$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS38060.roa File: AS38060.roa (raw, json) Hash identifier: KWffEz5PzDiWZejeHbR/htc/1fs7AHOjaGI+i5nCifY= Subject key identifier: B9:23:80:49:BA:28:5E:65:6D:17:94:F4:3C:DB:98:35:C8:BE:82:0A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6E23F9583E9CA914C198BA1B57C2711C8D107A1D Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS38060.roa Signing time: Tue 26 May 2026 03:46:13 +0000 ROA not before: Tue 26 May 2026 03:41:13 +0000 ROA not after: Tue 25 May 2027 03:46:13 +0000 asID: 38060 IP address blocks: 182.253.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:23:f9:58:3e:9c:a9:14:c1:98:ba:1b:57:c2:71:1c:8d:10:7a:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 26 03:41:13 2026 GMT Not After : May 25 03:46:13 2027 GMT Subject: CN=B9238049BA285E656D1794F43CDB9835C8BE820A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5a:a0:6a:91:f8:ca:e9:17:0e:3a:d8:ad:b1: 3c:38:05:a6:5b:da:dc:54:98:98:5e:54:c3:69:1e: f1:39:c9:7e:48:8f:70:6a:b9:5b:cf:01:f2:2a:d9: b8:6e:56:37:6a:2c:ef:89:08:6c:10:13:07:65:d2: d7:a1:34:8c:1a:ee:d1:df:eb:d2:b0:2f:b6:e2:90: 14:f5:8e:85:f4:cc:2d:1c:3d:ef:be:b0:f6:c1:54: 5b:90:87:f7:11:98:8d:f1:74:4b:1e:55:74:42:7e: 4d:52:cb:7d:cc:19:cb:b8:8d:96:d5:ae:e6:b0:49: c7:c5:97:c8:7f:fb:73:6a:b8:0b:16:36:2b:e3:67: 9b:a6:d3:c7:0a:1f:0d:ee:72:f8:ad:92:c1:fd:25: 96:48:54:27:54:2b:2c:0f:d8:c5:1b:0a:dc:77:2e: 1c:8c:28:f4:54:a0:d7:b6:61:a6:b3:ca:81:a2:49: ee:47:0e:89:82:e9:38:be:d0:e0:90:17:08:6b:67: 49:3d:02:d5:52:a3:7e:ab:b9:af:9d:80:a6:18:de: ae:46:8e:6d:81:86:99:4b:f9:2c:bd:9f:27:da:40: 96:a1:fa:4e:ef:00:4b:2c:48:7e:9a:d9:19:38:9b: ed:76:2a:2e:95:bd:7b:00:74:34:70:ed:ca:a1:07: 91:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:23:80:49:BA:28:5E:65:6D:17:94:F4:3C:DB:98:35:C8:BE:82:0A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS38060.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.253.181.0/24 Signature Algorithm: sha256WithRSAEncryption 53:99:e2:b3:d6:3f:37:63:f2:00:61:6f:c1:f2:4e:4b:ec:f6: fd:cc:84:45:7c:64:38:2a:a0:1d:06:06:77:45:b2:db:b3:a3: dd:d8:3a:b5:28:3f:45:09:19:3c:6c:70:1d:46:d8:31:6f:53: 5d:51:25:3b:41:64:44:c6:fd:3f:ef:2e:48:6a:03:d5:30:4c: 89:e9:c2:41:c9:a6:e6:16:70:95:60:ed:fc:f2:3b:73:44:f9: c8:0c:e6:1f:6a:e7:a8:ab:fc:a7:a3:52:e8:d3:2e:be:10:7c: c8:ad:67:04:56:ec:c5:3c:e1:be:bb:3c:1a:c3:16:df:3e:4d: f4:2d:1f:10:92:11:f5:e5:90:29:5d:a3:6a:ab:75:24:28:e8: a4:aa:01:6c:58:f8:57:2c:6e:da:e5:f5:0f:5a:c5:94:3e:94: 98:63:e8:d1:87:c9:14:fa:d0:0b:c4:17:a6:3c:5c:d7:91:2a: 0c:2e:ed:b5:77:7c:39:08:71:6f:f6:3d:f5:15:ac:1d:62:16: e5:31:de:32:46:ea:5e:a8:b9:85:6f:a4:49:21:22:8c:79:41: b5:5e:86:b8:a5:44:90:b0:b7:eb:ef:41:ad:94:d1:b4:0d:da: c4:df:4c:b3:8b:09:94:dd:9b:48:fb:d2:06:cf:e7:a7:2a:1b: b9:f3:cf:ab -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUbiP5WD6cqRTBmLobV8JxHI0Qeh0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUyNjAzNDExM1oX DTI3MDUyNTAzNDYxM1owMzExMC8GA1UEAxMoQjkyMzgwNDlCQTI4NUU2NTZEMTc5 NEY0M0NEQjk4MzVDOEJFODIwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALpaoGqR+MrpFw462K2xPDgFplva3FSYmF5Uw2ke8TnJfkiPcGq5W88B8irZ uG5WN2os74kIbBATB2XS16E0jBru0d/r0rAvtuKQFPWOhfTMLRw9776w9sFUW5CH 9xGYjfF0Sx5VdEJ+TVLLfcwZy7iNltWu5rBJx8WXyH/7c2q4CxY2K+Nnm6bTxwof De5y+K2Swf0llkhUJ1QrLA/YxRsK3HcuHIwo9FSg17ZhprPKgaJJ7kcOiYLpOL7Q 4JAXCGtnST0C1VKjfqu5r52AphjerkaObYGGmUv5LL2fJ9pAlqH6Tu8ASyxIfprZ GTib7XYqLpW9ewB0NHDtyqEHkYMCAwEAAaOCAcswggHHMB0GA1UdDgQWBBS5I4BJ uiheZW0XlPQ825g1yL6CCjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMzgwNjAucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAC2/bUwDQYJKoZIhvcNAQELBQADggEBAFOZ4rPWPzdj8gBhb8HyTkvs9v3M hEV8ZDgqoB0GBndFstuzo93YOrUoP0UJGTxscB1G2DFvU11RJTtBZETG/T/vLkhq A9UwTInpwkHJpuYWcJVg7fzyO3NE+cgM5h9q56ir/KejUujTLr4QfMitZwRW7MU8 4b67PBrDFt8+TfQtHxCSEfXlkCldo2qrdSQo6KSqAWxY+Fcsbtrl9Q9axZQ+lJhj 6NGHyRT60AvEF6Y8XNeRKgwu7bV3fDkIcW/2PfUVrB1iFuUx3jJG6l6ouYVvpEkh Iox5QbVehrilRJCwt+vvQa2U0bQN2sTfTLOLCZTdm0j70gbP56cqG7nzz6s= -----END CERTIFICATE-----Generated at Wed Jun 17 08:48:54 2026 by rpki-client