$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138125.roa File: AS138125.roa (raw, json) Hash identifier: AYRHEqSFMYp3unG+j0CZBzlyRGxK81nOOO9o4FyHoRM= Subject key identifier: 79:93:C8:42:2E:0C:E3:FD:47:13:AA:41:F1:DD:03:E6:3E:80:89:2C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7E2A93D5280264500A009BCFE050E92D86C7A40A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138125.roa Signing time: Tue 20 Feb 2024 09:13:05 +0000 ROA not before: Tue 20 Feb 2024 09:08:05 +0000 ROA not after: Tue 18 Feb 2025 09:13:05 +0000 asID: 138125 IP address blocks: 103.132.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:2a:93:d5:28:02:64:50:0a:00:9b:cf:e0:50:e9:2d:86:c7:a4:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 20 09:08:05 2024 GMT Not After : Feb 18 09:13:05 2025 GMT Subject: CN=7993C8422E0CE3FD4713AA41F1DD03E63E80892C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f2:2c:8e:9b:4e:3c:ff:00:a7:fd:de:f4:72: ff:89:4a:50:ab:4a:be:f7:3e:3e:e1:e8:fa:db:fc: 9f:29:09:e7:aa:d9:5d:67:57:71:8f:87:d5:2b:a9: 94:ab:18:9b:92:96:7f:d5:b2:03:37:80:ff:68:8a: 2a:5c:52:3d:cb:17:d8:11:97:77:ba:c9:88:e6:22: f4:7b:12:d1:42:91:cc:83:7d:ed:3d:16:ff:14:c0: a8:74:d5:06:ab:a1:df:05:d9:e5:d0:0e:cf:40:e7: 1f:eb:51:dc:1b:72:44:71:6d:bb:9a:51:d2:e7:cd: e9:82:1b:1b:8e:77:24:36:57:61:f8:38:4f:18:74: 77:89:d3:8d:53:75:7c:4c:cf:11:4f:dc:2e:2d:5f: 59:94:83:0b:0c:f2:2b:91:a3:63:f2:39:ed:db:7f: 8b:a3:fb:b7:e9:d4:ff:0a:f4:da:b7:53:78:1e:11: cf:0d:5b:b1:b7:e1:01:83:22:ad:ac:e1:17:f6:a2: 12:e5:3e:70:35:bb:8f:ac:d2:bc:3d:95:bc:cf:0e: 1b:ed:d3:9c:ab:40:3e:33:2a:e3:80:b9:3b:c9:f2: 1e:23:98:d2:21:72:58:55:ea:df:64:b3:c4:44:44: 20:03:bf:20:be:e5:df:5e:f3:5b:69:51:61:3f:aa: 14:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:93:C8:42:2E:0C:E3:FD:47:13:AA:41:F1:DD:03:E6:3E:80:89:2C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138125.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.18.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:d1:bf:47:ad:1d:f6:e1:1e:5c:bd:a4:00:ae:95:8d:e6:cb: 5c:d4:d3:9c:51:44:0f:7b:3c:56:cb:18:c4:75:9f:60:26:ff: 65:61:04:e1:36:88:f2:28:7a:c7:ac:bd:96:13:03:03:49:f9: 91:72:72:6e:bf:bf:04:8c:5b:42:06:b9:6e:dc:47:be:0e:fc: 65:85:ea:9a:e2:1d:ab:f3:ad:17:d8:a5:fc:89:39:fc:ed:38: 19:aa:a0:c6:7c:d4:06:27:33:fb:78:c2:3d:e3:a8:0f:6a:09: ad:58:75:eb:b4:2a:eb:60:37:6d:a8:4a:4d:bc:a4:d1:7c:4e: 66:f0:df:e1:d4:f1:cb:f5:40:6a:b7:0a:0a:89:f8:fc:fe:14: 74:60:e8:c6:59:24:f0:30:cf:04:6f:d7:43:d5:76:e7:99:90: 35:ac:a6:a2:70:6e:ea:89:4f:21:84:85:c9:79:22:fd:14:28: 8a:52:bd:4a:67:12:be:ba:0a:12:df:25:db:82:b1:2a:fd:e4: e8:64:fb:f2:06:b5:b1:7c:45:3b:f3:83:82:3f:17:c2:4b:d8: f6:2c:3b:d2:3d:ce:8c:88:b6:de:46:df:07:ec:09:26:3b:e7: 81:9c:48:ba:e5:e4:df:07:d2:fe:3c:f7:b5:f0:5f:8b:00:fa: f8:a8:6f:22 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfiqT1SgCZFAKAJvP4FDpLYbHpAowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIyMDA5MDgwNVoX DTI1MDIxODA5MTMwNVowMzExMC8GA1UEAxMoNzk5M0M4NDIyRTBDRTNGRDQ3MTNB QTQxRjFERDAzRTYzRTgwODkyQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALHyLI6bTjz/AKf93vRy/4lKUKtKvvc+PuHo+tv8nykJ56rZXWdXcY+H1Sup lKsYm5KWf9WyAzeA/2iKKlxSPcsX2BGXd7rJiOYi9HsS0UKRzIN97T0W/xTAqHTV Bquh3wXZ5dAOz0DnH+tR3BtyRHFtu5pR0ufN6YIbG453JDZXYfg4Txh0d4nTjVN1 fEzPEU/cLi1fWZSDCwzyK5GjY/I57dt/i6P7t+nU/wr02rdTeB4Rzw1bsbfhAYMi razhF/aiEuU+cDW7j6zSvD2VvM8OG+3TnKtAPjMq44C5O8nyHiOY0iFyWFXq32Sz xEREIAO/IL7l317zW2lRYT+qFIUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR5k8hC Lgzj/UcTqkHx3QPmPoCJLDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODEyNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeEEjANBgkqhkiG9w0BAQsFAAOCAQEATdG/R60d9uEeXL2kAK6V jebLXNTTnFFED3s8VssYxHWfYCb/ZWEE4TaI8ih6x6y9lhMDA0n5kXJybr+/BIxb Qga5btxHvg78ZYXqmuIdq/OtF9il/Ik5/O04GaqgxnzUBicz+3jCPeOoD2oJrVh1 67Qq62A3bahKTbyk0XxOZvDf4dTxy/VAarcKCon4/P4UdGDoxlkk8DDPBG/XQ9V2 55mQNaymonBu6olPIYSFyXki/RQoilK9SmcSvroKEt8l24KxKv3k6GT78ga1sXxF O/ODgj8XwkvY9iw70j3OjIi23kbfB+wJJjvngZxIuuXk3wfS/jz3tfBfiwD6+Khv Ig== -----END CERTIFICATE-----Generated at Tue May 7 18:07:16 2024 by rpki-client on console-fra.rpki-client.org