$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137299.roa File: AS137299.roa (raw, json) Hash identifier: GVA2WAeJlgqUH9LDx1sApO/fSAyG/MTGIaHPyuAItQI= Subject key identifier: ED:90:E7:D0:C2:BE:9A:F6:95:EB:79:58:DD:66:16:E5:2D:10:BA:6F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6030AEB6CA20B08FDD0DF0DC7C6761DAA60009F4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137299.roa Signing time: Tue 09 Jan 2024 04:00:21 +0000 ROA not before: Tue 09 Jan 2024 03:55:21 +0000 ROA not after: Tue 07 Jan 2025 04:00:21 +0000 asID: 137299 IP address blocks: 103.107.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:30:ae:b6:ca:20:b0:8f:dd:0d:f0:dc:7c:67:61:da:a6:00:09:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:21 2024 GMT Not After : Jan 7 04:00:21 2025 GMT Subject: CN=ED90E7D0C2BE9AF695EB7958DD6616E52D10BA6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:59:49:d9:f9:3f:f3:c1:8f:8a:49:23:9d:4b: 9c:1f:be:10:8d:33:8c:78:34:e9:1c:f6:7d:24:e9: 64:78:58:7f:68:34:63:8d:00:da:3c:ea:1d:7d:61: 92:d3:99:cd:8d:66:25:21:7f:73:b7:f7:c3:68:51: 4e:6a:43:ea:98:2c:aa:db:24:7d:f5:e1:8b:ac:37: 22:c0:4d:de:73:36:f2:3a:67:13:a4:a9:6c:37:6c: bd:1f:34:0c:a6:82:e8:b5:e5:99:db:7d:9f:83:0f: 82:9a:cb:3b:bf:0e:7b:d8:5f:0d:bb:12:83:82:fe: 76:ae:91:2a:09:db:49:8e:38:6c:ac:b4:76:6f:fb: 43:c8:dc:52:3d:4e:5d:5f:c1:a1:ef:69:98:ab:f7: c7:fe:ca:38:d9:f5:2b:b9:3d:b6:2b:53:8c:81:cf: 3c:f2:90:66:28:22:13:fe:10:b1:5e:5d:cb:47:32: ea:a7:2e:6f:8a:3c:3e:c4:b9:e6:46:d5:f9:af:a1: f6:38:2b:57:9a:94:2d:ce:d1:7b:d2:d3:3b:e1:d2: 4e:9b:e8:ab:30:05:03:7f:e0:4c:c9:a3:77:3e:bc: 1b:db:15:4e:02:d8:c6:48:59:ed:27:b9:d6:b7:79: e9:e5:dc:75:a1:12:40:f3:13:d4:12:18:1d:28:cd: 0b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:90:E7:D0:C2:BE:9A:F6:95:EB:79:58:DD:66:16:E5:2D:10:BA:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137299.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.186.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:79:5c:5f:5e:a8:28:6c:ad:b8:f4:fd:3e:f5:88:7b:00:7f: 43:6d:79:c0:c4:61:b0:71:02:77:63:83:8b:42:71:0e:d7:40: dd:53:ef:6f:3b:ef:09:78:3a:6a:f5:10:0a:fd:4d:3c:70:7f: a1:54:c7:8c:84:8c:1e:5f:53:6e:99:69:9f:9c:ca:9b:b3:fe: 6e:2f:87:2c:78:e7:cc:4d:f4:5c:79:fb:d4:c5:f1:bb:18:d1: 3d:29:5d:1c:7e:89:ef:7e:0d:dc:5a:be:20:ce:8d:dd:8c:f8: 3e:f5:ab:e7:de:95:5a:b4:89:c5:c0:a1:d5:9a:7e:19:14:30: 64:52:7f:d5:fc:41:c7:cd:b8:7f:ec:04:51:f5:72:9d:2d:0e: 2f:fc:69:e5:77:b3:57:65:44:5b:aa:11:1c:5c:ba:14:d5:0d: 52:32:01:c1:19:56:89:ed:34:58:3b:7e:3e:31:d2:96:24:0a: aa:8a:9a:8c:be:2b:3d:f9:60:3d:60:7d:97:de:88:4f:2c:11: da:34:83:bf:22:f3:30:c5:17:5e:b3:8f:76:aa:68:f1:4d:e6: 63:68:7a:9f:a2:11:fb:03:6e:73:3a:66:0e:89:3a:63:f6:df: 50:a0:46:14:5a:56:87:e0:89:f2:54:59:2d:2e:6b:92:19:fa: d0:4f:01:93 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYDCutsogsI/dDfDcfGdh2qYACfQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyMVoX DTI1MDEwNzA0MDAyMVowMzExMC8GA1UEAxMoRUQ5MEU3RDBDMkJFOUFGNjk1RUI3 OTU4REQ2NjE2RTUyRDEwQkE2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN9ZSdn5P/PBj4pJI51LnB++EI0zjHg06Rz2fSTpZHhYf2g0Y40A2jzqHX1h ktOZzY1mJSF/c7f3w2hRTmpD6pgsqtskffXhi6w3IsBN3nM28jpnE6SpbDdsvR80 DKaC6LXlmdt9n4MPgprLO78Oe9hfDbsSg4L+dq6RKgnbSY44bKy0dm/7Q8jcUj1O XV/Boe9pmKv3x/7KONn1K7k9titTjIHPPPKQZigiE/4QsV5dy0cy6qcub4o8PsS5 5kbV+a+h9jgrV5qULc7Re9LTO+HSTpvoqzAFA3/gTMmjdz68G9sVTgLYxkhZ7Se5 1rd56eXcdaESQPMT1BIYHSjNC2sCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTtkOfQ wr6a9pXreVjdZhblLRC6bzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzI5OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdrujANBgkqhkiG9w0BAQsFAAOCAQEATXlcX16oKGytuPT9PvWI ewB/Q215wMRhsHECd2ODi0JxDtdA3VPvbzvvCXg6avUQCv1NPHB/oVTHjISMHl9T bplpn5zKm7P+bi+HLHjnzE30XHn71MXxuxjRPSldHH6J734N3Fq+IM6N3Yz4PvWr 596VWrSJxcCh1Zp+GRQwZFJ/1fxBx824f+wEUfVynS0OL/xp5XezV2VEW6oRHFy6 FNUNUjIBwRlWie00WDt+PjHSliQKqoqajL4rPflgPWB9l96ITywR2jSDvyLzMMUX XrOPdqpo8U3mY2h6n6IR+wNuczpmDok6Y/bfUKBGFFpWh+CJ8lRZLS5rkhn60E8B kw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:46 2024 by rpki-client on console-ams.rpki-client.org