$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138064.roa File: AS138064.roa (raw, json) Hash identifier: OHBGINuStv5uiaqDT99mi4ZpMR715GvGZmYXiW+XQvQ= Subject key identifier: 2B:1F:CF:14:8F:CB:C0:73:71:2D:88:87:88:4A:F5:98:97:3F:93:BA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 382ED5A2DDDDE50F59A7E2F0E2C2E5B3F3373DCA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138064.roa Signing time: Tue 10 Dec 2024 05:00:03 +0000 ROA not before: Tue 10 Dec 2024 04:55:03 +0000 ROA not after: Tue 09 Dec 2025 05:00:03 +0000 asID: 138064 IP address blocks: 103.122.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:2e:d5:a2:dd:dd:e5:0f:59:a7:e2:f0:e2:c2:e5:b3:f3:37:3d:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:03 2024 GMT Not After : Dec 9 05:00:03 2025 GMT Subject: CN=2B1FCF148FCBC073712D8887884AF598973F93BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ed:16:68:72:19:47:0d:4c:c7:82:5b:75:cf: 6d:4e:1d:cc:b7:8a:34:70:7b:f2:2a:3a:42:41:de: fa:ff:0d:58:b3:5c:bb:09:8a:ce:aa:72:6d:5f:cb: 78:b6:0a:97:9b:38:31:a3:e3:08:65:01:27:1d:24: 60:7f:7b:74:1c:43:32:7a:10:50:c6:7c:17:bb:c9: db:2c:2c:98:80:6d:0a:19:f8:fd:16:3e:2a:59:a9: d7:ea:e6:75:cb:6d:e4:2f:4d:df:5c:bb:0e:6b:66: c2:5d:19:c5:0d:6d:a6:cb:0c:a9:46:e9:18:de:ee: 72:d4:6e:78:f0:98:63:25:bb:14:3f:21:35:06:2c: d2:fd:1c:5a:0b:0c:16:65:d9:0e:57:3c:77:03:04: e6:95:20:b6:84:df:53:85:df:2a:38:93:9a:a2:d6: 9d:41:05:81:42:5f:32:d8:d7:44:1a:dd:4a:ac:b3: df:76:93:55:be:25:34:fe:3e:5d:1d:c3:14:1e:92: 1e:31:0b:41:d5:53:1b:a2:71:7b:34:bf:99:82:76: 71:0b:2a:ef:5d:6c:6f:27:8e:92:2a:e8:74:11:27: ca:b0:4d:fa:b1:bc:fc:72:35:c8:7e:34:4d:b3:83: e3:3e:63:6b:53:c5:5b:62:3f:30:33:fd:3b:43:59: 30:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:1F:CF:14:8F:CB:C0:73:71:2D:88:87:88:4A:F5:98:97:3F:93:BA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138064.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.64.0/22 Signature Algorithm: sha256WithRSAEncryption 94:8b:7a:fe:f7:2d:da:19:99:a4:d5:a3:9c:8e:6e:9c:4c:53: ed:8b:97:1c:01:48:4f:b8:10:cc:96:4f:ba:60:83:12:f4:dd: 3f:bf:f4:d1:2b:81:70:17:67:55:48:bc:8a:8a:a1:6a:01:dd: 06:be:7c:a7:fc:1e:24:9e:6a:dc:eb:26:e6:48:ba:16:b7:18: 24:bc:dd:74:34:6d:91:0f:50:e6:1b:9d:06:f5:65:b5:60:4b: 0d:c2:55:b1:70:41:f1:67:06:eb:0c:fd:02:f8:27:ac:3e:50: 09:35:33:cb:33:2e:c8:06:f4:02:e6:b5:2b:43:f7:d8:95:4a: 13:70:4f:4f:cd:8b:fb:e9:88:0f:0c:3e:f3:98:76:a3:3b:5c: 35:f6:8c:8f:1f:c4:41:84:71:e5:9f:cd:ef:71:39:9f:50:5a: 3c:32:f2:5e:48:d1:60:ae:56:3f:cd:50:b6:3e:16:66:8e:86: 4e:c3:19:45:90:54:3e:4b:49:58:72:dd:b3:df:a1:47:33:a7: d3:07:0a:a8:2e:48:b8:96:2d:35:8d:a4:b1:34:81:e2:ac:f8: 85:13:d8:17:93:33:49:8f:ce:18:8b:59:b8:bd:37:57:a7:bc: cf:16:15:34:90:70:2f:c3:04:9f:87:83:2c:d0:e6:be:77:7a: e2:57:48:d9 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOC7Vot3d5Q9Zp+Lw4sLls/M3PcowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwM1oX DTI1MTIwOTA1MDAwM1owMzExMC8GA1UEAxMoMkIxRkNGMTQ4RkNCQzA3MzcxMkQ4 ODg3ODg0QUY1OTg5NzNGOTNCQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALbtFmhyGUcNTMeCW3XPbU4dzLeKNHB78io6QkHe+v8NWLNcuwmKzqpybV/L eLYKl5s4MaPjCGUBJx0kYH97dBxDMnoQUMZ8F7vJ2ywsmIBtChn4/RY+Klmp1+rm dctt5C9N31y7Dmtmwl0ZxQ1tpssMqUbpGN7uctRuePCYYyW7FD8hNQYs0v0cWgsM FmXZDlc8dwME5pUgtoTfU4XfKjiTmqLWnUEFgUJfMtjXRBrdSqyz33aTVb4lNP4+ XR3DFB6SHjELQdVTG6JxezS/mYJ2cQsq711sbyeOkirodBEnyrBN+rG8/HI1yH40 TbOD4z5ja1PFW2I/MDP9O0NZMFECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQrH88U j8vAc3EtiIeISvWYlz+TujAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODA2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmd6QDANBgkqhkiG9w0BAQsFAAOCAQEAlIt6/vct2hmZpNWjnI5u nExT7YuXHAFIT7gQzJZPumCDEvTdP7/00SuBcBdnVUi8ioqhagHdBr58p/weJJ5q 3Osm5ki6FrcYJLzddDRtkQ9Q5hudBvVltWBLDcJVsXBB8WcG6wz9AvgnrD5QCTUz yzMuyAb0Aua1K0P32JVKE3BPT82L++mIDww+85h2oztcNfaMjx/EQYRx5Z/N73E5 n1BaPDLyXkjRYK5WP81Qtj4WZo6GTsMZRZBUPktJWHLds9+hRzOn0wcKqC5IuJYt NY2ksTSB4qz4hRPYF5MzSY/OGItZuL03V6e8zxYVNJBwL8MEn4eDLNDmvnd64ldI 2Q== -----END CERTIFICATE-----Generated at Sun Feb 16 20:44:57 2025 by rpki-client