$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137383.roa File: AS137383.roa (raw, json) Hash identifier: iHq0SI67jdNWatWkkHlr1uaJyE9A8AQLeZUdZ8JR5UI= Subject key identifier: DB:C2:08:AC:E8:C8:8B:F8:92:C6:8E:EC:EE:35:AF:18:26:1D:20:F3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 47E5C886271948131412DA62745D6DB46C180E5B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137383.roa Signing time: Tue 10 Dec 2024 05:00:03 +0000 ROA not before: Tue 10 Dec 2024 04:55:03 +0000 ROA not after: Tue 09 Dec 2025 05:00:03 +0000 asID: 137383 IP address blocks: 103.120.244.0/24 maxlen: 24 103.141.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:e5:c8:86:27:19:48:13:14:12:da:62:74:5d:6d:b4:6c:18:0e:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:03 2024 GMT Not After : Dec 9 05:00:03 2025 GMT Subject: CN=DBC208ACE8C88BF892C68EECEE35AF18261D20F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f9:54:7e:2e:b0:6d:ef:ee:11:e4:01:9b:54: 22:8f:3b:fb:41:aa:42:28:6e:34:01:c0:cb:e8:89: 9b:b2:f9:bc:2f:36:fb:e2:a5:8e:0b:99:65:59:ab: df:4a:a0:c0:26:06:e9:91:d1:5c:a4:2b:a2:3b:59: d7:f4:f3:cb:af:ca:f3:16:28:cb:90:d8:11:eb:39: ed:e2:eb:55:4a:15:d5:a0:cd:94:44:b6:e1:ec:b2: cc:10:fc:1a:c9:64:70:08:d3:ec:07:96:1d:4e:a5: e8:32:ba:6b:52:e6:0b:87:14:25:cf:e7:cb:68:f2: c9:04:c2:aa:ea:77:46:e1:40:cc:a5:aa:5f:0b:6c: 97:7f:6b:18:27:34:8d:84:9c:08:90:83:37:4c:af: c0:ad:4a:16:e4:fa:30:f7:ad:ee:75:69:8a:84:ad: 4f:98:c8:93:42:78:15:78:da:09:67:7d:85:c0:cc: c0:ae:74:38:b6:15:8d:6b:d1:41:90:fe:3c:b8:c2: 35:05:8b:30:d8:7c:f3:ef:13:fa:7d:e7:2f:6b:63: 1b:9e:81:29:5f:56:65:08:85:ba:82:15:59:ba:b6: b2:cf:4b:b5:6d:07:e9:d6:8d:47:3b:f2:28:bb:f6: 69:18:b9:c2:03:84:eb:1e:86:d5:55:43:54:6a:be: 47:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:C2:08:AC:E8:C8:8B:F8:92:C6:8E:EC:EE:35:AF:18:26:1D:20:F3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137383.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.244.0/24 103.141.228.0/24 Signature Algorithm: sha256WithRSAEncryption 84:4c:60:cb:e6:4a:95:fa:b3:99:25:7e:58:b0:7c:8c:c1:d0: 5f:14:12:eb:f5:48:0e:45:f1:aa:c3:fb:fd:41:97:72:69:39: 24:66:74:5b:9c:62:32:49:fa:66:2a:5f:45:fe:37:8c:af:59: ef:87:46:05:19:6a:b9:55:d9:72:9c:50:3b:ce:e3:60:de:02: d7:c7:33:5b:85:57:e1:3d:2d:3b:24:4e:c7:ef:86:88:5d:7f: 86:9a:b0:36:a0:02:32:37:fa:77:15:d6:7c:29:d2:2c:18:55: 8e:76:d4:9b:da:e1:61:de:0d:99:43:48:aa:14:4c:29:14:71: f1:31:c1:24:93:f1:e3:1d:5f:74:a6:58:35:5e:00:98:fa:a5: 0f:ff:5b:e1:5e:ab:52:ad:d1:35:64:57:0c:9b:b7:00:ed:91: 66:d0:da:24:1d:fa:a9:fc:0d:16:49:f4:99:62:44:1b:71:0d: b2:e3:a4:85:3d:8c:68:87:ae:25:92:86:a5:f8:a3:63:55:9a: 45:b3:47:f0:02:74:06:f0:5d:85:1a:67:93:4d:ab:60:70:5b: 91:fa:2a:00:24:87:04:9a:a7:54:8f:44:41:83:3c:09:93:5e: c6:bc:64:8b:35:da:85:9d:77:63:62:22:10:b6:c6:41:26:95: 15:d9:39:23 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUR+XIhicZSBMUEtpidF1ttGwYDlswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwM1oX DTI1MTIwOTA1MDAwM1owMzExMC8GA1UEAxMoREJDMjA4QUNFOEM4OEJGODkyQzY4 RUVDRUUzNUFGMTgyNjFEMjBGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOD5VH4usG3v7hHkAZtUIo87+0GqQihuNAHAy+iJm7L5vC82++KljguZZVmr 30qgwCYG6ZHRXKQrojtZ1/Tzy6/K8xYoy5DYEes57eLrVUoV1aDNlES24eyyzBD8 GslkcAjT7AeWHU6l6DK6a1LmC4cUJc/ny2jyyQTCqup3RuFAzKWqXwtsl39rGCc0 jYScCJCDN0yvwK1KFuT6MPet7nVpioStT5jIk0J4FXjaCWd9hcDMwK50OLYVjWvR QZD+PLjCNQWLMNh88+8T+n3nL2tjG56BKV9WZQiFuoIVWbq2ss9LtW0H6daNRzvy KLv2aRi5wgOE6x6G1VVDVGq+RycCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBTbwgis 6MiL+JLGjuzuNa8YJh0g8zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM4My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGd49AMEAGeN5DANBgkqhkiG9w0BAQsFAAOCAQEAhExgy+ZKlfqz mSV+WLB8jMHQXxQS6/VIDkXxqsP7/UGXcmk5JGZ0W5xiMkn6ZipfRf43jK9Z74dG BRlquVXZcpxQO87jYN4C18czW4VX4T0tOyROx++GiF1/hpqwNqACMjf6dxXWfCnS LBhVjnbUm9rhYd4NmUNIqhRMKRRx8THBJJPx4x1fdKZYNV4AmPqlD/9b4V6rUq3R NWRXDJu3AO2RZtDaJB36qfwNFkn0mWJEG3ENsuOkhT2MaIeuJZKGpfijY1WaRbNH 8AJ0BvBdhRpnk02rYHBbkfoqACSHBJqnVI9EQYM8CZNexrxkizXahZ13Y2IiELbG QSaVFdk5Iw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:03 2025 by rpki-client