$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138115.roa File: AS138115.roa (raw, json) Hash identifier: rDdpFR6PSwqn6fOpXuIrxLYLdwGMFT5j6Tm1LoEw39A= Subject key identifier: 61:E8:9C:8F:9D:92:36:60:A1:BB:66:56:A1:5C:5D:66:F1:11:54:C9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6D661E9AB17D91870A60942BCA29BCF322FEC3D9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138115.roa Signing time: Tue 19 Nov 2024 03:00:00 +0000 ROA not before: Tue 19 Nov 2024 02:55:00 +0000 ROA not after: Tue 18 Nov 2025 03:00:00 +0000 asID: 138115 IP address blocks: 36.50.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:66:1e:9a:b1:7d:91:87:0a:60:94:2b:ca:29:bc:f3:22:fe:c3:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 19 02:55:00 2024 GMT Not After : Nov 18 03:00:00 2025 GMT Subject: CN=61E89C8F9D923660A1BB6656A15C5D66F11154C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:46:a6:73:55:02:bf:27:e1:6f:ef:14:60:9a: c5:20:7b:ff:88:ab:67:3b:03:06:c4:2b:4a:16:22: d5:7c:4a:3d:16:72:f6:b8:36:01:8f:d3:86:8f:aa: 88:cf:40:a6:7f:ea:42:cd:d8:ec:d0:53:46:20:6a: 63:cf:04:18:02:ad:37:df:96:43:34:16:2f:fd:35: ce:f9:90:84:bd:18:23:3c:6d:31:35:e8:6b:af:67: 78:98:f9:bb:bf:83:16:f3:13:9f:ce:35:0f:72:a4: ad:9a:f8:6b:b0:78:84:8a:d7:3a:65:76:1b:3c:e2: 74:e2:cf:30:0e:f4:8f:99:ef:90:3b:82:51:61:af: 1e:05:88:18:0c:93:41:9c:28:14:4e:38:57:ec:36: 55:20:71:34:4a:69:6d:75:b1:4c:df:56:5e:72:b7: f4:98:a3:36:d3:8e:be:2e:40:67:2e:66:99:54:2b: 0f:ad:10:d0:b3:4b:74:ef:45:38:46:be:dd:d9:98: ab:e4:d8:eb:01:47:b0:db:1f:e9:a0:c5:92:22:c6: ec:37:86:11:06:18:0d:d2:a8:92:2c:2f:fc:35:e9: 8b:ca:38:5c:7a:a2:65:d9:f0:77:1f:eb:f4:22:45: 21:59:94:9f:f4:b2:d7:dd:59:81:b9:7c:89:bc:02: e7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E8:9C:8F:9D:92:36:60:A1:BB:66:56:A1:5C:5D:66:F1:11:54:C9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138115.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.77.0/24 Signature Algorithm: sha256WithRSAEncryption 20:bf:46:ca:86:d6:d3:ee:61:e7:29:e8:7c:45:73:94:ca:68: 95:54:6f:0f:b9:c9:18:61:af:2b:ce:3a:9f:32:11:72:20:fe: 4b:33:40:48:93:71:01:7f:26:83:29:84:1c:46:a8:95:b4:f7: 12:d1:68:62:ef:51:bd:07:ad:ad:93:85:88:b6:01:33:b6:1e: 74:cd:da:09:2f:88:fb:ae:30:5c:e1:3a:8c:0e:32:15:73:4f: 9d:10:f0:f7:ce:73:fc:f6:44:3b:aa:76:3d:7c:00:97:20:48: 70:1b:72:9b:30:1c:42:43:de:ca:a0:65:82:40:41:50:1b:d7: 56:dc:92:49:c6:44:7a:c6:20:e6:6c:b7:d7:4c:35:8e:2e:3a: e4:55:92:7e:d4:d5:53:5f:ac:92:dd:cc:28:9f:05:38:24:9a: c1:69:e7:7e:62:b9:f6:c0:2e:43:9a:36:0f:16:02:b8:ce:37: 6b:0e:5b:02:b2:e9:d6:4e:2b:e7:33:94:81:fc:4b:97:45:09: c0:7d:85:af:e6:cc:4f:aa:37:1c:80:ef:48:fa:16:99:45:71: ed:60:01:b6:82:8a:17:f1:81:bb:26:0a:9f:62:e4:48:4f:72: 0a:59:67:de:e3:a8:56:93:fd:a5:f8:44:db:1c:c0:c6:a2:92: 19:fe:53:68 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUbWYemrF9kYcKYJQryim88yL+w9kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExOTAyNTUwMFoX DTI1MTExODAzMDAwMFowMzExMC8GA1UEAxMoNjFFODlDOEY5RDkyMzY2MEExQkI2 NjU2QTE1QzVENjZGMTExNTRDOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALJGpnNVAr8n4W/vFGCaxSB7/4irZzsDBsQrShYi1XxKPRZy9rg2AY/Tho+q iM9Apn/qQs3Y7NBTRiBqY88EGAKtN9+WQzQWL/01zvmQhL0YIzxtMTXoa69neJj5 u7+DFvMTn841D3KkrZr4a7B4hIrXOmV2GzzidOLPMA70j5nvkDuCUWGvHgWIGAyT QZwoFE44V+w2VSBxNEppbXWxTN9WXnK39JijNtOOvi5AZy5mmVQrD60Q0LNLdO9F OEa+3dmYq+TY6wFHsNsf6aDFkiLG7DeGEQYYDdKokiwv/DXpi8o4XHqiZdnwdx/r 9CJFIVmUn/Sy191Zgbl8ibwC59sCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRh6JyP nZI2YKG7ZlahXF1m8RFUyTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODExNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACQyTTANBgkqhkiG9w0BAQsFAAOCAQEAIL9GyobW0+5h5ynofEVz lMpolVRvD7nJGGGvK846nzIRciD+SzNASJNxAX8mgymEHEaolbT3EtFoYu9RvQet rZOFiLYBM7YedM3aCS+I+64wXOE6jA4yFXNPnRDw985z/PZEO6p2PXwAlyBIcBty mzAcQkPeyqBlgkBBUBvXVtySScZEesYg5my310w1ji465FWSftTVU1+skt3MKJ8F OCSawWnnfmK59sAuQ5o2DxYCuM43aw5bArLp1k4r5zOUgfxLl0UJwH2Fr+bMT6o3 HIDvSPoWmUVx7WABtoKKF/GBuyYKn2LkSE9yClln3uOoVpP9pfhE2xzAxqKSGf5T aA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:24 2024 by rpki-client on console-fra.rpki-client.org