$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138144.roa File: AS138144.roa (raw, json) Hash identifier: rZFG26U8xUFr/9X0xV10Ma+2ebMiHy8p8MDtx2EbTlE= Subject key identifier: 90:CF:A9:39:85:24:CB:53:6D:D8:36:02:82:BA:3D:D0:36:9C:49:8A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3DFC94F02BBD0574BF2F0A12901F95ADB494DBD4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138144.roa Signing time: Sat 30 Dec 2023 01:20:54 +0000 ROA not before: Sat 30 Dec 2023 01:15:54 +0000 ROA not after: Sat 28 Dec 2024 01:20:54 +0000 asID: 138144 IP address blocks: 103.134.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:fc:94:f0:2b:bd:05:74:bf:2f:0a:12:90:1f:95:ad:b4:94:db:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 30 01:15:54 2023 GMT Not After : Dec 28 01:20:54 2024 GMT Subject: CN=90CFA9398524CB536DD8360282BA3DD0369C498A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7e:7f:f2:a5:b8:b1:a2:3e:90:85:c7:f6:71: 75:a9:29:23:3e:be:4b:d8:1d:6e:ec:8f:77:e5:05: ec:2c:1d:f3:8a:b8:73:bf:c9:5c:c0:f4:a0:fd:61: 38:6e:56:04:e2:54:9c:47:dd:26:b1:3d:a5:10:30: fc:e1:6d:9a:3c:71:0d:88:75:d5:85:b0:72:d7:9e: 87:e0:ba:4b:7c:db:b8:61:fa:ae:f3:9a:ce:bc:7b: c5:65:eb:d4:c8:7e:7c:12:c5:b1:96:4e:89:d9:bd: ce:02:86:d7:c5:a5:9d:87:92:15:5f:fa:eb:5b:ca: 0a:36:15:94:68:a3:f9:90:6f:85:30:0d:f6:4e:9b: aa:f0:c9:4b:87:b7:7d:1c:c2:f3:c1:29:3f:ca:f3: cb:9d:dd:7d:73:45:42:9b:23:98:55:2f:93:c0:33: dc:9b:20:de:40:c0:76:f9:e5:83:65:ac:05:7b:c2: ab:01:1c:62:6d:1e:59:23:72:64:1c:fc:c1:0b:6c: cd:f0:13:28:a1:c7:09:99:4b:53:c7:4e:1f:5b:6f: f7:7f:ee:52:37:c8:42:a8:79:12:10:0c:9c:07:a4: bb:ac:e0:d1:13:c1:f0:ed:30:fa:25:4c:17:31:27: 11:99:9b:05:df:eb:b6:60:0d:61:de:cd:32:b9:84: 05:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:CF:A9:39:85:24:CB:53:6D:D8:36:02:82:BA:3D:D0:36:9C:49:8A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138144.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.17.0/24 Signature Algorithm: sha256WithRSAEncryption 91:3c:15:cd:8e:63:4f:83:8b:b1:a3:0d:83:18:ff:24:a4:53: 74:08:a8:81:ae:58:a1:2f:be:fa:2c:b2:bd:f3:49:1b:a9:78: 98:20:46:1e:72:74:85:95:f2:05:a1:b6:e5:39:32:08:8c:00: 4c:0a:d7:c2:ef:1d:37:6c:de:5f:fb:3e:3d:8f:71:50:1f:91: a9:7d:6c:d8:68:69:c2:0d:af:2a:67:5d:3d:12:4b:8a:6d:1c: ed:27:cd:84:b4:4f:ab:61:cf:cf:eb:ca:0f:86:a9:1d:c2:95: 58:44:ad:a8:9f:43:9f:ef:12:75:46:11:17:f5:89:38:d3:47: 89:60:98:74:da:e4:4e:2c:b0:30:9d:d4:c2:f2:b3:23:dc:0b: 2d:39:6b:d1:48:fb:70:36:bd:e0:03:62:ce:c9:53:34:38:fc: c0:b2:8c:88:75:4c:68:f0:d2:76:f9:97:2c:51:1b:2a:00:02: 50:41:78:e5:fa:76:0a:6e:e3:e0:55:58:d9:91:51:e6:b7:16: fb:16:5b:91:b9:85:ba:22:47:25:62:81:e9:14:c9:11:d1:f1: 74:7d:6c:02:a6:00:f1:1f:5b:a2:bb:6a:f4:b9:0e:f1:03:0b: 66:92:4c:1a:de:6e:85:e1:29:be:9e:97:fb:3d:e5:8a:88:1a: b5:57:31:d3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPfyU8Cu9BXS/LwoSkB+VrbSU29QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIzMDAxMTU1NFoX DTI0MTIyODAxMjA1NFowMzExMC8GA1UEAxMoOTBDRkE5Mzk4NTI0Q0I1MzZERDgz NjAyODJCQTNERDAzNjlDNDk4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMF+f/KluLGiPpCFx/ZxdakpIz6+S9gdbuyPd+UF7Cwd84q4c7/JXMD0oP1h OG5WBOJUnEfdJrE9pRAw/OFtmjxxDYh11YWwcteeh+C6S3zbuGH6rvOazrx7xWXr 1Mh+fBLFsZZOidm9zgKG18WlnYeSFV/661vKCjYVlGij+ZBvhTAN9k6bqvDJS4e3 fRzC88EpP8rzy53dfXNFQpsjmFUvk8Az3Jsg3kDAdvnlg2WsBXvCqwEcYm0eWSNy ZBz8wQtszfATKKHHCZlLU8dOH1tv93/uUjfIQqh5EhAMnAeku6zg0RPB8O0w+iVM FzEnEZmbBd/rtmANYd7NMrmEBW0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSQz6k5 hSTLU23YNgKCuj3QNpxJijAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODE0NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeGETANBgkqhkiG9w0BAQsFAAOCAQEAkTwVzY5jT4OLsaMNgxj/ JKRTdAioga5YoS+++iyyvfNJG6l4mCBGHnJ0hZXyBaG25TkyCIwATArXwu8dN2ze X/s+PY9xUB+RqX1s2Ghpwg2vKmddPRJLim0c7SfNhLRPq2HPz+vKD4apHcKVWESt qJ9Dn+8SdUYRF/WJONNHiWCYdNrkTiywMJ3UwvKzI9wLLTlr0Uj7cDa94ANizslT NDj8wLKMiHVMaPDSdvmXLFEbKgACUEF45fp2Cm7j4FVY2ZFR5rcW+xZbkbmFuiJH JWKB6RTJEdHxdH1sAqYA8R9bortq9LkO8QMLZpJMGt5uheEpvp6X+z3liogatVcx 0w== -----END CERTIFICATE-----Generated at Wed May 8 21:02:21 2024 by rpki-client on console-fra.rpki-client.org