$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS38162.roa File: AS38162.roa (raw, json) Hash identifier: OekIHE6ZJM8h5vQ2fcRv+ErNSsfTytP8FcjMDXWvb/4= Subject key identifier: 6C:F7:2F:B0:7A:87:F9:1A:5E:E4:60:0D:10:CB:BD:87:48:C2:C8:29 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7BEA77B7210FE6BD734DDAEFB2AA8F2F217C7F22 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS38162.roa Signing time: Tue 02 Jun 2026 08:48:43 +0000 ROA not before: Tue 02 Jun 2026 08:43:43 +0000 ROA not after: Tue 01 Jun 2027 08:48:43 +0000 asID: 38162 IP address blocks: 116.50.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:ea:77:b7:21:0f:e6:bd:73:4d:da:ef:b2:aa:8f:2f:21:7c:7f:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: Jun 2 08:43:43 2026 GMT Not After : Jun 1 08:48:43 2027 GMT Subject: CN=6CF72FB07A87F91A5EE4600D10CBBD8748C2C829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0a:a8:f6:f2:9e:53:7c:e5:5d:fe:de:3a:a9: 38:cb:21:61:85:f7:e2:46:c0:86:1c:7e:0c:1f:60: 74:f1:52:56:25:0f:8e:61:f4:05:78:d3:6e:c6:29: 93:a5:7c:fe:0b:71:7f:7e:57:0d:56:a1:ba:77:fb: f6:c4:b6:53:e1:78:02:67:d1:43:24:4e:0e:d3:fb: c6:b6:b2:5a:3f:cc:f3:57:22:45:5a:39:45:be:fd: 5d:b7:fb:03:6f:a7:95:df:58:db:cb:b7:f3:a8:69: b3:57:e9:7d:a8:65:ff:8d:a3:48:80:64:15:10:a4: 63:42:d9:6a:60:48:ef:69:ba:d1:2b:d1:64:6a:9a: cc:a9:f5:3b:4c:a3:28:58:af:78:70:94:09:1b:bf: 89:8e:ef:ba:9d:d2:42:81:eb:a3:3f:f6:82:a1:be: 1c:c7:00:54:f1:92:e3:76:0e:59:7e:c0:b7:53:40: ea:c0:80:29:11:cd:e4:bd:5d:93:db:47:72:b0:3e: ae:98:29:6c:c1:c2:c2:e0:58:09:9f:e4:e5:38:73: d7:c9:01:cb:be:50:b1:d0:f8:70:45:73:a8:1d:91: 50:c5:9f:dc:6f:58:1f:68:59:a1:9c:cc:43:34:4c: 87:1a:b2:82:f2:45:20:ce:98:ce:cf:4d:d1:61:09: 6d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F7:2F:B0:7A:87:F9:1A:5E:E4:60:0D:10:CB:BD:87:48:C2:C8:29 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS38162.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.50.24.0/21 Signature Algorithm: sha256WithRSAEncryption a5:af:a2:e8:0a:42:c7:99:95:53:95:9b:8d:72:07:0e:d0:a1: 7b:a8:e3:64:16:7b:fa:7a:4b:7b:c3:7b:f0:11:f2:05:c6:97: 07:86:8d:01:40:e1:1f:0f:3a:fe:9c:68:b8:bc:68:dd:f5:ec: 09:ae:4f:73:15:65:e2:42:61:26:33:ed:d7:cd:94:7d:21:8f: 9d:38:45:32:95:b6:86:39:0d:28:39:75:02:f3:91:68:1c:62: ea:4b:d2:97:0d:32:8f:1a:79:92:67:df:ea:f4:96:21:4f:9a: 26:3d:16:f3:30:24:47:b0:3d:61:fd:57:3c:e5:c7:03:3b:eb: aa:ea:09:6f:0c:f6:02:cc:a8:de:99:f8:1c:a7:50:85:f8:9c: ab:22:7e:51:8f:4a:3f:6a:bf:e4:ed:c6:79:f6:7d:42:f2:a2: c8:e7:b9:e5:38:b3:52:ba:15:99:ea:b2:ca:af:59:b7:4c:83: e1:05:ba:94:ee:89:1b:8b:9f:84:85:4f:29:23:b3:3c:12:2f: 8d:82:46:a2:8f:95:e3:3a:c7:8a:0b:f3:7a:b8:f0:08:6f:9f: 48:c7:7d:0b:ca:39:9b:44:74:05:3e:b9:06:a2:e1:32:cb:c2: 8c:6d:8d:d6:bc:46:61:91:0d:a4:5b:c9:18:2f:ca:ed:a0:8d: f2:4e:23:fb -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUe+p3tyEP5r1zTdrvsqqPLyF8fyIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDYwMjA4NDM0M1oX DTI3MDYwMTA4NDg0M1owMzExMC8GA1UEAxMoNkNGNzJGQjA3QTg3RjkxQTVFRTQ2 MDBEMTBDQkJEODc0OEMyQzgyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKEKqPbynlN85V3+3jqpOMshYYX34kbAhhx+DB9gdPFSViUPjmH0BXjTbsYp k6V8/gtxf35XDVahunf79sS2U+F4AmfRQyRODtP7xrayWj/M81ciRVo5Rb79Xbf7 A2+nld9Y28u386hps1fpfahl/42jSIBkFRCkY0LZamBI72m60SvRZGqazKn1O0yj KFiveHCUCRu/iY7vup3SQoHroz/2gqG+HMcAVPGS43YOWX7At1NA6sCAKRHN5L1d k9tHcrA+rpgpbMHCwuBYCZ/k5Thz18kBy75QsdD4cEVzqB2RUMWf3G9YH2hZoZzM QzRMhxqygvJFIM6Yzs9N0WEJbVkCAwEAAaOCAcswggHHMB0GA1UdDgQWBBRs9y+w eof5Gl7kYA0Qy72HSMLIKTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMzgxNjIucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAN0MhgwDQYJKoZIhvcNAQELBQADggEBAKWvougKQseZlVOVm41yBw7QoXuo 42QWe/p6S3vDe/AR8gXGlweGjQFA4R8POv6caLi8aN317AmuT3MVZeJCYSYz7dfN lH0hj504RTKVtoY5DSg5dQLzkWgcYupL0pcNMo8aeZJn3+r0liFPmiY9FvMwJEew PWH9VzzlxwM766rqCW8M9gLMqN6Z+BynUIX4nKsiflGPSj9qv+Ttxnn2fULyosjn ueU4s1K6FZnqssqvWbdMg+EFupTuiRuLn4SFTykjszwSL42CRqKPleM6x4oL83q4 8Ahvn0jHfQvKOZtEdAU+uQai4TLLwoxtjda8RmGRDaRbyRgvyu2gjfJOI/s= -----END CERTIFICATE-----Generated at Wed Jun 17 08:24:57 2026 by rpki-client