$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS139449.roa File: AS139449.roa (raw, json) Hash identifier: OWo8Cmq548L2KHu91+etuJqfk+dMbW2YDkAuDVkqb7M= Subject key identifier: 56:E6:10:28:B8:3F:9C:24:5C:4A:2E:A3:B5:EE:C9:8B:53:00:72:92 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1964855FEED7B70DFA0541B98961A60173D4D6C4 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139449.roa Signing time: Sun 03 May 2026 08:16:22 +0000 ROA not before: Sun 03 May 2026 08:11:22 +0000 ROA not after: Sun 02 May 2027 08:16:22 +0000 asID: 139449 IP address blocks: 103.145.34.0/23 maxlen: 24 2405:77c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:64:85:5f:ee:d7:b7:0d:fa:05:41:b9:89:61:a6:01:73:d4:d6:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 08:11:22 2026 GMT Not After : May 2 08:16:22 2027 GMT Subject: CN=56E61028B83F9C245C4A2EA3B5EEC98B53007292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c4:c2:ed:94:4a:d4:d5:0f:0f:fc:18:72:af: 24:6c:a6:5f:25:15:80:d1:87:14:3d:ba:70:2f:cb: e2:b7:fd:cc:f6:6d:a7:5b:62:29:9a:b4:bd:a1:81: 57:c2:ef:cd:0f:c2:b0:83:f1:af:0f:9a:b3:ad:a7: 5f:bc:4a:6c:d4:cb:f2:cd:2a:5b:9c:cb:70:cd:df: 6a:44:87:cd:fc:46:9f:4a:22:02:36:8c:42:bc:5a: 7d:83:0a:e6:d0:ff:4e:4d:8a:84:c4:26:0b:88:b2: b2:6b:49:6d:37:f5:48:2e:ba:cd:71:cc:2f:4e:fa: 0a:77:f4:c8:04:5e:8d:47:2b:b2:04:aa:35:a5:ff: a3:ff:9a:dd:e5:04:e2:31:48:9f:a8:f7:5d:74:6d: d5:3e:be:42:19:29:15:45:52:29:38:89:bd:e4:7d: 4f:a6:d7:4a:c4:e9:88:f9:d1:36:73:de:a2:3b:b9: fd:a6:7d:f2:20:82:7f:d6:40:a6:f9:ea:63:38:52: 8b:26:79:bd:b6:da:ae:35:2b:da:6d:5a:ea:38:f8: 06:6d:c8:73:e0:d3:9f:7f:1e:d8:f7:2f:8f:b2:a0: 94:c9:7b:07:32:0e:79:3f:c5:fd:ee:de:13:e5:7e: c4:da:d0:62:41:0f:bf:15:37:fa:4d:0a:d6:33:cb: 0e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:E6:10:28:B8:3F:9C:24:5C:4A:2E:A3:B5:EE:C9:8B:53:00:72:92 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS139449.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.34.0/23 IPv6: 2405:77c0::/32 Signature Algorithm: sha256WithRSAEncryption 94:d5:31:83:c1:7d:18:78:63:64:2c:28:1b:27:26:73:e7:9b: 38:1a:cd:c9:6e:1f:10:d9:1f:e4:41:49:04:a3:1a:67:aa:e9: 1c:f5:1f:2c:76:ef:70:da:b8:82:10:62:2c:33:98:ca:1e:72: cd:10:06:70:e2:77:3a:d8:29:c0:37:cc:0b:61:29:b2:90:49: f7:6a:da:28:67:2a:e5:73:03:d0:e2:5e:94:a3:6f:af:64:5e: 2b:7b:fe:3f:6d:0c:ed:71:0b:13:05:cb:64:f6:d1:cc:f5:ba: 40:a0:6f:5c:a7:c9:35:01:22:40:2b:26:f1:49:29:09:95:d7: 09:44:0c:2f:e3:2b:69:f6:25:35:1e:a3:e2:a4:a2:a1:c5:71: 22:0f:40:50:21:6f:52:33:83:bf:5d:40:f3:7c:0a:23:55:f3: 6c:91:ca:58:c1:18:66:3e:4b:1b:dc:68:f7:b3:c6:03:45:22: 5c:40:1a:e5:81:6f:49:4c:98:58:27:52:68:7f:76:d3:31:d5: 65:4c:a6:16:9a:1e:69:7e:d9:28:38:09:67:01:af:07:04:3c: ff:c7:e2:47:fb:b1:bd:90:e5:09:bb:e1:52:e0:a1:a3:a8:27: 73:93:0a:0d:26:d2:d7:ca:eb:ab:d5:74:4b:da:6b:38:bc:83: 1d:37:31:90 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUGWSFX+7Xtw36BUG5iWGmAXPU1sQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzA4MTEyMloX DTI3MDUwMjA4MTYyMlowMzExMC8GA1UEAxMoNTZFNjEwMjhCODNGOUMyNDVDNEEy RUEzQjVFRUM5OEI1MzAwNzI5MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMXEwu2UStTVDw/8GHKvJGymXyUVgNGHFD26cC/L4rf9zPZtp1tiKZq0vaGB V8LvzQ/CsIPxrw+as62nX7xKbNTL8s0qW5zLcM3fakSHzfxGn0oiAjaMQrxafYMK 5tD/Tk2KhMQmC4iysmtJbTf1SC66zXHML076Cnf0yARejUcrsgSqNaX/o/+a3eUE 4jFIn6j3XXRt1T6+QhkpFUVSKTiJveR9T6bXSsTpiPnRNnPeoju5/aZ98iCCf9ZA pvnqYzhSiyZ5vbbarjUr2m1a6jj4Bm3Ic+DTn38e2Pcvj7KglMl7BzIOeT/F/e7e E+V+xNrQYkEPvxU3+k0K1jPLDj8CAwEAAaOCAdswggHXMB0GA1UdDgQWBBRW5hAo uD+cJFxKLqO17smLUwBykjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTM5NDQ5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIA ATAGAwQBZ5EiMA0EAgACMAcDBQAkBXfAMA0GCSqGSIb3DQEBCwUAA4IBAQCU1TGD wX0YeGNkLCgbJyZz55s4Gs3Jbh8Q2R/kQUkEoxpnqukc9R8sdu9w2riCEGIsM5jK HnLNEAZw4nc62CnAN8wLYSmykEn3atooZyrlcwPQ4l6Uo2+vZF4re/4/bQztcQsT Bctk9tHM9bpAoG9cp8k1ASJAKybxSSkJldcJRAwv4ytp9iU1HqPipKKhxXEiD0BQ IW9SM4O/XUDzfAojVfNskcpYwRhmPksb3Gj3s8YDRSJcQBrlgW9JTJhYJ1Jof3bT MdVlTKYWmh5pftkoOAlnAa8HBDz/x+JH+7G9kOUJu+FS4KGjqCdzkwoNJtLXyuur 1XRL2ms4vIMdNzGQ -----END CERTIFICATE-----Generated at Tue May 12 22:56:04 2026 by rpki-client