$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137315.roa File: AS137315.roa (raw, json) Hash identifier: Wnfzophs6fl60HX0n0fWMv+osNIC2hU9e5kk4OOv3VU= Subject key identifier: 64:7F:1B:83:7C:B8:6F:F6:6B:25:3F:C7:22:2F:D1:CF:4F:C9:12:B3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 13EB528D076E56EDC3706EDD859A99B7A9229781 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137315.roa Signing time: Tue 09 Jan 2024 04:00:19 +0000 ROA not before: Tue 09 Jan 2024 03:55:19 +0000 ROA not after: Tue 07 Jan 2025 04:00:19 +0000 asID: 137315 IP address blocks: 103.164.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:eb:52:8d:07:6e:56:ed:c3:70:6e:dd:85:9a:99:b7:a9:22:97:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:19 2024 GMT Not After : Jan 7 04:00:19 2025 GMT Subject: CN=647F1B837CB86FF66B253FC7222FD1CF4FC912B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:45:20:54:6b:e8:5e:0e:03:c8:bd:02:11:8d: 75:59:af:a7:79:7a:5f:54:f8:73:27:e4:4d:8d:1c: b1:e5:d0:fa:4c:3d:4b:4a:fc:f5:ba:f2:e9:00:e1: 45:34:ef:77:1e:db:ce:38:32:54:68:69:d0:f9:2b: cc:1e:d3:04:57:f6:55:d1:13:3c:8c:3a:17:ba:cf: bc:89:1f:0b:0a:2e:c3:c8:64:28:c2:8e:7f:a5:e4: 53:76:ba:9f:3a:77:13:a7:6b:d1:79:05:2c:8f:05: 14:f6:a3:73:71:b8:53:f9:0d:9c:9c:f8:e3:18:bc: 6e:cf:54:29:8d:25:09:fc:fc:4a:fc:92:e3:e1:6b: 65:55:f8:7d:7e:6a:f1:a7:3e:1d:c9:26:99:54:c2: 04:c9:30:c2:43:02:ca:36:6f:e4:51:74:8e:0c:21: 8c:63:7a:61:c4:7d:7c:d2:1d:d9:02:20:d5:81:25: ec:a7:26:32:59:a1:a7:46:da:a2:a9:80:68:63:9d: b4:9b:25:67:1c:48:ef:34:61:6e:4b:31:ec:9e:6a: db:03:97:15:6f:5c:f7:77:b6:86:79:61:5e:01:8c: ea:ae:4a:13:ca:ce:8c:10:85:3a:1d:39:c1:57:7c: d3:2e:5c:d9:a2:8e:a6:4f:fd:d2:bf:84:1f:70:6f: d7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7F:1B:83:7C:B8:6F:F6:6B:25:3F:C7:22:2F:D1:CF:4F:C9:12:B3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137315.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.60.0/24 Signature Algorithm: sha256WithRSAEncryption 03:d3:91:a1:c0:6b:37:f4:52:4e:3d:84:ce:81:0e:4f:0f:82: 54:9d:5a:de:c8:84:e1:21:a5:f3:ba:29:b6:32:d0:c4:5f:ef: 76:0b:57:b8:e2:fd:fb:25:2e:61:c6:70:d2:1f:7f:92:43:78: 89:e1:71:a5:1b:e6:8b:a3:1a:2c:46:24:28:10:d9:d6:63:a7: b1:c4:34:54:30:26:0e:60:b1:3f:f1:10:37:f8:60:c3:26:73: 81:f7:6b:45:e4:c8:de:f3:13:f8:2f:db:67:3a:59:37:2e:4d: 31:91:ab:fe:9a:a2:e7:6c:59:a0:09:1f:29:a7:75:73:3c:11: a1:c2:e0:91:01:65:c3:fd:f6:62:01:e5:24:47:b5:16:2d:71: bd:e3:5f:a1:89:36:19:a5:59:30:41:16:e1:3b:77:64:ac:eb: bd:9c:86:d0:ad:d5:99:5e:23:74:41:75:a1:4a:01:41:8c:ad: 58:60:d5:ff:dd:50:c6:2d:22:85:6c:af:a5:ac:39:fa:93:54: c2:c0:ae:9a:f1:09:08:6a:de:47:f8:fb:f8:55:3c:e7:4b:5c: 32:2a:68:68:81:bd:b0:b9:4f:26:c6:8e:db:3a:4d:ff:68:5c: a3:eb:b4:39:86:3b:59:cc:4e:b7:57:4d:fc:1c:ac:49:57:e2: 3b:c0:aa:de -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUE+tSjQduVu3DcG7dhZqZt6kil4EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxOVoX DTI1MDEwNzA0MDAxOVowMzExMC8GA1UEAxMoNjQ3RjFCODM3Q0I4NkZGNjZCMjUz RkM3MjIyRkQxQ0Y0RkM5MTJCMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNFIFRr6F4OA8i9AhGNdVmvp3l6X1T4cyfkTY0cseXQ+kw9S0r89bry6QDh RTTvdx7bzjgyVGhp0PkrzB7TBFf2VdETPIw6F7rPvIkfCwouw8hkKMKOf6XkU3a6 nzp3E6dr0XkFLI8FFPajc3G4U/kNnJz44xi8bs9UKY0lCfz8SvyS4+FrZVX4fX5q 8ac+HckmmVTCBMkwwkMCyjZv5FF0jgwhjGN6YcR9fNId2QIg1YEl7KcmMlmhp0ba oqmAaGOdtJslZxxI7zRhbksx7J5q2wOXFW9c93e2hnlhXgGM6q5KE8rOjBCFOh05 wVd80y5c2aKOpk/90r+EH3Bv1zkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRkfxuD fLhv9mslP8ciL9HPT8kSszAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzMxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGekPDANBgkqhkiG9w0BAQsFAAOCAQEAA9ORocBrN/RSTj2EzoEO Tw+CVJ1a3siE4SGl87optjLQxF/vdgtXuOL9+yUuYcZw0h9/kkN4ieFxpRvmi6Ma LEYkKBDZ1mOnscQ0VDAmDmCxP/EQN/hgwyZzgfdrReTI3vMT+C/bZzpZNy5NMZGr /pqi52xZoAkfKad1czwRocLgkQFlw/32YgHlJEe1Fi1xveNfoYk2GaVZMEEW4Tt3 ZKzrvZyG0K3VmV4jdEF1oUoBQYytWGDV/91Qxi0ihWyvpaw5+pNUwsCumvEJCGre R/j7+FU850tcMipoaIG9sLlPJsaO2zpN/2hco+u0OYY7WcxOt1dN/BysSVfiO8Cq 3g== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:23 2024 by rpki-client on console-fra.rpki-client.org