$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137310.roa File: AS137310.roa (raw, json) Hash identifier: 4yWT6jrV07HjH5Io8rdstn26sE4d+EbeNqcJqwfnz3U= Subject key identifier: 7E:6F:1C:CA:51:E8:AD:6F:01:F9:A6:AD:53:6E:7B:4F:AD:FB:4D:DC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6AC93C5E67AF20E3D7B45E3FCE1FB688747D1832 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137310.roa Signing time: Mon 19 Aug 2024 04:00:00 +0000 ROA not before: Mon 19 Aug 2024 03:55:00 +0000 ROA not after: Mon 18 Aug 2025 04:00:00 +0000 asID: 137310 IP address blocks: 103.109.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:c9:3c:5e:67:af:20:e3:d7:b4:5e:3f:ce:1f:b6:88:74:7d:18:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 19 03:55:00 2024 GMT Not After : Aug 18 04:00:00 2025 GMT Subject: CN=7E6F1CCA51E8AD6F01F9A6AD536E7B4FADFB4DDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8a:20:22:71:38:74:4f:4b:85:99:b0:4c:1c: c5:78:06:ac:94:29:b9:20:6d:22:6c:5d:c6:f7:f9: 09:b9:6a:07:3d:f0:18:7c:fd:88:5d:66:5c:1a:b2: 66:d7:da:32:00:dc:ee:15:3d:86:9e:c0:ed:75:01: a4:9f:55:16:a1:5a:3c:35:03:e6:aa:aa:b6:bb:45: f6:5b:00:60:6b:7a:c1:11:ed:af:27:18:93:d3:d3: 75:e5:f6:e4:94:c0:69:a3:55:a3:be:d4:ba:68:ee: 28:65:8c:6e:c1:fd:95:89:fa:f8:18:3b:6b:7f:4e: 94:e2:5d:24:fc:68:9f:bc:0b:d3:06:29:46:f8:da: 2d:82:b1:d9:95:6f:20:7f:4c:f1:2c:11:92:00:3f: 7c:45:a5:37:fb:63:4b:16:81:94:1c:88:70:db:9f: 89:f5:35:00:aa:af:d5:af:62:41:7b:bc:70:ff:ed: 7c:78:38:dc:80:81:29:87:4f:bb:bd:a4:df:3c:8c: c8:12:1b:fd:ed:5b:69:b6:b4:ec:55:04:3e:98:f2: 1b:f6:01:b7:ec:0b:da:73:a5:de:79:72:7b:8c:0c: 51:2c:3b:d9:56:fb:56:49:ff:16:87:7a:9e:24:95: a8:87:b3:b5:df:39:8b:9a:c8:79:5b:ec:c1:0f:c9: 16:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:6F:1C:CA:51:E8:AD:6F:01:F9:A6:AD:53:6E:7B:4F:AD:FB:4D:DC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137310.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.0.0/22 Signature Algorithm: sha256WithRSAEncryption 74:1d:12:4b:6a:f7:4e:4d:a7:84:b8:d3:50:74:7a:75:28:4a: b6:b7:40:a8:f5:6d:68:6a:d1:97:24:3c:d4:83:76:e2:e6:24: 26:8c:15:40:f5:85:5c:cc:08:23:0a:bc:75:92:58:af:a6:fd: 6c:9e:58:66:2e:a2:02:7e:2d:79:25:06:ba:71:33:ac:b5:7a: f7:c6:f5:99:ea:8d:7f:2e:fd:aa:07:6b:6d:a7:69:ff:5d:60: 54:b4:a6:ca:53:6a:9b:12:ee:20:42:30:48:e3:61:09:75:73: a6:58:f3:37:e4:b1:8b:4f:49:53:48:d7:20:92:41:7e:37:93: fb:e7:58:38:fa:1c:0e:62:f5:60:36:c4:dd:ec:de:45:84:35: ea:6c:38:c5:1d:51:54:dd:80:1d:39:e0:cd:f4:e3:67:cf:c7: 48:f4:4a:52:7b:90:39:58:09:4a:12:a8:56:0f:5f:48:81:e7: 89:c4:39:21:c3:f2:4b:d5:bc:40:e8:e1:f6:74:20:d9:32:e2: 44:81:b3:4c:36:4f:12:87:83:31:80:39:d5:b9:54:fd:98:cc: b3:44:5d:88:28:36:3b:35:39:5a:0e:ea:89:4c:1f:22:b7:49: ef:2e:20:04:50:7d:b9:83:f1:06:ea:70:38:3e:75:90:d6:00: 5b:73:c2:61 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUask8XmevIOPXtF4/zh+2iHR9GDIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxOTAzNTUwMFoX DTI1MDgxODA0MDAwMFowMzExMC8GA1UEAxMoN0U2RjFDQ0E1MUU4QUQ2RjAxRjlB NkFENTM2RTdCNEZBREZCNEREQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK6KICJxOHRPS4WZsEwcxXgGrJQpuSBtImxdxvf5CblqBz3wGHz9iF1mXBqy ZtfaMgDc7hU9hp7A7XUBpJ9VFqFaPDUD5qqqtrtF9lsAYGt6wRHtrycYk9PTdeX2 5JTAaaNVo77UumjuKGWMbsH9lYn6+Bg7a39OlOJdJPxon7wL0wYpRvjaLYKx2ZVv IH9M8SwRkgA/fEWlN/tjSxaBlByIcNufifU1AKqv1a9iQXu8cP/tfHg43ICBKYdP u72k3zyMyBIb/e1baba07FUEPpjyG/YBt+wL2nOl3nlye4wMUSw72Vb7Vkn/Fod6 niSVqIeztd85i5rIeVvswQ/JFlcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR+bxzK UeitbwH5pq1TbntPrftN3DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzMxMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmdtADANBgkqhkiG9w0BAQsFAAOCAQEAdB0SS2r3Tk2nhLjTUHR6 dShKtrdAqPVtaGrRlyQ81IN24uYkJowVQPWFXMwIIwq8dZJYr6b9bJ5YZi6iAn4t eSUGunEzrLV698b1meqNfy79qgdrbadp/11gVLSmylNqmxLuIEIwSONhCXVzpljz N+Sxi09JU0jXIJJBfjeT++dYOPocDmL1YDbE3ezeRYQ16mw4xR1RVN2AHTngzfTj Z8/HSPRKUnuQOVgJShKoVg9fSIHnicQ5IcPyS9W8QOjh9nQg2TLiRIGzTDZPEoeD MYA51blU/ZjMs0RdiCg2OzU5Wg7qiUwfIrdJ7y4gBFB9uYPxBupwOD51kNYAW3PC YQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:53 2024 by rpki-client on console-fra.rpki-client.org