$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138881.roa File: AS138881.roa (raw, json) Hash identifier: +uUyvrDaStjCuIRCYBO6EXN5/LZxiGSdr/BQOgZBy1k= Subject key identifier: A0:46:EF:1E:D7:E2:58:6F:6E:26:EB:F2:21:0A:F7:B1:69:FD:E8:E7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 41AF4D7A9D586CDE7C7EF3606D201EAD8070F729 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138881.roa Signing time: Tue 10 Feb 2026 14:08:09 +0000 ROA not before: Tue 10 Feb 2026 14:03:09 +0000 ROA not after: Tue 09 Feb 2027 14:08:09 +0000 asID: 138881 IP address blocks: 203.210.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:af:4d:7a:9d:58:6c:de:7c:7e:f3:60:6d:20:1e:ad:80:70:f7:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 10 14:03:09 2026 GMT Not After : Feb 9 14:08:09 2027 GMT Subject: CN=A046EF1ED7E2586F6E26EBF2210AF7B169FDE8E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:65:82:f7:e1:0e:be:c9:18:01:09:f4:00:88: 57:74:8d:e5:d5:8e:48:1e:fd:15:93:b9:d8:3e:8f: 6a:27:0c:f0:c1:c8:50:8c:4f:3a:41:ae:70:78:56: 6f:36:f0:ec:b5:76:f6:e7:e7:82:99:26:47:d0:6c: bf:0d:69:a5:51:9d:07:b7:04:ef:0e:a3:37:f5:d2: 93:85:e3:47:cd:10:0e:ab:95:11:a3:f6:9b:aa:0c: 0c:0d:f6:ee:bd:7d:92:57:10:90:35:e8:2a:2d:9a: 1e:67:03:18:18:ef:7d:b0:ac:b1:4e:76:da:e6:52: 36:3f:15:e4:ec:05:04:52:72:99:27:1a:13:18:51: 94:2e:90:67:76:16:20:55:b4:cf:36:95:3e:42:03: 37:0a:35:25:f2:8d:ad:44:c0:e0:95:1e:4f:9e:be: 46:f2:6a:1a:48:37:cb:5f:1f:6b:24:6f:23:f9:20: 1f:fc:5a:7c:8e:cc:69:03:ea:5e:11:60:ce:7d:b3: db:af:4c:ee:b1:86:bd:43:30:59:54:69:b4:9d:22: 7f:24:60:cc:7d:72:d0:f6:8c:2a:3c:dc:2f:3e:ae: 8b:90:2a:94:71:d4:57:01:d5:0b:26:a2:9e:c3:d9: 9f:27:48:10:ba:08:56:94:09:ac:01:f3:7a:06:5f: fc:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:46:EF:1E:D7:E2:58:6F:6E:26:EB:F2:21:0A:F7:B1:69:FD:E8:E7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138881.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.210.94.0/23 Signature Algorithm: sha256WithRSAEncryption 60:f5:81:e5:f0:2f:c1:43:99:e4:2a:07:26:b8:86:b9:ae:91: fd:5c:f3:a1:6a:cf:4b:7b:52:6c:16:61:48:5d:40:d9:ca:44: 33:a2:b9:60:d6:51:1e:b7:d8:b4:d1:ef:b5:1b:32:14:c7:e9: d0:75:bb:2a:8d:4b:2d:43:98:30:07:89:24:bd:68:10:a8:39: 7c:26:c9:c6:9d:d3:40:14:a8:7d:3d:af:26:b8:5b:37:91:1d: 18:e9:8a:cf:aa:ab:ac:00:85:7d:d1:fe:89:a5:aa:8c:c5:3c: ea:62:d9:a6:b7:5c:80:08:b6:75:89:e9:cb:f5:3f:b0:b9:81: 87:0f:0e:c2:76:1e:30:51:32:9d:6d:de:69:ea:73:80:eb:e9: 07:6b:ea:18:49:65:ad:43:68:02:2d:12:1c:08:ca:47:3c:b3: 49:2d:bf:b3:61:10:ba:c5:50:9b:2d:ca:b5:6f:9d:bb:b5:be: 02:ef:26:73:d2:6d:89:a0:5c:9f:b8:5a:59:a8:75:ed:70:16: 1d:8c:9d:33:10:81:5e:cb:15:ad:4b:45:a3:5d:bf:58:fa:cc: eb:98:f0:ed:d0:dd:3f:d7:32:d0:54:27:35:c3:25:9a:5b:5b: 8f:29:84:3a:17:a8:64:67:cd:04:d6:f8:ba:3f:cc:ce:e4:ee: 5b:ad:ab:c2 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQa9Nep1YbN58fvNgbSAerYBw9ykwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDIxMDE0MDMwOVoX DTI3MDIwOTE0MDgwOVowMzExMC8GA1UEAxMoQTA0NkVGMUVEN0UyNTg2RjZFMjZF QkYyMjEwQUY3QjE2OUZERThFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMtlgvfhDr7JGAEJ9ACIV3SN5dWOSB79FZO52D6PaicM8MHIUIxPOkGucHhW bzbw7LV29ufngpkmR9Bsvw1ppVGdB7cE7w6jN/XSk4XjR80QDquVEaP2m6oMDA32 7r19klcQkDXoKi2aHmcDGBjvfbCssU522uZSNj8V5OwFBFJymScaExhRlC6QZ3YW IFW0zzaVPkIDNwo1JfKNrUTA4JUeT56+RvJqGkg3y18fayRvI/kgH/xafI7MaQPq XhFgzn2z269M7rGGvUMwWVRptJ0ifyRgzH1y0PaMKjzcLz6ui5AqlHHUVwHVCyai nsPZnydIELoIVpQJrAHzegZf/P0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSgRu8e 1+JYb24m6/IhCvexaf3o5zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODg4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAcvSXjANBgkqhkiG9w0BAQsFAAOCAQEAYPWB5fAvwUOZ5CoHJriG ua6R/VzzoWrPS3tSbBZhSF1A2cpEM6K5YNZRHrfYtNHvtRsyFMfp0HW7Ko1LLUOY MAeJJL1oEKg5fCbJxp3TQBSofT2vJrhbN5EdGOmKz6qrrACFfdH+iaWqjMU86mLZ prdcgAi2dYnpy/U/sLmBhw8OwnYeMFEynW3eaepzgOvpB2vqGEllrUNoAi0SHAjK RzyzSS2/s2EQusVQmy3KtW+du7W+Au8mc9JtiaBcn7haWah17XAWHYydMxCBXssV rUtFo12/WPrM65jw7dDdP9cy0FQnNcMlmltbjymEOheoZGfNBNb4uj/MzuTuW62r wg== -----END CERTIFICATE-----Generated at Mon Mar 2 14:56:25 2026 by rpki-client