$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137310.roa File: AS137310.roa (raw, json) Hash identifier: oATxR8pG6Kq3ZFQgvZp3y1ssPSLB9RnNtHiPJBg0B4Q= Subject key identifier: 4E:09:E8:21:A5:60:60:9B:BB:A1:F8:AF:D9:09:F1:C6:01:99:A5:EB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 73D3065251A66F10C716DE299814A443A087A0CB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137310.roa Signing time: Mon 18 Sep 2023 03:19:40 +0000 ROA not before: Mon 18 Sep 2023 03:14:40 +0000 ROA not after: Mon 16 Sep 2024 03:19:40 +0000 asID: 137310 IP address blocks: 103.109.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:d3:06:52:51:a6:6f:10:c7:16:de:29:98:14:a4:43:a0:87:a0:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 18 03:14:40 2023 GMT Not After : Sep 16 03:19:40 2024 GMT Subject: CN=4E09E821A560609BBBA1F8AFD909F1C60199A5EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:68:0c:cb:31:d7:68:51:b5:ed:a3:bb:16:e2: 8a:16:62:bc:b3:32:e0:f4:2a:0f:eb:12:bd:69:8a: cf:f9:3b:dd:6d:cc:a2:d7:3b:23:a0:65:6d:43:d6: 3d:11:e5:f7:5b:c6:6f:5b:b0:17:6b:b8:b9:f9:b7: a6:c8:2c:c4:16:09:c4:f4:e0:4b:2a:20:d2:9e:ff: 22:07:87:3a:17:b9:6f:52:39:cf:07:d0:ed:e4:1e: ec:09:f2:df:42:d5:23:f0:0c:1e:4e:80:62:23:53: 8a:e8:4f:1e:3c:b8:f8:9d:0e:38:3d:d5:00:ab:8c: 7f:2e:7a:b2:d1:ea:5c:aa:e5:e1:27:bd:ba:07:db: a2:d0:ae:c2:59:c5:ec:52:59:d3:49:d7:d7:e6:46: 69:42:7e:22:bd:40:59:2f:83:61:e7:d0:b5:ba:69: 43:f4:77:67:89:00:d5:3c:69:6a:ef:ed:e4:27:8a: f0:74:d3:49:3e:1b:0f:f9:a1:90:dc:26:05:7e:c2: c1:64:79:81:d2:7d:93:8d:d0:c9:0e:2b:12:a8:23: 8f:2b:0a:7d:c1:fc:87:92:a5:87:a8:e2:26:e0:81: bd:f2:48:f0:a2:0d:4e:b4:d1:30:a1:73:48:40:fa: 8d:93:8c:a0:62:69:45:33:84:44:da:e2:ad:3b:cb: db:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:09:E8:21:A5:60:60:9B:BB:A1:F8:AF:D9:09:F1:C6:01:99:A5:EB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137310.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.0.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:37:11:5e:1a:30:61:94:72:67:73:80:28:5d:b1:d8:50:96: c8:1c:ee:f8:4d:b1:41:2e:59:89:59:07:d4:5b:cb:e4:ab:54: ac:2a:d6:f7:93:80:06:93:b6:bf:94:3e:d9:ee:70:a0:3d:c7: 8a:aa:59:14:29:70:6d:8f:7f:c0:8d:00:1f:0b:eb:52:ff:8a: 45:91:2e:f3:10:40:40:2d:11:63:37:33:6a:17:68:84:15:b3: 26:d5:21:4c:f8:82:6b:08:06:5a:14:3a:2d:5a:63:c5:a3:9d: a0:d4:31:5d:0e:83:3d:f9:ea:a7:c3:70:12:c0:3e:ed:c7:ec: fa:e0:63:9f:ee:52:b6:d6:be:3d:9f:9d:70:fe:3b:ef:29:0b: 66:1b:99:63:ff:01:2a:73:5d:e4:25:da:9e:4f:a3:34:cf:51: 5c:ee:94:65:c5:78:f9:a6:75:6f:e7:5b:8e:51:8d:dd:31:5a: f3:f1:b9:7c:58:78:6a:c2:0c:fb:e1:82:54:84:c5:4b:3e:83: 2e:b9:b2:0c:ec:3a:0d:b8:bc:7e:b9:b8:25:de:7a:90:cf:37: ab:6b:8f:0c:7a:6d:6b:55:80:5c:a6:c4:05:69:05:06:f4:24: e3:ea:14:b6:5f:b7:13:e7:f9:df:b7:ad:72:2c:17:4f:7d:fd: 94:ac:d4:60 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUc9MGUlGmbxDHFt4pmBSkQ6CHoMswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkxODAzMTQ0MFoX DTI0MDkxNjAzMTk0MFowMzExMC8GA1UEAxMoNEUwOUU4MjFBNTYwNjA5QkJCQTFG OEFGRDkwOUYxQzYwMTk5QTVFQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALBoDMsx12hRte2juxbiihZivLMy4PQqD+sSvWmKz/k73W3Motc7I6BlbUPW PRHl91vGb1uwF2u4ufm3psgsxBYJxPTgSyog0p7/IgeHOhe5b1I5zwfQ7eQe7Any 30LVI/AMHk6AYiNTiuhPHjy4+J0OOD3VAKuMfy56stHqXKrl4Se9ugfbotCuwlnF 7FJZ00nX1+ZGaUJ+Ir1AWS+DYefQtbppQ/R3Z4kA1Txpau/t5CeK8HTTST4bD/mh kNwmBX7CwWR5gdJ9k43QyQ4rEqgjjysKfcH8h5Klh6jiJuCBvfJI8KINTrTRMKFz SED6jZOMoGJpRTOERNrirTvL2+MCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBROCegh pWBgm7uh+K/ZCfHGAZml6zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzMxMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmdtADANBgkqhkiG9w0BAQsFAAOCAQEAXzcRXhowYZRyZ3OAKF2x 2FCWyBzu+E2xQS5ZiVkH1FvL5KtUrCrW95OABpO2v5Q+2e5woD3HiqpZFClwbY9/ wI0AHwvrUv+KRZEu8xBAQC0RYzczahdohBWzJtUhTPiCawgGWhQ6LVpjxaOdoNQx XQ6DPfnqp8NwEsA+7cfs+uBjn+5Stta+PZ+dcP477ykLZhuZY/8BKnNd5CXank+j NM9RXO6UZcV4+aZ1b+dbjlGN3TFa8/G5fFh4asIM++GCVITFSz6DLrmyDOw6Dbi8 frm4Jd56kM83q2uPDHpta1WAXKbEBWkFBvQk4+oUtl+3E+f537etciwXT339lKzU YA== -----END CERTIFICATE-----Generated at Wed May 8 10:06:52 2024 by rpki-client on console-ams.rpki-client.org