$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137352.roa File: AS137352.roa (raw, json) Hash identifier: 8VDsg5A6L4DIyh6eXM9EgqnC8d3qE7FEjGmHJbV325E= Subject key identifier: 14:2E:1B:C2:4F:83:D8:F8:32:2A:40:D3:6D:78:FC:E7:A7:BF:F2:4A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7F019DF398A845B0410E2EC163CC47936FA74134 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137352.roa Signing time: Tue 01 Aug 2023 07:56:25 +0000 ROA not before: Tue 01 Aug 2023 07:51:25 +0000 ROA not after: Tue 30 Jul 2024 07:56:25 +0000 asID: 137352 IP address blocks: 103.113.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:01:9d:f3:98:a8:45:b0:41:0e:2e:c1:63:cc:47:93:6f:a7:41:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 1 07:51:25 2023 GMT Not After : Jul 30 07:56:25 2024 GMT Subject: CN=142E1BC24F83D8F8322A40D36D78FCE7A7BFF24A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ef:be:b9:27:68:43:70:9b:43:e8:55:44:1e: 99:5f:5b:bd:50:f2:44:ea:7f:0d:f9:52:1b:6c:a4: a3:9f:b2:6b:6f:12:a2:18:03:4b:55:4b:92:ba:f5: 04:67:16:d3:d1:ea:a7:1a:7d:a4:ba:93:c4:e6:92: 90:db:a5:44:21:11:d6:c0:f5:7b:c6:74:3b:99:96: 4b:74:6f:47:40:3e:f2:d2:87:70:22:f5:72:c5:92: 88:84:8e:ea:6c:40:d0:7f:05:d3:3c:ab:59:c5:06: 6c:e4:99:73:90:47:23:d5:c6:71:61:c0:ff:53:44: 2c:66:7c:9b:e2:45:29:56:15:13:eb:03:e1:1d:4b: 59:5d:b7:04:8b:e3:88:3e:78:0f:3a:d0:73:c2:e0: bc:69:80:0d:45:fa:b3:00:52:ce:25:68:79:36:8d: 77:17:3b:0f:30:39:99:24:74:69:93:e9:fc:b8:97: cb:d3:93:32:c9:bb:8c:44:a8:dc:eb:12:2d:72:3c: 02:4a:8c:3e:ec:ca:f2:db:55:8a:48:b3:0e:78:cf: 48:01:e3:de:4e:19:82:0c:d5:f9:d8:ad:1d:38:0f: 01:d4:9f:c2:c0:d6:83:56:e8:55:ba:66:ca:00:cb: 04:38:03:54:ed:fd:6d:f5:0c:45:e0:d2:3b:de:a8: 18:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:2E:1B:C2:4F:83:D8:F8:32:2A:40:D3:6D:78:FC:E7:A7:BF:F2:4A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137352.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.113.170.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:2d:53:c2:57:06:3b:1e:7c:13:34:0b:cd:63:aa:da:3b:87: 90:5e:8e:c8:e2:ac:4f:43:2a:b5:93:6f:5b:bf:6e:36:85:ee: c7:38:55:75:98:a3:c2:b7:7a:aa:7e:51:c0:8e:9b:b5:b8:79: 64:5f:2a:86:9b:10:82:dd:ba:e0:18:d6:24:66:af:f9:0d:e5: b4:06:47:7b:7d:e9:11:3c:04:59:92:3e:10:0c:60:d2:02:fc: a6:d6:e8:6a:be:93:32:d6:80:78:d7:c1:05:77:a7:72:1d:1d: 9e:20:9d:56:55:65:c0:ab:2a:48:25:a0:57:ee:5f:41:d8:3e: 78:a1:7b:ee:e7:1a:d9:dc:54:3e:5d:c9:3d:12:e9:19:e4:13: 81:7d:e7:2f:4d:92:48:b5:ff:93:68:80:c8:f5:6d:2b:0f:79: 42:fa:c7:c1:47:29:d7:a9:3a:3d:ec:85:a4:12:ac:7e:ad:31: 03:f9:ef:db:58:46:c2:5a:05:2b:20:7d:98:55:29:92:31:a4: 16:ba:1e:73:c4:32:87:1c:d9:0c:c3:00:cd:df:e4:02:37:45: 3b:cb:f0:88:81:8c:50:48:80:1c:81:1d:a8:b7:82:85:96:b5: 6f:97:6c:99:24:ed:66:b3:02:34:aa:5d:d2:ce:6d:7c:2e:86: 87:b9:16:c3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfwGd85ioRbBBDi7BY8xHk2+nQTQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwMTA3NTEyNVoX DTI0MDczMDA3NTYyNVowMzExMC8GA1UEAxMoMTQyRTFCQzI0RjgzRDhGODMyMkE0 MEQzNkQ3OEZDRTdBN0JGRjI0QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANXvvrknaENwm0PoVUQemV9bvVDyROp/DflSG2yko5+ya28SohgDS1VLkrr1 BGcW09Hqpxp9pLqTxOaSkNulRCER1sD1e8Z0O5mWS3RvR0A+8tKHcCL1csWSiISO 6mxA0H8F0zyrWcUGbOSZc5BHI9XGcWHA/1NELGZ8m+JFKVYVE+sD4R1LWV23BIvj iD54DzrQc8LgvGmADUX6swBSziVoeTaNdxc7DzA5mSR0aZPp/LiXy9OTMsm7jESo 3OsSLXI8AkqMPuzK8ttVikizDnjPSAHj3k4ZggzV+ditHTgPAdSfwsDWg1boVbpm ygDLBDgDVO39bfUMReDSO96oGNkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQULhvC T4PY+DIqQNNtePznp7/ySjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM1Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdxqjANBgkqhkiG9w0BAQsFAAOCAQEAWy1TwlcGOx58EzQLzWOq 2juHkF6OyOKsT0MqtZNvW79uNoXuxzhVdZijwrd6qn5RwI6btbh5ZF8qhpsQgt26 4BjWJGav+Q3ltAZHe33pETwEWZI+EAxg0gL8ptboar6TMtaAeNfBBXench0dniCd VlVlwKsqSCWgV+5fQdg+eKF77uca2dxUPl3JPRLpGeQTgX3nL02SSLX/k2iAyPVt Kw95QvrHwUcp16k6PeyFpBKsfq0xA/nv21hGwloFKyB9mFUpkjGkFroec8QyhxzZ DMMAzd/kAjdFO8vwiIGMUEiAHIEdqLeChZa1b5dsmSTtZrMCNKpd0s5tfC6Gh7kW ww== -----END CERTIFICATE-----Generated at Wed May 8 17:45:21 2024 by rpki-client on console-ams.rpki-client.org