$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138144.roa File: AS138144.roa (raw, json) Hash identifier: W9ggBFVmylDJ/K2pO96kLuXQmahJUDma5mZlBkpg+WI= Subject key identifier: 5F:E1:E0:6E:16:22:19:1B:59:FF:CE:4C:3F:FA:8F:10:D4:92:AE:4E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 786A7E6DA5E6F7F19541680C2F5CE03BA6F01FB9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138144.roa Signing time: Sat 30 Nov 2024 02:00:00 +0000 ROA not before: Sat 30 Nov 2024 01:55:00 +0000 ROA not after: Sat 29 Nov 2025 02:00:00 +0000 asID: 138144 IP address blocks: 103.134.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:6a:7e:6d:a5:e6:f7:f1:95:41:68:0c:2f:5c:e0:3b:a6:f0:1f:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 30 01:55:00 2024 GMT Not After : Nov 29 02:00:00 2025 GMT Subject: CN=5FE1E06E1622191B59FFCE4C3FFA8F10D492AE4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:87:08:32:47:c0:ed:00:e9:ac:7e:0a:14:0f: fa:61:c4:cb:60:ea:37:c7:01:99:a8:e8:bb:d0:2a: 23:4f:a9:2c:0c:ba:21:8e:b8:b7:a3:65:c0:63:26: 02:94:62:a2:c3:b6:89:a4:6d:6b:e2:9d:8d:61:6f: a5:2e:eb:a1:f1:fc:5f:af:e1:3d:d8:10:42:c6:7e: 99:01:5f:72:06:e2:19:3b:6c:b9:7e:ef:cd:3a:84: 9f:9b:d2:c0:48:df:8d:62:16:4f:0e:d4:f5:21:f7: 56:e0:9b:a3:12:7c:12:d9:30:f2:f7:e7:52:68:28: 66:9b:1a:12:24:c5:53:60:66:f8:96:04:6f:f7:7f: 0a:e6:4b:9d:20:83:9f:7a:e0:0d:95:33:6c:aa:51: c0:96:9a:af:7b:73:42:9a:7c:99:32:51:33:44:c3: 6d:2d:62:8a:e3:16:cb:43:2b:ff:ed:f7:79:db:0b: f8:26:bf:2c:9d:7e:55:18:09:5e:77:a6:8d:b3:00: 26:86:f4:2d:b2:b2:34:cf:e2:7e:f9:72:ff:b4:90: b7:f3:21:55:56:fa:9e:d0:0d:cb:e8:40:d2:a0:0e: 88:46:e2:55:ca:a1:e0:e0:a2:ac:61:8a:4f:f5:b5: 60:42:a0:f2:96:0a:16:81:26:24:e6:72:5b:11:04: ca:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:E1:E0:6E:16:22:19:1B:59:FF:CE:4C:3F:FA:8F:10:D4:92:AE:4E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138144.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.17.0/24 Signature Algorithm: sha256WithRSAEncryption 86:71:09:3d:1c:75:f1:b0:d8:d6:45:a7:99:98:f5:1f:3e:ca: 79:61:e5:9a:5f:78:87:e5:d2:32:cb:70:0c:21:a8:29:91:df: 78:01:37:c2:6b:77:36:3e:48:af:86:e8:6c:e5:97:6f:b1:4a: 91:f0:b8:39:10:2e:8b:01:81:02:25:2b:cf:bf:83:8e:49:21: 78:46:71:23:b0:15:58:99:ff:96:c3:12:a7:60:e4:7a:f4:8a: 2b:83:eb:4d:6a:43:df:77:81:1a:99:17:98:78:70:77:e3:29: 8d:53:4f:52:80:a8:be:65:c6:e6:7c:93:e1:be:c3:a9:d7:8f: a7:35:d7:04:0b:5d:4f:66:50:c0:c6:2e:4b:5f:dc:f1:c8:b9: ef:e6:41:3c:6b:8b:59:54:7b:7d:59:5d:20:74:a5:a1:c2:39: ba:55:81:5a:77:6b:8d:89:d8:0d:f1:1d:ca:1e:b8:34:41:92: 75:5f:a8:f1:fc:5a:de:dc:ff:a8:52:2e:25:6a:ed:a9:e6:d9: be:ad:1d:a0:69:45:1d:57:8f:7d:a1:ff:bc:fc:61:3c:90:ae: f9:d8:65:17:54:03:9d:bf:a2:18:9c:17:ed:00:14:ce:a7:d2: 76:56:9e:33:fa:07:59:b7:0d:88:1e:75:49:6a:ae:d8:8b:34: d4:f1:0b:72 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUeGp+baXm9/GVQWgML1zgO6bwH7kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEzMDAxNTUwMFoX DTI1MTEyOTAyMDAwMFowMzExMC8GA1UEAxMoNUZFMUUwNkUxNjIyMTkxQjU5RkZD RTRDM0ZGQThGMTBENDkyQUU0RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANmHCDJHwO0A6ax+ChQP+mHEy2DqN8cBmajou9AqI0+pLAy6IY64t6NlwGMm ApRiosO2iaRta+KdjWFvpS7rofH8X6/hPdgQQsZ+mQFfcgbiGTtsuX7vzTqEn5vS wEjfjWIWTw7U9SH3VuCboxJ8Etkw8vfnUmgoZpsaEiTFU2Bm+JYEb/d/CuZLnSCD n3rgDZUzbKpRwJaar3tzQpp8mTJRM0TDbS1iiuMWy0Mr/+33edsL+Ca/LJ1+VRgJ XnemjbMAJob0LbKyNM/ifvly/7SQt/MhVVb6ntANy+hA0qAOiEbiVcqh4OCirGGK T/W1YEKg8pYKFoEmJOZyWxEEynMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRf4eBu FiIZG1n/zkw/+o8Q1JKuTjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODE0NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeGETANBgkqhkiG9w0BAQsFAAOCAQEAhnEJPRx18bDY1kWnmZj1 Hz7KeWHlml94h+XSMstwDCGoKZHfeAE3wmt3Nj5Ir4bobOWXb7FKkfC4ORAuiwGB AiUrz7+DjkkheEZxI7AVWJn/lsMSp2DkevSKK4PrTWpD33eBGpkXmHhwd+MpjVNP UoCovmXG5nyT4b7DqdePpzXXBAtdT2ZQwMYuS1/c8ci57+ZBPGuLWVR7fVldIHSl ocI5ulWBWndrjYnYDfEdyh64NEGSdV+o8fxa3tz/qFIuJWrtqebZvq0doGlFHVeP faH/vPxhPJCu+dhlF1QDnb+iGJwX7QAUzqfSdlaeM/oHWbcNiB51SWqu2Is01PEL cg== -----END CERTIFICATE-----Generated at Sun Feb 16 21:00:45 2025 by rpki-client