$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS38755.roa File: AS38755.roa (raw, json) Hash identifier: UAv9TVco4YZMMpoyfxeTeDqzZj8/8ApHy5F/bpaezNg= Subject key identifier: C9:62:DD:23:E6:53:04:BC:98:87:F2:F1:4E:02:C9:97:AD:6C:A0:96 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 2F0A6FF1C6FAA15E24F6A3732A96B1DAB041359D Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS38755.roa Signing time: Fri 13 Mar 2026 05:02:29 +0000 ROA not before: Fri 13 Mar 2026 04:57:29 +0000 ROA not after: Fri 12 Mar 2027 05:02:29 +0000 asID: 38755 IP address blocks: 182.23.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 14:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:0a:6f:f1:c6:fa:a1:5e:24:f6:a3:73:2a:96:b1:da:b0:41:35:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Mar 13 04:57:29 2026 GMT Not After : Mar 12 05:02:29 2027 GMT Subject: CN=C962DD23E65304BC9887F2F14E02C997AD6CA096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a1:7f:a7:0d:f5:98:08:35:1d:a0:2b:84:91: b7:a7:a7:27:a1:fb:78:0f:67:1a:e5:2c:5b:bf:f5: 09:76:ac:91:48:f6:7e:d3:f8:90:7c:8c:f9:8b:80: 37:a5:47:80:37:03:63:80:1b:32:26:57:c7:e8:56: 69:2f:54:a6:6b:d6:0e:6d:ae:10:99:7b:78:9c:81: 4d:4e:06:d9:b8:fe:20:66:82:70:9b:cd:9b:42:2d: cc:fd:b2:d7:19:95:c5:73:d7:18:de:cb:22:e0:52: 6e:dd:3b:60:69:35:02:38:73:b6:dd:9f:3f:39:fc: 8e:5b:a1:c9:6c:bc:88:94:34:0c:9e:a2:34:36:2e: a3:95:a4:37:2d:09:43:2d:1b:45:c0:79:8c:bc:55: 9b:33:24:ce:c8:01:49:23:47:c7:f4:01:22:0c:cb: f2:4e:63:03:4c:e3:4c:cc:4c:b7:d4:3c:4d:aa:c0: cd:86:d2:5b:1f:dc:ab:c0:57:f6:a5:96:c7:b5:49: 0c:cc:6c:68:3a:4a:1f:00:e5:d1:31:63:af:42:84: 4c:0d:8a:07:27:5e:46:00:d1:3e:fd:f1:78:82:85: 7b:4a:6c:c1:b4:45:43:6c:6c:7f:00:96:7a:67:9e: 88:41:36:a2:ad:3b:4c:4e:8d:aa:83:32:b5:b5:46: 7a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:62:DD:23:E6:53:04:BC:98:87:F2:F1:4E:02:C9:97:AD:6C:A0:96 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS38755.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.23.170.0/24 Signature Algorithm: sha256WithRSAEncryption 26:31:87:55:61:d2:77:77:68:fb:5d:43:f1:ab:df:ab:a2:e9: c7:a2:bb:cc:82:b0:ef:a1:65:b0:80:03:75:2c:cd:8d:5a:ba: 01:f9:bf:09:9f:19:c5:0e:6b:d2:00:e6:4f:ee:ad:de:10:e0: f7:f1:73:c6:4e:6f:a2:66:4d:1c:f1:62:15:6e:6d:e5:6f:e9: f3:b1:c1:6e:6a:5d:74:16:1f:3d:54:cf:a3:22:08:b4:bb:73: 0a:7f:8f:aa:b3:49:d1:9e:95:e1:65:55:7b:23:a4:13:22:1b: 1b:d1:ea:5c:55:29:6d:f2:e3:81:0a:55:15:a8:8e:7a:c4:36: 9f:22:8c:27:42:9f:3b:8d:79:c9:c5:09:23:ab:db:85:52:c7: ad:4d:d7:11:c1:a3:d7:55:a9:e0:bf:fc:fc:8d:fe:0d:f8:90: 55:ee:e0:0a:4c:cf:01:09:53:2b:bc:02:7d:d1:9a:b7:89:f2: 9a:7d:0d:4e:10:d6:9c:95:a3:c1:37:83:f0:3b:04:c5:e8:b1: 67:13:5b:4d:32:ad:a1:2d:8d:00:5f:93:92:9b:4f:82:b6:bd: c1:88:06:de:99:c8:61:e3:cd:38:69:ed:3c:66:ff:4b:4e:f0: 48:48:91:3a:23:b2:10:d1:80:c6:47:d8:3c:0e:85:59:ab:f4: 14:b6:9d:60 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIULwpv8cb6oV4k9qNzKpax2rBBNZ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNjAzMTMwNDU3MjlaFw0yNzAzMTIwNTAyMjlaMDMxMTAvBgNV BAMTKEM5NjJERDIzRTY1MzA0QkM5ODg3RjJGMTRFMDJDOTk3QUQ2Q0EwOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsoX+nDfWYCDUdoCuEkbenpyeh +3gPZxrlLFu/9Ql2rJFI9n7T+JB8jPmLgDelR4A3A2OAGzImV8foVmkvVKZr1g5t rhCZe3icgU1OBtm4/iBmgnCbzZtCLcz9stcZlcVz1xjeyyLgUm7dO2BpNQI4c7bd nz85/I5boclsvIiUNAyeojQ2LqOVpDctCUMtG0XAeYy8VZszJM7IAUkjR8f0ASIM y/JOYwNM40zMTLfUPE2qwM2G0lsf3KvAV/allse1SQzMbGg6Sh8A5dExY69ChEwN igcnXkYA0T798XiChXtKbMG0RUNsbH8AlnpnnohBNqKtO0xOjaqDMrW1RnoxAgMB AAGjggH+MIIB+jAdBgNVHQ4EFgQUyWLdI+ZTBLyYh/LxTgLJl61soJYwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jl cG8tcnBraS5pZG5pYy5uZXQvcmVwby9lODczNDlmYi00NjVlLTRlOGItYTk3NC05 MGU5MzliY2IwZmIvMC9BUzM4NzU1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtheqMA0GCSqGSIb3DQEB CwUAA4IBAQAmMYdVYdJ3d2j7XUPxq9+rounHorvMgrDvoWWwgAN1LM2NWroB+b8J nxnFDmvSAOZP7q3eEOD38XPGTm+iZk0c8WIVbm3lb+nzscFual10Fh89VM+jIgi0 u3MKf4+qs0nRnpXhZVV7I6QTIhsb0epcVSlt8uOBClUVqI56xDafIownQp87jXnJ xQkjq9uFUsetTdcRwaPXVangv/z8jf4N+JBV7uAKTM8BCVMrvAJ90Zq3ifKafQ1O ENaclaPBN4PwOwTF6LFnE1tNMq2hLY0AX5OSm0+Ctr3BiAbemchh4804ae08Zv9L TvBISJE6I7IQ0YDGR9g8DoVZq/QUtp1g -----END CERTIFICATE-----Generated at Tue Mar 24 08:31:26 2026 by rpki-client