$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138089.roa File: AS138089.roa (raw, json) Hash identifier: qKYwLp/qpYQe+eq6qdlk6koU77kSpIv+A18zGwCHTGA= Subject key identifier: 07:D0:6C:99:92:2D:FB:5A:3F:8A:60:B4:E7:FA:C0:E3:66:C6:1A:90 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 32D7F91E4877A9A08BC36967F5C65F688CAC6D5B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138089.roa Signing time: Wed 20 Dec 2023 02:50:46 +0000 ROA not before: Wed 20 Dec 2023 02:45:46 +0000 ROA not after: Wed 18 Dec 2024 02:50:46 +0000 asID: 138089 IP address blocks: 113.192.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 10:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:d7:f9:1e:48:77:a9:a0:8b:c3:69:67:f5:c6:5f:68:8c:ac:6d:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 20 02:45:46 2023 GMT Not After : Dec 18 02:50:46 2024 GMT Subject: CN=07D06C99922DFB5A3F8A60B4E7FAC0E366C61A90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:50:41:ab:1d:e0:c9:31:e2:a8:34:dd:b2:e3: 3c:a6:a9:c3:07:bc:59:38:62:50:3e:37:08:b5:e0: 63:97:27:ca:25:94:97:83:32:39:b2:b5:92:72:b2: 36:15:9f:65:06:50:a2:42:1c:51:3f:92:a1:ae:be: 60:65:bd:f4:29:29:2c:51:fc:d2:fe:94:60:8c:86: c5:99:f3:90:25:27:a2:4a:76:e5:5b:97:28:dd:ff: 46:39:66:d0:ca:e2:f5:b4:d0:8b:70:7b:1b:89:bf: 32:4e:20:d5:c0:a2:09:71:2d:92:ef:03:7a:b6:57: 68:a5:a3:6b:67:d9:5b:2c:fe:40:0b:72:08:46:34: 61:9d:45:99:d3:48:ef:c8:1b:aa:66:97:8b:ff:b6: 65:1a:81:20:06:7e:0b:78:bf:a1:c9:91:33:6a:4d: b5:09:42:5c:17:19:29:ae:9f:e3:3e:6d:1f:d7:b5: f4:6d:7c:54:cc:f5:c5:81:8e:5f:62:fd:70:b3:27: 2d:5a:f2:47:00:c5:c6:50:2a:aa:b3:20:f0:20:e5: 5b:77:c3:4c:bd:9f:69:13:91:eb:f3:47:5b:88:6a: df:27:19:f0:6c:16:da:69:05:d8:32:7a:96:c5:c0: 03:24:63:9b:f9:41:e2:41:94:6c:e2:5f:3f:36:fc: 61:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:D0:6C:99:92:2D:FB:5A:3F:8A:60:B4:E7:FA:C0:E3:66:C6:1A:90 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138089.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.192.48.0/24 Signature Algorithm: sha256WithRSAEncryption 18:ad:f1:fc:5c:1c:78:52:13:c2:98:6f:41:24:79:9d:59:a6: 05:44:34:2c:16:32:db:51:34:8d:2a:70:6d:bb:9d:f2:e4:79: 2e:f7:9d:3a:23:80:7a:51:54:bf:ac:8f:ed:4a:83:35:6e:d7: 50:12:d3:eb:00:e7:48:89:9a:05:7a:42:b9:48:a8:9f:28:01: 3c:1c:82:4b:51:9f:4f:1e:5a:59:64:e7:47:b5:33:32:74:85: 7c:71:7e:aa:3f:a4:64:4a:8d:c7:c1:6a:46:d3:4a:c3:2b:79: e2:9a:58:cb:29:4b:09:cc:cb:99:08:84:16:34:0b:f8:67:a2: 3d:89:f9:89:6a:01:91:a4:a8:57:ed:41:df:9f:b3:c2:cd:71: 29:e4:fa:80:ca:58:c7:8a:e8:8f:9a:df:5e:f1:69:05:72:f9: cc:27:81:2c:d0:95:60:1a:70:6a:93:02:8f:e3:95:0f:a8:aa: c2:0f:15:aa:ee:a3:41:07:32:a1:d0:c2:db:1a:53:f2:2a:58: a2:0f:cb:43:a5:ee:49:6e:70:86:f4:20:c1:ed:89:db:78:64: 1f:89:d2:e8:a7:af:e4:16:2a:33:94:6b:d3:9e:d4:1b:27:97: 78:ec:42:2c:6d:e2:da:b2:db:c2:39:a8:25:20:39:8b:59:29: 07:9c:82:e9 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMtf5Hkh3qaCLw2ln9cZfaIysbVswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIyMDAyNDU0NloX DTI0MTIxODAyNTA0NlowMzExMC8GA1UEAxMoMDdEMDZDOTk5MjJERkI1QTNGOEE2 MEI0RTdGQUMwRTM2NkM2MUE5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ1QQasd4Mkx4qg03bLjPKapwwe8WThiUD43CLXgY5cnyiWUl4MyObK1knKy NhWfZQZQokIcUT+Soa6+YGW99CkpLFH80v6UYIyGxZnzkCUnokp25VuXKN3/Rjlm 0Mri9bTQi3B7G4m/Mk4g1cCiCXEtku8DerZXaKWja2fZWyz+QAtyCEY0YZ1FmdNI 78gbqmaXi/+2ZRqBIAZ+C3i/ocmRM2pNtQlCXBcZKa6f4z5tH9e19G18VMz1xYGO X2L9cLMnLVryRwDFxlAqqrMg8CDlW3fDTL2faROR6/NHW4hq3ycZ8GwW2mkF2DJ6 lsXAAyRjm/lB4kGUbOJfPzb8YYUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQH0GyZ ki37Wj+KYLTn+sDjZsYakDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODA4OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHHAMDANBgkqhkiG9w0BAQsFAAOCAQEAGK3x/FwceFITwphvQSR5 nVmmBUQ0LBYy21E0jSpwbbud8uR5LvedOiOAelFUv6yP7UqDNW7XUBLT6wDnSIma BXpCuUionygBPByCS1GfTx5aWWTnR7UzMnSFfHF+qj+kZEqNx8FqRtNKwyt54ppY yylLCczLmQiEFjQL+GeiPYn5iWoBkaSoV+1B35+zws1xKeT6gMpYx4roj5rfXvFp BXL5zCeBLNCVYBpwapMCj+OVD6iqwg8Vqu6jQQcyodDC2xpT8ipYog/LQ6XuSW5w hvQgwe2J23hkH4nS6Kev5BYqM5Rr057UGyeXeOxCLG3i2rLbwjmoJSA5i1kpB5yC 6Q== -----END CERTIFICATE-----Generated at Sun May 5 04:39:19 2024 by rpki-client on console-ams.rpki-client.org