$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137366.roa File: AS137366.roa (raw, json) Hash identifier: VKE/4LQQSWyGpM4XvOjSf8Cp93Ws/BlRgsYIIqcF5m4= Subject key identifier: D2:D8:BA:15:FD:68:30:2B:C9:69:D5:1D:DD:F5:0B:18:7C:08:6F:25 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7D7DEB0BEA71B956895F77F97ABA2FBC02594856 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137366.roa Signing time: Fri 21 Feb 2025 11:00:00 +0000 ROA not before: Fri 21 Feb 2025 10:55:00 +0000 ROA not after: Fri 20 Feb 2026 11:00:00 +0000 asID: 137366 IP address blocks: 103.12.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:7d:eb:0b:ea:71:b9:56:89:5f:77:f9:7a:ba:2f:bc:02:59:48:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 21 10:55:00 2025 GMT Not After : Feb 20 11:00:00 2026 GMT Subject: CN=D2D8BA15FD68302BC969D51DDDF50B187C086F25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a5:9f:30:da:b5:4c:3e:78:ee:4b:fa:01:0f: ce:0f:8a:fe:28:f5:f7:f1:c5:b9:1f:8c:81:6e:a2: 87:8b:8e:a5:fa:67:40:f0:41:78:92:63:db:e0:78: 96:57:1f:2b:3b:21:4a:ca:4d:33:11:c1:f0:34:be: 81:e5:80:fd:7b:5c:f1:89:c6:0f:71:c3:af:3c:8c: cc:96:7e:31:9e:76:ac:cb:70:25:bb:9b:aa:ef:4b: af:e6:86:bf:5c:ee:4f:1e:38:45:e4:b7:c7:21:ac: fb:c6:ee:71:c1:9c:86:e0:4b:9d:7b:bc:a8:2b:7e: 50:b7:06:65:29:f9:88:c7:11:26:dc:e8:b0:6d:91: 91:2c:b7:b7:ab:bf:5d:ce:c5:64:86:eb:cb:df:14: 20:20:1c:fe:30:76:12:73:90:35:8d:90:8a:09:fb: 24:f0:c0:e5:5d:a3:33:33:ca:08:7c:26:73:50:91: c0:b3:9e:2d:f6:81:10:bf:bb:d1:b6:36:86:55:46: 4c:2d:9d:73:8d:96:bc:54:bc:06:c2:57:d4:3f:e4: be:4e:bd:8f:4b:ec:4c:86:97:b5:09:7c:0b:68:7d: 8a:1f:15:99:ed:d1:b5:54:d3:f6:94:2c:0e:fc:80: 06:f0:34:b5:f5:b1:dd:94:5c:6b:9e:2b:79:ac:4f: 04:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D8:BA:15:FD:68:30:2B:C9:69:D5:1D:DD:F5:0B:18:7C:08:6F:25 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137366.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.12.12.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:69:57:17:71:37:2d:d9:6c:11:e7:8b:69:29:d5:32:d7:2c: 3e:93:d4:37:2d:6c:0e:66:a3:4f:e0:b3:93:c5:09:4e:16:4a: fc:50:fc:47:15:69:6a:56:4e:8c:03:32:94:38:3d:f9:f2:52: 25:b9:82:35:c1:c6:0a:67:78:37:d8:7a:46:bc:33:3b:79:75: ec:4c:4e:59:ed:f0:a6:dc:14:4e:31:fa:a0:6f:e8:ea:1c:80: ef:38:ee:e5:e7:c7:39:5c:45:5f:0a:02:99:d0:46:b9:7a:af: 38:2e:c5:78:55:10:bd:3e:cf:fe:9a:47:e5:be:77:4b:90:b8: 9b:81:a5:f4:9d:e3:6b:07:12:8e:21:79:0f:87:d7:ce:eb:89: 3d:3b:94:e8:48:bb:44:b8:87:02:41:91:d6:ea:7c:cf:90:11: 71:5b:83:61:ed:af:09:17:6d:8b:02:3a:9c:5b:e4:fc:e6:ac: a7:df:dc:e3:d4:a1:d9:4f:49:3a:8f:06:08:f9:21:2c:17:96: e9:bf:25:ee:91:8b:a4:94:4c:a3:12:92:73:1f:11:a6:f8:af: d5:07:cd:fe:7a:12:96:3f:5e:23:57:4e:34:e3:25:60:b5:4e: eb:77:f1:38:78:30:b3:d5:85:1d:bf:8a:1f:b5:6f:09:a1:b9: 3d:31:d8:e8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfX3rC+pxuVaJX3f5erovvAJZSFYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIyMTEwNTUwMFoX DTI2MDIyMDExMDAwMFowMzExMC8GA1UEAxMoRDJEOEJBMTVGRDY4MzAyQkM5NjlE NTFERERGNTBCMTg3QzA4NkYyNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK2lnzDatUw+eO5L+gEPzg+K/ij19/HFuR+MgW6ih4uOpfpnQPBBeJJj2+B4 llcfKzshSspNMxHB8DS+geWA/Xtc8YnGD3HDrzyMzJZ+MZ52rMtwJbubqu9Lr+aG v1zuTx44ReS3xyGs+8buccGchuBLnXu8qCt+ULcGZSn5iMcRJtzosG2RkSy3t6u/ Xc7FZIbry98UICAc/jB2EnOQNY2Qign7JPDA5V2jMzPKCHwmc1CRwLOeLfaBEL+7 0bY2hlVGTC2dc42WvFS8BsJX1D/kvk69j0vsTIaXtQl8C2h9ih8Vme3RtVTT9pQs DvyABvA0tfWx3ZRca54reaxPBDsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTS2LoV /WgwK8lp1R3d9QsYfAhvJTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWcMDDANBgkqhkiG9w0BAQsFAAOCAQEAT2lXF3E3LdlsEeeLaSnV MtcsPpPUNy1sDmajT+Czk8UJThZK/FD8RxVpalZOjAMylDg9+fJSJbmCNcHGCmd4 N9h6RrwzO3l17ExOWe3wptwUTjH6oG/o6hyA7zju5efHOVxFXwoCmdBGuXqvOC7F eFUQvT7P/ppH5b53S5C4m4Gl9J3jawcSjiF5D4fXzuuJPTuU6Ei7RLiHAkGR1up8 z5ARcVuDYe2vCRdtiwI6nFvk/Oasp9/c49Sh2U9JOo8GCPkhLBeW6b8l7pGLpJRM oxKScx8Rpviv1QfN/noSlj9eI1dONOMlYLVO63fxOHgws9WFHb+KH7VvCaG5PTHY 6A== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:57 2025 by rpki-client