$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138863.roa File: AS138863.roa (raw, json) Hash identifier: dwZNSqXx/ZDq1pHRXniOKDZTJZ5OAwJJYoRGr3Tgimo= Subject key identifier: 91:33:66:89:73:57:B8:4A:76:5E:95:3F:4E:72:12:58:39:CA:C0:EC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5F936EF44235320FBEAE2C4B0ABA51F34B7CD06E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138863.roa Signing time: Tue 09 Jan 2024 04:00:17 +0000 ROA not before: Tue 09 Jan 2024 03:55:17 +0000 ROA not after: Tue 07 Jan 2025 04:00:17 +0000 asID: 138863 IP address blocks: 103.139.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 10:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:93:6e:f4:42:35:32:0f:be:ae:2c:4b:0a:ba:51:f3:4b:7c:d0:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:17 2024 GMT Not After : Jan 7 04:00:17 2025 GMT Subject: CN=913366897357B84A765E953F4E72125839CAC0EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:22:48:88:53:f2:f8:93:1a:d6:be:9d:4b:02: 35:a2:58:a9:15:94:40:b9:5a:cd:0e:28:a7:ce:ac: 12:48:63:ab:f7:b5:a1:a3:bd:49:9d:68:6c:2e:f0: 55:51:6e:ee:ed:a9:d3:45:c0:a5:42:15:e4:41:3b: 70:59:ed:c4:bf:f1:b5:27:a7:32:82:c0:59:7a:c3: 84:e8:f1:c9:db:a6:7f:58:17:b1:5f:17:cb:bf:44: f3:be:82:57:5b:ea:f8:61:4b:f1:f4:14:b6:c3:0b: d3:ac:d2:95:61:a9:2d:bd:39:05:60:f1:9b:63:67: 0a:ac:44:5f:4b:31:6d:76:f1:b7:e4:01:29:97:08: b6:c8:af:aa:0a:de:f7:1c:30:7e:15:ea:4c:42:48: 5a:76:97:7a:ce:c6:89:68:1b:36:a5:5a:3a:25:d5: 76:64:5c:83:07:9d:06:06:81:46:1c:06:d8:aa:9a: 7a:65:33:f4:ec:c0:b5:66:da:b7:e3:94:45:be:73: cd:c7:a5:b9:bd:fd:00:2f:da:cb:34:51:e9:05:73: b0:e7:54:ce:55:d6:ed:ce:ee:bd:1a:f7:f8:dd:f1: 9d:0c:88:05:a3:6b:00:c5:9c:b9:62:c8:a1:8d:0f: df:ee:36:b8:b8:13:ce:67:63:35:1a:11:50:45:48: 81:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:33:66:89:73:57:B8:4A:76:5E:95:3F:4E:72:12:58:39:CA:C0:EC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138863.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.166.0/23 Signature Algorithm: sha256WithRSAEncryption 70:7e:3d:b2:fe:97:74:11:17:8e:ea:32:ab:89:12:b8:a1:4e: 95:a2:70:9c:d8:d0:9f:1c:9d:e1:17:8d:d7:84:b1:a2:de:25: 78:7b:fa:ed:b7:34:fa:ee:c5:c0:f8:b6:2c:f6:56:f7:94:71: 69:e7:23:e9:98:f4:09:27:55:34:7b:96:8e:1c:34:ed:be:ec: b8:a8:30:88:ca:89:5f:a2:45:09:67:af:2a:e6:18:0b:14:04: 74:6c:59:ea:a2:11:16:49:95:71:4e:7e:57:ca:26:17:a5:f3: b8:ff:6d:ec:00:8e:9a:8e:85:fd:65:dc:aa:68:39:d4:d1:14: 4c:24:1a:2b:da:df:80:8c:7f:67:8f:93:52:dd:a9:10:1e:7e: b0:fe:d0:f0:84:b7:df:54:46:75:10:8d:b0:06:0f:92:a0:ca: 0b:6b:fe:cc:34:e4:20:57:16:9a:19:9e:80:2b:bf:65:bb:c0: 36:f0:6f:60:bd:bf:fd:30:1f:11:86:95:a7:86:8a:9e:85:f6: ea:59:9d:7e:a9:ab:cd:73:4c:ca:1c:63:ef:da:82:83:5c:a4: 75:61:08:2c:35:e0:e4:72:68:38:25:9d:48:23:50:46:bc:f8: 2d:90:6e:a5:df:fd:ae:f4:e2:3b:0b:e4:ce:2c:5f:96:39:d9: 80:a2:52:d9 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUX5Nu9EI1Mg++rixLCrpR80t80G4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxN1oX DTI1MDEwNzA0MDAxN1owMzExMC8GA1UEAxMoOTEzMzY2ODk3MzU3Qjg0QTc2NUU5 NTNGNEU3MjEyNTgzOUNBQzBFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPIiSIhT8viTGta+nUsCNaJYqRWUQLlazQ4op86sEkhjq/e1oaO9SZ1obC7w VVFu7u2p00XApUIV5EE7cFntxL/xtSenMoLAWXrDhOjxydumf1gXsV8Xy79E876C V1vq+GFL8fQUtsML06zSlWGpLb05BWDxm2NnCqxEX0sxbXbxt+QBKZcItsivqgre 9xwwfhXqTEJIWnaXes7GiWgbNqVaOiXVdmRcgwedBgaBRhwG2KqaemUz9OzAtWba t+OURb5zzcelub39AC/ayzRR6QVzsOdUzlXW7c7uvRr3+N3xnQyIBaNrAMWcuWLI oY0P3+42uLgTzmdjNRoRUEVIgVMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSRM2aJ c1e4SnZelT9OchJYOcrA7DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODg2My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeLpjANBgkqhkiG9w0BAQsFAAOCAQEAcH49sv6XdBEXjuoyq4kS uKFOlaJwnNjQnxyd4ReN14Sxot4leHv67bc0+u7FwPi2LPZW95Rxaecj6Zj0CSdV NHuWjhw07b7suKgwiMqJX6JFCWevKuYYCxQEdGxZ6qIRFkmVcU5+V8omF6XzuP9t 7ACOmo6F/WXcqmg51NEUTCQaK9rfgIx/Z4+TUt2pEB5+sP7Q8IS331RGdRCNsAYP kqDKC2v+zDTkIFcWmhmegCu/ZbvANvBvYL2//TAfEYaVp4aKnoX26lmdfqmrzXNM yhxj79qCg1ykdWEILDXg5HJoOCWdSCNQRrz4LZBupd/9rvTiOwvkzixfljnZgKJS 2Q== -----END CERTIFICATE-----Generated at Sun May 5 05:20:55 2024 by rpki-client on console-fra.rpki-client.org