$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138131.roa File: AS138131.roa (raw, json) Hash identifier: T/apwz2L9I+kZwACgAk2Y8vRREUusC/nRTPayGVe7o0= Subject key identifier: EA:76:A5:08:9C:BF:D7:71:73:FB:ED:75:72:CE:60:CB:E5:F2:01:CD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5AB97DC28ECFC018025952B7A14002B22122B592 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138131.roa Signing time: Tue 09 Jan 2024 04:00:00 +0000 ROA not before: Tue 09 Jan 2024 03:55:00 +0000 ROA not after: Tue 07 Jan 2025 04:00:00 +0000 asID: 138131 IP address blocks: 103.164.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:b9:7d:c2:8e:cf:c0:18:02:59:52:b7:a1:40:02:b2:21:22:b5:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:00 2024 GMT Not After : Jan 7 04:00:00 2025 GMT Subject: CN=EA76A5089CBFD77173FBED7572CE60CBE5F201CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:95:7c:cf:dd:05:09:01:a1:3e:81:13:e1:39: c4:80:f1:10:68:7e:18:ee:68:8c:e8:18:05:9d:7f: 48:36:b8:30:f4:e9:1b:23:23:63:01:13:6b:67:d7: 8d:38:7b:b7:35:01:e4:ae:68:e8:18:7e:88:7a:0e: db:3c:5f:b9:6a:a5:56:73:85:cc:25:db:05:87:1b: b0:c5:e4:af:27:28:04:0c:0e:92:f1:7d:4a:bb:19: 83:78:62:8f:47:6d:bd:17:d2:b8:51:f5:85:1a:33: 79:c5:54:23:38:62:63:90:78:70:16:f3:f8:e8:b0: 13:e9:22:77:10:8a:3c:2c:91:9c:bf:b1:d2:ba:d0: 1d:af:fb:0b:06:b6:b2:69:e3:e7:26:0c:a2:cf:f8: ed:de:7b:96:19:35:e1:4e:66:aa:da:4f:c6:05:52: 1e:a1:40:4e:5a:ad:8f:dd:f2:1d:06:39:63:c4:17: 5c:7e:b1:83:8f:6a:8b:c4:93:21:f9:df:17:63:6a: 74:2c:9f:1b:6b:4e:c6:29:35:88:4d:3f:06:2d:15: 99:0e:e8:cd:ad:6e:5b:8a:47:61:a4:b7:65:b8:03: e3:9f:16:d5:61:c2:b2:b6:c0:af:9d:dd:01:6b:d9: 30:91:53:a9:bc:75:46:cc:fa:ed:2c:9e:a7:86:0d: 60:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:76:A5:08:9C:BF:D7:71:73:FB:ED:75:72:CE:60:CB:E5:F2:01:CD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.172.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:4f:eb:e8:95:2a:a1:74:ed:11:d9:cf:ae:c2:53:5e:2c:d0: 66:97:13:fd:5c:54:e2:93:af:4d:89:1b:b1:93:96:bb:fb:f3: 99:ed:8d:ac:a9:fb:66:99:1b:20:bd:70:d8:35:1d:c6:30:41: f6:63:d4:60:ab:3d:39:60:46:42:8f:e1:71:97:65:86:4a:d7: 18:94:fe:99:de:60:0d:17:c8:1c:bf:07:78:6d:1c:11:fe:02: d8:d7:ea:db:94:68:77:3f:ed:ed:6a:c8:33:16:ea:dd:17:96: 4f:a8:e4:4b:a1:51:7a:84:66:74:f6:f8:9c:05:05:e2:05:80: 5b:d4:ae:88:39:d3:ee:f7:05:7e:a7:ef:8a:16:71:f8:37:40: ce:71:8d:33:e0:f7:69:0e:25:35:c2:69:82:85:7b:d8:7f:b4: 1d:77:0f:86:0f:12:f7:65:1b:f2:8c:de:95:f8:e3:a9:6c:5c: 2f:73:11:36:f8:30:e8:ff:e8:92:ef:f8:88:92:a9:29:3e:30: d0:b4:8e:43:e8:c9:7c:fe:2b:a1:d2:cf:bc:a1:0b:c8:a8:68: d8:88:d2:85:d6:8e:b8:62:e4:1c:a0:48:71:e7:b9:a7:22:31: 2d:6b:5c:07:98:9e:25:89:cd:a6:01:42:10:20:c7:aa:04:1f: 8e:7c:07:3b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWrl9wo7PwBgCWVK3oUACsiEitZIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwMFoX DTI1MDEwNzA0MDAwMFowMzExMC8GA1UEAxMoRUE3NkE1MDg5Q0JGRDc3MTczRkJF RDc1NzJDRTYwQ0JFNUYyMDFDRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPGVfM/dBQkBoT6BE+E5xIDxEGh+GO5ojOgYBZ1/SDa4MPTpGyMjYwETa2fX jTh7tzUB5K5o6Bh+iHoO2zxfuWqlVnOFzCXbBYcbsMXkrycoBAwOkvF9SrsZg3hi j0dtvRfSuFH1hRozecVUIzhiY5B4cBbz+OiwE+kidxCKPCyRnL+x0rrQHa/7Cwa2 smnj5yYMos/47d57lhk14U5mqtpPxgVSHqFATlqtj93yHQY5Y8QXXH6xg49qi8ST IfnfF2NqdCyfG2tOxik1iE0/Bi0VmQ7oza1uW4pHYaS3ZbgD458W1WHCsrbAr53d AWvZMJFTqbx1Rsz67Syep4YNYNMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTqdqUI nL/XcXP77XVyzmDL5fIBzTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODEzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGekrDANBgkqhkiG9w0BAQsFAAOCAQEAm0/r6JUqoXTtEdnPrsJT XizQZpcT/VxU4pOvTYkbsZOWu/vzme2NrKn7ZpkbIL1w2DUdxjBB9mPUYKs9OWBG Qo/hcZdlhkrXGJT+md5gDRfIHL8HeG0cEf4C2Nfq25Rodz/t7WrIMxbq3ReWT6jk S6FReoRmdPb4nAUF4gWAW9SuiDnT7vcFfqfvihZx+DdAznGNM+D3aQ4lNcJpgoV7 2H+0HXcPhg8S92Ub8ozelfjjqWxcL3MRNvgw6P/oku/4iJKpKT4w0LSOQ+jJfP4r odLPvKELyKho2IjShdaOuGLkHKBIcee5pyIxLWtcB5ieJYnNpgFCECDHqgQfjnwH Ow== -----END CERTIFICATE-----Generated at Wed May 8 04:37:55 2024 by rpki-client on console-fra.rpki-client.org