$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS138824.roa File: AS138824.roa (raw, json) Hash identifier: 6VRuP/cLFVRWxSWUUxQufu0jriMK64T8aHMDyGQ9JVk= Subject key identifier: 66:01:1A:81:3E:CF:CC:6B:C4:5F:EC:D8:EB:C5:96:EF:07:EA:E6:DE Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5A5CF25869C75CAA0B386BAEDBB7F5A086471685 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138824.roa Signing time: Sun 03 May 2026 10:10:56 +0000 ROA not before: Sun 03 May 2026 10:05:56 +0000 ROA not after: Sun 02 May 2027 10:10:56 +0000 asID: 138824 IP address blocks: 103.137.8.0/23 maxlen: 24 103.137.8.0/24 maxlen: 24 103.137.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:5c:f2:58:69:c7:5c:aa:0b:38:6b:ae:db:b7:f5:a0:86:47:16:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 10:05:56 2026 GMT Not After : May 2 10:10:56 2027 GMT Subject: CN=66011A813ECFCC6BC45FECD8EBC596EF07EAE6DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0f:ca:21:14:62:7f:43:52:8d:05:72:f1:d7: 63:58:cf:aa:9d:ce:6a:db:6b:91:84:5a:8f:08:8e: 88:58:af:fd:19:a2:8b:3b:76:d9:c2:75:c8:a4:10: a1:06:57:aa:2e:51:3c:43:f2:1c:e7:35:0a:42:9e: 27:08:72:d6:08:d7:7e:28:3e:40:c0:27:81:bd:df: cf:67:6c:36:d5:f6:b8:75:19:35:18:6c:00:02:fd: 27:55:0c:5b:1d:95:6f:df:33:67:c9:4b:42:7b:c8: 0f:29:04:b4:81:de:2c:e4:1a:c4:1d:65:a2:87:a9: e3:48:4b:c5:22:20:00:46:60:d6:ed:0e:c8:eb:22: fe:e1:8f:08:e5:96:d7:e6:fe:42:73:7b:a6:93:58: ca:09:d6:40:31:16:ae:69:f3:50:97:f4:b4:9e:ab: 41:02:91:47:96:82:8f:1a:22:88:81:e3:82:f1:61: c6:55:64:ad:45:5f:b2:c1:c7:3b:df:86:60:ef:b2: 95:5d:be:98:ff:5b:76:2c:2f:80:5a:1d:e6:2f:60: 8d:a7:c4:c7:f7:2d:0e:0b:9e:94:43:ad:06:b6:4a: 8b:70:8c:4d:ad:96:1c:0a:90:d2:7f:c2:8a:4f:68: 50:4a:d3:55:15:5b:c2:91:3f:1a:87:a8:1a:4f:7b: 96:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:01:1A:81:3E:CF:CC:6B:C4:5F:EC:D8:EB:C5:96:EF:07:EA:E6:DE X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS138824.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.8.0/23 Signature Algorithm: sha256WithRSAEncryption 67:fd:83:68:f8:95:e3:9c:b1:ec:06:d8:33:bc:96:75:f1:e0: 04:fc:6e:75:a0:5f:48:ec:7d:d9:70:fe:ae:72:5e:03:24:d3: a1:d3:b7:6e:54:56:84:7f:34:44:ca:88:f3:ba:92:c9:e0:67: e8:5d:c9:41:7c:68:6d:3f:e3:53:0c:f2:be:ad:77:44:25:72: c5:66:8b:cd:16:45:d3:64:c4:05:6d:07:7b:66:02:b3:f0:62: f8:8a:e0:12:7a:41:bd:61:bb:aa:bc:eb:7e:af:64:e3:2d:28: d5:54:57:ce:d8:b9:ab:48:61:84:f8:fc:bf:32:ed:ba:f3:fa: 1c:17:85:a8:ec:5d:d9:be:7c:56:4e:26:94:4c:83:e2:4f:e8: e6:76:aa:2c:01:0f:4a:d2:1d:30:1c:77:c8:fc:ac:75:ff:00: 63:05:63:51:e3:6e:30:ad:83:ea:3c:b3:c9:04:4d:11:4f:a9: bd:bf:78:9f:3b:3a:34:38:64:df:3f:5b:74:46:3a:66:f9:0e: c1:01:f3:7a:65:1e:8e:7a:f4:c3:32:e6:7d:3d:9d:0a:0e:23: e4:24:72:15:cc:ee:29:68:07:f3:f4:93:54:87:3e:ce:cb:20: 64:89:db:57:a9:84:09:5f:ed:55:01:78:36:e3:e2:80:cf:ae: 80:14:43:46 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUWlzyWGnHXKoLOGuu27f1oIZHFoUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzEwMDU1NloX DTI3MDUwMjEwMTA1NlowMzExMC8GA1UEAxMoNjYwMTFBODEzRUNGQ0M2QkM0NUZF Q0Q4RUJDNTk2RUYwN0VBRTZERTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANEPyiEUYn9DUo0FcvHXY1jPqp3OattrkYRajwiOiFiv/Rmiizt22cJ1yKQQ oQZXqi5RPEPyHOc1CkKeJwhy1gjXfig+QMAngb3fz2dsNtX2uHUZNRhsAAL9J1UM Wx2Vb98zZ8lLQnvIDykEtIHeLOQaxB1looep40hLxSIgAEZg1u0OyOsi/uGPCOWW 1+b+QnN7ppNYygnWQDEWrmnzUJf0tJ6rQQKRR5aCjxoiiIHjgvFhxlVkrUVfssHH O9+GYO+ylV2+mP9bdiwvgFod5i9gjafEx/ctDguelEOtBrZKi3CMTa2WHAqQ0n/C ik9oUErTVRVbwpE/GoeoGk97lmMCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRmARqB Ps/Ma8Rf7NjrxZbvB+rm3jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM4ODI0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ4kIMA0GCSqGSIb3DQEBCwUAA4IBAQBn/YNo+JXjnLHsBtgzvJZ18eAE /G51oF9I7H3ZcP6ucl4DJNOh07duVFaEfzREyojzupLJ4GfoXclBfGhtP+NTDPK+ rXdEJXLFZovNFkXTZMQFbQd7ZgKz8GL4iuASekG9YbuqvOt+r2TjLSjVVFfO2Lmr SGGE+Py/Mu268/ocF4Wo7F3ZvnxWTiaUTIPiT+jmdqosAQ9K0h0wHHfI/Kx1/wBj BWNR424wrYPqPLPJBE0RT6m9v3ifOzo0OGTfP1t0Rjpm+Q7BAfN6ZR6OevTDMuZ9 PZ0KDiPkJHIVzO4paAfz9JNUhz7OyyBkidtXqYQJX+1VAXg24+KAz66AFENG -----END CERTIFICATE-----Generated at Tue May 12 23:03:51 2026 by rpki-client