$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137383.roa File: AS137383.roa (raw, json) Hash identifier: 6LtkRSlj5ZgwkDxqCwXKv0EZjKuA7K85gfUHNvVUimU= Subject key identifier: 8D:7B:74:ED:DF:D5:35:0F:69:1B:4B:EA:AD:6D:F7:B6:28:84:9C:5B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 129AD0E1A34EC2DE2446DE18200E9F80A8E29DC3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137383.roa Signing time: Tue 09 Jan 2024 04:00:05 +0000 ROA not before: Tue 09 Jan 2024 03:55:05 +0000 ROA not after: Tue 07 Jan 2025 04:00:05 +0000 asID: 137383 IP address blocks: 103.120.244.0/24 maxlen: 24 103.141.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:9a:d0:e1:a3:4e:c2:de:24:46:de:18:20:0e:9f:80:a8:e2:9d:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:05 2024 GMT Not After : Jan 7 04:00:05 2025 GMT Subject: CN=8D7B74EDDFD5350F691B4BEAAD6DF7B628849C5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:98:34:59:bb:f5:56:e0:67:b0:32:e2:93:cb: 63:1c:91:af:f9:f8:23:45:e4:b3:2a:43:ff:5b:27: 89:e8:5a:5c:34:c2:b5:8c:1c:86:8e:44:bc:00:5d: 21:e1:30:99:7b:eb:d8:f9:23:94:ed:f4:8d:68:45: 60:19:2e:55:04:23:14:92:fd:e0:39:1f:57:0b:36: f5:8a:8a:fa:11:05:2c:88:4f:18:c3:9d:02:32:b2: 6f:10:f5:86:a8:26:58:be:64:75:07:36:e5:f3:91: fc:42:66:96:65:b2:25:df:45:89:de:f0:e6:87:ab: a3:af:f8:1c:0b:1a:1e:ac:8b:2e:d1:c2:80:81:5d: b8:58:cc:d4:ea:7d:79:ae:4f:8b:85:b6:c5:e0:89: 41:9f:e3:db:71:97:d0:04:83:3d:a6:0b:f8:66:08: 8c:70:31:14:c7:4a:8d:8a:a5:3e:4a:0a:4c:05:45: 53:3e:e0:91:73:f5:d5:9b:5c:7e:dc:9c:ea:2f:c3: 9f:b9:6b:0b:b4:74:0a:90:b3:bd:d2:53:30:9e:3e: e6:be:ab:6a:43:4a:5c:51:a6:5b:46:54:de:a3:1d: c6:48:93:77:e6:78:36:98:67:05:85:a6:d6:15:7b: c0:3f:ca:06:7f:03:0f:47:78:30:1c:05:b4:2a:d7: 46:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7B:74:ED:DF:D5:35:0F:69:1B:4B:EA:AD:6D:F7:B6:28:84:9C:5B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137383.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.244.0/24 103.141.228.0/24 Signature Algorithm: sha256WithRSAEncryption 27:98:b1:ee:7c:96:57:77:e7:0d:44:6d:18:36:63:0b:d2:af: 5f:d3:f8:3e:3d:31:35:c5:c5:ee:e6:29:fd:c2:e6:4c:89:4f: 8b:33:9f:d8:8b:dd:d6:d3:89:2c:60:c5:94:65:62:76:e3:5a: 50:6d:94:c4:db:27:50:45:78:6a:e0:47:05:4e:fd:4b:46:95: 85:94:d3:12:fd:78:0b:23:30:e8:d2:a8:e7:d7:49:0d:47:99: 30:e7:e9:ee:04:6b:ae:2c:31:08:36:f0:bf:b4:df:89:e7:d9: 12:2f:fb:7c:c2:5c:56:42:af:c2:5c:70:c5:43:4d:ce:7a:51: a6:ac:66:a1:40:7e:f2:a7:d1:3e:3e:96:fa:f8:59:0f:4e:99: f0:90:8a:43:53:85:3e:12:e0:9f:64:2f:b7:d2:40:3d:18:5b: a5:56:de:bb:80:2a:05:8e:91:82:0a:ab:71:99:75:c1:a8:a1: 52:47:43:04:05:03:89:90:e0:ac:36:fb:33:e2:f0:24:47:99: 8f:e7:db:e1:87:ec:b7:db:2c:96:8c:b2:07:ce:3d:62:2e:36: d3:7e:5e:e5:58:80:1e:d7:a8:0f:59:20:ce:69:dd:6f:c8:ce: b8:c3:af:c0:93:65:18:bc:32:31:d1:7e:9d:e5:1b:ed:21:3a: ee:31:f6:47 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUEprQ4aNOwt4kRt4YIA6fgKjincMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwNVoX DTI1MDEwNzA0MDAwNVowMzExMC8GA1UEAxMoOEQ3Qjc0RURERkQ1MzUwRjY5MUI0 QkVBQUQ2REY3QjYyODg0OUM1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ2YNFm79VbgZ7Ay4pPLYxyRr/n4I0XksypD/1sniehaXDTCtYwcho5EvABd IeEwmXvr2PkjlO30jWhFYBkuVQQjFJL94DkfVws29YqK+hEFLIhPGMOdAjKybxD1 hqgmWL5kdQc25fOR/EJmlmWyJd9Fid7w5oero6/4HAsaHqyLLtHCgIFduFjM1Op9 ea5Pi4W2xeCJQZ/j23GX0ASDPaYL+GYIjHAxFMdKjYqlPkoKTAVFUz7gkXP11Ztc ftyc6i/Dn7lrC7R0CpCzvdJTMJ4+5r6rakNKXFGmW0ZU3qMdxkiTd+Z4NphnBYWm 1hV7wD/KBn8DD0d4MBwFtCrXRg8CAwEAAaOCAdYwggHSMB0GA1UdDgQWBBSNe3Tt 39U1D2kbS+qtbfe2KIScWzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM4My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGd49AMEAGeN5DANBgkqhkiG9w0BAQsFAAOCAQEAJ5ix7nyWV3fn DURtGDZjC9KvX9P4Pj0xNcXF7uYp/cLmTIlPizOf2Ivd1tOJLGDFlGViduNaUG2U xNsnUEV4auBHBU79S0aVhZTTEv14CyMw6NKo59dJDUeZMOfp7gRrriwxCDbwv7Tf iefZEi/7fMJcVkKvwlxwxUNNznpRpqxmoUB+8qfRPj6W+vhZD06Z8JCKQ1OFPhLg n2Qvt9JAPRhbpVbeu4AqBY6RggqrcZl1waihUkdDBAUDiZDgrDb7M+LwJEeZj+fb 4Yfst9ssloyyB849Yi42035e5ViAHteoD1kgzmndb8jOuMOvwJNlGLwyMdF+neUb 7SE67jH2Rw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:26 2024 by rpki-client on console-ams.rpki-client.org