$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137379.roa File: AS137379.roa (raw, json) Hash identifier: MkpUVphEJnFdv4nrwXMkAhbxWHlf65QgUzkIEsrLNrE= Subject key identifier: 62:F3:EB:2B:93:8E:6B:90:B5:DE:D2:36:34:E1:F6:97:17:15:21:CE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 260FA728C3B46FA86479EA685501D89126C22CE9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137379.roa Signing time: Wed 15 Jan 2025 08:00:00 +0000 ROA not before: Wed 15 Jan 2025 07:55:00 +0000 ROA not after: Wed 14 Jan 2026 08:00:00 +0000 asID: 137379 IP address blocks: 103.119.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:0f:a7:28:c3:b4:6f:a8:64:79:ea:68:55:01:d8:91:26:c2:2c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 15 07:55:00 2025 GMT Not After : Jan 14 08:00:00 2026 GMT Subject: CN=62F3EB2B938E6B90B5DED23634E1F697171521CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:16:2e:2d:00:b9:f7:4f:89:f3:ea:e0:13:99: f1:7f:29:df:fe:69:9f:d1:25:4a:d6:fb:1a:44:94: e1:86:41:13:58:46:2c:b9:30:75:21:9d:fc:ae:79: 0c:d3:51:d0:37:0b:b9:93:8d:a8:92:3d:7e:8e:64: ac:f9:30:62:12:9a:07:32:c0:7a:f5:e9:7c:4d:a2: 1f:35:06:30:4c:98:c3:22:1a:a8:a7:6c:1a:ac:ca: 3c:b3:4e:35:47:a5:23:4c:0b:f1:92:56:45:45:1c: 7d:38:ee:01:6c:33:9c:14:3f:13:e5:c3:ab:3e:bd: 78:ab:48:60:df:35:0d:a3:19:15:e9:0c:c3:25:b8: 37:e6:46:25:31:11:b8:ec:77:57:ff:9c:e9:c1:c2: d4:9f:33:50:d6:70:2d:f9:f5:2d:d9:76:85:53:55: 22:a9:c8:58:13:42:c3:47:ca:d1:8e:a6:d8:05:dc: 67:b5:71:76:72:bc:92:d8:ee:bc:c7:79:ef:93:3f: 53:f1:cc:81:da:6c:f5:fc:15:f6:44:f4:c3:c4:38: 89:69:26:19:be:bd:b4:02:66:5a:30:4e:9a:70:f2: 1b:4e:e4:98:f3:df:31:fd:f4:09:4a:ed:b9:30:b4: a9:bc:54:6b:3e:65:10:b4:cd:01:8f:f6:e5:77:72: a0:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F3:EB:2B:93:8E:6B:90:B5:DE:D2:36:34:E1:F6:97:17:15:21:CE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137379.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.138.0/24 Signature Algorithm: sha256WithRSAEncryption 20:f8:0e:4e:7a:fa:10:c5:f6:9e:41:43:c2:80:cb:f3:68:16: 95:0d:89:ee:88:be:ab:57:9e:ee:f8:b2:92:4d:0b:e7:50:c7: 28:0f:d4:d3:b3:9f:44:28:d4:3f:ce:fb:18:6f:10:45:45:c9: 52:39:52:6b:24:6b:35:50:7a:e5:5e:80:cc:60:23:38:1f:66: 29:12:47:8f:13:87:05:96:c6:1a:f4:3a:61:5e:e0:22:10:95: 29:e9:23:36:cc:19:37:dd:2c:53:26:d2:fd:d7:d3:4e:3e:01: 58:6e:b6:04:7b:eb:97:f9:1e:89:21:cc:57:cb:a1:3a:99:c5: 61:0a:60:bb:40:b6:59:34:70:2d:ee:aa:4b:5b:71:2c:66:59: bb:23:a4:4f:21:40:a5:5a:22:8c:ce:e6:e8:33:07:61:94:4c: 90:b3:89:8d:f7:43:e3:6c:28:80:93:da:a8:82:5a:eb:55:6e: 9b:2e:3f:e4:4e:17:af:40:e4:22:af:77:7b:c5:2d:11:91:5b: 96:ac:d1:40:aa:1e:a8:2c:ac:d9:8c:b7:7b:a2:08:30:1e:12: e2:75:bf:5d:58:87:f2:a5:90:06:91:10:ca:7c:d5:95:dd:9a: 51:3e:0e:72:d6:15:c0:6a:10:eb:a3:c0:47:35:cc:65:9a:17: 3a:5f:3c:4f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJg+nKMO0b6hkeepoVQHYkSbCLOkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDExNTA3NTUwMFoX DTI2MDExNDA4MDAwMFowMzExMC8GA1UEAxMoNjJGM0VCMkI5MzhFNkI5MEI1REVE MjM2MzRFMUY2OTcxNzE1MjFDRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMMWLi0AufdPifPq4BOZ8X8p3/5pn9ElStb7GkSU4YZBE1hGLLkwdSGd/K55 DNNR0DcLuZONqJI9fo5krPkwYhKaBzLAevXpfE2iHzUGMEyYwyIaqKdsGqzKPLNO NUelI0wL8ZJWRUUcfTjuAWwznBQ/E+XDqz69eKtIYN81DaMZFekMwyW4N+ZGJTER uOx3V/+c6cHC1J8zUNZwLfn1Ldl2hVNVIqnIWBNCw0fK0Y6m2AXcZ7VxdnK8ktju vMd575M/U/HMgdps9fwV9kT0w8Q4iWkmGb69tAJmWjBOmnDyG07kmPPfMf30CUrt uTC0qbxUaz5lELTNAY/25XdyoIUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRi8+sr k45rkLXe0jY04faXFxUhzjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd3ijANBgkqhkiG9w0BAQsFAAOCAQEAIPgOTnr6EMX2nkFDwoDL 82gWlQ2J7oi+q1ee7viykk0L51DHKA/U07OfRCjUP877GG8QRUXJUjlSayRrNVB6 5V6AzGAjOB9mKRJHjxOHBZbGGvQ6YV7gIhCVKekjNswZN90sUybS/dfTTj4BWG62 BHvrl/keiSHMV8uhOpnFYQpgu0C2WTRwLe6qS1txLGZZuyOkTyFApVoijM7m6DMH YZRMkLOJjfdD42wogJPaqIJa61Vumy4/5E4Xr0DkIq93e8UtEZFblqzRQKoeqCys 2Yy3e6IIMB4S4nW/XViH8qWQBpEQynzVld2aUT4OctYVwGoQ66PARzXMZZoXOl88 Tw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:41 2025 by rpki-client