$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138115.roa File: AS138115.roa (raw, json) Hash identifier: n/iRNk33ReH37HSQ+HVD3pGEpGHUdrhTpdaXakbJqcw= Subject key identifier: 09:46:F2:56:01:70:C4:44:F7:62:BA:98:0F:B8:8D:88:00:02:A9:D5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0F97CCFC0D33010A37DC31E13CF34D1C544B058B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138115.roa Signing time: Tue 21 Oct 2025 03:00:00 +0000 ROA not before: Tue 21 Oct 2025 02:55:00 +0000 ROA not after: Tue 20 Oct 2026 03:00:00 +0000 asID: 138115 IP address blocks: 36.50.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 18:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:97:cc:fc:0d:33:01:0a:37:dc:31:e1:3c:f3:4d:1c:54:4b:05:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 21 02:55:00 2025 GMT Not After : Oct 20 03:00:00 2026 GMT Subject: CN=0946F2560170C444F762BA980FB88D880002A9D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1f:08:f9:a2:ec:dd:ae:fb:a9:29:f1:8f:87: bc:54:81:b0:93:6a:13:40:84:58:05:3d:32:64:c7: 26:04:ea:5d:ba:db:c2:54:6c:74:f0:c8:60:80:cb: 8c:f2:fb:5e:85:06:02:12:b2:dc:89:82:11:3c:55: 10:6a:54:ff:54:1f:db:6d:17:3f:8f:eb:c8:98:61: 4e:89:75:9d:c6:75:6c:80:d6:cc:1c:e0:ec:d4:2b: 95:ca:ce:af:dd:0d:95:d5:b2:b3:be:a0:a3:5f:4f: 9a:06:53:5d:83:79:3b:0c:f2:ec:91:69:b7:b4:31: 9d:95:e9:49:36:29:43:84:60:e9:09:94:63:93:35: 38:60:a5:e8:7f:d7:1e:f6:ec:15:1a:7b:df:3d:e3: 4c:4c:2e:6e:02:58:dd:a6:f3:37:c8:ce:5f:f3:34: 58:53:c1:95:15:59:d6:d7:e4:ea:d2:ce:d9:50:4a: 87:de:f5:b6:38:cc:62:c4:32:2b:25:51:17:be:37: de:63:fd:c6:ac:ef:ca:0a:a2:37:1f:12:6b:2e:c3: 60:16:53:16:ae:15:fb:b0:53:66:2b:0b:c1:1b:8a: 91:cc:27:fa:36:08:f7:73:2e:bd:4f:36:c8:a8:d7: b2:74:70:ad:c9:27:76:50:82:69:7d:45:ea:29:29: a1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:46:F2:56:01:70:C4:44:F7:62:BA:98:0F:B8:8D:88:00:02:A9:D5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138115.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.77.0/24 Signature Algorithm: sha256WithRSAEncryption 71:fc:a2:bb:18:25:bf:ed:09:fe:4d:8c:87:88:07:d2:a0:04: ac:b8:e7:db:c7:40:d0:a9:5b:3f:0f:4b:85:e6:0f:c6:78:1f: 19:02:f0:f1:db:d6:75:d5:85:35:22:2c:4a:90:7a:39:41:f2: 4f:1d:52:81:65:ac:2d:33:4c:7d:f8:7c:4f:e2:b4:92:e0:df: 05:7f:b1:47:a9:32:51:58:8d:33:96:17:d9:1b:0b:12:23:7d: a2:cd:68:e6:37:f4:d4:15:c4:a9:77:a7:b9:c4:8f:da:21:f8: 13:5e:be:08:3d:b2:8c:29:3d:03:5c:36:54:b2:fe:97:6b:e5: 72:cb:22:82:95:2a:f7:a6:87:2d:85:09:60:91:fc:9b:f1:54: 35:7c:93:20:01:c0:bb:05:96:48:54:78:2e:e7:ca:27:c6:f8: df:e1:16:a1:d5:cf:c3:35:2c:f6:c6:38:a4:92:a0:4e:2b:e7: dd:b3:9b:cd:de:c8:5f:2e:4a:cd:cf:a1:91:0f:be:88:53:1b: 7a:07:f6:c1:0a:4f:b6:a6:cd:90:f0:c6:9d:68:b2:0d:1e:82: 73:21:91:58:82:95:19:d4:88:66:fe:6e:a3:78:60:04:af:3e: 21:0f:dc:d2:aa:f9:ab:0a:c3:d7:1b:59:dc:ad:9c:76:e6:b1: dc:0f:29:1e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUD5fM/A0zAQo33DHhPPNNHFRLBYswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAyMTAyNTUwMFoX DTI2MTAyMDAzMDAwMFowMzExMC8GA1UEAxMoMDk0NkYyNTYwMTcwQzQ0NEY3NjJC QTk4MEZCODhEODgwMDAyQTlENTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQfCPmi7N2u+6kp8Y+HvFSBsJNqE0CEWAU9MmTHJgTqXbrbwlRsdPDIYIDL jPL7XoUGAhKy3ImCETxVEGpU/1Qf220XP4/ryJhhTol1ncZ1bIDWzBzg7NQrlcrO r90NldWys76go19PmgZTXYN5Owzy7JFpt7QxnZXpSTYpQ4Rg6QmUY5M1OGCl6H/X HvbsFRp73z3jTEwubgJY3abzN8jOX/M0WFPBlRVZ1tfk6tLO2VBKh971tjjMYsQy KyVRF7433mP9xqzvygqiNx8Say7DYBZTFq4V+7BTZisLwRuKkcwn+jYI93MuvU82 yKjXsnRwrckndlCCaX1F6ikpoccCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQJRvJW AXDERPdiupgPuI2IAAKp1TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODExNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACQyTTANBgkqhkiG9w0BAQsFAAOCAQEAcfyiuxglv+0J/k2Mh4gH 0qAErLjn28dA0KlbPw9LheYPxngfGQLw8dvWddWFNSIsSpB6OUHyTx1SgWWsLTNM ffh8T+K0kuDfBX+xR6kyUViNM5YX2RsLEiN9os1o5jf01BXEqXenucSP2iH4E16+ CD2yjCk9A1w2VLL+l2vlcssigpUq96aHLYUJYJH8m/FUNXyTIAHAuwWWSFR4LufK J8b43+EWodXPwzUs9sY4pJKgTivn3bObzd7IXy5Kzc+hkQ++iFMbegf2wQpPtqbN kPDGnWiyDR6CcyGRWIKVGdSIZv5uo3hgBK8+IQ/c0qr5qwrD1xtZ3K2cduax3A8p Hg== -----END CERTIFICATE-----Generated at Sat Oct 25 08:51:59 2025 by rpki-client