$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138517.roa File: AS138517.roa (raw, json) Hash identifier: 2Gsjh6mJk5148N99AYc464rbAd8+qhU050DhPOyCZ8s= Subject key identifier: CE:3B:CB:0E:EE:86:DD:91:CF:23:D0:E4:B1:65:C4:56:19:26:A2:D7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 18B9C222CBF7CA16634BC1781DF57527D72390AA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138517.roa Signing time: Mon 02 Jun 2025 03:24:10 +0000 ROA not before: Mon 02 Jun 2025 03:19:10 +0000 ROA not after: Mon 01 Jun 2026 03:24:10 +0000 asID: 138517 IP address blocks: 163.227.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 10:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:b9:c2:22:cb:f7:ca:16:63:4b:c1:78:1d:f5:75:27:d7:23:90:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 2 03:19:10 2025 GMT Not After : Jun 1 03:24:10 2026 GMT Subject: CN=CE3BCB0EEE86DD91CF23D0E4B165C4561926A2D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0c:11:38:02:07:63:e5:92:ea:ad:69:ad:41: 1a:89:b9:a6:c0:dd:3e:20:c9:3c:c6:95:6e:88:a7: e8:2d:bb:d5:bb:49:49:f3:0a:19:2f:e5:5d:92:08: 4e:dc:ee:43:2a:07:16:7f:05:29:4f:96:ca:9c:37: c5:f1:56:3e:48:19:b6:28:32:f9:8c:38:70:a9:90: e5:3f:f6:ec:17:39:4a:1c:2f:93:46:f1:18:9f:71: 60:fc:40:94:a9:c1:e7:09:22:b0:ae:9d:32:c0:72: cf:18:4f:cc:1b:19:c8:ab:a8:0f:32:4b:e8:35:78: 15:98:0b:9f:d2:cb:fb:86:b8:5d:88:db:ca:22:27: f9:c9:c0:6f:f9:a9:b2:77:7e:1e:67:25:75:10:85: d9:01:5a:b3:b7:90:85:1e:28:41:9e:ec:74:43:4e: 71:9b:50:3c:6c:a4:ec:0a:75:64:19:c5:1a:61:c6: c9:e7:ce:72:6f:92:51:98:19:db:36:49:49:e7:4e: 3b:ff:e3:43:12:98:7e:e7:b8:57:92:4f:f3:38:69: b9:1a:7f:79:b2:19:c5:3e:f2:2b:13:3d:28:08:28: 60:3b:bc:c6:52:b9:a2:44:74:52:c0:fd:03:4b:25: 80:62:95:50:9d:b8:f6:cc:6d:70:e5:ba:e5:59:8a: d4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:3B:CB:0E:EE:86:DD:91:CF:23:D0:E4:B1:65:C4:56:19:26:A2:D7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.32.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:e4:2c:26:b1:f3:52:c1:8e:8a:fb:96:e8:c6:3b:fc:4f:f9: c4:f9:37:c6:81:92:43:32:4b:76:61:6e:10:de:a2:dd:c4:c2: be:9d:b1:3d:ea:40:c3:e2:1d:d3:8a:55:ad:0e:1f:19:bd:96: ba:80:bc:9f:f1:ff:06:c6:11:0e:92:44:be:4a:00:86:08:ae: 87:75:3d:ed:8a:8f:4f:8e:b8:b5:53:6c:fb:e3:9a:1a:98:d0: dd:25:5b:70:93:cd:10:8f:6b:1c:1b:e1:cd:8a:68:14:18:f6: 7e:cc:eb:5b:05:d4:8b:92:21:9d:60:f2:1d:9e:46:ea:99:cc: db:78:4c:fd:93:af:6c:1f:36:15:05:85:12:b3:a1:5c:f9:4d: 1d:71:b4:23:c0:65:dc:f6:2a:25:90:f8:42:0b:54:de:47:f0: 38:37:aa:50:13:1d:a0:4b:14:e9:fc:53:4a:99:c6:e0:86:54: 78:2c:de:98:15:89:9c:71:6f:ee:d9:99:68:96:96:5f:db:d7: 4c:f7:df:fd:90:fb:01:fb:2f:21:fc:28:44:05:97:20:2e:74: 8c:7c:98:f3:ac:2b:2a:c7:61:52:71:4f:9c:fb:c9:7d:ba:08: 09:00:b0:bc:1f:ed:b9:7f:6d:24:eb:dd:b1:76:cb:f0:97:cb: f8:91:08:f4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGLnCIsv3yhZjS8F4HfV1J9cjkKowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMjAzMTkxMFoX DTI2MDYwMTAzMjQxMFowMzExMC8GA1UEAxMoQ0UzQkNCMEVFRTg2REQ5MUNGMjNE MEU0QjE2NUM0NTYxOTI2QTJENzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMMETgCB2Plkuqtaa1BGom5psDdPiDJPMaVboin6C271btJSfMKGS/lXZII TtzuQyoHFn8FKU+Wypw3xfFWPkgZtigy+Yw4cKmQ5T/27Bc5Shwvk0bxGJ9xYPxA lKnB5wkisK6dMsByzxhPzBsZyKuoDzJL6DV4FZgLn9LL+4a4XYjbyiIn+cnAb/mp snd+HmcldRCF2QFas7eQhR4oQZ7sdENOcZtQPGyk7Ap1ZBnFGmHGyefOcm+SUZgZ 2zZJSedOO//jQxKYfue4V5JP8zhpuRp/ebIZxT7yKxM9KAgoYDu8xlK5okR0UsD9 A0slgGKVUJ249sxtcOW65VmK1BkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTOO8sO 7obdkc8j0OSxZcRWGSai1zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODUxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaPjIDANBgkqhkiG9w0BAQsFAAOCAQEAfeQsJrHzUsGOivuW6MY7 /E/5xPk3xoGSQzJLdmFuEN6i3cTCvp2xPepAw+Id04pVrQ4fGb2WuoC8n/H/BsYR DpJEvkoAhgiuh3U97YqPT464tVNs++OaGpjQ3SVbcJPNEI9rHBvhzYpoFBj2fszr WwXUi5IhnWDyHZ5G6pnM23hM/ZOvbB82FQWFErOhXPlNHXG0I8Bl3PYqJZD4QgtU 3kfwODeqUBMdoEsU6fxTSpnG4IZUeCzemBWJnHFv7tmZaJaWX9vXTPff/ZD7Afsv IfwoRAWXIC50jHyY86wrKsdhUnFPnPvJfboICQCwvB/tuX9tJOvdsXbL8JfL+JEI 9A== -----END CERTIFICATE-----Generated at Sat Jun 7 05:47:04 2025 by rpki-client