$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38750.roa File: AS38750.roa (raw, json) Hash identifier: mxKDdwqjyHJjHa8rCKrDAKBbKdwgOjfVOTLoMczy1B8= Subject key identifier: 20:D2:4F:1C:18:5B:F9:86:C8:AF:22:0E:98:94:C2:04:22:A6:16:02 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3B0AC1006119F7DE7E62915DF5A99D899E02EBBF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38750.roa Signing time: Wed 01 Nov 2023 03:52:38 +0000 ROA not before: Wed 01 Nov 2023 03:47:38 +0000 ROA not after: Wed 30 Oct 2024 03:52:38 +0000 asID: 38750 IP address blocks: 121.50.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:0a:c1:00:61:19:f7:de:7e:62:91:5d:f5:a9:9d:89:9e:02:eb:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 1 03:47:38 2023 GMT Not After : Oct 30 03:52:38 2024 GMT Subject: CN=20D24F1C185BF986C8AF220E9894C20422A61602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:75:50:e2:f5:b3:6a:a2:cc:2b:39:cc:6a:41: 6b:8c:db:b3:66:aa:4a:32:62:e9:5e:69:87:12:93: d7:01:bd:5a:73:8d:29:57:4f:64:62:00:b0:32:27: 07:0d:22:5b:42:5c:18:54:0b:27:37:48:a8:77:63: 1f:a9:44:05:80:e6:df:e7:ca:d6:5d:3c:91:07:62: d2:02:4c:f9:ab:fa:7a:fd:9d:98:ee:e7:30:db:63: 19:2b:5b:21:0d:f2:53:69:16:44:bf:10:72:83:37: c4:c0:f6:54:3d:58:9a:7d:c0:84:f7:fa:e5:4e:3b: b0:1b:a1:7c:1a:24:cd:5a:d1:62:57:43:b5:88:9a: 5e:ab:e2:cf:55:37:a5:b7:73:1e:a9:fe:8d:28:29: 9b:7e:b5:55:c5:16:4f:30:2e:56:3b:6e:ea:89:3f: 28:7c:7a:91:51:c9:ef:9c:67:a8:a3:a9:ed:a8:ee: 0d:aa:72:69:2d:ff:1d:e1:81:01:92:64:5b:c6:57: d8:4f:1f:c0:0f:de:22:ee:38:75:54:df:c9:02:7c: a9:f2:fc:1e:0e:c2:1b:07:1d:18:1b:b5:9d:9c:95: e0:84:33:18:88:4f:90:c0:83:0d:59:83:4b:88:d8: 5f:8f:36:0d:0f:34:b1:cb:67:80:e0:dc:47:54:7a: 72:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:D2:4F:1C:18:5B:F9:86:C8:AF:22:0E:98:94:C2:04:22:A6:16:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38750.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.50.32.0/21 Signature Algorithm: sha256WithRSAEncryption 1e:cf:70:c7:00:14:fb:70:20:14:24:05:98:8c:6b:5f:43:c1: dd:e4:01:49:ff:9e:89:38:16:47:dd:db:56:2e:60:24:fd:11: a2:7c:e8:88:b9:7d:25:aa:3b:ce:76:9c:3b:28:e1:cc:5d:39: 06:ac:8c:31:fd:6a:9e:88:e4:68:b1:86:2f:49:6c:a5:af:ad: fa:19:33:ff:3c:53:ab:17:67:d5:4f:57:63:4e:5c:b3:38:49: 58:58:b1:d3:5c:02:f1:5c:25:7e:e4:13:9f:8d:9d:e1:d9:c9: 31:d2:4e:84:d8:d8:47:ce:26:5e:69:72:91:67:56:77:73:db: 7a:c7:57:c8:0e:df:c0:7b:ac:bd:36:5f:2b:86:d4:03:dc:73: b8:c9:a6:1e:72:34:c9:bd:f8:c6:39:74:96:79:7c:98:a5:ba: 30:ea:9d:81:e1:0c:09:8c:d6:11:ae:cc:71:d1:4c:f8:fe:d7: 63:5e:98:f0:1a:4d:bf:35:1b:24:89:9d:77:25:2d:1f:e8:35: 8e:dd:2e:da:7d:a4:25:f7:e1:b9:1e:64:9b:9a:5c:73:3c:53: 13:59:ee:9e:95:68:30:95:f6:1d:0f:fc:79:a4:2b:e9:e1:1a: 56:e7:57:8d:35:c2:f6:bc:82:fe:61:05:ce:71:cb:f1:75:27: 25:8c:b1:7c -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUOwrBAGEZ995+YpFd9amdiZ4C678wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwMTAzNDczOFoX DTI0MTAzMDAzNTIzOFowMzExMC8GA1UEAxMoMjBEMjRGMUMxODVCRjk4NkM4QUYy MjBFOTg5NEMyMDQyMkE2MTYwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKl1UOL1s2qizCs5zGpBa4zbs2aqSjJi6V5phxKT1wG9WnONKVdPZGIAsDIn Bw0iW0JcGFQLJzdIqHdjH6lEBYDm3+fK1l08kQdi0gJM+av6ev2dmO7nMNtjGStb IQ3yU2kWRL8QcoM3xMD2VD1Ymn3AhPf65U47sBuhfBokzVrRYldDtYiaXqviz1U3 pbdzHqn+jSgpm361VcUWTzAuVjtu6ok/KHx6kVHJ75xnqKOp7ajuDapyaS3/HeGB AZJkW8ZX2E8fwA/eIu44dVTfyQJ8qfL8Hg7CGwcdGBu1nZyV4IQzGIhPkMCDDVmD S4jYX482DQ80sctngODcR1R6cvUCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQg0k8c GFv5hsivIg6YlMIEIqYWAjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4NzUwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDeTIgMA0GCSqGSIb3DQEBCwUAA4IBAQAez3DHABT7cCAUJAWYjGtf Q8Hd5AFJ/56JOBZH3dtWLmAk/RGifOiIuX0lqjvOdpw7KOHMXTkGrIwx/WqeiORo sYYvSWylr636GTP/PFOrF2fVT1djTlyzOElYWLHTXALxXCV+5BOfjZ3h2ckx0k6E 2NhHziZeaXKRZ1Z3c9t6x1fIDt/Ae6y9Nl8rhtQD3HO4yaYecjTJvfjGOXSWeXyY pbow6p2B4QwJjNYRrsxx0Uz4/tdjXpjwGk2/NRskiZ13JS0f6DWO3S7afaQl9+G5 HmSbmlxzPFMTWe6elWgwlfYdD/x5pCvp4RpW51eNNcL2vIL+YQXOccvxdScljLF8 -----END CERTIFICATE-----Generated at Wed May 8 10:06:55 2024 by rpki-client on console-ams.rpki-client.org