$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137379.roa File: AS137379.roa (raw, json) Hash identifier: B0BnvTZc1xfwBpWNJnneSg8VNSYrJuueLz4zZYwj9AQ= Subject key identifier: 4A:18:3B:56:76:8A:40:07:89:4A:07:26:F0:14:90:D2:DD:B5:C4:3C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 32F7BA6D7F7CD44CF00D838EFC87275BD28EC4E9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137379.roa Signing time: Wed 14 Feb 2024 08:00:00 +0000 ROA not before: Wed 14 Feb 2024 07:55:00 +0000 ROA not after: Wed 12 Feb 2025 08:00:00 +0000 asID: 137379 IP address blocks: 103.119.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:f7:ba:6d:7f:7c:d4:4c:f0:0d:83:8e:fc:87:27:5b:d2:8e:c4:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 14 07:55:00 2024 GMT Not After : Feb 12 08:00:00 2025 GMT Subject: CN=4A183B56768A4007894A0726F01490D2DDB5C43C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a6:21:99:43:93:98:b1:a1:b2:f6:31:f4:e4: 34:0d:9a:bd:2a:bd:b2:d8:60:4a:d9:ae:34:ef:43: 2c:81:90:5b:f4:fa:75:6f:c0:5f:bf:5e:92:2e:7a: 73:f2:46:5d:cb:26:1a:e7:f4:fc:a2:4c:9b:ad:b7: 6a:94:d4:b0:11:74:68:44:21:91:c1:f1:67:c9:08: d2:9c:26:1e:87:5f:56:3e:5d:8a:25:26:6f:5f:0c: 9a:b8:eb:5a:0c:45:46:79:db:ca:71:b6:2a:a2:b3: 58:f0:ad:7a:97:57:96:f6:3f:59:a9:47:c6:c4:0c: ab:a6:78:78:4b:ca:f0:9b:55:7f:72:c9:9a:11:c3: b3:46:69:1d:90:20:42:71:47:f3:7e:ce:20:49:89: 6f:19:fb:04:2d:57:13:52:9d:b4:c1:f4:b8:42:b4: d4:1a:e5:64:85:27:e6:ae:83:30:9c:95:24:98:79: 50:c4:79:d6:69:0a:40:46:5a:ed:0f:75:fa:0a:5f: 7a:28:c4:c3:7e:5e:e2:38:b3:7d:0a:5b:f3:9c:e4: 9d:76:0b:31:c4:db:cf:88:57:57:84:69:be:59:87: ab:80:0d:11:3b:04:fc:8d:23:09:d3:f0:71:eb:5b: 6d:1e:6b:1c:4d:a3:32:af:c4:d5:63:a5:cb:63:9b: 98:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:18:3B:56:76:8A:40:07:89:4A:07:26:F0:14:90:D2:DD:B5:C4:3C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137379.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.138.0/24 Signature Algorithm: sha256WithRSAEncryption 50:1d:9b:d3:8b:cd:ce:16:25:25:6f:72:6a:e2:e2:c3:9a:b1: 1a:6b:34:9f:ae:cb:72:73:47:af:db:08:b0:ab:67:f8:6c:b5: 88:3a:bb:e9:a4:45:dc:83:81:0d:76:c2:24:af:d8:6c:6c:21: 84:58:e8:dd:07:55:d7:7e:fb:4c:f3:63:0a:5f:29:cc:5f:92: 38:b6:81:87:39:de:72:f1:f1:39:e4:7c:87:f4:9c:2e:8b:d6: f8:f9:b3:60:5a:70:4c:c5:71:f9:33:4e:e6:21:91:ef:85:28: 63:18:4a:8f:35:87:63:e3:9e:d4:52:fb:83:e8:d0:33:d8:35: 69:86:80:26:77:df:66:68:c0:0f:7d:2e:0c:94:b8:c5:c5:18: a2:9c:cf:b1:fb:88:32:4b:95:06:07:8e:58:ef:bc:3a:ce:77: 12:9c:20:a8:a4:69:37:77:02:01:8f:05:a2:75:4c:5b:6b:4b: 28:ed:7f:e1:07:7e:f2:84:f2:70:4b:a3:7f:41:72:6d:26:9c: 49:46:09:ff:0a:ee:65:ef:4a:ba:cf:ae:84:ef:d4:f9:0a:b9: 6b:38:fc:f0:d0:ce:6a:33:53:36:9e:19:5b:c6:d8:12:d6:ff: 37:5a:94:d2:3e:f6:e2:14:f7:98:ea:24:06:95:5e:26:05:4b: c1:3a:3d:3a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMve6bX981EzwDYOO/IcnW9KOxOkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIxNDA3NTUwMFoX DTI1MDIxMjA4MDAwMFowMzExMC8GA1UEAxMoNEExODNCNTY3NjhBNDAwNzg5NEEw NzI2RjAxNDkwRDJEREI1QzQzQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKimIZlDk5ixobL2MfTkNA2avSq9sthgStmuNO9DLIGQW/T6dW/AX79eki56 c/JGXcsmGuf0/KJMm623apTUsBF0aEQhkcHxZ8kI0pwmHodfVj5diiUmb18Mmrjr WgxFRnnbynG2KqKzWPCtepdXlvY/WalHxsQMq6Z4eEvK8JtVf3LJmhHDs0ZpHZAg QnFH837OIEmJbxn7BC1XE1KdtMH0uEK01BrlZIUn5q6DMJyVJJh5UMR51mkKQEZa 7Q91+gpfeijEw35e4jizfQpb85zknXYLMcTbz4hXV4RpvlmHq4ANETsE/I0jCdPw cetbbR5rHE2jMq/E1WOly2ObmM8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRKGDtW dopAB4lKBybwFJDS3bXEPDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd3ijANBgkqhkiG9w0BAQsFAAOCAQEAUB2b04vNzhYlJW9yauLi w5qxGms0n67LcnNHr9sIsKtn+Gy1iDq76aRF3IOBDXbCJK/YbGwhhFjo3QdV1377 TPNjCl8pzF+SOLaBhznecvHxOeR8h/ScLovW+PmzYFpwTMVx+TNO5iGR74UoYxhK jzWHY+Oe1FL7g+jQM9g1aYaAJnffZmjAD30uDJS4xcUYopzPsfuIMkuVBgeOWO+8 Os53EpwgqKRpN3cCAY8FonVMW2tLKO1/4Qd+8oTycEujf0FybSacSUYJ/wruZe9K us+uhO/U+Qq5azj88NDOajNTNp4ZW8bYEtb/N1qU0j724hT3mOokBpVeJgVLwTo9 Og== -----END CERTIFICATE-----Generated at Wed May 8 21:02:20 2024 by rpki-client on console-fra.rpki-client.org