$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138804.roa File: AS138804.roa (raw, json) Hash identifier: j57QtrEISlO6HyE7BR1aC3UtHm8c9cp2tpgJFIsN1Nc= Subject key identifier: D5:00:DB:20:88:7B:21:1C:08:B0:C3:0E:3B:80:CE:13:79:8D:7C:A6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 545B14A15E0E40697718459011D21EDB8AF27768 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138804.roa Signing time: Thu 10 Oct 2024 06:48:50 +0000 ROA not before: Thu 10 Oct 2024 06:43:50 +0000 ROA not after: Thu 09 Oct 2025 06:48:50 +0000 asID: 138804 IP address blocks: 2001:df4:5fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:5b:14:a1:5e:0e:40:69:77:18:45:90:11:d2:1e:db:8a:f2:77:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 10 06:43:50 2024 GMT Not After : Oct 9 06:48:50 2025 GMT Subject: CN=D500DB20887B211C08B0C30E3B80CE13798D7CA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:1f:1c:18:8f:45:7e:9a:72:6d:7a:8b:07:e5: 9d:ad:27:b2:ed:0a:03:5d:76:d1:92:a2:26:77:d1: f0:a8:7b:f5:7f:84:7c:ee:a4:57:fb:4d:74:cf:5e: 30:ee:00:c2:3e:f6:bb:55:c9:f9:fc:fd:68:8c:e3: 74:76:2e:52:0e:53:ff:49:0c:74:b8:66:0d:8d:a5: 44:4a:bb:1b:20:c5:39:7c:41:ab:7f:60:e2:e2:a5: 74:71:ce:e9:ee:05:39:5c:6c:08:7b:23:33:f8:5c: a5:27:e2:51:e7:e1:f1:e2:89:e1:01:c0:84:88:ae: 60:e3:5c:4a:5b:6a:b5:55:8b:cb:91:31:53:5f:3f: 47:5d:6a:af:27:b5:ec:8a:ad:cb:fa:19:00:96:78: 63:72:12:e7:68:f5:3a:31:9f:34:e7:04:04:9a:53: e3:32:76:2f:84:f6:3e:4e:fe:11:d5:9a:62:af:74: fc:ff:18:dd:63:27:22:de:92:32:c3:9e:2b:38:0c: eb:0f:b4:07:cf:95:af:cb:ae:b1:f4:a1:4b:31:0f: 50:b7:96:73:e7:b1:ed:3f:6e:17:33:1c:a1:b5:e3: 67:5e:a9:18:78:e0:f1:b7:7c:7d:f4:7b:6c:1d:7c: 8c:92:7c:41:9f:51:06:94:c8:ad:53:9a:80:16:f7: d7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:00:DB:20:88:7B:21:1C:08:B0:C3:0E:3B:80:CE:13:79:8D:7C:A6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138804.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:5fc0::/48 Signature Algorithm: sha256WithRSAEncryption 43:0b:f6:53:79:4c:46:5b:46:7f:30:4f:5d:a6:b6:cb:4b:8f: 75:e0:d6:b3:d2:e3:fe:83:9d:10:cd:8e:0a:29:ed:65:62:a0: db:85:25:8c:c5:a3:c2:a4:f8:5b:26:fe:45:9e:23:f5:3e:aa: 87:a5:cb:56:0a:e0:b6:8a:bd:e2:d8:16:05:82:7a:fe:82:3c: 21:39:60:24:cb:73:22:36:02:e3:77:72:ae:1e:ef:09:77:ea: cf:37:8d:ba:d5:5d:b2:97:41:85:21:4c:f9:1d:95:b8:2c:6a: 0c:9e:23:da:71:b3:0a:a6:33:ff:b7:78:bb:02:0b:79:7d:4b: 72:af:ee:0a:ef:0c:d8:ef:4a:59:94:c2:57:78:cd:d3:c7:c4: 1f:ae:ce:20:0d:58:fe:7a:07:91:4f:02:49:32:67:ac:81:12: 95:ae:9d:32:2c:d9:b7:a5:ab:be:c5:f6:98:f5:2e:88:e1:f2: cf:5d:c7:eb:6e:97:ed:85:2b:51:7d:40:60:7e:79:98:59:8a: 3b:fb:70:8c:36:27:c2:0e:64:5c:4c:04:a6:ff:e3:bf:a0:1c: 42:96:4a:51:f3:98:3f:7d:78:b6:00:1a:90:e8:6d:3c:e4:c8: 06:f7:89:95:b7:05:ce:ba:47:fd:56:d1:79:b2:56:a7:18:a5: c0:4a:ff:23 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUVFsUoV4OQGl3GEWQEdIe24ryd2gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxMDA2NDM1MFoX DTI1MTAwOTA2NDg1MFowMzExMC8GA1UEAxMoRDUwMERCMjA4ODdCMjExQzA4QjBD MzBFM0I4MENFMTM3OThEN0NBNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJkfHBiPRX6acm16iwflna0nsu0KA1120ZKiJnfR8Kh79X+EfO6kV/tNdM9e MO4Awj72u1XJ+fz9aIzjdHYuUg5T/0kMdLhmDY2lREq7GyDFOXxBq39g4uKldHHO 6e4FOVxsCHsjM/hcpSfiUefh8eKJ4QHAhIiuYONcSltqtVWLy5ExU18/R11qrye1 7Iqty/oZAJZ4Y3IS52j1OjGfNOcEBJpT4zJ2L4T2Pk7+EdWaYq90/P8Y3WMnIt6S MsOeKzgM6w+0B8+Vr8uusfShSzEPULeWc+ex7T9uFzMcobXjZ16pGHjg8bd8ffR7 bB18jJJ8QZ9RBpTIrVOagBb3190CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTVANsg iHshHAiwww47gM4TeY18pjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfRfwDANBgkqhkiG9w0BAQsFAAOCAQEAQwv2U3lMRltGfzBP Xaa2y0uPdeDWs9Lj/oOdEM2OCintZWKg24UljMWjwqT4Wyb+RZ4j9T6qh6XLVgrg toq94tgWBYJ6/oI8ITlgJMtzIjYC43dyrh7vCXfqzzeNutVdspdBhSFM+R2VuCxq DJ4j2nGzCqYz/7d4uwILeX1Lcq/uCu8M2O9KWZTCV3jN08fEH67OIA1Y/noHkU8C STJnrIESla6dMizZt6WrvsX2mPUuiOHyz13H626X7YUrUX1AYH55mFmKO/twjDYn wg5kXEwEpv/jv6AcQpZKUfOYP314tgAakOhtPOTIBveJlbcFzrpH/VbRebJWpxil wEr/Iw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:46 2024 by rpki-client on console-ams.rpki-client.org