$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139421.roa File: AS139421.roa (raw, json) Hash identifier: 7iIs/pRqtyrBvtrqs0glzEyGbXt6Fke6yzqhWLQIVds= Subject key identifier: A9:09:A0:3B:C1:EC:55:59:3A:1F:A9:C7:4F:61:AB:AB:CB:FB:41:CA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3FDADF9A827BEEF20BB772BB10446CC6118436AC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139421.roa Signing time: Mon 04 Aug 2025 04:00:00 +0000 ROA not before: Mon 04 Aug 2025 03:55:00 +0000 ROA not after: Mon 03 Aug 2026 04:00:00 +0000 asID: 139421 IP address blocks: 2405:6b40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 13:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:da:df:9a:82:7b:ee:f2:0b:b7:72:bb:10:44:6c:c6:11:84:36:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 4 03:55:00 2025 GMT Not After : Aug 3 04:00:00 2026 GMT Subject: CN=A909A03BC1EC55593A1FA9C74F61ABABCBFB41CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:52:85:34:b1:43:54:c3:13:5d:70:f7:cc:68: 9b:4b:33:c3:29:ae:3d:20:d1:96:0e:fe:e6:f6:5a: 00:90:7f:6a:fb:3a:79:e8:33:9f:3d:8d:cf:6c:ab: e6:e5:70:27:8c:35:0e:73:7c:3b:dc:cb:e8:39:de: 3d:94:77:1d:f8:47:17:e8:76:62:c1:e2:73:46:88: bd:3c:36:a1:2e:bd:b3:a5:9d:dc:a5:36:51:c9:c2: f8:44:82:a7:a1:f1:22:8f:5e:af:72:35:0e:9c:94: 35:37:8f:c9:ad:80:07:3d:59:0c:9e:3a:7b:3f:af: 5e:e6:d8:7c:76:bb:40:e1:c1:98:a7:c5:6c:92:79: 15:86:df:d8:42:05:d2:a4:42:d9:83:b6:a6:ef:f0: 5e:d4:55:c5:ca:d6:1b:51:08:9e:aa:02:d2:5e:4d: 6a:2a:e7:db:88:da:b3:82:da:c7:c5:a2:45:f1:78: ac:6a:24:4c:dd:82:fa:69:f2:aa:d0:3b:bd:58:7c: 28:8a:93:06:2a:03:0e:18:82:70:86:a3:0b:b3:a1: 38:84:60:29:60:59:c2:6f:3b:49:6a:e9:39:d7:95: f8:6c:ec:a8:0b:d6:cd:d4:5b:8c:97:89:22:e2:96: 6f:7f:df:ea:c7:fc:32:52:d3:14:17:85:fa:03:1a: e8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:09:A0:3B:C1:EC:55:59:3A:1F:A9:C7:4F:61:AB:AB:CB:FB:41:CA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139421.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6b40::/32 Signature Algorithm: sha256WithRSAEncryption 4f:cb:9e:c2:97:2c:ee:af:10:f8:da:5f:32:cd:f8:58:3e:3f: 0d:dc:06:06:65:07:e9:35:f3:45:3f:30:1d:1a:a9:bb:5c:71: d4:aa:a1:7a:f6:60:26:2c:62:9b:80:d9:d0:73:9f:66:94:a5: 7b:ff:57:9c:9c:8e:d1:c3:3a:05:c6:72:80:e8:19:6f:99:37: 45:8f:41:5a:81:37:f6:4a:dd:44:2e:eb:8c:8c:af:78:ff:a4: 67:84:fe:44:e3:45:04:59:92:63:ea:b9:a0:8f:06:0b:27:11: b0:9f:66:f4:a1:34:05:f3:80:74:19:cf:2b:cb:7c:02:14:7c: 5a:a0:21:55:49:a7:23:31:59:08:e0:91:fb:8b:dc:7b:c7:d5: 15:1e:52:6b:ec:26:eb:95:8c:54:d2:1b:41:73:dc:91:cc:49: 06:8f:53:c7:61:f0:6b:02:32:db:6b:08:e4:b0:dc:b8:2d:4d: a3:b5:f3:2e:a6:d9:f6:86:de:83:cd:c7:78:c6:cb:5f:92:de: b4:5f:bb:6a:b5:d3:4e:49:3d:96:0c:9b:b7:87:c0:24:2d:24: a1:ff:4a:6b:57:cb:4e:ae:b0:d3:0b:c7:8a:59:3a:8d:76:86: 35:c9:8a:26:e4:df:2f:d2:cd:d6:10:c9:e3:82:ae:d6:7f:06: 4c:74:04:58 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUP9rfmoJ77vILt3K7EERsxhGENqwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgwNDAzNTUwMFoX DTI2MDgwMzA0MDAwMFowMzExMC8GA1UEAxMoQTkwOUEwM0JDMUVDNTU1OTNBMUZB OUM3NEY2MUFCQUJDQkZCNDFDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANdShTSxQ1TDE11w98xom0szwymuPSDRlg7+5vZaAJB/avs6eegznz2Nz2yr 5uVwJ4w1DnN8O9zL6DnePZR3HfhHF+h2YsHic0aIvTw2oS69s6Wd3KU2UcnC+ESC p6HxIo9er3I1DpyUNTePya2ABz1ZDJ46ez+vXubYfHa7QOHBmKfFbJJ5FYbf2EIF 0qRC2YO2pu/wXtRVxcrWG1EInqoC0l5Nairn24jas4Lax8WiRfF4rGokTN2C+mny qtA7vVh8KIqTBioDDhiCcIajC7OhOIRgKWBZwm87SWrpOdeV+GzsqAvWzdRbjJeJ IuKWb3/f6sf8MlLTFBeF+gMa6OECAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSpCaA7 wexVWTofqcdPYaury/tByjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTQyMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQFa0AwDQYJKoZIhvcNAQELBQADggEBAE/LnsKXLO6vEPjaXzLN +Fg+Pw3cBgZlB+k180U/MB0aqbtccdSqoXr2YCYsYpuA2dBzn2aUpXv/V5ycjtHD OgXGcoDoGW+ZN0WPQVqBN/ZK3UQu64yMr3j/pGeE/kTjRQRZkmPquaCPBgsnEbCf ZvShNAXzgHQZzyvLfAIUfFqgIVVJpyMxWQjgkfuL3HvH1RUeUmvsJuuVjFTSG0Fz 3JHMSQaPU8dh8GsCMttrCOSw3LgtTaO18y6m2faG3oPNx3jGy1+S3rRfu2q1005J PZYMm7eHwCQtJKH/SmtXy06usNMLx4pZOo12hjXJiibk3y/SzdYQyeOCrtZ/Bkx0 BFg= -----END CERTIFICATE-----Generated at Wed Aug 6 03:58:46 2025 by rpki-client