4Kip04pjSIfiRzj7W57Qej5bkKSdYtEISTO5yFY+4TPjsEgh3tIWfAeifHcDqAl4 nPtrqKqYrIVW5KbprowwG9urxlvNKA16hsh1hB0isK3QwFwAdBUaW2JOZVQtoXf6 PQ== -----END CERTIFICATE-----Generated at Mon Oct 20 03:03:07 2025 by rpki-client