$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137366.roa File: AS137366.roa (raw, json) Hash identifier: l8u5OqnCQ5VfbAXAhrxTdnEcjCVvsn0EYzEoODVGkEk= Subject key identifier: 4E:88:49:25:70:02:3D:DA:F0:06:19:53:A7:F8:F4:32:E5:5B:D2:AC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 21343F84D4173FD8420A338A77CA76BF6174CC89 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137366.roa Signing time: Fri 22 Mar 2024 10:35:15 +0000 ROA not before: Fri 22 Mar 2024 10:30:15 +0000 ROA not after: Fri 21 Mar 2025 10:35:15 +0000 asID: 137366 IP address blocks: 103.12.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:34:3f:84:d4:17:3f:d8:42:0a:33:8a:77:ca:76:bf:61:74:cc:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 22 10:30:15 2024 GMT Not After : Mar 21 10:35:15 2025 GMT Subject: CN=4E88492570023DDAF0061953A7F8F432E55BD2AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f1:a4:c9:3f:1e:d3:ee:22:37:6a:5a:2f:f6: e9:a3:a7:ba:36:08:a2:7c:43:18:09:d1:0c:3e:13: 1a:b8:af:a9:6d:f0:dc:a0:f5:21:ae:5b:fc:4d:b5: 75:ff:cb:09:84:5b:31:55:ae:b4:21:5e:45:02:1f: 07:b6:ce:02:93:31:80:3f:17:94:72:f5:9c:fa:4b: d0:5a:e5:7f:74:05:11:99:fa:3e:7c:48:bb:59:21: a5:bc:0d:08:fb:00:77:1d:a0:df:16:8a:fd:53:2f: 6e:63:00:02:80:60:28:b0:3c:84:19:74:da:5a:b0: b6:f1:50:06:57:ba:22:a1:97:e4:bb:5c:09:58:bc: 9e:43:f0:d3:cc:db:68:0d:d7:f8:f5:a3:9c:55:36: 59:85:3f:cd:14:c8:94:e2:51:25:f1:03:d1:4e:6d: c8:38:5d:ae:46:2c:c2:40:16:a1:e8:9d:ef:a7:73: e6:d5:83:7a:25:76:62:b8:ec:2b:2b:b1:bd:1a:0f: 03:92:12:9b:34:5a:9d:e0:7a:80:7b:be:1c:39:c8: 5a:a2:fd:a4:ff:93:be:34:71:15:77:dc:14:7d:46: d3:f1:bf:cf:75:d4:6c:2a:75:af:6c:db:74:9f:83: 5a:22:39:3e:21:d8:95:61:ef:ea:db:1d:6e:59:ff: 53:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:88:49:25:70:02:3D:DA:F0:06:19:53:A7:F8:F4:32:E5:5B:D2:AC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137366.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.12.12.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:65:a2:7e:0a:3e:3c:9b:aa:88:6a:32:ab:f9:38:e3:e4:2b: fd:ec:12:f1:32:85:5e:60:7e:9d:e5:08:89:3b:0a:69:73:06: e7:80:3b:b0:71:ca:9e:d8:85:a5:f1:6e:6b:67:89:62:4b:f9: 85:1e:19:ca:96:49:00:c2:e8:6e:77:f4:6c:8a:ec:1b:23:b1: 73:40:a0:f6:d4:46:dd:59:bc:aa:5f:8e:b1:31:55:72:17:b7: 49:17:6d:10:ad:5a:e9:b6:eb:ec:97:2e:50:bd:5c:4e:ac:63: 38:07:25:95:66:3d:ae:02:cf:11:38:75:64:db:40:e4:d0:10: 26:9c:1a:e5:53:7a:15:81:48:4b:94:12:ad:86:71:26:26:a8: c3:67:15:db:f2:2d:28:37:3b:83:f3:88:e6:09:55:bd:32:60: 45:65:93:ac:53:31:5e:f8:08:5c:cc:bb:e4:92:3a:fd:f7:e2: 85:d1:3e:f6:b7:10:40:b6:bb:9c:7e:e6:a0:54:bf:4f:f5:f8: da:9f:a7:e2:7c:e1:2e:55:5f:9f:18:2a:eb:5c:37:09:b0:2e: 43:79:61:ba:1d:78:a2:9f:69:d7:b3:02:3a:34:9d:5e:19:98: 9b:88:7e:8d:6d:ec:8a:8a:d5:24:57:ab:6b:dd:0b:a2:49:b0: 23:dd:39:0d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUITQ/hNQXP9hCCjOKd8p2v2F0zIkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMyMjEwMzAxNVoX DTI1MDMyMTEwMzUxNVowMzExMC8GA1UEAxMoNEU4ODQ5MjU3MDAyM0REQUYwMDYx OTUzQTdGOEY0MzJFNTVCRDJBQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALPxpMk/HtPuIjdqWi/26aOnujYIonxDGAnRDD4TGrivqW3w3KD1Ia5b/E21 df/LCYRbMVWutCFeRQIfB7bOApMxgD8XlHL1nPpL0Frlf3QFEZn6PnxIu1khpbwN CPsAdx2g3xaK/VMvbmMAAoBgKLA8hBl02lqwtvFQBle6IqGX5LtcCVi8nkPw08zb aA3X+PWjnFU2WYU/zRTIlOJRJfED0U5tyDhdrkYswkAWoeid76dz5tWDeiV2Yrjs KyuxvRoPA5ISmzRaneB6gHu+HDnIWqL9pP+TvjRxFXfcFH1G0/G/z3XUbCp1r2zb dJ+DWiI5PiHYlWHv6tsdbln/U7ECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBROiEkl cAI92vAGGVOn+PQy5VvSrDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWcMDDANBgkqhkiG9w0BAQsFAAOCAQEAL2Wifgo+PJuqiGoyq/k4 4+Qr/ewS8TKFXmB+neUIiTsKaXMG54A7sHHKntiFpfFua2eJYkv5hR4ZypZJAMLo bnf0bIrsGyOxc0Cg9tRG3Vm8ql+OsTFVche3SRdtEK1a6bbr7JcuUL1cTqxjOAcl lWY9rgLPETh1ZNtA5NAQJpwa5VN6FYFIS5QSrYZxJiaow2cV2/ItKDc7g/OI5glV vTJgRWWTrFMxXvgIXMy75JI6/ffihdE+9rcQQLa7nH7moFS/T/X42p+n4nzhLlVf nxgq61w3CbAuQ3lhuh14op9p17MCOjSdXhmYm4h+jW3siorVJFera90LokmwI905 DQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:23 2024 by rpki-client on console-fra.rpki-client.org