$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138095.roa File: AS138095.roa (raw, json) Hash identifier: 65Yt7A6ebqEgbtV8IZx9WPVnaeJvYcANNSwHF+uiZtw= Subject key identifier: 27:87:40:DC:06:6D:1D:B4:85:59:30:51:87:48:F1:EF:04:C5:E5:AD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3F0DA0575A7DE7547F74C4C17C7D20A99255B2BD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138095.roa Signing time: Tue 10 Dec 2024 09:00:00 +0000 ROA not before: Tue 10 Dec 2024 08:55:00 +0000 ROA not after: Tue 09 Dec 2025 09:00:00 +0000 asID: 138095 IP address blocks: 103.124.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:0d:a0:57:5a:7d:e7:54:7f:74:c4:c1:7c:7d:20:a9:92:55:b2:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 08:55:00 2024 GMT Not After : Dec 9 09:00:00 2025 GMT Subject: CN=278740DC066D1DB4855930518748F1EF04C5E5AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:63:30:97:6d:1d:a7:18:05:0b:4e:b9:df:7e: 7e:e3:5c:60:1e:85:cc:26:33:73:a9:30:8e:a5:c2: 8c:26:0f:93:ea:f0:37:92:3f:4d:1f:a6:c2:ea:d1: 2b:1b:bf:05:ff:59:0d:02:e5:ec:66:68:d9:80:dc: 03:79:66:89:06:95:a7:88:30:37:28:1a:f1:9d:99: 3e:17:5d:c2:ff:ad:0f:ee:30:c2:68:32:60:92:5f: 53:31:2c:fe:bc:d0:53:c9:fe:ee:d9:dc:d7:cc:dd: 2a:11:ed:94:69:b6:9d:20:f9:3a:cb:ba:d8:5b:75: 61:3f:e3:b4:aa:ec:49:0e:1f:7f:95:b8:c2:0b:ca: 8a:cd:d4:bb:34:79:73:14:b9:45:7e:8d:bf:c8:7b: ff:cf:3e:3d:95:7b:a3:8b:a9:89:55:e9:1f:e1:bb: 97:2c:42:22:c3:78:24:68:b0:18:02:65:26:7e:87: c0:93:98:af:a2:17:ef:9b:09:ae:8e:0f:73:f0:fb: 92:5e:9f:1d:35:9e:1b:9b:8a:3e:14:b2:07:54:2b: 1d:f0:91:aa:09:b7:36:f9:5d:9c:2d:9f:fc:02:15: e3:23:4c:5e:93:06:c3:f3:bb:9c:84:39:af:8f:f7: 69:25:b5:2b:49:56:8d:d6:ec:47:2c:11:49:58:94: db:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:87:40:DC:06:6D:1D:B4:85:59:30:51:87:48:F1:EF:04:C5:E5:AD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138095.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.8.0/24 Signature Algorithm: sha256WithRSAEncryption 75:95:6c:ff:2d:74:8c:16:37:03:6d:07:98:d3:6f:42:6a:ba: 21:7c:e1:30:4a:53:4a:47:c0:2e:da:36:cb:a7:cd:c0:2a:a4: 0b:66:ae:67:01:e5:f6:e1:44:be:66:09:d9:21:73:d4:70:a8: c9:3a:c2:7c:c9:a3:bc:06:ea:06:69:2c:d4:fd:a8:34:5b:a4: c4:d1:10:21:8e:4e:c8:f3:b6:09:a1:fc:f6:6e:f4:21:8d:81: 87:04:9e:8c:1e:b2:fa:64:81:31:a8:21:5a:b4:9a:9b:9d:aa: e8:bf:c4:51:ce:95:5c:62:b2:85:b3:84:c3:3f:98:43:37:12: 3d:98:b1:c5:d6:8e:bd:68:93:f2:de:05:70:cc:bc:99:03:b5: 95:41:6c:70:5b:6b:50:bb:db:ac:a3:8c:37:c9:b8:a5:bf:da: f6:4c:d2:c6:5c:e8:96:1f:18:42:13:5d:c7:ee:b3:9f:11:63: 23:7e:33:6f:6c:ac:33:60:cd:c7:4b:e8:90:84:d9:6a:27:04: cf:6a:4d:e0:a8:b0:0e:c5:45:33:b0:01:a9:e6:37:8f:b0:d1: 5f:70:8a:51:01:29:a2:72:92:e4:ca:f0:39:ef:2d:c8:30:f6: e6:99:03:ab:48:9c:38:68:82:61:0e:81:7d:de:72:56:f2:a2: e0:ff:60:2f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPw2gV1p951R/dMTBfH0gqZJVsr0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA4NTUwMFoX DTI1MTIwOTA5MDAwMFowMzExMC8GA1UEAxMoMjc4NzQwREMwNjZEMURCNDg1NTkz MDUxODc0OEYxRUYwNEM1RTVBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK1jMJdtHacYBQtOud9+fuNcYB6FzCYzc6kwjqXCjCYPk+rwN5I/TR+mwurR Kxu/Bf9ZDQLl7GZo2YDcA3lmiQaVp4gwNyga8Z2ZPhddwv+tD+4wwmgyYJJfUzEs /rzQU8n+7tnc18zdKhHtlGm2nSD5Osu62Ft1YT/jtKrsSQ4ff5W4wgvKis3UuzR5 cxS5RX6Nv8h7/88+PZV7o4upiVXpH+G7lyxCIsN4JGiwGAJlJn6HwJOYr6IX75sJ ro4Pc/D7kl6fHTWeG5uKPhSyB1QrHfCRqgm3NvldnC2f/AIV4yNMXpMGw/O7nIQ5 r4/3aSW1K0lWjdbsRywRSViU2+UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQnh0Dc Bm0dtIVZMFGHSPHvBMXlrTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODA5NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd8CDANBgkqhkiG9w0BAQsFAAOCAQEAdZVs/y10jBY3A20HmNNv Qmq6IXzhMEpTSkfALto2y6fNwCqkC2auZwHl9uFEvmYJ2SFz1HCoyTrCfMmjvAbq Bmks1P2oNFukxNEQIY5OyPO2CaH89m70IY2BhwSejB6y+mSBMaghWrSam52q6L/E Uc6VXGKyhbOEwz+YQzcSPZixxdaOvWiT8t4FcMy8mQO1lUFscFtrULvbrKOMN8m4 pb/a9kzSxlzolh8YQhNdx+6znxFjI34zb2ysM2DNx0vokITZaicEz2pN4KiwDsVF M7ABqeY3j7DRX3CKUQEponKS5MrwOe8tyDD25pkDq0icOGiCYQ6Bfd5yVvKi4P9g Lw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:44 2025 by rpki-client