Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AS38060.roa
File: AS38060.roa (raw, json)
Hash identifier: gveH1F5rbDZtDttJs7VnPZn/PQ4utt9CdaN1LCZDGD0=
Subject key identifier: 31:34:A7:96:68:3A:F6:E0:F0:D2:68:13:8D:12:E7:D2:11:1C:7A:7A
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 5C517F438C532B4C2A9836729203ADA6ED111348
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AS38060.roa
Signing time: Thu 05 Mar 2026 01:55:51 +0000
ROA not before: Thu 05 Mar 2026 01:50:51 +0000
ROA not after: Thu 04 Mar 2027 01:55:51 +0000
asID: 38060
IP address blocks: 112.78.132.0/24 maxlen: 24
112.78.134.0/24 maxlen: 24
112.78.142.0/24 maxlen: 24
112.78.144.0/24 maxlen: 24
112.78.150.0/24 maxlen: 24
112.78.151.0/24 maxlen: 24
112.78.153.0/24 maxlen: 24
112.78.178.0/24 maxlen: 24
112.78.191.0/24 maxlen: 24
117.102.66.0/24 maxlen: 24
117.102.72.0/24 maxlen: 24
117.102.75.0/24 maxlen: 24
117.102.79.0/24 maxlen: 24
117.102.81.0/24 maxlen: 24
117.102.97.0/24 maxlen: 24
117.102.120.0/24 maxlen: 24
118.99.67.0/24 maxlen: 24
118.99.72.0/24 maxlen: 24
118.99.107.0/24 maxlen: 24
118.99.109.0/24 maxlen: 24
118.99.110.0/24 maxlen: 24
118.99.112.0/24 maxlen: 24
118.99.116.0/24 maxlen: 24
118.99.123.0/24 maxlen: 24
182.253.6.0/24 maxlen: 24
182.253.13.0/24 maxlen: 24
182.253.14.0/24 maxlen: 24
182.253.23.0/24 maxlen: 24
182.253.36.0/24 maxlen: 24
182.253.40.0/24 maxlen: 24
182.253.42.0/24 maxlen: 24
182.253.44.0/24 maxlen: 24
182.253.45.0/24 maxlen: 24
182.253.62.0/24 maxlen: 24
182.253.87.0/24 maxlen: 24
182.253.98.0/24 maxlen: 24
182.253.106.0/24 maxlen: 24
182.253.116.0/24 maxlen: 24
182.253.122.0/24 maxlen: 24
182.253.123.0/24 maxlen: 24
182.253.124.0/24 maxlen: 24
182.253.127.0/24 maxlen: 24
182.253.131.0/24 maxlen: 24
182.253.133.0/24 maxlen: 24
182.253.137.0/24 maxlen: 24
182.253.139.0/24 maxlen: 24
182.253.151.0/24 maxlen: 24
182.253.176.0/22 maxlen: 22
182.253.185.0/24 maxlen: 24
182.253.186.0/24 maxlen: 24
182.253.192.0/24 maxlen: 24
182.253.194.0/24 maxlen: 24
182.253.203.0/24 maxlen: 24
182.253.215.0/24 maxlen: 24
182.253.217.0/24 maxlen: 24
182.253.228.0/24 maxlen: 24
182.253.242.0/24 maxlen: 24
182.253.243.0/24 maxlen: 24
182.253.244.0/24 maxlen: 24
182.253.245.0/24 maxlen: 24
182.253.250.0/24 maxlen: 24
182.253.251.0/24 maxlen: 24
202.169.37.0/24 maxlen: 24
202.169.38.0/24 maxlen: 24
202.169.46.0/24 maxlen: 24
202.169.56.0/24 maxlen: 24
203.142.72.0/24 maxlen: 24
203.142.74.0/24 maxlen: 24
203.142.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.mft
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 22 Mar 2026 07:42:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:51:7f:43:8c:53:2b:4c:2a:98:36:72:92:03:ad:a6:ed:11:13:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Mar 5 01:50:51 2026 GMT
Not After : Mar 4 01:55:51 2027 GMT
Subject: CN=3134A796683AF6E0F0D268138D12E7D2111C7A7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a6:25:54:11:c6:f8:18:0b:b6:0a:93:56:12:
