$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138095.roa File: AS138095.roa (raw, json) Hash identifier: W8hZiu9FXaf2hCG8Dqe7N2UqA4rXr1IykADjVHqdpmg= Subject key identifier: 32:A5:AA:D1:27:32:16:BA:06:06:47:D8:F8:8E:37:EC:B6:6E:AB:A8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 67EAE43DB034F0C47540A036F8279CED86BAF011 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138095.roa Signing time: Tue 09 Jan 2024 08:51:53 +0000 ROA not before: Tue 09 Jan 2024 08:46:53 +0000 ROA not after: Tue 07 Jan 2025 08:51:53 +0000 asID: 138095 IP address blocks: 103.124.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ea:e4:3d:b0:34:f0:c4:75:40:a0:36:f8:27:9c:ed:86:ba:f0:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 08:46:53 2024 GMT Not After : Jan 7 08:51:53 2025 GMT Subject: CN=32A5AAD1273216BA060647D8F88E37ECB66EABA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:df:29:22:09:3a:13:a9:93:34:df:45:0d:c5: 3a:68:32:21:0b:bc:e0:57:5a:be:30:ad:03:d8:ee: 67:bc:58:7a:1d:64:a5:e2:08:56:b0:8d:c8:b3:cc: 7a:89:84:7d:b3:00:fb:4b:fc:e5:7a:33:8d:48:80: 5a:7e:3d:41:95:43:7c:8d:82:7f:8f:f7:4e:57:7b: 22:32:2d:82:4e:2a:8d:13:f1:62:8a:c4:5f:71:4a: 9f:1f:e0:47:26:4d:63:88:9b:84:e2:5a:7e:cd:7c: 68:74:17:32:d5:41:58:cd:2a:08:c2:1e:e5:e8:12: 4a:fe:08:c0:e1:c4:08:d3:fa:f7:3c:e2:21:7c:ff: 74:0e:f8:3e:70:29:7f:3f:85:a1:76:9e:53:7c:2e: e4:fc:71:96:83:fe:42:e8:8c:9d:28:5c:2b:10:28: ea:91:93:fd:91:52:cb:13:b7:ba:22:e8:0d:84:ad: 87:14:cc:12:05:17:bf:9c:ed:68:91:6b:cf:fa:4a: d3:d6:96:68:2f:52:10:fd:74:6c:44:1b:56:cf:cf: 4e:af:36:6f:60:8e:63:4f:63:e2:35:21:46:2c:df: ce:73:0f:a6:45:77:4b:97:04:1f:55:72:e7:29:9a: 19:4d:05:ec:7a:32:2e:cb:d3:00:c3:47:f7:2c:45: f9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:A5:AA:D1:27:32:16:BA:06:06:47:D8:F8:8E:37:EC:B6:6E:AB:A8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138095.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.8.0/24 Signature Algorithm: sha256WithRSAEncryption 96:96:35:43:7b:13:2b:bf:6e:d6:6a:dd:9f:0a:a8:50:a6:bb: 53:de:01:0d:ea:3e:29:a0:9e:52:b6:9f:b5:1b:da:0e:3d:05: ae:32:d1:d6:6b:36:f3:86:f0:1b:c4:70:a2:fd:35:e0:ef:c2: d5:ab:19:2f:e7:53:be:15:1b:a1:f1:7b:11:42:4d:42:e1:ad: b9:53:72:39:bc:3f:45:4c:eb:ee:b2:83:8b:dd:03:03:0e:f1: 2e:d7:61:ff:c0:8a:e4:19:a2:e1:1e:21:7a:9a:a5:06:59:f9: 16:79:ba:64:7f:25:3e:75:06:02:7e:7c:88:d8:d7:23:16:da: 5e:e3:08:07:56:e6:4d:1d:9d:03:b1:e5:8a:c9:db:a1:c2:5e: ad:c5:b0:4f:c0:98:8b:4d:5e:f9:38:5f:5c:f0:e6:a9:3d:5b: 85:66:c8:cc:01:aa:5f:3c:fc:34:0b:e3:d3:2b:e9:9c:de:10: d4:4d:ae:12:02:a9:81:70:98:77:4a:9d:32:23:c3:2f:5b:f2: e5:0e:8f:38:69:a6:b7:c2:ab:9a:97:1d:9f:32:d3:03:85:a2: f6:4e:65:57:37:2b:3c:a8:b7:a5:8c:4b:ac:b9:f4:54:d0:24: 42:fa:88:a8:59:82:be:9a:6d:98:e8:f3:8b:ad:f1:fd:d6:3e: f2:e7:c3:4b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZ+rkPbA08MR1QKA2+Cec7Ya68BEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTA4NDY1M1oX DTI1MDEwNzA4NTE1M1owMzExMC8GA1UEAxMoMzJBNUFBRDEyNzMyMTZCQTA2MDY0 N0Q4Rjg4RTM3RUNCNjZFQUJBODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANjfKSIJOhOpkzTfRQ3FOmgyIQu84FdavjCtA9juZ7xYeh1kpeIIVrCNyLPM eomEfbMA+0v85XozjUiAWn49QZVDfI2Cf4/3Tld7IjItgk4qjRPxYorEX3FKnx/g RyZNY4ibhOJafs18aHQXMtVBWM0qCMIe5egSSv4IwOHECNP69zziIXz/dA74PnAp fz+FoXaeU3wu5PxxloP+QuiMnShcKxAo6pGT/ZFSyxO3uiLoDYSthxTMEgUXv5zt aJFrz/pK09aWaC9SEP10bEQbVs/PTq82b2COY09j4jUhRizfznMPpkV3S5cEH1Vy 5ymaGU0F7HoyLsvTAMNH9yxF+d0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQyparR JzIWugYGR9j4jjfstm6rqDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODA5NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd8CDANBgkqhkiG9w0BAQsFAAOCAQEAlpY1Q3sTK79u1mrdnwqo UKa7U94BDeo+KaCeUraftRvaDj0FrjLR1ms284bwG8Rwov014O/C1asZL+dTvhUb ofF7EUJNQuGtuVNyObw/RUzr7rKDi90DAw7xLtdh/8CK5Bmi4R4hepqlBln5Fnm6 ZH8lPnUGAn58iNjXIxbaXuMIB1bmTR2dA7HlisnbocJercWwT8CYi01e+ThfXPDm qT1bhWbIzAGqXzz8NAvj0yvpnN4Q1E2uEgKpgXCYd0qdMiPDL1vy5Q6POGmmt8Kr mpcdnzLTA4Wi9k5lVzcrPKi3pYxLrLn0VNAkQvqIqFmCvpptmOjzi63x/dY+8ufD Sw== -----END CERTIFICATE-----Generated at Wed May 8 22:46:42 2024 by rpki-client on console-ams.rpki-client.org