$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137358.roa File: AS137358.roa (raw, json) Hash identifier: JUj1HBFasTB58SQJUOk1+DXXoLpQqhDstAPN2W1PYBA= Subject key identifier: 6A:BF:84:1F:AE:0F:47:B5:1A:D1:1B:4D:76:F4:75:67:09:B9:18:72 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7B5FE45DFB5322E2CE1128DDDC40E17928D5F670 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137358.roa Signing time: Wed 06 Sep 2023 03:13:05 +0000 ROA not before: Wed 06 Sep 2023 03:08:05 +0000 ROA not after: Wed 04 Sep 2024 03:13:05 +0000 asID: 137358 IP address blocks: 103.115.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:5f:e4:5d:fb:53:22:e2:ce:11:28:dd:dc:40:e1:79:28:d5:f6:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 6 03:08:05 2023 GMT Not After : Sep 4 03:13:05 2024 GMT Subject: CN=6ABF841FAE0F47B51AD11B4D76F4756709B91872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f3:00:c1:92:d7:b5:e4:34:22:66:7d:89:34: ff:77:1f:c0:b3:62:b2:03:4c:65:4b:88:e8:87:2b: 4a:d4:fa:38:04:76:a0:aa:25:9c:54:77:6e:04:88: 10:ed:66:a5:af:35:51:29:53:92:1d:10:c9:32:58: b7:ac:1c:c4:a5:77:99:8d:12:4a:86:8e:65:5c:83: a2:6a:97:bc:b0:fe:13:1f:eb:fc:33:9f:54:f7:f6: 4b:d6:3c:39:ac:ab:c4:04:68:d7:f1:93:e8:91:1d: 3d:26:ed:b2:b5:7f:2a:d0:b9:66:19:a6:64:8a:7f: 88:3c:9d:63:2a:dd:33:59:e1:6a:34:7f:e0:60:74: ce:fb:c3:72:aa:1e:f4:c0:9a:e6:44:60:66:65:ef: 83:13:a7:ba:62:7e:88:62:63:8b:56:85:78:1a:42: b1:ee:c9:40:ea:1e:11:2c:96:d6:ef:02:51:9a:7b: 95:86:78:ba:71:bd:d4:97:c1:20:42:30:7a:83:49: f9:b7:de:66:b4:c6:59:3d:d1:da:18:6a:0c:ff:0d: f5:bf:e7:09:1d:f5:65:f4:4b:da:18:cf:5e:4d:bf: a7:d6:2a:04:e6:7e:dc:bf:bb:58:74:8e:48:97:f5: c4:34:77:eb:9b:d5:a6:50:d5:56:8d:08:5e:6a:1c: ad:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:BF:84:1F:AE:0F:47:B5:1A:D1:1B:4D:76:F4:75:67:09:B9:18:72 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137358.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.115.176.0/22 Signature Algorithm: sha256WithRSAEncryption 04:a7:05:ae:38:45:a2:91:a4:ef:e9:4c:f5:c9:db:ee:02:4f: d7:f1:07:ba:b6:58:51:b2:d5:5d:43:08:7b:ec:c3:0b:92:50: 15:8d:9f:37:44:5e:d8:00:8e:51:0e:fa:7e:5b:46:45:56:82: 15:e4:ae:62:70:2c:fe:4b:de:61:a3:fd:9c:9c:88:c1:60:6b: bf:54:76:e3:03:eb:3a:7c:08:aa:59:e2:8b:17:aa:52:b2:9a: cd:3d:f2:b1:ea:68:1d:36:5a:04:0e:a7:14:3c:c1:87:23:5c: 3d:f2:78:38:e0:3e:50:b0:06:97:d0:57:78:8f:4a:11:20:e7: fa:02:ec:f6:4c:f1:d1:82:59:0b:da:48:8d:2c:40:f6:d1:00: e7:8e:4b:a5:15:02:f1:9b:a8:32:cd:55:59:67:5b:12:c6:05: 93:dd:89:16:da:93:dc:2d:46:ec:ab:94:24:3a:55:fc:f9:d2: af:fc:b9:ce:70:a4:30:8f:58:0f:67:8a:ff:c0:29:ed:bb:d3: 7b:4a:8c:02:e0:be:d2:de:63:61:a3:3d:e5:b9:6a:5c:b1:ef: 77:33:c8:0b:90:ce:a2:d4:97:57:68:18:f1:16:8c:ec:99:01: b1:d5:47:95:f9:96:e8:a9:75:5e:d8:89:73:51:ad:91:72:ae: 7e:fc:6c:e1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUe1/kXftTIuLOESjd3EDheSjV9nAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwNjAzMDgwNVoX DTI0MDkwNDAzMTMwNVowMzExMC8GA1UEAxMoNkFCRjg0MUZBRTBGNDdCNTFBRDEx QjRENzZGNDc1NjcwOUI5MTg3MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMzzAMGS17XkNCJmfYk0/3cfwLNisgNMZUuI6IcrStT6OAR2oKolnFR3bgSI EO1mpa81USlTkh0QyTJYt6wcxKV3mY0SSoaOZVyDomqXvLD+Ex/r/DOfVPf2S9Y8 OayrxARo1/GT6JEdPSbtsrV/KtC5ZhmmZIp/iDydYyrdM1nhajR/4GB0zvvDcqoe 9MCa5kRgZmXvgxOnumJ+iGJji1aFeBpCse7JQOoeESyW1u8CUZp7lYZ4unG91JfB IEIweoNJ+bfeZrTGWT3R2hhqDP8N9b/nCR31ZfRL2hjPXk2/p9YqBOZ+3L+7WHSO SJf1xDR365vVplDVVo0IXmocrTkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRqv4Qf rg9HtRrRG0129HVnCbkYcjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM1OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmdzsDANBgkqhkiG9w0BAQsFAAOCAQEABKcFrjhFopGk7+lM9cnb 7gJP1/EHurZYUbLVXUMIe+zDC5JQFY2fN0Re2ACOUQ76fltGRVaCFeSuYnAs/kve YaP9nJyIwWBrv1R24wPrOnwIqlniixeqUrKazT3ysepoHTZaBA6nFDzBhyNcPfJ4 OOA+ULAGl9BXeI9KESDn+gLs9kzx0YJZC9pIjSxA9tEA545LpRUC8ZuoMs1VWWdb EsYFk92JFtqT3C1G7KuUJDpV/PnSr/y5znCkMI9YD2eK/8Ap7bvTe0qMAuC+0t5j YaM95blqXLHvdzPIC5DOotSXV2gY8RaM7JkBsdVHlfmW6Kl1XtiJc1GtkXKufvxs 4Q== -----END CERTIFICATE-----Generated at Wed May 8 10:06:52 2024 by rpki-client on console-ams.rpki-client.org