$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS38507.roa File: AS38507.roa (raw, json) Hash identifier: ImT80ML7TXHUc9xx7TDN5hbBNYr7Lgyky4zTQSl57R4= Subject key identifier: 2F:B9:9C:55:61:1C:7F:B1:0F:B6:A5:07:50:F0:75:BE:F3:1F:2B:50 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 031F21494BDC94930A81A1FE9E6C7146C45546EE Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS38507.roa Signing time: Sun 03 May 2026 15:10:43 +0000 ROA not before: Sun 03 May 2026 15:05:43 +0000 ROA not after: Sun 02 May 2027 15:10:43 +0000 asID: 38507 IP address blocks: 117.102.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:1f:21:49:4b:dc:94:93:0a:81:a1:fe:9e:6c:71:46:c4:55:46:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 15:05:43 2026 GMT Not After : May 2 15:10:43 2027 GMT Subject: CN=2FB99C55611C7FB10FB6A50750F075BEF31F2B50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4b:a7:9c:09:2b:f7:f2:08:17:f6:cc:b5:f4: 93:6a:ec:55:5e:85:4e:93:48:f6:14:f2:6b:e0:ea: db:cb:f1:ec:75:a6:db:15:02:2f:c5:75:71:aa:ae: d1:4d:97:4a:72:da:ac:4a:4e:5b:e4:6e:61:c7:43: c6:73:49:09:29:c1:b0:4a:ab:41:13:4e:0c:05:2b: e3:2e:3a:f9:98:4b:3d:c9:3c:1e:c6:34:f2:5c:a1: 08:1f:23:2c:96:08:73:f3:ec:52:67:5a:0e:0e:c1: 8c:42:7b:2f:bd:ba:ed:9a:c3:8d:c9:78:c7:cb:ee: 45:e1:71:06:f0:ad:e8:1d:88:09:64:78:10:48:c5: 6a:3d:b8:f1:14:3a:72:dc:54:fa:2f:8e:18:5a:0a: 21:1f:5a:c1:18:95:c1:b5:62:13:dc:10:91:8c:98: de:e3:05:30:ce:82:04:d2:89:97:a5:94:bc:be:2e: 99:f3:ad:3c:4f:3d:42:1b:04:11:7c:37:5e:fb:5c: 52:9e:82:ba:49:af:3b:36:4d:c1:4a:42:19:d7:50: 79:cd:f7:ef:46:16:b1:bb:e4:8c:8d:2e:9d:4f:92: d6:d1:00:c3:22:2d:0f:31:6c:6a:f7:e8:b3:2b:2a: 89:05:67:b1:1b:1d:cb:14:88:91:d5:df:8a:81:76: d5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B9:9C:55:61:1C:7F:B1:0F:B6:A5:07:50:F0:75:BE:F3:1F:2B:50 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS38507.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.102.164.0/22 Signature Algorithm: sha256WithRSAEncryption 43:84:41:62:df:72:20:68:87:e7:49:81:22:ee:d8:6b:fd:ce: de:20:e4:55:de:8f:96:82:f5:06:b8:1d:40:45:e7:75:2d:cf: dd:44:b8:38:2a:e7:9e:8f:19:b0:4b:5e:ec:62:d9:04:82:9f: ef:c5:00:b0:83:21:80:e9:c9:06:00:e4:82:75:54:6e:07:27: 6d:f0:30:24:cd:21:50:4d:88:9a:62:db:e7:8d:25:14:76:11: 40:1f:6b:63:d2:64:22:2a:48:54:b5:13:d9:7d:fe:75:ea:da: c1:81:31:34:0c:02:7e:27:61:21:81:b3:00:58:66:25:4e:2e: 31:94:3b:dc:88:92:42:27:5d:69:06:39:e2:23:e7:7c:58:b9: 3f:ab:5e:31:e4:e6:e7:a5:bd:27:82:ec:e2:52:1f:7e:45:ab: d6:b1:ef:12:b0:b5:ae:9a:43:2d:ff:23:87:98:db:fb:77:55: 55:91:2a:c3:92:29:04:ce:f9:30:ed:1d:fb:82:5b:19:36:a1: 43:59:a7:bf:4b:71:74:8d:e8:1f:95:37:7b:d2:33:51:d2:a5: 92:14:fc:b0:ea:75:ac:a2:c4:a1:4e:63:48:c8:08:ee:5e:e7: b5:ad:58:95:0c:b5:07:e9:99:ae:de:25:ac:b5:8c:58:85:55: e2:6a:56:5e -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUAx8hSUvclJMKgaH+nmxxRsRVRu4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzE1MDU0M1oX DTI3MDUwMjE1MTA0M1owMzExMC8GA1UEAxMoMkZCOTlDNTU2MTFDN0ZCMTBGQjZB NTA3NTBGMDc1QkVGMzFGMkI1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKxLp5wJK/fyCBf2zLX0k2rsVV6FTpNI9hTya+Dq28vx7HWm2xUCL8V1caqu 0U2XSnLarEpOW+RuYcdDxnNJCSnBsEqrQRNODAUr4y46+ZhLPck8HsY08lyhCB8j LJYIc/PsUmdaDg7BjEJ7L7267ZrDjcl4x8vuReFxBvCt6B2ICWR4EEjFaj248RQ6 ctxU+i+OGFoKIR9awRiVwbViE9wQkYyY3uMFMM6CBNKJl6WUvL4umfOtPE89QhsE EXw3XvtcUp6CukmvOzZNwUpCGddQec3370YWsbvkjI0unU+S1tEAwyItDzFsavfo sysqiQVnsRsdyxSIkdXfioF21XECAwEAAaOCAcswggHHMB0GA1UdDgQWBBQvuZxV YRx/sQ+2pQdQ8HW+8x8rUDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMzg1MDcucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJ1ZqQwDQYJKoZIhvcNAQELBQADggEBAEOEQWLfciBoh+dJgSLu2Gv9zt4g 5FXej5aC9Qa4HUBF53Utz91EuDgq556PGbBLXuxi2QSCn+/FALCDIYDpyQYA5IJ1 VG4HJ23wMCTNIVBNiJpi2+eNJRR2EUAfa2PSZCIqSFS1E9l9/nXq2sGBMTQMAn4n YSGBswBYZiVOLjGUO9yIkkInXWkGOeIj53xYuT+rXjHk5uelvSeC7OJSH35Fq9ax 7xKwta6aQy3/I4eY2/t3VVWRKsOSKQTO+TDtHfuCWxk2oUNZp79LcXSN6B+VN3vS M1HSpZIU/LDqdayixKFOY0jICO5e57WtWJUMtQfpma7eJay1jFiFVeJqVl4= -----END CERTIFICATE-----Generated at Tue May 12 22:42:15 2026 by rpki-client