$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138109.roa File: AS138109.roa (raw, json) Hash identifier: Blsv9jQuZjWKOado8/0djs5jAa8ALv8+iOf6echCAHc= Subject key identifier: A4:59:78:B1:53:09:C5:E3:27:7A:73:CE:71:74:DF:79:43:E4:00:E1 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1796FD86AEA9C58796FAC67A5C16DE68C91EBDAF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138109.roa Signing time: Thu 25 Apr 2024 07:34:07 +0000 ROA not before: Thu 25 Apr 2024 07:29:07 +0000 ROA not after: Thu 24 Apr 2025 07:34:07 +0000 asID: 138109 IP address blocks: 103.112.194.0/24 maxlen: 24 2001:df2:7940::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:96:fd:86:ae:a9:c5:87:96:fa:c6:7a:5c:16:de:68:c9:1e:bd:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 25 07:29:07 2024 GMT Not After : Apr 24 07:34:07 2025 GMT Subject: CN=A45978B15309C5E3277A73CE7174DF7943E400E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:34:8c:1f:3f:f3:35:ff:f3:78:a0:7d:33:0f: 1b:0a:0c:65:52:4c:64:83:a2:2d:88:f1:4a:b1:41: 98:aa:cd:cb:cc:36:00:e8:01:7f:93:45:d7:33:16: c6:07:87:2b:24:b6:1c:73:91:77:e9:ad:b0:72:a5: 6c:27:41:7e:f8:e8:1d:c4:63:e3:d8:69:81:5b:da: af:4d:48:96:c4:38:07:39:ed:8a:6b:7b:d2:18:52: 4d:45:c0:e8:82:60:90:55:f8:39:71:48:98:a2:6a: 9e:60:ef:6d:a6:25:5d:81:2a:30:6a:4d:f1:85:2b: 0b:44:1f:c9:14:fa:5c:24:e4:b7:7a:11:b4:cf:8e: ce:e4:50:e5:e8:ac:1a:ed:89:d2:68:99:f6:25:11: 67:cb:6a:7d:8c:3b:e6:07:13:14:86:ec:51:eb:3f: f8:b0:c4:b6:d5:2a:d3:2b:7a:56:64:2f:b7:7f:e3: 59:3e:0f:eb:92:ca:73:ac:1c:6f:dd:83:56:4d:fe: 0f:0b:8a:c2:b9:27:5c:c9:85:43:bd:d5:5e:fa:0b: c9:41:cd:f0:d2:81:10:b7:c6:f9:51:0a:8e:81:cb: 18:4a:98:bc:4e:59:96:68:c1:a3:b7:58:82:a8:91: f6:06:26:38:f0:8a:74:85:28:d0:fb:98:10:9a:bf: ba:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:59:78:B1:53:09:C5:E3:27:7A:73:CE:71:74:DF:79:43:E4:00:E1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138109.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.194.0/24 IPv6: 2001:df2:7940::/48 Signature Algorithm: sha256WithRSAEncryption 49:58:81:46:30:64:1f:a1:44:26:57:94:01:bb:a4:22:58:d3: d1:f0:cf:1b:c4:76:9b:bc:3d:a9:2f:b4:08:b4:72:cd:c2:52: 32:22:2f:c0:e8:6e:09:66:10:89:bf:35:c8:67:12:ea:b3:75: c0:27:b0:94:8d:1f:d7:48:23:3b:35:4f:f2:8b:e8:87:67:de: 61:95:8b:ea:53:6b:0c:8f:80:96:61:e5:84:d4:28:39:d2:06: 4c:1c:0f:ce:20:48:5b:fc:cf:0b:8e:41:aa:7a:be:27:ed:e4: c6:3c:ce:dd:c7:d0:ca:10:1b:6e:fb:60:ca:c0:73:42:31:f6: 78:77:13:93:8d:a9:f2:c3:fb:1b:da:8c:ee:f8:82:36:fd:5a: b0:89:68:22:8c:fa:77:e5:a4:2c:34:ae:bb:12:45:49:df:e5: 52:00:d6:ca:f6:4c:f4:5f:fc:78:77:f6:90:49:6e:a0:ab:12: 55:a5:d9:a9:77:e5:af:ca:88:b7:50:16:9c:de:68:34:2d:e8: bd:b2:83:aa:13:59:7c:fb:b8:98:02:44:35:7b:ee:5b:1e:d7: 75:06:80:72:e7:7b:ec:d7:ed:b4:98:07:79:e4:b4:5b:6c:3a: eb:44:e1:cd:87:02:46:bc:3a:a8:78:cf:72:48:6a:14:46:bd: 6c:8e:fd:10 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUF5b9hq6pxYeW+sZ6XBbeaMkeva8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyNTA3MjkwN1oX DTI1MDQyNDA3MzQwN1owMzExMC8GA1UEAxMoQTQ1OTc4QjE1MzA5QzVFMzI3N0E3 M0NFNzE3NERGNzk0M0U0MDBFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANY0jB8/8zX/83igfTMPGwoMZVJMZIOiLYjxSrFBmKrNy8w2AOgBf5NF1zMW xgeHKyS2HHORd+mtsHKlbCdBfvjoHcRj49hpgVvar01IlsQ4Bzntimt70hhSTUXA 6IJgkFX4OXFImKJqnmDvbaYlXYEqMGpN8YUrC0QfyRT6XCTkt3oRtM+OzuRQ5eis Gu2J0miZ9iURZ8tqfYw75gcTFIbsUes/+LDEttUq0yt6VmQvt3/jWT4P65LKc6wc b92DVk3+DwuKwrknXMmFQ73VXvoLyUHN8NKBELfG+VEKjoHLGEqYvE5ZlmjBo7dY gqiR9gYmOPCKdIUo0PuYEJq/uhMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSkWXix UwnF4yd6c85xdN95Q+QA4TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODEwOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGdwwjAPBAIAAjAJAwcAIAEN8nlAMA0GCSqGSIb3DQEBCwUAA4IB AQBJWIFGMGQfoUQmV5QBu6QiWNPR8M8bxHabvD2pL7QItHLNwlIyIi/A6G4JZhCJ vzXIZxLqs3XAJ7CUjR/XSCM7NU/yi+iHZ95hlYvqU2sMj4CWYeWE1Cg50gZMHA/O IEhb/M8LjkGqer4n7eTGPM7dx9DKEBtu+2DKwHNCMfZ4dxOTjanyw/sb2ozu+II2 /VqwiWgijPp35aQsNK67EkVJ3+VSANbK9kz0X/x4d/aQSW6gqxJVpdmpd+Wvyoi3 UBac3mg0Lei9soOqE1l8+7iYAkQ1e+5bHtd1BoBy53vs1+20mAd55LRbbDrrROHN hwJGvDqoeM9ySGoURr1sjv0Q -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:54 2024 by rpki-client on console-fra.rpki-client.org