$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38150.roa File: AS38150.roa (raw, json) Hash identifier: zKEhbDfCe59pVuX9lmhJGmUpfPmk5QTfz4xWuIXRuSM= Subject key identifier: BA:7D:2A:7C:BE:89:36:91:21:01:9E:96:87:17:C3:26:B2:36:75:56 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7DE215A80D25477687CA18DD940FF47EF36E0107 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38150.roa Signing time: Mon 09 Jun 2025 03:00:00 +0000 ROA not before: Mon 09 Jun 2025 02:55:00 +0000 ROA not after: Mon 08 Jun 2026 03:00:00 +0000 asID: 38150 IP address blocks: 103.156.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e2:15:a8:0d:25:47:76:87:ca:18:dd:94:0f:f4:7e:f3:6e:01:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 9 02:55:00 2025 GMT Not After : Jun 8 03:00:00 2026 GMT Subject: CN=BA7D2A7CBE89369121019E968717C326B2367556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f5:20:f7:a6:de:73:3a:cc:53:3c:0b:34:b1: 27:86:ee:d6:13:9d:55:a0:6c:fa:2c:6d:fc:70:f4: a1:ba:db:52:ea:0e:85:5d:a2:f4:72:89:a0:d7:dd: f7:04:8e:3c:79:ac:ee:11:65:a0:20:4d:d5:2c:44: 3a:79:46:23:e6:3b:7d:71:41:95:4b:4c:90:7f:db: bd:2b:49:13:9c:a6:ff:b7:cf:36:14:99:1e:a4:15: e4:4d:b6:63:fe:51:85:ff:4e:77:10:95:2f:9a:07: f5:89:c3:6c:e5:22:64:c3:54:99:ff:32:a1:52:30: 09:d0:76:60:99:09:e1:23:e2:4c:85:40:6f:98:00: 2f:f7:81:6d:d6:52:a8:3b:00:40:30:d2:2c:36:63: 53:7c:9f:2f:79:01:e9:92:65:90:f1:73:72:34:30: a9:32:38:52:42:3a:19:bf:fb:a0:60:3c:13:d0:b7: 39:3a:2d:9f:09:ff:b2:1a:33:90:14:df:b9:15:94: 78:bb:b0:28:f3:0b:4e:ba:00:33:95:d8:41:f7:5e: 9d:9e:ed:71:b7:54:ab:56:3a:ac:d2:9a:61:59:e7: d5:2b:49:4f:bf:ba:66:94:6e:34:ff:6b:61:d7:42: e8:ea:c4:53:77:84:af:6a:0f:21:a1:64:ea:88:cd: d4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:7D:2A:7C:BE:89:36:91:21:01:9E:96:87:17:C3:26:B2:36:75:56 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38150.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.240.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:3b:f7:d8:ce:c2:6d:53:0a:8e:b1:e9:c1:a9:f1:6e:24:4a: 2c:8d:bd:70:54:cb:b2:21:29:51:b9:1e:ee:92:b9:4d:7c:c2: 3f:31:bf:2f:3c:de:21:8a:cc:a3:22:fe:e1:e1:f0:af:70:48: 2d:cc:08:d5:fb:45:98:bf:0c:04:89:26:af:ea:66:0a:1b:ff: ae:96:c9:0c:d7:c6:de:86:c4:6c:15:87:86:fd:92:f0:92:37: c9:63:f2:32:8d:25:d4:39:fb:dc:e6:23:77:f5:08:28:68:40: 6b:7c:8e:80:d3:74:f5:d1:d1:c3:c4:44:e0:fe:b8:d5:54:f2: 8f:da:78:f5:9d:d6:28:80:9e:2b:2f:14:53:e3:13:b7:e9:a1: 1d:ea:88:14:02:96:50:a9:a2:cf:0b:fa:b1:85:15:cf:65:2b: 9d:6f:70:05:e4:f2:43:02:cc:b7:ef:dc:30:5e:f1:00:71:c5: 80:38:3b:4b:a6:d4:bb:13:e2:63:07:23:d1:f0:9d:d4:2f:6e: 1a:fb:f9:e3:39:92:77:ee:e4:77:56:3e:30:f3:5c:99:6d:0c: 09:1e:89:79:52:02:6e:f2:f0:cd:4d:c9:df:fd:69:d3:32:90: ac:51:26:5c:dd:79:21:29:78:42:a3:0c:60:2f:c2:fe:b6:8a: d1:94:63:61 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUfeIVqA0lR3aHyhjdlA/0fvNuAQcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwOTAyNTUwMFoX DTI2MDYwODAzMDAwMFowMzExMC8GA1UEAxMoQkE3RDJBN0NCRTg5MzY5MTIxMDE5 RTk2ODcxN0MzMjZCMjM2NzU1NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOz1IPem3nM6zFM8CzSxJ4bu1hOdVaBs+ixt/HD0obrbUuoOhV2i9HKJoNfd 9wSOPHms7hFloCBN1SxEOnlGI+Y7fXFBlUtMkH/bvStJE5ym/7fPNhSZHqQV5E22 Y/5Rhf9OdxCVL5oH9YnDbOUiZMNUmf8yoVIwCdB2YJkJ4SPiTIVAb5gAL/eBbdZS qDsAQDDSLDZjU3yfL3kB6ZJlkPFzcjQwqTI4UkI6Gb/7oGA8E9C3OTotnwn/shoz kBTfuRWUeLuwKPMLTroAM5XYQfdenZ7tcbdUq1Y6rNKaYVnn1StJT7+6ZpRuNP9r YddC6OrEU3eEr2oPIaFk6ojN1CMCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBS6fSp8 vok2kSEBnpaHF8MmsjZ1VjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4MTUwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5zwMA0GCSqGSIb3DQEBCwUAA4IBAQArO/fYzsJtUwqOsenBqfFu JEosjb1wVMuyISlRuR7ukrlNfMI/Mb8vPN4hisyjIv7h4fCvcEgtzAjV+0WYvwwE iSav6mYKG/+ulskM18behsRsFYeG/ZLwkjfJY/IyjSXUOfvc5iN39QgoaEBrfI6A 03T10dHDxETg/rjVVPKP2nj1ndYogJ4rLxRT4xO36aEd6ogUApZQqaLPC/qxhRXP ZSudb3AF5PJDAsy379wwXvEAccWAODtLptS7E+JjByPR8J3UL24a+/njOZJ37uR3 Vj4w81yZbQwJHol5UgJu8vDNTcnf/WnTMpCsUSZc3XkhKXhCowxgL8L+torRlGNh -----END CERTIFICATE-----Generated at Sun Jun 29 12:06:19 2025 by rpki-client