$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139952.roa File: AS139952.roa (raw, json) Hash identifier: ldPRulFjr1tI9kzvR808l2fVSvK+hScxcLXJQD7ITYY= Subject key identifier: D6:4F:A6:D6:3A:7F:98:8F:C8:B7:70:A1:FA:BD:4E:EA:7B:1A:D9:74 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 41354ED46082B00F54CCC849A5C813041766CA4D Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139952.roa Signing time: Thu 19 Feb 2026 02:00:00 +0000 ROA not before: Thu 19 Feb 2026 01:55:00 +0000 ROA not after: Thu 18 Feb 2027 02:00:00 +0000 asID: 139952 IP address blocks: 157.15.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 09:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:35:4e:d4:60:82:b0:0f:54:cc:c8:49:a5:c8:13:04:17:66:ca:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 19 01:55:00 2026 GMT Not After : Feb 18 02:00:00 2027 GMT Subject: CN=D64FA6D63A7F988FC8B770A1FABD4EEA7B1AD974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:03:8e:95:a4:0c:a1:e1:84:5f:24:c1:57:d2: 8a:6f:30:63:98:06:8b:83:9c:2e:ad:b1:e3:a4:dc: 44:87:87:16:d4:fa:82:91:03:3b:dc:e2:22:f8:f9: 79:79:70:f3:1e:f4:ba:5e:c2:42:68:7a:03:d0:76: f9:c1:45:19:40:d0:77:79:fd:a8:50:cd:96:87:78: 49:4f:6b:2c:b7:10:2b:1a:ff:f3:f7:da:51:34:3a: f6:40:60:69:d3:d6:c4:7a:e6:f1:a1:8a:92:6a:b4: fe:18:5d:66:b0:13:80:d1:94:d0:d9:44:b2:ca:96: 6b:ad:c1:40:9b:9c:f3:d7:ca:06:94:15:3f:09:f1: fe:6d:9b:99:dc:ec:49:cf:ac:f4:16:a8:58:11:92: 46:89:6a:9b:0e:74:19:bc:05:60:bc:4e:79:9c:4d: 20:16:91:26:a9:2f:2c:6c:97:f5:8a:77:96:80:8c: 38:ad:aa:39:f3:59:de:9e:98:f7:1d:b9:5a:12:68: fb:b1:40:71:dd:0e:f8:39:fe:dc:f7:b0:b9:51:80: 5f:f6:22:42:42:9f:42:a3:de:e1:dd:32:51:d5:b8: 1a:10:ee:94:7d:24:5e:db:16:af:62:d0:4a:62:8c: 02:81:3a:da:d4:06:32:43:9b:6f:7d:8e:94:ea:9e: a5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:4F:A6:D6:3A:7F:98:8F:C8:B7:70:A1:FA:BD:4E:EA:7B:1A:D9:74 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139952.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.40.0/23 Signature Algorithm: sha256WithRSAEncryption 45:71:8c:19:d0:28:63:66:9b:4d:ad:ab:65:85:a2:26:e4:30: bb:ed:29:e5:6d:a0:c8:e9:bf:6d:39:e2:2e:ec:0d:ba:24:21: 52:73:79:d3:94:b6:bb:ae:c3:f1:ad:ab:40:ee:0c:01:97:b2: 04:f6:60:d2:c5:cd:e7:b5:70:df:7b:e3:ff:f0:dc:06:94:61: 89:e1:d5:be:91:63:01:1b:51:37:34:dc:0a:65:7b:8e:42:dd: 80:65:85:18:09:ff:8d:39:29:06:55:db:0b:14:5b:8e:02:2f: 57:6b:9d:9d:7b:f0:42:53:78:99:75:b1:47:0c:5f:a5:f9:24: c1:e3:bf:f3:ac:5b:63:ee:2a:a5:5a:f8:09:09:ec:23:a5:24: e4:18:16:bc:6b:cf:3c:7e:bf:5f:6e:cc:2a:f1:59:89:81:6a: 22:01:6a:e7:1d:13:a0:0c:46:ef:58:bf:70:3f:3d:71:8f:0a: f7:91:34:83:73:eb:9b:de:a0:5d:86:c0:e9:11:59:b9:93:23: 76:16:05:cb:1e:98:78:cf:b4:03:46:85:45:c1:c0:18:9d:1f: cd:ca:86:fd:4c:29:21:f5:07:5f:d5:ca:97:5d:5a:15:4b:36: fe:ec:ee:0b:fe:18:00:ac:04:5e:1f:c6:a9:41:d8:c3:2f:54: 5c:0d:c5:37 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQTVO1GCCsA9UzMhJpcgTBBdmyk0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDIxOTAxNTUwMFoX DTI3MDIxODAyMDAwMFowMzExMC8GA1UEAxMoRDY0RkE2RDYzQTdGOTg4RkM4Qjc3 MEExRkFCRDRFRUE3QjFBRDk3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANQDjpWkDKHhhF8kwVfSim8wY5gGi4OcLq2x46TcRIeHFtT6gpEDO9ziIvj5 eXlw8x70ul7CQmh6A9B2+cFFGUDQd3n9qFDNlod4SU9rLLcQKxr/8/faUTQ69kBg adPWxHrm8aGKkmq0/hhdZrATgNGU0NlEssqWa63BQJuc89fKBpQVPwnx/m2bmdzs Sc+s9BaoWBGSRolqmw50GbwFYLxOeZxNIBaRJqkvLGyX9Yp3loCMOK2qOfNZ3p6Y 9x25WhJo+7FAcd0O+Dn+3PewuVGAX/YiQkKfQqPe4d0yUdW4GhDulH0kXtsWr2LQ SmKMAoE62tQGMkObb32OlOqepbECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTWT6bW On+Yj8i3cKH6vU7qexrZdDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzOTk1Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ0PKDANBgkqhkiG9w0BAQsFAAOCAQEARXGMGdAoY2abTa2rZYWi JuQwu+0p5W2gyOm/bTniLuwNuiQhUnN505S2u67D8a2rQO4MAZeyBPZg0sXN57Vw 33vj//DcBpRhieHVvpFjARtRNzTcCmV7jkLdgGWFGAn/jTkpBlXbCxRbjgIvV2ud nXvwQlN4mXWxRwxfpfkkweO/86xbY+4qpVr4CQnsI6Uk5BgWvGvPPH6/X27MKvFZ iYFqIgFq5x0ToAxG71i/cD89cY8K95E0g3Prm96gXYbA6RFZuZMjdhYFyx6YeM+0 A0aFRcHAGJ0fzcqG/UwpIfUHX9XKl11aFUs2/uzuC/4YAKwEXh/GqUHYwy9UXA3F Nw== -----END CERTIFICATE-----Generated at Mon Mar 2 03:18:54 2026 by rpki-client