$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139934.roa File: AS139934.roa (raw, json) Hash identifier: S+ICCCbA0E0XkCVbYXzx+mI0y/Zw+vZKcIVibmdBvP0= Subject key identifier: FA:F0:27:8C:4E:08:C1:AD:FE:71:7B:92:12:E9:05:3A:C1:41:AE:76 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6D5B701ACE489797821B795BE987968E14793F18 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139934.roa Signing time: Mon 04 Aug 2025 09:00:00 +0000 ROA not before: Mon 04 Aug 2025 08:55:00 +0000 ROA not after: Mon 03 Aug 2026 09:00:00 +0000 asID: 139934 IP address blocks: 103.227.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 00:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:5b:70:1a:ce:48:97:97:82:1b:79:5b:e9:87:96:8e:14:79:3f:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 4 08:55:00 2025 GMT Not After : Aug 3 09:00:00 2026 GMT Subject: CN=FAF0278C4E08C1ADFE717B9212E9053AC141AE76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2f:41:0c:dd:ae:7c:79:63:90:e0:be:a4:0a: 6e:c1:00:9d:2f:be:0c:e9:ef:0b:b8:51:6b:a7:3f: 23:38:30:65:31:b9:e8:24:d5:0e:10:27:ee:a7:b3: 20:dd:4f:b2:b4:46:65:e4:82:40:ff:5d:cb:ee:f8: c3:42:c1:10:a4:e4:3d:5e:85:81:49:31:f3:e0:2d: 62:b4:93:19:f1:51:93:6b:5c:b1:34:6f:50:0c:6b: ed:d7:38:6c:d2:8e:dd:e3:b8:37:c0:fb:47:08:4a: 66:8a:47:09:cc:26:b6:3d:80:11:ab:16:88:03:de: 4d:38:ba:db:cc:46:0b:86:79:99:6b:e5:f9:1f:6f: 80:bc:ba:e6:53:ae:11:31:f6:21:a2:12:4a:ec:2f: 3e:61:eb:58:f9:43:f5:90:df:58:ca:39:5c:b7:07: 70:43:04:96:c3:94:75:53:11:47:df:31:94:e5:ee: 65:eb:c5:c8:a2:4d:c3:bd:e8:3b:1c:82:15:90:c2: 52:fb:86:ad:d7:c5:c4:86:68:0a:4d:a9:11:d0:bb: eb:01:98:8d:f1:fe:cf:10:58:70:4f:16:45:fd:fb: 35:11:23:16:a4:a4:de:7a:47:08:2a:b2:40:25:e1: 50:03:f2:74:09:5c:5a:b3:26:dd:74:b0:21:64:19: 0c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:F0:27:8C:4E:08:C1:AD:FE:71:7B:92:12:E9:05:3A:C1:41:AE:76 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.106.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:da:25:f9:3f:dd:4c:18:f2:82:fe:b1:1a:44:cf:a4:40:b5: 56:56:75:bc:26:1b:9a:b9:2b:4f:5f:01:d2:07:05:df:1f:97: e8:e2:f1:97:92:20:80:6f:40:25:af:8f:03:9d:ff:e0:18:5b: cb:23:5a:a7:3b:32:ad:40:41:3f:ee:c2:ac:0c:ea:ee:bb:76: 3d:8b:9e:c7:a9:33:40:ff:de:aa:33:ab:7b:d4:16:8c:51:cb: 29:9a:e1:87:79:b5:18:08:c9:29:6b:8b:87:7d:f7:f2:79:95: 30:a9:ae:79:24:f3:d0:ed:5b:f6:a9:a1:c8:7c:a1:f5:0d:9e: 3c:1a:65:9b:36:50:a0:3b:26:88:85:15:d4:4f:a8:7d:3a:90: 92:b7:e9:74:b9:c5:74:c2:ea:6f:9a:9b:06:65:85:6b:7f:3e: 6a:e6:97:54:21:59:09:92:e4:68:a2:ef:26:c4:92:09:e6:c8: 4f:02:80:a2:53:76:72:28:39:53:e0:14:62:42:cc:29:fa:3f: 55:55:5e:7c:26:cc:a0:93:2b:22:4e:2d:db:1f:ae:d0:ee:32: c5:ee:0d:10:2f:4d:ae:42:32:6f:95:84:2f:62:98:53:3a:66: 08:e0:e6:a1:c7:97:e1:81:e2:2a:a4:62:9c:ee:26:a3:fa:05: 71:04:d0:21 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUbVtwGs5Il5eCG3lb6YeWjhR5PxgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgwNDA4NTUwMFoX DTI2MDgwMzA5MDAwMFowMzExMC8GA1UEAxMoRkFGMDI3OEM0RTA4QzFBREZFNzE3 QjkyMTJFOTA1M0FDMTQxQUU3NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKkvQQzdrnx5Y5DgvqQKbsEAnS++DOnvC7hRa6c/IzgwZTG56CTVDhAn7qez IN1PsrRGZeSCQP9dy+74w0LBEKTkPV6FgUkx8+AtYrSTGfFRk2tcsTRvUAxr7dc4 bNKO3eO4N8D7RwhKZopHCcwmtj2AEasWiAPeTTi628xGC4Z5mWvl+R9vgLy65lOu ETH2IaISSuwvPmHrWPlD9ZDfWMo5XLcHcEMElsOUdVMRR98xlOXuZevFyKJNw73o OxyCFZDCUvuGrdfFxIZoCk2pEdC76wGYjfH+zxBYcE8WRf37NREjFqSk3npHCCqy QCXhUAPydAlcWrMm3XSwIWQZDHECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT68CeM TgjBrf5xe5IS6QU6wUGudjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTkzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfjajANBgkqhkiG9w0BAQsFAAOCAQEACtol+T/dTBjygv6xGkTP pEC1VlZ1vCYbmrkrT18B0gcF3x+X6OLxl5IggG9AJa+PA53/4BhbyyNapzsyrUBB P+7CrAzq7rt2PYuex6kzQP/eqjOre9QWjFHLKZrhh3m1GAjJKWuLh3338nmVMKmu eSTz0O1b9qmhyHyh9Q2ePBplmzZQoDsmiIUV1E+ofTqQkrfpdLnFdMLqb5qbBmWF a38+auaXVCFZCZLkaKLvJsSSCebITwKAolN2cig5U+AUYkLMKfo/VVVefCbMoJMr Ik4t2x+u0O4yxe4NEC9NrkIyb5WEL2KYUzpmCODmoceX4YHiKqRinO4mo/oFcQTQ IQ== -----END CERTIFICATE-----Generated at Mon Nov 3 19:31:46 2025 by rpki-client