$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137352.roa File: AS137352.roa (raw, json) Hash identifier: TJzfvHSb8beiFuzqSEJUOSLsLbkjGmloqqZcSi53W0o= Subject key identifier: 38:FC:03:EE:20:21:3E:35:1D:E4:6D:9F:30:03:60:20:C9:05:80:85 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0A9D0F489C9E28BE974477054EA76C166A3EF9AC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137352.roa Signing time: Tue 02 Jul 2024 08:00:00 +0000 ROA not before: Tue 02 Jul 2024 07:55:00 +0000 ROA not after: Tue 01 Jul 2025 08:00:00 +0000 asID: 137352 IP address blocks: 103.113.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:9d:0f:48:9c:9e:28:be:97:44:77:05:4e:a7:6c:16:6a:3e:f9:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 2 07:55:00 2024 GMT Not After : Jul 1 08:00:00 2025 GMT Subject: CN=38FC03EE20213E351DE46D9F30036020C9058085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7b:8a:a3:7a:da:10:69:a6:6c:b7:b2:4e:84: 7f:c4:39:5c:46:13:94:7f:f6:85:ee:44:96:19:f8: f0:47:92:43:d9:41:c6:3d:62:99:18:9e:83:78:f5: e4:d0:49:57:6c:6a:bd:87:30:68:72:e3:f2:56:20: 63:b2:47:02:31:49:b2:a9:2e:4b:c5:8a:7b:e6:36: 90:21:e3:8c:2b:f1:cd:e0:13:ff:d5:16:e8:ab:6f: 26:1f:12:e6:68:7c:ff:7a:5b:e6:df:94:ad:fb:7e: c7:e2:ae:1e:cc:93:9c:3a:40:a4:6d:85:6b:3b:69: 9a:32:ef:c1:a1:b5:91:df:3b:52:88:aa:c8:63:d9: d4:5a:14:10:95:2d:a2:9c:f1:17:a7:4c:6b:44:21: 8b:f9:f7:dc:57:13:cf:4b:23:1d:a1:dc:6b:45:7f: cc:7b:95:ac:df:ab:d3:24:22:58:29:1e:08:67:7a: be:37:9f:4c:c7:62:b1:3c:d4:4c:12:9f:2d:a3:73: 7d:69:47:af:ed:ab:6d:f8:8f:9f:9d:48:f9:98:5a: fa:6f:f5:04:2c:84:4b:40:04:e6:47:df:10:42:cb: 6a:51:93:d2:c0:b0:b1:fd:6b:81:12:37:a1:cf:43: a3:ce:41:e2:ed:e9:2f:81:93:e9:63:3b:7d:59:64: a7:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:FC:03:EE:20:21:3E:35:1D:E4:6D:9F:30:03:60:20:C9:05:80:85 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137352.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.113.170.0/23 Signature Algorithm: sha256WithRSAEncryption 89:f3:40:fa:31:cb:f8:2b:7e:f8:ba:09:af:64:eb:58:ff:ee: 3a:5f:81:b2:46:7b:ff:56:d8:e6:61:cb:51:dd:38:96:4e:42: de:23:ae:71:e3:ee:a5:92:70:9e:28:f7:d7:37:ba:9c:33:a9: fd:87:dd:c0:0b:03:62:04:6e:3e:d4:35:48:3a:92:99:1d:6a: 59:87:43:eb:19:ad:48:89:59:83:78:93:b6:c0:0a:4c:c2:9d: bb:61:65:78:c9:52:05:5c:0a:58:40:92:5f:bf:36:3f:c5:dd: 6a:ce:1f:20:99:fb:d6:07:af:01:d1:32:fc:b0:49:09:20:f7: a3:96:fd:a8:c3:3d:81:13:6e:fa:f9:68:f9:50:65:f5:59:ce: 57:9a:de:b5:b8:7b:c8:55:97:9c:c0:66:51:79:4f:3c:8d:91: 48:62:b2:7c:47:ce:94:e8:37:49:82:84:7d:7c:b8:e6:46:93: 1c:c4:ee:95:a1:e3:01:32:c9:c6:5a:05:f6:2c:93:cc:5d:d3: b6:4b:3f:43:5b:5a:b3:44:f0:96:61:f2:36:ab:d3:07:bf:b7: a2:c5:4e:fb:25:c4:b3:40:35:ed:1c:19:d5:5c:a7:e8:fe:ec: 99:3c:89:65:0f:1a:fe:0f:fc:1e:6b:62:6c:3b:a5:ee:50:0c: c2:11:39:bb -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCp0PSJyeKL6XRHcFTqdsFmo++awwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMjA3NTUwMFoX DTI1MDcwMTA4MDAwMFowMzExMC8GA1UEAxMoMzhGQzAzRUUyMDIxM0UzNTFERTQ2 RDlGMzAwMzYwMjBDOTA1ODA4NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMN7iqN62hBppmy3sk6Ef8Q5XEYTlH/2he5Elhn48EeSQ9lBxj1imRieg3j1 5NBJV2xqvYcwaHLj8lYgY7JHAjFJsqkuS8WKe+Y2kCHjjCvxzeAT/9UW6KtvJh8S 5mh8/3pb5t+Urft+x+KuHsyTnDpApG2FaztpmjLvwaG1kd87UoiqyGPZ1FoUEJUt opzxF6dMa0Qhi/n33FcTz0sjHaHca0V/zHuVrN+r0yQiWCkeCGd6vjefTMdisTzU TBKfLaNzfWlHr+2rbfiPn51I+Zha+m/1BCyES0AE5kffEELLalGT0sCwsf1rgRI3 oc9Do85B4u3pL4GT6WM7fVlkpz0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ4/APu ICE+NR3kbZ8wA2AgyQWAhTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM1Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdxqjANBgkqhkiG9w0BAQsFAAOCAQEAifNA+jHL+Ct++LoJr2Tr WP/uOl+BskZ7/1bY5mHLUd04lk5C3iOucePupZJwnij31ze6nDOp/YfdwAsDYgRu PtQ1SDqSmR1qWYdD6xmtSIlZg3iTtsAKTMKdu2FleMlSBVwKWECSX782P8Xdas4f IJn71gevAdEy/LBJCSD3o5b9qMM9gRNu+vlo+VBl9VnOV5retbh7yFWXnMBmUXlP PI2RSGKyfEfOlOg3SYKEfXy45kaTHMTulaHjATLJxloF9iyTzF3Ttks/Q1tas0Tw lmHyNqvTB7+3osVO+yXEs0A17RwZ1Vyn6P7smTyJZQ8a/g/8HmtibDul7lAMwhE5 uw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:53 2024 by rpki-client on console-fra.rpki-client.org