$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139433.roa File: AS139433.roa (raw, json) Hash identifier: 7Eies4wWcA13A47z4zjlv6LBC4Bf4dkpbm2TsXgru/4= Subject key identifier: B6:57:3B:EF:B2:C8:77:9A:AC:C3:EE:48:5C:6D:D1:8E:7E:DE:0C:C0 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 304798E20221C1293574CFD9B63AB343CC057730 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139433.roa Signing time: Tue 05 May 2026 13:11:50 +0000 ROA not before: Tue 05 May 2026 13:06:50 +0000 ROA not after: Tue 04 May 2027 13:11:50 +0000 asID: 139433 IP address blocks: 103.144.128.0/23 maxlen: 24 2405:6d40::/32 maxlen: 48 2406:6d40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:47:98:e2:02:21:c1:29:35:74:cf:d9:b6:3a:b3:43:cc:05:77:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 5 13:06:50 2026 GMT Not After : May 4 13:11:50 2027 GMT Subject: CN=B6573BEFB2C8779AACC3EE485C6DD18E7EDE0CC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bd:2a:f4:68:fe:33:00:60:fa:3b:47:e9:c2: 2a:e1:86:98:c7:ea:df:73:37:dd:2b:b8:c3:a6:08: 14:ed:84:3a:f0:23:f0:39:1e:a1:af:ef:3b:2f:00: 6e:6f:3d:18:d0:88:61:ff:9a:9d:6c:38:7e:ec:4d: e0:3a:89:89:19:24:4f:44:eb:d7:14:d3:cb:58:f7: 13:1c:71:5d:ad:f0:5b:07:49:ff:8b:dc:a4:07:d1: 63:44:1d:c1:e8:6a:4a:97:1a:f6:ea:53:cc:a1:5a: c9:30:e1:97:63:3e:68:d6:4b:33:20:13:bb:61:90: 3d:33:63:24:2a:6a:31:6c:b9:37:8b:ec:b2:8f:56: cc:1f:a8:23:47:5b:b2:57:c6:37:eb:ce:9b:90:fb: 07:3f:60:b3:a8:e8:91:98:6b:e7:80:6b:7d:6e:ff: d8:a9:e7:a7:d5:87:db:95:56:01:1f:af:da:8d:1b: 1b:39:cb:fd:af:84:82:86:78:26:27:37:7c:d5:b9: e1:26:51:28:e1:55:98:c2:4d:f4:3e:67:5d:47:62: 2b:c6:f0:cc:03:26:9a:15:cf:3c:d7:2d:5f:c2:2e: 4e:63:1f:cc:87:1a:00:84:a0:11:5d:0d:f3:ec:e3: 85:09:14:e6:ae:65:5a:be:e7:03:1d:eb:29:f7:49: 93:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:57:3B:EF:B2:C8:77:9A:AC:C3:EE:48:5C:6D:D1:8E:7E:DE:0C:C0 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.128.0/23 IPv6: 2405:6d40::/32 2406:6d40::/32 Signature Algorithm: sha256WithRSAEncryption 90:86:d0:2e:83:41:8b:e9:20:23:a7:16:26:ac:4c:62:33:c6: df:f0:10:2f:df:6a:60:6d:8d:85:d8:b2:64:71:70:48:0f:8f: e0:48:6d:c6:86:23:01:e4:f8:98:1f:17:73:d2:1a:85:3f:35: 3f:fa:c2:2f:ad:14:50:3f:60:b4:db:32:af:84:ed:48:69:a7: fa:62:36:56:a7:b6:61:28:ad:3e:9e:35:93:34:a6:97:f9:fa: 63:c8:19:e8:71:ec:7d:e1:bc:c2:13:41:d9:d3:0e:b0:87:68: 0e:1c:1e:d9:8c:86:d8:a7:3d:b3:8e:f2:77:42:28:da:e5:bc: d7:ff:74:31:c4:e0:00:64:b4:ce:38:b9:39:7f:5c:aa:ca:2f: 76:12:ca:d1:2f:20:8e:d3:af:64:c3:46:ef:9b:7c:73:40:f9: 1d:c1:fe:e5:20:be:dc:b4:1d:ff:4d:21:6b:0f:26:ea:32:60: 7f:66:79:7c:c6:ad:07:8b:b5:7c:d9:9d:27:94:a7:dd:95:a9: 33:da:d0:14:1f:97:c2:b0:5d:5f:17:ff:a2:34:28:05:80:29: 8b:b8:cb:b6:35:a1:a9:5a:0d:62:0f:73:94:fd:96:fd:48:ee: ed:06:62:b2:d3:35:74:63:56:ca:72:f4:c7:c2:e4:40:35:c9: 5e:22:55:61 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgIUMEeY4gIhwSk1dM/ZtjqzQ8wFdzAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwNTEzMDY1MFoX DTI3MDUwNDEzMTE1MFowMzExMC8GA1UEAxMoQjY1NzNCRUZCMkM4Nzc5QUFDQzNF RTQ4NUM2REQxOEU3RURFMENDMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMq9KvRo/jMAYPo7R+nCKuGGmMfq33M33Su4w6YIFO2EOvAj8Dkeoa/vOy8A bm89GNCIYf+anWw4fuxN4DqJiRkkT0Tr1xTTy1j3ExxxXa3wWwdJ/4vcpAfRY0Qd wehqSpca9upTzKFayTDhl2M+aNZLMyATu2GQPTNjJCpqMWy5N4vsso9WzB+oI0db slfGN+vOm5D7Bz9gs6jokZhr54BrfW7/2Knnp9WH25VWAR+v2o0bGznL/a+EgoZ4 Jic3fNW54SZRKOFVmMJN9D5nXUdiK8bwzAMmmhXPPNctX8IuTmMfzIcaAISgEV0N 8+zjhQkU5q5lWr7nAx3rKfdJk7kCAwEAAaOCAeIwggHeMB0GA1UdDgQWBBS2Vzvv ssh3mqzD7khcbdGOft4MwDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5NDMzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAMBAIA ATAGAwQBZ5CAMBQEAgACMA4DBQAkBW1AAwUAJAZtQDANBgkqhkiG9w0BAQsFAAOC AQEAkIbQLoNBi+kgI6cWJqxMYjPG3/AQL99qYG2NhdiyZHFwSA+P4EhtxoYjAeT4 mB8Xc9IahT81P/rCL60UUD9gtNsyr4TtSGmn+mI2Vqe2YSitPp41kzSml/n6Y8gZ 6HHsfeG8whNB2dMOsIdoDhwe2YyG2Kc9s47yd0Io2uW81/90McTgAGS0zji5OX9c qsovdhLK0S8gjtOvZMNG75t8c0D5HcH+5SC+3LQd/00haw8m6jJgf2Z5fMatB4u1 fNmdJ5Sn3ZWpM9rQFB+XwrBdXxf/ojQoBYApi7jLtjWhqVoNYg9zlP2W/Uju7QZi stM1dGNWynL0x8LkQDXJXiJVYQ== -----END CERTIFICATE-----Generated at Tue May 12 22:42:06 2026 by rpki-client