$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138091.roa File: AS138091.roa (raw, json) Hash identifier: hgS3cDN+AqjQ5xIvdUYRqyuENTOfNDI7IgybfyubRlY= Subject key identifier: 78:E4:C5:68:C3:09:0A:B7:7D:C9:98:8F:8D:EB:F1:38:9C:11:F1:38 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 47417DA03D34FF8D142DBD26C5F8D63900B0139A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138091.roa Signing time: Tue 09 Jan 2024 04:00:26 +0000 ROA not before: Tue 09 Jan 2024 03:55:26 +0000 ROA not after: Tue 07 Jan 2025 04:00:26 +0000 asID: 138091 IP address blocks: 103.218.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:41:7d:a0:3d:34:ff:8d:14:2d:bd:26:c5:f8:d6:39:00:b0:13:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:26 2024 GMT Not After : Jan 7 04:00:26 2025 GMT Subject: CN=78E4C568C3090AB77DC9988F8DEBF1389C11F138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:0f:33:66:c6:65:64:59:3e:89:2a:1f:d3:e5: 78:4b:4c:40:4a:cf:03:30:b7:1e:5e:dc:5e:c7:d6: a1:d6:41:53:00:57:1f:62:18:55:22:14:8e:cc:db: 38:d2:04:3d:7e:85:75:c0:d5:4f:f4:9f:e6:75:25: 09:cb:3b:21:97:1d:64:9c:be:11:62:a1:4c:7e:ff: 4e:ed:e5:d3:57:61:6a:8e:99:99:35:36:44:02:42: dc:fb:ef:cf:ca:d1:e7:3d:11:e6:ad:87:a1:4b:58: c5:df:74:fb:0d:c8:76:20:c2:d8:e5:ef:6f:dc:6b: 7b:66:81:51:5d:56:86:63:2a:cc:2f:9e:b2:dc:c3: 4d:d8:07:5b:50:bc:3f:f9:bc:c6:95:6f:9f:eb:9a: b5:65:fd:4e:33:16:12:83:1d:6f:b9:98:3f:4a:72: 29:0e:7a:c3:25:73:7a:8b:33:d9:2a:4b:64:5b:45: 6c:24:33:c8:d0:bb:3b:77:35:9b:f0:09:0e:fc:14: 2b:d7:f8:bf:bb:91:00:75:39:e9:2a:cd:cd:cb:32: 35:52:1e:dc:c4:2b:09:44:e8:b8:fe:8c:28:c7:e1: 10:82:83:96:73:b7:72:a8:24:8e:6a:93:97:9f:38: 89:57:37:00:e9:b3:ac:28:33:8c:4f:16:74:bf:2d: 8b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:E4:C5:68:C3:09:0A:B7:7D:C9:98:8F:8D:EB:F1:38:9C:11:F1:38 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138091.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.218.165.0/24 Signature Algorithm: sha256WithRSAEncryption 21:7b:fe:13:fc:5a:7f:3f:27:83:e0:c7:8c:b5:85:2d:ce:cf: 1a:d5:e3:2e:07:fb:a5:13:1c:87:e2:14:22:0d:ac:83:55:22: f9:c6:e4:87:e9:6e:96:2b:5a:2b:52:67:57:7b:bc:6a:bf:4c: 36:ca:07:31:ed:b7:41:a5:12:f0:5a:47:98:04:05:82:c3:1f: 03:d2:3a:79:8c:b7:1d:49:0c:29:00:a9:5f:39:90:d6:2d:06: d1:cd:1a:2d:fc:83:2f:00:ca:13:b4:31:8d:e7:7d:83:02:3a: 6f:51:b0:d0:66:a7:ea:7b:30:54:7a:e1:88:a2:42:6f:ec:59: 09:0a:80:5e:3c:bc:da:76:11:0b:e0:f2:66:9b:a1:42:ce:89: e6:1c:8d:d1:84:2a:34:ee:a8:33:71:b6:7e:15:b3:b9:53:9f: 6e:52:cc:54:6a:80:8b:5e:a0:ae:de:45:47:4a:03:7c:99:16: 44:cc:aa:60:2e:41:0a:cd:35:31:5b:35:53:73:80:c2:29:1f: ef:e5:7b:d9:12:18:39:cd:44:e3:06:3a:fd:9b:b9:b6:23:1e: 55:e6:18:70:27:02:04:db:eb:6c:f1:9f:8c:27:fa:78:81:a2: 3d:00:d4:f1:75:b9:49:14:62:d9:dc:f2:2c:ec:0c:22:e5:67: 79:e0:ab:e8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUR0F9oD00/40ULb0mxfjWOQCwE5owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyNloX DTI1MDEwNzA0MDAyNlowMzExMC8GA1UEAxMoNzhFNEM1NjhDMzA5MEFCNzdEQzk5 ODhGOERFQkYxMzg5QzExRjEzODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOgPM2bGZWRZPokqH9PleEtMQErPAzC3Hl7cXsfWodZBUwBXH2IYVSIUjszb ONIEPX6FdcDVT/Sf5nUlCcs7IZcdZJy+EWKhTH7/Tu3l01dhao6ZmTU2RAJC3Pvv z8rR5z0R5q2HoUtYxd90+w3IdiDC2OXvb9xre2aBUV1WhmMqzC+estzDTdgHW1C8 P/m8xpVvn+uatWX9TjMWEoMdb7mYP0pyKQ56wyVzeosz2SpLZFtFbCQzyNC7O3c1 m/AJDvwUK9f4v7uRAHU56SrNzcsyNVIe3MQrCUTouP6MKMfhEIKDlnO3cqgkjmqT l584iVc3AOmzrCgzjE8WdL8tizcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR45MVo wwkKt33JmI+N6/E4nBHxODAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODA5MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfapTANBgkqhkiG9w0BAQsFAAOCAQEAIXv+E/xafz8ng+DHjLWF Lc7PGtXjLgf7pRMch+IUIg2sg1Ui+cbkh+lulitaK1JnV3u8ar9MNsoHMe23QaUS 8FpHmAQFgsMfA9I6eYy3HUkMKQCpXzmQ1i0G0c0aLfyDLwDKE7Qxjed9gwI6b1Gw 0Gan6nswVHrhiKJCb+xZCQqAXjy82nYRC+DyZpuhQs6J5hyN0YQqNO6oM3G2fhWz uVOfblLMVGqAi16grt5FR0oDfJkWRMyqYC5BCs01MVs1U3OAwikf7+V72RIYOc1E 4wY6/Zu5tiMeVeYYcCcCBNvrbPGfjCf6eIGiPQDU8XW5SRRi2dzyLOwMIuVneeCr 6A== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:46 2024 by rpki-client on console-ams.rpki-client.org