$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138517.roa File: AS138517.roa (raw, json) Hash identifier: sFLyk5dkbLVqV1HRnFAZrAiTupVjwQKNDu8ngNIwp/I= Subject key identifier: 50:65:3E:7C:7F:9F:BE:47:E2:6A:8D:B0:CF:6D:F9:46:DD:E9:39:C5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 76C15109B20BBFAFFB0C476699D867D6AAEBB5EA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138517.roa Signing time: Wed 18 Jun 2025 01:35:34 +0000 ROA not before: Wed 18 Jun 2025 01:30:34 +0000 ROA not after: Wed 17 Jun 2026 01:35:34 +0000 asID: 138517 IP address blocks: 163.227.32.0/23 maxlen: 24 2001:df5:5740::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:c1:51:09:b2:0b:bf:af:fb:0c:47:66:99:d8:67:d6:aa:eb:b5:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 18 01:30:34 2025 GMT Not After : Jun 17 01:35:34 2026 GMT Subject: CN=50653E7C7F9FBE47E26A8DB0CF6DF946DDE939C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ad:67:41:94:0a:77:7c:50:7a:55:bf:47:17: 06:26:7c:32:e7:20:52:e1:e0:29:5b:6e:b1:b7:06: 21:08:c1:53:0c:d8:34:fb:79:2a:c6:a5:69:3f:c1: 3a:af:73:9d:c9:d4:dd:6a:0d:86:eb:45:87:55:4a: ed:7c:a2:34:a7:cc:fa:3e:09:49:75:bb:6b:9f:40: 9a:47:21:69:36:6e:45:85:c7:96:ef:15:52:a0:43: 90:1e:a9:4d:3e:f8:31:70:77:92:6f:64:b9:7a:01: b3:18:cc:85:e2:b6:d6:d6:b4:d5:38:3a:ef:17:53: d9:8c:75:6e:55:17:bc:1c:e4:c8:03:31:7a:2c:5a: 1e:be:56:be:16:6b:dd:66:ef:fc:49:d5:ed:0a:f3: 60:a9:25:17:03:14:0e:04:a3:af:b2:ed:0a:bd:85: 51:52:cc:36:99:3f:52:4a:51:eb:53:34:3d:8a:7c: 2f:95:18:60:dc:d4:ed:84:45:13:25:5a:a4:30:a1: 18:e9:14:03:64:ef:5c:5a:e9:9b:29:b5:c3:4e:1d: 7b:89:d6:18:04:ca:a2:64:c5:4a:68:95:d5:95:ab: 3c:78:e4:76:97:ec:94:d4:98:25:7c:5c:c7:64:cb: e3:94:e6:d9:a3:3d:61:d6:56:97:d6:68:56:c8:93: 08:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:65:3E:7C:7F:9F:BE:47:E2:6A:8D:B0:CF:6D:F9:46:DD:E9:39:C5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.32.0/23 IPv6: 2001:df5:5740::/48 Signature Algorithm: sha256WithRSAEncryption 33:aa:02:fd:84:52:d3:6f:96:2c:4e:25:0b:69:3d:cc:29:e7: e5:f7:eb:01:0f:93:50:5f:6c:0d:06:7b:c9:42:7d:0a:0d:db: bb:cd:07:45:77:4a:b1:3a:c8:28:a1:ab:91:e5:f2:87:ba:fe: 09:21:4c:77:e7:8a:5c:6c:f9:da:cb:25:20:7c:fd:dc:bc:ac: f3:0b:99:86:60:6a:96:81:1d:14:2d:29:14:6d:41:32:f0:33: 3f:35:3f:07:19:98:c2:a4:56:07:af:9a:3c:21:e7:0b:dd:11: d6:54:c9:53:38:b9:63:8f:1b:96:ce:3d:75:c9:75:d5:d7:6e: 8f:63:9d:13:87:cb:86:2e:91:08:d5:7a:26:63:31:4f:06:b2: 6e:7c:01:05:07:61:ff:8a:19:68:7f:ea:e7:b2:57:dc:02:62: db:bb:80:c5:58:b6:2c:84:d5:ec:c9:a6:fb:50:e2:06:e2:18: e0:55:fa:94:44:78:74:85:2b:03:e3:99:a0:77:05:8a:ca:5a: b5:82:8b:f8:63:3d:c1:03:8e:6e:46:b8:1a:c2:20:23:48:2b: 08:8e:a8:5e:53:22:e0:a1:f0:7b:bb:87:4f:6e:4f:00:07:ff: f0:92:57:1a:2e:64:63:ec:ea:97:46:50:e4:c8:3f:fa:c1:7e: 0a:c0:e2:71 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUdsFRCbILv6/7DEdmmdhn1qrrteowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYxODAxMzAzNFoX DTI2MDYxNzAxMzUzNFowMzExMC8GA1UEAxMoNTA2NTNFN0M3RjlGQkU0N0UyNkE4 REIwQ0Y2REY5NDZEREU5MzlDNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGtZ0GUCnd8UHpVv0cXBiZ8MucgUuHgKVtusbcGIQjBUwzYNPt5KsalaT/B Oq9zncnU3WoNhutFh1VK7XyiNKfM+j4JSXW7a59AmkchaTZuRYXHlu8VUqBDkB6p TT74MXB3km9kuXoBsxjMheK21ta01Tg67xdT2Yx1blUXvBzkyAMxeixaHr5WvhZr 3Wbv/EnV7QrzYKklFwMUDgSjr7LtCr2FUVLMNpk/UkpR61M0PYp8L5UYYNzU7YRF EyVapDChGOkUA2TvXFrpmym1w04de4nWGATKomTFSmiV1ZWrPHjkdpfslNSYJXxc x2TL45Tm2aM9YdZWl9ZoVsiTCE8CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRQZT58 f5++R+JqjbDPbflG3ek5xTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODUxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAaPjIDAPBAIAAjAJAwcAIAEN9VdAMA0GCSqGSIb3DQEBCwUAA4IB AQAzqgL9hFLTb5YsTiULaT3MKefl9+sBD5NQX2wNBnvJQn0KDdu7zQdFd0qxOsgo oauR5fKHuv4JIUx354pcbPnayyUgfP3cvKzzC5mGYGqWgR0ULSkUbUEy8DM/NT8H GZjCpFYHr5o8IecL3RHWVMlTOLljjxuWzj11yXXV126PY50Th8uGLpEI1XomYzFP BrJufAEFB2H/ihlof+rnslfcAmLbu4DFWLYshNXsyab7UOIG4hjgVfqURHh0hSsD 45mgdwWKylq1gov4Yz3BA45uRrgawiAjSCsIjqheUyLgofB7u4dPbk8AB//wklca LmRj7OqXRlDkyD/6wX4KwOJx -----END CERTIFICATE-----Generated at Sun Jun 29 12:09:30 2025 by rpki-client