$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138065.roa File: AS138065.roa (raw, json) Hash identifier: 3gogbuDOlr15COWLukcKHWCkRV6xmLKj48UVWKyAKdI= Subject key identifier: E9:7A:49:0B:48:7B:19:D0:19:2B:4A:15:35:2F:56:A9:3E:16:B5:69 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5BD939F16C9689D16C5080B7966B3A90780AC978 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138065.roa Signing time: Thu 06 Jul 2023 01:30:58 +0000 ROA not before: Thu 06 Jul 2023 01:25:58 +0000 ROA not after: Thu 04 Jul 2024 01:30:58 +0000 asID: 138065 IP address blocks: 103.219.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d9:39:f1:6c:96:89:d1:6c:50:80:b7:96:6b:3a:90:78:0a:c9:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 6 01:25:58 2023 GMT Not After : Jul 4 01:30:58 2024 GMT Subject: CN=E97A490B487B19D0192B4A15352F56A93E16B569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bb:8e:6b:93:17:38:dd:c5:a7:ed:83:4b:19: 4d:4b:3d:f2:41:bb:c0:fb:6d:f5:64:58:41:03:13: d7:e4:d7:56:27:33:d1:08:80:d3:11:37:f1:85:64: c8:ac:a2:26:2d:87:fe:eb:fe:1c:cb:d1:f2:22:b9: 45:23:00:ca:45:84:40:28:02:e3:32:6c:da:71:ae: ff:7a:05:66:25:f6:28:84:c1:2c:c0:92:3f:4f:59: ea:97:f6:55:82:08:60:45:1a:28:a5:60:ca:8e:42: e0:a5:72:3a:90:1d:dc:ec:ce:07:26:63:5c:06:3e: 97:61:dc:d7:e8:81:16:21:97:55:65:f5:28:f6:9d: e8:b4:b0:1a:2f:86:d9:c1:d3:55:74:78:9f:8c:e0: d8:c3:20:82:d2:1d:8e:d2:c5:4e:2e:c3:8c:4d:89: e3:5e:64:e6:d8:95:6c:d3:d2:7c:6a:5a:37:4b:c5: 9f:13:9a:97:a9:80:56:f6:65:55:24:b0:bd:cb:89: 86:0e:94:5a:ea:ad:e0:16:ce:e3:4f:f6:7f:ac:ca: 24:83:d4:1d:01:10:0b:66:5a:7c:33:b7:60:81:98: 15:8b:69:47:ae:84:d8:2f:10:68:61:11:c3:38:43: 28:64:df:14:ff:1c:36:a6:a1:8b:0b:af:66:4c:2d: e1:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:7A:49:0B:48:7B:19:D0:19:2B:4A:15:35:2F:56:A9:3E:16:B5:69 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138065.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.219.226.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:ff:7c:14:ea:1a:07:ef:77:31:5c:85:23:de:4d:cf:23:65: 34:fa:c5:08:70:f7:d2:59:77:9c:71:09:20:3a:5c:32:87:ff: 93:de:82:f8:3d:77:d0:b4:79:2b:85:19:2a:7c:ac:4c:84:c8: f2:a5:4e:7b:9d:66:22:b5:29:c4:b5:9f:c7:29:fb:2b:db:cb: d5:6b:9c:e9:ae:e7:13:c4:09:30:22:ba:e3:f4:ef:22:7b:41: 94:cb:5c:58:81:50:83:70:4f:9b:04:44:ed:0d:54:d4:15:d9: 42:1c:13:9b:75:bd:c6:e4:53:2a:06:16:57:37:34:28:5a:0c: 25:94:98:d9:22:7f:06:f8:45:98:fa:89:7c:91:d3:af:9b:20: 2e:d5:59:d7:70:83:2d:7d:e1:e7:df:4b:b2:ed:11:0e:a6:c0: 37:9a:aa:1c:a6:9b:50:26:d4:9e:b5:17:66:77:70:f2:75:f7: 3a:d0:cf:98:b3:49:00:40:04:b4:55:2c:b7:ff:47:10:7b:01: 97:fd:11:3a:3e:0a:a4:23:62:15:3c:0c:3a:19:1f:3f:c9:f2: 1c:92:66:06:06:a0:52:0c:d6:c6:f3:88:74:33:7d:15:b3:ae: c0:80:81:86:a1:1f:40:17:23:6e:e9:49:de:ea:00:e1:a7:0b: a1:2d:d7:0c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUW9k58WyWidFsUIC3lms6kHgKyXgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcwNjAxMjU1OFoX DTI0MDcwNDAxMzA1OFowMzExMC8GA1UEAxMoRTk3QTQ5MEI0ODdCMTlEMDE5MkI0 QTE1MzUyRjU2QTkzRTE2QjU2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALC7jmuTFzjdxaftg0sZTUs98kG7wPtt9WRYQQMT1+TXVicz0QiA0xE38YVk yKyiJi2H/uv+HMvR8iK5RSMAykWEQCgC4zJs2nGu/3oFZiX2KITBLMCSP09Z6pf2 VYIIYEUaKKVgyo5C4KVyOpAd3OzOByZjXAY+l2Hc1+iBFiGXVWX1KPad6LSwGi+G 2cHTVXR4n4zg2MMggtIdjtLFTi7DjE2J415k5tiVbNPSfGpaN0vFnxOal6mAVvZl VSSwvcuJhg6UWuqt4BbO40/2f6zKJIPUHQEQC2ZafDO3YIGYFYtpR66E2C8QaGER wzhDKGTfFP8cNqahiwuvZkwt4T8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTpekkL SHsZ0BkrShU1L1apPha1aTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODA2NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfb4jANBgkqhkiG9w0BAQsFAAOCAQEAe/98FOoaB+93MVyFI95N zyNlNPrFCHD30ll3nHEJIDpcMof/k96C+D130LR5K4UZKnysTITI8qVOe51mIrUp xLWfxyn7K9vL1Wuc6a7nE8QJMCK64/TvIntBlMtcWIFQg3BPmwRE7Q1U1BXZQhwT m3W9xuRTKgYWVzc0KFoMJZSY2SJ/BvhFmPqJfJHTr5sgLtVZ13CDLX3h599Lsu0R DqbAN5qqHKabUCbUnrUXZndw8nX3OtDPmLNJAEAEtFUst/9HEHsBl/0ROj4KpCNi FTwMOhkfP8nyHJJmBgagUgzWxvOIdDN9FbOuwICBhqEfQBcjbulJ3uoA4acLoS3X DA== -----END CERTIFICATE-----Generated at Wed May 8 22:46:42 2024 by rpki-client on console-ams.rpki-client.org