$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138122.roa File: AS138122.roa (raw, json) Hash identifier: 5zrkxSfHDEiDrZXG4Ro9gEB2iRhtwOEjqbZeasLBULQ= Subject key identifier: F5:8E:3E:57:3A:9D:22:18:6F:6E:52:3C:86:56:0F:CA:E7:33:A6:E3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3DC0D4D5F59418E639CD89030CDB5957848E27F9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138122.roa Signing time: Thu 05 Dec 2024 05:00:01 +0000 ROA not before: Thu 05 Dec 2024 04:55:01 +0000 ROA not after: Thu 04 Dec 2025 05:00:01 +0000 asID: 138122 IP address blocks: 103.127.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:c0:d4:d5:f5:94:18:e6:39:cd:89:03:0c:db:59:57:84:8e:27:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 5 04:55:01 2024 GMT Not After : Dec 4 05:00:01 2025 GMT Subject: CN=F58E3E573A9D22186F6E523C86560FCAE733A6E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2a:cf:89:38:82:3c:1a:5d:ec:c0:38:f1:48: c8:cb:4b:9a:f7:68:12:c5:15:a8:6b:9d:0b:a4:e1: f7:ad:f5:8b:01:61:1e:f8:8c:5e:cb:8e:4c:60:e2: 1e:cb:bb:2c:80:69:b2:c4:b0:0d:49:5e:33:60:74: 4e:dc:99:b7:23:83:9f:86:ae:1f:ee:ab:0a:4b:49: fe:f7:7a:fd:2a:2c:73:08:a4:33:14:5e:fd:11:74: d5:5c:7d:74:da:a8:30:0d:37:46:05:e6:62:7f:a0: 0b:35:f2:49:a1:79:b2:84:2a:58:c3:00:7b:79:1b: ea:5c:3f:0b:23:81:0c:90:54:4c:ec:11:25:15:0f: 14:30:d6:4f:2e:76:a8:c8:a0:44:70:94:07:63:7d: f2:5a:57:95:5e:1f:40:aa:a6:fe:0a:f6:35:77:82: 8d:40:cd:f2:c2:c0:cd:57:a8:30:90:28:61:e8:86: 43:42:58:4a:e1:49:f3:26:1d:f7:7d:3e:7b:08:bb: 8a:b1:58:95:81:9a:58:48:2f:35:6b:a4:95:bd:46: d2:ab:b7:ee:e4:e5:e4:54:5e:be:ba:d8:82:3c:bf: 48:05:09:0b:3d:06:e0:37:c7:4f:72:bf:75:63:10: cf:a2:15:a1:5a:9f:b9:16:d7:0a:41:e9:b3:af:47: 84:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:8E:3E:57:3A:9D:22:18:6F:6E:52:3C:86:56:0F:CA:E7:33:A6:E3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138122.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.171.0/24 Signature Algorithm: sha256WithRSAEncryption 73:48:a1:34:2d:88:e3:f3:cf:1b:a3:69:d2:d2:09:c0:6c:2c: 82:bc:32:dd:8c:6d:48:bc:21:03:78:a8:59:0c:79:bd:f7:3c: e1:03:d1:08:f5:9a:0b:f1:f9:16:1b:36:79:34:d9:f7:a2:98: 4b:82:56:ef:6f:44:81:38:ea:93:35:2e:91:4e:c2:8d:e2:74: 3d:f7:3e:66:5c:99:f8:e7:8a:b8:20:74:7d:81:b6:97:4f:38: 17:c5:1b:b6:b2:fa:72:6f:cb:bb:6d:e3:84:4f:25:bd:41:7e: fa:3e:3a:43:25:70:fa:05:fd:42:d9:03:32:b0:62:74:e2:58: 9a:34:98:99:85:fe:27:8f:42:a6:5f:bd:e6:0a:27:cb:c2:f1: f5:9d:21:18:9f:f5:ed:08:c6:ff:38:84:dc:df:cb:9e:c2:0e: 4e:3a:6f:96:a5:8b:66:36:4d:5d:05:85:84:22:db:25:6a:29: fc:f3:e2:10:d0:89:ad:55:95:11:60:fd:7d:7f:89:9c:78:55: 83:39:c5:0f:17:26:23:07:62:b6:39:ad:cb:e2:03:e4:56:2e: 07:de:37:59:ed:71:4e:6e:eb:15:42:1a:c6:06:8d:ad:d3:e5: 38:96:a5:28:a5:15:07:41:07:e5:44:72:a0:50:9b:09:ac:eb: ba:02:bf:5b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPcDU1fWUGOY5zYkDDNtZV4SOJ/kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwNTA0NTUwMVoX DTI1MTIwNDA1MDAwMVowMzExMC8GA1UEAxMoRjU4RTNFNTczQTlEMjIxODZGNkU1 MjNDODY1NjBGQ0FFNzMzQTZFMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM0qz4k4gjwaXezAOPFIyMtLmvdoEsUVqGudC6Th9631iwFhHviMXsuOTGDi Hsu7LIBpssSwDUleM2B0TtyZtyODn4auH+6rCktJ/vd6/SoscwikMxRe/RF01Vx9 dNqoMA03RgXmYn+gCzXySaF5soQqWMMAe3kb6lw/CyOBDJBUTOwRJRUPFDDWTy52 qMigRHCUB2N98lpXlV4fQKqm/gr2NXeCjUDN8sLAzVeoMJAoYeiGQ0JYSuFJ8yYd 930+ewi7irFYlYGaWEgvNWuklb1G0qu37uTl5FRevrrYgjy/SAUJCz0G4DfHT3K/ dWMQz6IVoVqfuRbXCkHps69HhJkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT1jj5X Op0iGG9uUjyGVg/K5zOm4zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODEyMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd/qzANBgkqhkiG9w0BAQsFAAOCAQEAc0ihNC2I4/PPG6Np0tIJ wGwsgrwy3YxtSLwhA3ioWQx5vfc84QPRCPWaC/H5Fhs2eTTZ96KYS4JW729EgTjq kzUukU7CjeJ0Pfc+ZlyZ+OeKuCB0fYG2l084F8UbtrL6cm/Lu23jhE8lvUF++j46 QyVw+gX9QtkDMrBidOJYmjSYmYX+J49Cpl+95gony8Lx9Z0hGJ/17QjG/ziE3N/L nsIOTjpvlqWLZjZNXQWFhCLbJWop/PPiENCJrVWVEWD9fX+JnHhVgznFDxcmIwdi tjmty+ID5FYuB943We1xTm7rFUIaxgaNrdPlOJalKKUVB0EH5URyoFCbCazrugK/ Ww== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:44 2025 by rpki-client