$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38750.roa File: AS38750.roa (raw, json) Hash identifier: 54PYKTgcK7b9P/CSeI+x0FAKHL8psyRdD2ctEZTRaBg= Subject key identifier: 67:18:E9:16:67:C0:52:D3:80:37:44:09:36:0E:1D:74:17:B4:95:84 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5E5D4BC94BD08B0ACADD9853E11B17F32F00DAE3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38750.roa Signing time: Wed 02 Oct 2024 04:00:00 +0000 ROA not before: Wed 02 Oct 2024 03:55:00 +0000 ROA not after: Wed 01 Oct 2025 04:00:00 +0000 asID: 38750 IP address blocks: 121.50.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:5d:4b:c9:4b:d0:8b:0a:ca:dd:98:53:e1:1b:17:f3:2f:00:da:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 2 03:55:00 2024 GMT Not After : Oct 1 04:00:00 2025 GMT Subject: CN=6718E91667C052D380374409360E1D7417B49584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:67:72:73:e6:91:e4:86:de:40:a6:e2:b1:50: bc:ef:29:8c:8b:88:8b:c0:c5:bb:38:72:04:0c:f9: 75:e4:89:2b:9d:ed:c0:d3:e0:77:e7:65:c1:21:5e: 08:2c:55:36:aa:9b:62:10:ff:97:cd:9c:63:35:51: 56:66:b3:f9:5c:1f:cc:84:4a:e8:30:f0:79:b5:01: df:e2:e8:18:40:56:72:20:d9:6a:16:5d:3b:c0:1b: 25:e3:05:be:8c:43:8b:8b:8f:b5:1c:dd:3b:d2:0b: b3:9e:20:0d:96:e3:92:7a:19:5a:1e:32:24:4d:eb: f7:e6:7d:4d:be:88:2c:48:a8:7c:fd:75:56:59:8f: a2:56:a0:63:01:8c:45:29:1a:c6:0c:99:0d:db:a3: 74:97:53:86:77:e2:37:82:64:45:bc:80:07:1e:18: 27:aa:db:4c:d4:83:70:f8:06:f5:c8:af:c8:99:c7: cf:af:00:e4:01:f6:62:b6:dd:e5:ef:11:e3:4a:5e: 27:58:f3:25:ff:31:35:b1:f0:a5:e3:e7:fa:30:de: c6:ad:c1:d6:db:3f:c3:d5:6c:6f:8c:fd:a1:7a:6e: 2c:9b:96:62:c8:d8:22:96:57:96:1f:81:a4:98:b4: d9:3f:5c:c0:e9:70:3d:0d:3d:65:cf:ac:2b:58:82: c3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:18:E9:16:67:C0:52:D3:80:37:44:09:36:0E:1D:74:17:B4:95:84 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38750.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.50.32.0/21 Signature Algorithm: sha256WithRSAEncryption 42:65:37:67:87:6a:6c:4b:5b:b2:60:99:41:af:84:07:54:18: 67:ad:a5:87:0b:80:0f:15:88:ea:e5:c8:2a:28:41:e1:c6:57: 42:01:cd:24:99:9b:bc:78:ad:bf:ad:12:35:75:b2:44:e8:f0: df:da:52:61:88:09:c6:df:c0:c2:2f:22:37:d0:15:b5:f4:8b: bc:ba:4b:e6:9d:22:df:19:9d:40:20:ae:18:4d:d0:85:d2:95: 2b:04:8d:2b:c5:ea:49:52:03:3a:0e:e1:0b:42:ad:c5:28:78: a9:9a:3b:fe:63:9c:3a:79:85:da:ea:7e:e1:e0:5e:6f:27:b3: 7c:76:9e:f7:0e:4f:5f:dc:18:d3:28:2b:f9:93:97:60:f9:40: 93:1c:3c:08:5c:bc:2b:2c:6a:c2:50:53:67:68:86:6e:42:bb: a5:3b:45:dc:7a:96:c0:91:4c:91:f7:98:bf:70:9e:8c:7e:52: c1:a9:2d:a5:df:1c:e1:df:da:0b:d3:f7:f5:24:cd:99:03:06: d0:6f:0c:03:a9:cf:68:f6:3e:47:9d:f1:4e:db:61:1d:59:a9: 5c:ab:d9:80:0f:f8:b5:aa:b7:0f:3b:c4:de:b5:6f:51:26:41: d1:78:c8:9f:2d:27:12:bc:1d:a3:44:60:1d:21:9e:5e:3d:88: 0f:2a:2b:9b -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUXl1LyUvQiwrK3ZhT4RsX8y8A2uMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwMjAzNTUwMFoX DTI1MTAwMTA0MDAwMFowMzExMC8GA1UEAxMoNjcxOEU5MTY2N0MwNTJEMzgwMzc0 NDA5MzYwRTFENzQxN0I0OTU4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ1ncnPmkeSG3kCm4rFQvO8pjIuIi8DFuzhyBAz5deSJK53twNPgd+dlwSFe CCxVNqqbYhD/l82cYzVRVmaz+VwfzIRK6DDwebUB3+LoGEBWciDZahZdO8AbJeMF voxDi4uPtRzdO9ILs54gDZbjknoZWh4yJE3r9+Z9Tb6ILEiofP11VlmPolagYwGM RSkaxgyZDdujdJdThnfiN4JkRbyABx4YJ6rbTNSDcPgG9civyJnHz68A5AH2Yrbd 5e8R40peJ1jzJf8xNbHwpePn+jDexq3B1ts/w9Vsb4z9oXpuLJuWYsjYIpZXlh+B pJi02T9cwOlwPQ09Zc+sK1iCw3cCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRnGOkW Z8BS04A3RAk2Dh10F7SVhDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4NzUwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDeTIgMA0GCSqGSIb3DQEBCwUAA4IBAQBCZTdnh2psS1uyYJlBr4QH VBhnraWHC4APFYjq5cgqKEHhxldCAc0kmZu8eK2/rRI1dbJE6PDf2lJhiAnG38DC LyI30BW19Iu8ukvmnSLfGZ1AIK4YTdCF0pUrBI0rxepJUgM6DuELQq3FKHipmjv+ Y5w6eYXa6n7h4F5vJ7N8dp73Dk9f3BjTKCv5k5dg+UCTHDwIXLwrLGrCUFNnaIZu QrulO0XcepbAkUyR95i/cJ6MflLBqS2l3xzh39oL0/f1JM2ZAwbQbwwDqc9o9j5H nfFO22EdWalcq9mAD/i1qrcPO8TetW9RJkHReMifLScSvB2jRGAdIZ5ePYgPKiub -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:50 2024 by rpki-client on console-ams.rpki-client.org