$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137363.roa File: AS137363.roa (raw, json) Hash identifier: iTMMuHdJKwLcLcmLytjYlYEhITDHlzPKKJZIcZJ+olo= Subject key identifier: 84:B9:63:3A:2D:35:46:2A:20:57:DE:CD:99:B5:76:26:0A:9B:80:0D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 54C726905DC432ABAAF80B313BD03974B3E4CE87 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137363.roa Signing time: Thu 20 Feb 2025 08:12:26 +0000 ROA not before: Thu 20 Feb 2025 08:07:26 +0000 ROA not after: Thu 19 Feb 2026 08:12:26 +0000 asID: 137363 IP address blocks: 202.10.52.0/24 maxlen: 24 202.10.53.0/24 maxlen: 24 202.10.54.0/24 maxlen: 24 202.10.55.0/24 maxlen: 24 202.10.56.0/24 maxlen: 24 202.10.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:c7:26:90:5d:c4:32:ab:aa:f8:0b:31:3b:d0:39:74:b3:e4:ce:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 20 08:07:26 2025 GMT Not After : Feb 19 08:12:26 2026 GMT Subject: CN=84B9633A2D35462A2057DECD99B576260A9B800D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4c:37:8b:35:d2:99:ef:59:ee:8b:b1:0c:e1: 98:58:4c:61:f7:3c:c3:80:a0:98:12:71:a3:83:01: c6:97:11:71:db:ba:2e:49:a5:3a:4c:5c:bc:9a:24: fa:fa:8d:10:74:67:04:e4:af:32:8d:ad:10:eb:fa: c4:b0:71:88:8c:e0:c0:cb:0d:27:8d:4d:d3:12:07: bd:9e:ac:1b:da:7e:dc:b9:ed:9c:ed:99:09:cf:86: ba:3c:45:70:e9:21:01:d8:fd:4a:72:18:f8:d4:60: d1:ba:cc:5f:19:e9:9f:4d:f0:cb:51:be:f9:79:49: 4c:e8:24:44:77:13:84:db:1d:22:9a:97:22:c2:8a: a0:3b:7d:c7:a3:c6:fd:76:5a:83:a4:09:b7:91:83: 5e:94:e4:25:77:de:62:c8:61:ee:7a:b2:7e:79:fb: 4a:e8:52:c3:06:cb:6f:00:54:68:0d:cb:41:30:5a: 75:d0:c5:cf:ac:b1:eb:ef:00:ca:0d:bf:83:e7:d5: fa:3d:be:24:21:5e:c4:31:69:af:1d:81:4a:ac:10: 92:51:65:ef:d6:4c:7a:2d:b4:37:92:75:0b:d8:78: 9a:2e:cf:7e:bc:c9:fb:f8:9e:62:6b:43:65:19:1e: 22:d1:4c:b1:9c:68:6f:cc:64:e0:21:8f:6f:f3:d3: 01:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B9:63:3A:2D:35:46:2A:20:57:DE:CD:99:B5:76:26:0A:9B:80:0D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137363.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.52.0-202.10.57.255 Signature Algorithm: sha256WithRSAEncryption 7d:5a:71:ba:76:7a:e7:22:c9:b9:51:95:74:a5:26:e0:74:db: ed:e2:a0:bb:e8:af:71:88:52:94:69:01:90:0a:9f:08:63:17: b0:3e:7a:37:af:7b:2f:d4:18:2b:d2:4c:05:e2:00:97:cf:78: a8:81:6d:78:41:54:ac:d7:0b:fb:3b:6c:65:d9:59:a2:ec:bc: 19:11:8a:65:d4:80:a7:c5:4c:57:f6:85:3e:d8:ed:31:f3:98: b2:62:f4:4f:95:8b:58:18:80:c9:fa:46:1d:b6:ea:77:20:66: 8e:63:ed:9e:03:89:b0:e0:71:43:72:02:44:ab:79:fc:b5:57: ab:83:50:eb:70:ea:ef:0e:fb:6b:39:6a:b7:4b:82:1c:33:95: 52:57:55:21:72:5a:d7:eb:bf:25:38:c0:ee:a8:4c:a0:76:52: bd:47:68:91:41:b1:c0:ea:d0:6a:32:9a:9b:c8:7c:03:2b:40: 0e:7b:1a:61:ea:15:f1:b5:27:c2:a1:90:11:80:8a:94:8c:bf: 69:36:b7:d6:30:97:04:ca:3d:fc:58:d8:73:cb:1d:56:f7:20: a1:be:15:ba:b2:cf:47:e2:d0:e6:54:83:d1:10:0d:d0:ca:55: 17:26:9b:6f:a3:68:26:ae:d4:83:a3:2a:c0:d9:4f:0a:4a:13: 81:90:15:ce -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUVMcmkF3EMquq+AsxO9A5dLPkzocwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIyMDA4MDcyNloX DTI2MDIxOTA4MTIyNlowMzExMC8GA1UEAxMoODRCOTYzM0EyRDM1NDYyQTIwNTdE RUNEOTlCNTc2MjYwQTlCODAwRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANBMN4s10pnvWe6LsQzhmFhMYfc8w4CgmBJxo4MBxpcRcdu6LkmlOkxcvJok +vqNEHRnBOSvMo2tEOv6xLBxiIzgwMsNJ41N0xIHvZ6sG9p+3LntnO2ZCc+GujxF cOkhAdj9SnIY+NRg0brMXxnpn03wy1G++XlJTOgkRHcThNsdIpqXIsKKoDt9x6PG /XZag6QJt5GDXpTkJXfeYshh7nqyfnn7SuhSwwbLbwBUaA3LQTBaddDFz6yx6+8A yg2/g+fV+j2+JCFexDFprx2BSqwQklFl79ZMei20N5J1C9h4mi7PfrzJ+/ieYmtD ZRkeItFMsZxob8xk4CGPb/PTAWECAwEAAaOCAdgwggHUMB0GA1UdDgQWBBSEuWM6 LTVGKiBX3s2ZtXYmCpuADTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM2My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAnBggrBgEFBQcBBwEB/wQYMBYw FAQCAAEwDjAMAwQCygo0AwQBygo4MA0GCSqGSIb3DQEBCwUAA4IBAQB9WnG6dnrn Ism5UZV0pSbgdNvt4qC76K9xiFKUaQGQCp8IYxewPno3r3sv1Bgr0kwF4gCXz3io gW14QVSs1wv7O2xl2Vmi7LwZEYpl1ICnxUxX9oU+2O0x85iyYvRPlYtYGIDJ+kYd tup3IGaOY+2eA4mw4HFDcgJEq3n8tVerg1DrcOrvDvtrOWq3S4IcM5VSV1UhclrX 678lOMDuqEygdlK9R2iRQbHA6tBqMpqbyHwDK0AOexph6hXxtSfCoZARgIqUjL9p NrfWMJcEyj38WNhzyx1W9yChvhW6ss9H4tDmVIPREA3QylUXJptvo2gmrtSDoyrA 2U8KShOBkBXO -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:24 2025 by rpki-client