$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137358.roa File: AS137358.roa (raw, json) Hash identifier: D7wN/iAw0Rpu+RWdPnYNF4LgyG/9PJaVdlwqzMXrzeA= Subject key identifier: AB:2C:F7:1F:6B:E8:68:A6:27:74:AC:29:F6:59:05:43:62:2F:62:09 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 385085F868A2BB898DFCCD333408546B57E84329 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137358.roa Signing time: Wed 07 Aug 2024 04:00:00 +0000 ROA not before: Wed 07 Aug 2024 03:55:00 +0000 ROA not after: Wed 06 Aug 2025 04:00:00 +0000 asID: 137358 IP address blocks: 103.115.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:50:85:f8:68:a2:bb:89:8d:fc:cd:33:34:08:54:6b:57:e8:43:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Aug 7 03:55:00 2024 GMT Not After : Aug 6 04:00:00 2025 GMT Subject: CN=AB2CF71F6BE868A62774AC29F6590543622F6209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3a:86:79:f9:0e:bd:5a:9d:06:4b:a1:41:7f: 56:6d:6b:e6:5a:c5:9e:06:34:03:e1:32:b9:bf:80: 3a:f5:33:89:fb:b6:a4:d2:9e:33:5f:9f:f0:37:56: 9b:6e:ff:7c:f3:d2:7b:bb:11:02:9e:09:15:fe:40: 0e:86:06:4b:b1:b0:76:a1:a7:ff:3d:9c:d1:7c:63: 50:15:2f:86:bf:6b:c1:35:46:e7:0e:49:87:23:3d: 1b:35:ac:36:1b:37:d4:04:75:cc:eb:9c:4b:4f:b3: c1:2e:55:cc:a8:f7:1d:e1:5b:6e:72:6a:67:30:3a: 61:ac:86:29:3b:a6:d8:24:b7:49:92:8a:4f:ae:55: d9:16:bf:0a:29:4c:c3:3a:59:26:7b:43:79:3c:60: a2:8c:f4:fb:49:e3:2e:9c:77:56:07:4a:ed:9a:c6: 83:02:71:b0:32:13:37:18:9a:56:95:89:3c:5d:e1: c8:19:04:1c:a4:8f:a4:34:62:53:bc:e6:e2:58:2e: 9c:34:8c:3a:fb:6f:a9:fc:1a:91:dc:11:aa:d7:49: 3c:90:f1:e4:70:45:1d:75:ac:1a:3e:fa:2a:65:e1: a6:74:9a:6f:f8:8d:5f:03:17:4c:d8:bd:6a:f8:b0: 05:4c:5a:f4:67:4f:03:7f:e2:15:db:14:64:de:74: 8a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:2C:F7:1F:6B:E8:68:A6:27:74:AC:29:F6:59:05:43:62:2F:62:09 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137358.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.115.176.0/22 Signature Algorithm: sha256WithRSAEncryption 34:ff:6a:bc:9d:aa:ae:b7:92:69:75:66:89:49:03:f5:03:69: a7:b8:cd:db:fe:67:fb:1f:69:54:c0:96:ef:53:8b:db:cb:e4: 7a:5f:19:ec:3a:90:d4:11:cf:87:36:fb:78:78:15:04:fc:ba: 65:0e:f9:8f:92:17:ed:d7:45:eb:22:13:be:59:ff:6c:db:29: ae:72:35:53:6f:34:bb:44:c9:46:08:08:19:18:e1:75:5c:86: fb:49:f7:74:47:06:70:cb:01:3f:43:5e:ec:42:5d:64:d5:fb: 2b:84:36:f2:50:98:c3:29:86:49:90:8e:dc:5d:27:d5:76:29: 0d:db:ff:fa:34:f2:c9:16:1c:22:f7:17:8e:23:2e:8a:dd:bc: a1:43:2f:b9:7f:4b:10:8e:a5:36:46:4b:fe:8b:13:73:91:e4: 61:f7:de:a6:7a:f0:b0:eb:1e:a7:27:76:c6:a4:22:53:00:23: a2:6a:70:08:2f:ab:0b:7c:22:86:8c:85:08:4d:25:70:88:ee: bc:60:09:98:2e:89:48:8c:82:8d:2a:6e:96:9e:ea:df:4f:2b: 33:24:45:f3:55:23:87:d2:1e:2e:b6:be:21:4a:51:fc:1f:bd: e5:17:93:bf:f4:be:a1:be:5d:57:12:53:99:a2:38:17:92:e5: 9e:1a:f0:c0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOFCF+Giiu4mN/M0zNAhUa1foQykwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwNzAzNTUwMFoX DTI1MDgwNjA0MDAwMFowMzExMC8GA1UEAxMoQUIyQ0Y3MUY2QkU4NjhBNjI3NzRB QzI5RjY1OTA1NDM2MjJGNjIwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN06hnn5Dr1anQZLoUF/Vm1r5lrFngY0A+Eyub+AOvUzifu2pNKeM1+f8DdW m27/fPPSe7sRAp4JFf5ADoYGS7GwdqGn/z2c0XxjUBUvhr9rwTVG5w5JhyM9GzWs Nhs31AR1zOucS0+zwS5VzKj3HeFbbnJqZzA6YayGKTum2CS3SZKKT65V2Ra/CilM wzpZJntDeTxgooz0+0njLpx3VgdK7ZrGgwJxsDITNxiaVpWJPF3hyBkEHKSPpDRi U7zm4lgunDSMOvtvqfwakdwRqtdJPJDx5HBFHXWsGj76KmXhpnSab/iNXwMXTNi9 aviwBUxa9GdPA3/iFdsUZN50iukCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSrLPcf a+hopid0rCn2WQVDYi9iCTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM1OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmdzsDANBgkqhkiG9w0BAQsFAAOCAQEANP9qvJ2qrreSaXVmiUkD 9QNpp7jN2/5n+x9pVMCW71OL28vkel8Z7DqQ1BHPhzb7eHgVBPy6ZQ75j5IX7ddF 6yITvln/bNsprnI1U280u0TJRggIGRjhdVyG+0n3dEcGcMsBP0Ne7EJdZNX7K4Q2 8lCYwymGSZCO3F0n1XYpDdv/+jTyyRYcIvcXjiMuit28oUMvuX9LEI6lNkZL/osT c5HkYffepnrwsOsepyd2xqQiUwAjompwCC+rC3wihoyFCE0lcIjuvGAJmC6JSIyC jSpulp7q308rMyRF81Ujh9IeLra+IUpR/B+95ReTv/S+ob5dVxJTmaI4F5Llnhrw wA== -----END CERTIFICATE-----Generated at Sun Feb 16 20:45:00 2025 by rpki-client