$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38750.roa File: AS38750.roa (raw, json) Hash identifier: /54J1aQoYYzGVRmuQXkRngvsZOdadAI6Go/+3L46HH4= Subject key identifier: 79:CE:4D:6E:D8:68:9C:97:B7:01:29:84:92:DA:20:86:8F:69:90:4B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2B1C5B2C04F4012BEF7402757EFA989DBF6F50BC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38750.roa Signing time: Wed 03 Sep 2025 04:00:00 +0000 ROA not before: Wed 03 Sep 2025 03:55:00 +0000 ROA not after: Wed 02 Sep 2026 04:00:00 +0000 asID: 38750 IP address blocks: 121.50.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:1c:5b:2c:04:f4:01:2b:ef:74:02:75:7e:fa:98:9d:bf:6f:50:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 3 03:55:00 2025 GMT Not After : Sep 2 04:00:00 2026 GMT Subject: CN=79CE4D6ED8689C97B701298492DA20868F69904B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0d:75:56:71:cb:4d:76:83:81:7a:ed:87:eb: 69:69:a3:44:d6:f6:af:f8:8a:f0:0f:21:67:4f:28: 9d:e9:46:45:28:70:56:33:e2:7f:7b:a2:4e:06:69: c1:22:e3:38:a7:c1:b9:9c:93:bd:67:41:c0:e8:5b: 6a:f2:51:b7:75:a1:2b:35:6e:0a:6f:09:b6:d9:c8: ad:c9:b8:0f:84:c1:f2:bc:59:17:27:7b:87:a0:78: 03:76:d1:b8:58:69:49:7b:ba:46:b0:7e:37:a3:6e: 46:b9:d9:2b:19:a4:2c:a0:2c:08:78:e5:10:66:14: 06:ad:ed:e0:61:bb:65:e8:70:d4:b9:89:57:60:81: 91:98:b3:f8:bf:f1:a3:fc:ad:8a:59:f7:b6:4c:d0: e0:58:b9:27:59:93:35:8c:e2:20:57:0d:39:88:69: 33:d2:4e:33:77:c8:c2:19:06:7b:b8:be:0a:24:b4: a4:ce:03:4f:5c:b8:b9:65:72:55:4b:f4:2c:c4:d4: 5d:ee:b4:27:16:5c:5c:b9:ff:6a:ab:33:4c:30:fd: 14:d2:d2:6b:2c:90:71:62:9c:cc:5e:a0:a1:4c:92: b7:2e:35:d0:dd:da:ab:fd:77:c9:f4:ff:23:f9:3e: c1:aa:e5:8d:3f:33:29:c4:c2:53:09:f8:a4:60:a9: 92:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:CE:4D:6E:D8:68:9C:97:B7:01:29:84:92:DA:20:86:8F:69:90:4B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38750.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.50.32.0/21 Signature Algorithm: sha256WithRSAEncryption 24:0b:67:71:92:27:9f:1c:24:b2:26:1f:0c:a1:cd:54:0e:71: ec:8f:ec:e6:c5:36:b5:09:8f:de:10:a5:91:1c:ff:d2:fc:1e: d2:5c:67:7b:c2:1f:53:fd:17:ac:c7:4c:a9:dc:24:76:cb:c4: 2c:38:bd:e7:98:69:95:54:57:58:c9:f2:80:77:a9:d6:a5:0b: a9:8a:48:b6:30:63:c6:89:94:7d:f1:72:c0:66:1f:23:32:a7: 92:a2:e8:c9:52:e1:9f:1b:94:d7:c2:8f:21:11:7d:b6:78:4a: 76:9b:1a:55:4b:b8:f1:81:fd:fe:0f:de:ec:16:f3:38:25:3f: a1:1f:f4:ee:d4:74:e9:b4:db:5c:e4:2a:8b:10:2a:7c:40:a3: 46:5e:74:73:db:ad:00:25:1f:cf:71:77:d2:84:44:08:dc:b9: 67:ea:8f:77:88:ba:1e:a4:2d:1f:e1:1e:ae:95:5d:27:37:1f: 4c:0d:de:21:56:7a:21:b8:a8:1b:20:67:d8:47:43:95:f6:ee: 7c:9b:f9:ba:a2:73:68:c0:11:c6:43:d8:00:5a:d9:82:29:93: 9d:2a:13:1a:be:81:05:2f:50:0f:a9:f9:22:6c:18:96:04:36: 4e:4f:01:31:b0:d6:57:a0:30:1a:de:56:93:fa:94:29:e7:7c: c9:51:05:1d -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUKxxbLAT0ASvvdAJ1fvqYnb9vULwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwMzAzNTUwMFoX DTI2MDkwMjA0MDAwMFowMzExMC8GA1UEAxMoNzlDRTRENkVEODY4OUM5N0I3MDEy OTg0OTJEQTIwODY4RjY5OTA0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM8NdVZxy012g4F67YfraWmjRNb2r/iK8A8hZ08onelGRShwVjPif3uiTgZp wSLjOKfBuZyTvWdBwOhbavJRt3WhKzVuCm8JttnIrcm4D4TB8rxZFyd7h6B4A3bR uFhpSXu6RrB+N6NuRrnZKxmkLKAsCHjlEGYUBq3t4GG7Zehw1LmJV2CBkZiz+L/x o/ytiln3tkzQ4Fi5J1mTNYziIFcNOYhpM9JOM3fIwhkGe7i+CiS0pM4DT1y4uWVy VUv0LMTUXe60JxZcXLn/aqszTDD9FNLSayyQcWKczF6goUySty410N3aq/13yfT/ I/k+warljT8zKcTCUwn4pGCpkrsCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBR5zk1u 2Gicl7cBKYSS2iCGj2mQSzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4NzUwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDeTIgMA0GCSqGSIb3DQEBCwUAA4IBAQAkC2dxkiefHCSyJh8Moc1U DnHsj+zmxTa1CY/eEKWRHP/S/B7SXGd7wh9T/Resx0yp3CR2y8QsOL3nmGmVVFdY yfKAd6nWpQupiki2MGPGiZR98XLAZh8jMqeSoujJUuGfG5TXwo8hEX22eEp2mxpV S7jxgf3+D97sFvM4JT+hH/Tu1HTptNtc5CqLECp8QKNGXnRz260AJR/PcXfShEQI 3Lln6o93iLoepC0f4R6ulV0nNx9MDd4hVnohuKgbIGfYR0OV9u58m/m6onNowBHG Q9gAWtmCKZOdKhMavoEFL1APqfkibBiWBDZOTwExsNZXoDAa3laT+pQp53zJUQUd -----END CERTIFICATE-----Generated at Fri Sep 5 10:22:22 2025 by rpki-client