$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS38768.roa File: AS38768.roa (raw, json) Hash identifier: PGr9yvhk+yyWBflhHC7aOtOCuBJG6GOBZHZ6s7YNwL8= Subject key identifier: BF:AF:00:7D:A6:05:11:01:C7:96:3E:BB:22:15:88:A6:F2:1B:39:63 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 73B9B06C78878ECACE4086C5929638F2EBD74535 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS38768.roa Signing time: Fri 13 Mar 2026 05:02:29 +0000 ROA not before: Fri 13 Mar 2026 04:57:29 +0000 ROA not after: Fri 12 Mar 2027 05:02:29 +0000 asID: 38768 IP address blocks: 103.234.216.0/24 maxlen: 24 103.234.217.0/24 maxlen: 24 103.234.219.0/24 maxlen: 24 202.87.178.0/24 maxlen: 24 202.87.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 14:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:b9:b0:6c:78:87:8e:ca:ce:40:86:c5:92:96:38:f2:eb:d7:45:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Mar 13 04:57:29 2026 GMT Not After : Mar 12 05:02:29 2027 GMT Subject: CN=BFAF007DA6051101C7963EBB221588A6F21B3963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a8:89:6a:1b:6c:68:12:7d:a3:de:a1:73:f3: 99:d3:fe:03:07:9c:03:20:6c:74:d5:6c:cf:22:21: a5:8b:87:a8:4a:ad:f4:0f:dd:9c:3c:0d:cf:1f:7d: 9b:dd:d9:71:b1:0d:f7:0d:a6:79:ba:25:5a:65:49: 34:7f:a8:8a:82:5a:fd:1b:8a:d5:99:75:f0:53:39: a5:49:29:03:69:8f:ed:f3:5a:3c:97:1f:da:27:ff: 2c:3b:02:80:fe:24:d2:96:6d:53:5c:e9:72:89:58: 30:11:6b:c1:58:41:e8:a7:94:ea:a8:66:ff:d5:8a: 3e:32:91:85:ab:c4:6b:b2:57:75:b0:99:fd:53:00: 30:f4:07:bf:75:d5:01:37:c3:15:34:97:1b:35:d9: 7c:40:36:d5:d6:c3:84:55:2e:5c:58:7b:ad:15:4c: cd:b3:c1:01:c1:c4:d1:aa:56:a5:99:62:14:45:0e: 19:fd:41:91:8e:63:9e:94:1d:4e:d5:a4:32:1a:91: 13:da:03:eb:81:45:61:5a:fb:09:82:e1:62:5c:5f: 99:b0:e0:ea:da:ad:11:98:d9:29:25:30:66:57:9e: ef:2c:84:9a:cf:f5:12:7b:eb:b8:35:72:f4:bf:f6: 25:db:66:2f:ef:d9:cf:f6:2e:2d:02:a8:2f:87:cd: 23:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:AF:00:7D:A6:05:11:01:C7:96:3E:BB:22:15:88:A6:F2:1B:39:63 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS38768.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.216.0/23 103.234.219.0/24 202.87.178.0/23 Signature Algorithm: sha256WithRSAEncryption 49:b2:74:20:1d:07:56:32:16:09:f4:c5:82:1a:48:e0:c8:85: 94:b5:be:7a:bd:f9:fa:ac:f3:25:0d:90:84:1b:50:d5:60:76: 53:20:dd:0b:f8:d5:77:a6:57:a7:8a:5f:2f:6f:49:78:ef:8f: 29:01:a4:cb:80:11:03:3d:2c:d9:32:eb:9b:be:12:aa:30:cf: d6:1c:d8:36:73:b0:86:ed:22:25:5c:ac:53:65:1f:57:e1:29: f9:d5:df:0f:0b:47:68:11:a2:9d:90:82:3a:76:c7:dc:8f:76: 6d:11:4b:15:14:df:b0:56:80:d1:94:c8:d1:f3:c4:70:1b:aa: bf:20:8d:71:06:8e:66:d2:ab:62:0f:26:d7:fd:ba:09:8d:55: e8:25:2a:67:2d:f8:42:18:53:bf:5a:95:72:15:15:58:fd:b7: ab:23:b1:03:81:18:73:ab:27:8a:00:f0:f7:51:1b:b9:27:f1: da:8b:4a:b6:ce:5d:8e:be:94:5c:f4:1a:3f:fa:c2:00:0a:c6: a4:5d:8f:6a:26:1d:f6:9a:38:c9:58:22:fd:7f:dd:cc:eb:f7: 55:0f:0f:4d:e1:07:73:f3:a6:fb:88:02:30:79:26:9c:06:fd: 70:5d:78:61:89:37:28:51:09:88:ff:97:36:de:74:ca:16:35: 72:16:32:a6 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUc7mwbHiHjsrOQIbFkpY48uvXRTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNjAzMTMwNDU3MjlaFw0yNzAzMTIwNTAyMjlaMDMxMTAvBgNV BAMTKEJGQUYwMDdEQTYwNTExMDFDNzk2M0VCQjIyMTU4OEE2RjIxQjM5NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUqIlqG2xoEn2j3qFz85nT/gMH nAMgbHTVbM8iIaWLh6hKrfQP3Zw8Dc8ffZvd2XGxDfcNpnm6JVplSTR/qIqCWv0b itWZdfBTOaVJKQNpj+3zWjyXH9on/yw7AoD+JNKWbVNc6XKJWDARa8FYQeinlOqo Zv/Vij4ykYWrxGuyV3Wwmf1TADD0B7911QE3wxU0lxs12XxANtXWw4RVLlxYe60V TM2zwQHBxNGqVqWZYhRFDhn9QZGOY56UHU7VpDIakRPaA+uBRWFa+wmC4WJcX5mw 4OrarRGY2SklMGZXnu8shJrP9RJ767g1cvS/9iXbZi/v2c/2Li0CqC+HzSMZAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUv68AfaYFEQHHlj67IhWIpvIbOWMwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jl cG8tcnBraS5pZG5pYy5uZXQvcmVwby9lODczNDlmYi00NjVlLTRlOGItYTk3NC05 MGU5MzliY2IwZmIvMC9BUzM4NzY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBZ+rYAwQAZ+rbAwQByley MA0GCSqGSIb3DQEBCwUAA4IBAQBJsnQgHQdWMhYJ9MWCGkjgyIWUtb56vfn6rPMl DZCEG1DVYHZTIN0L+NV3plenil8vb0l4748pAaTLgBEDPSzZMuubvhKqMM/WHNg2 c7CG7SIlXKxTZR9X4Sn51d8PC0doEaKdkII6dsfcj3ZtEUsVFN+wVoDRlMjR88Rw G6q/II1xBo5m0qtiDybX/boJjVXoJSpnLfhCGFO/WpVyFRVY/berI7EDgRhzqyeK APD3URu5J/Hai0q2zl2OvpRc9Bo/+sIACsakXY9qJh32mjjJWCL9f93M6/dVDw9N 4Qdz86b7iAIweSacBv1wXXhhiTcoUQmI/5c23nTKFjVyFjKm -----END CERTIFICATE-----Generated at Tue Mar 24 05:51:57 2026 by rpki-client