54:68:05:05:54:6e:e7:b6:ab:86:93:00:aa:c5:03:
3a:91:d4:51:46:b9:b4:40:83:43:aa:45:4d:75:52:
29:40:1f:1a:89:99:37:7c:42:00:3c:28:41:1f:c7:
2d:b3:8c:21:d6:1c:db:e0:6d:19:4a:53:9f:b9:08:
36:51:82:ee:02:a5:97:1d:0a:64:5d:cd:93:72:36:
23:ad:93:59:37:cb:6d:90:b3:0c:a3:1f:3f:db:46:
9e:26:fb:45:2a:4c:8d:42:81:c5:34:90:be:37:04:
e0:51:0b:bc:18:4d:f4:e3:c1:59:89:37:0a:3a:be:
87:b7:c1:34:25:f1:cc:00:bb:8c:0a:20:14:20:25:
6d:03:dd:b6:b4:c6:42:b4:08:2b:37:d8:9d:83:a6:
27:e2:45:57:a4:48:52:38:f7:34:84:e6:26:f4:d9:
4a:63:04:6b:fb:88:7b:93:e7:06:c6:c4:e3:01:0b:
33:02:25:62:78:c5:ba:e2:a0:ed:2e:c7:3b:84:e4:
11:9b:25:90:51:90:b1:b9:88:d8:93:a9:04:65:da:
df:34:2c:59:59:23:4f:0a:9f:0e:a2:d0:23:69:6d:
77:f2:74:88:d2:f3:49:10:86:ae:0f:d1:18:00:aa:
48:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:34:A7:96:68:3A:F6:E0:F0:D2:68:13:8D:12:E7:D2:11:1C:7A:7A
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AS38060.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.78.132.0/24
112.78.134.0/24
112.78.142.0/24
112.78.144.0/24
112.78.150.0/23
112.78.153.0/24
112.78.178.0/24
112.78.191.0/24
117.102.66.0/24
117.102.72.0/24
117.102.75.0/24
117.102.79.0/24
117.102.81.0/24
117.102.97.0/24
117.102.120.0/24
118.99.67.0/24
118.99.72.0/24
118.99.107.0/24
118.99.109.0-118.99.110.255
118.99.112.0/24
118.99.116.0/24
118.99.123.0/24
182.253.6.0/24
182.253.13.0-182.253.14.255
182.253.23.0/24
182.253.36.0/24
182.253.40.0/24
182.253.42.0/24
182.253.44.0/23
182.253.62.0/24
182.253.87.0/24
182.253.98.0/24
182.253.106.0/24
182.253.116.0/24
182.253.122.0-182.253.124.255
182.253.127.0/24
182.253.131.0/24
182.253.133.0/24
182.253.137.0/24
182.253.139.0/24
182.253.151.0/24
182.253.176.0/22
182.253.185.0-182.253.186.255
182.253.192.0/24
182.253.194.0/24
182.253.203.0/24
182.253.215.0/24
182.253.217.0/24
182.253.228.0/24
182.253.242.0-182.253.245.255
182.253.250.0/23
202.169.37.0-202.169.38.255
202.169.46.0/24
202.169.56.0/24
203.142.72.0/24
203.142.74.0/24
203.142.76.0/24
Signature Algorithm: sha256WithRSAEncryption
69:a1:f5:d2:80:53:02:52:fd:73:1b:cd:11:ed:3e:03:bc:52:
a3:ce:f6:0e:8d:9e:14:5f:e0:b2:d7:a6:b3:eb:00:d7:e1:93:
11:d7:92:a1:2b:39:ac:d1:55:05:d1:c1:30:b1:fe:98:66:b4:
7b:24:ff:36:36:23:8a:61:d1:ae:6a:c0:3b:4c:42:06:c3:8a:
9d:d6:ff:6e:e1:85:b8:f5:f8:18:7a:97:82:8b:cb:80:79:c2:
7e:62:5e:99:b2:b7:ff:42:e7:5d:49:03:28:bb:d3:79:7f:c0:
8b:c5:be:10:e6:3d:9f:8a:bf:6f:96:d1:f2:80:fe:d9:a1:3f:
e3:d0:88:80:11:e1:57:de:f4:4f:0b:3f:34:a2:ac:73:6b:bd:
95:78:2d:4d:ad:7c:1f:71:b2:86:d2:43:4f:38:52:1a:f4:58:
f9:8d:52:5d:8b:38:73:d0:db:d0:97:df:6b:55:79:73:23:b8:
b5:33:6e:90:ee:e7:58:51:b5:f0:f0:6c:08:3a:9d:ab:fd:bd:
65:69:8f:aa:69:6a:4a:92:91:58:92:8d:1a:19:24:d2:f7:ff:
c7:fd:ad:e1:2c:b0:c6:24:6f:19:4c:e2:2c:a8:55:49:74:92:
2b:6f:9b:b7:f2:8f:5b:c2:a2:37:c2:9b:cf:15:71:74:6b:f7:
47:4e:24:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 20 04:37:20 2026 by rpki-client