$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138807.roa File: AS138807.roa (raw, json) Hash identifier: dlzgYMhkUgzOt7mJNCUu8nO7OUE56u9eGsJhVqD751k= Subject key identifier: 4A:46:E4:C7:34:80:19:B8:94:AC:8B:E4:78:E2:D5:81:92:A1:B5:8B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7D01FBF395659E386BDF462CEB87096804A5BD47 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138807.roa Signing time: Wed 17 Jan 2024 08:00:00 +0000 ROA not before: Wed 17 Jan 2024 07:55:00 +0000 ROA not after: Wed 15 Jan 2025 08:00:00 +0000 asID: 138807 IP address blocks: 103.134.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:01:fb:f3:95:65:9e:38:6b:df:46:2c:eb:87:09:68:04:a5:bd:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 17 07:55:00 2024 GMT Not After : Jan 15 08:00:00 2025 GMT Subject: CN=4A46E4C7348019B894AC8BE478E2D58192A1B58B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:76:42:74:09:e3:9a:ec:60:73:2c:83:4b:6d: ba:0b:bc:d2:65:bf:6a:83:e7:66:fc:12:be:23:8c: 3f:34:02:38:a9:9a:db:4e:d6:a2:70:fb:37:be:9b: 84:a5:77:03:9a:d0:34:9b:b4:1d:b3:e3:34:08:06: 3d:37:92:78:34:09:a2:2b:5e:28:1e:22:e3:2a:0b: 0c:a8:6d:c0:9f:ec:9c:4c:cc:47:f3:4c:2a:07:73: b8:c4:80:fa:2d:96:33:73:ca:27:65:1e:8f:32:46: f6:77:86:cb:59:ce:c3:4a:84:16:51:5c:53:de:67: ab:1c:40:4b:2e:5a:1c:62:2c:1b:17:9d:45:7a:1b: 59:70:a2:b6:c0:3f:8b:11:4f:c5:28:0b:06:fa:2d: 0c:0b:7e:7b:e8:02:4d:04:3e:32:25:ae:72:4b:24: ae:6c:e9:b8:bb:ad:da:30:e4:5c:40:13:ee:44:b7: ee:c8:07:d1:f9:df:67:0c:f2:0d:49:47:83:d3:98: 3e:a9:1e:77:2e:df:57:52:c7:73:53:15:1d:a9:c3: 69:61:dd:20:7e:c9:f2:b4:02:9f:4d:63:c6:f0:0e: 5a:9f:02:28:58:4f:4d:f8:cd:cf:71:1b:d1:66:77: 45:71:64:7e:1d:95:ff:ab:0e:0a:3d:17:4b:3a:c5: 82:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:46:E4:C7:34:80:19:B8:94:AC:8B:E4:78:E2:D5:81:92:A1:B5:8B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138807.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.213.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:52:27:f2:44:b2:31:71:6a:3d:cd:a3:7d:36:73:78:02:ec: 86:ca:4f:45:9f:ed:ab:ad:28:27:7f:12:ba:eb:1a:84:69:0a: 63:24:5a:36:90:da:d7:55:41:1e:99:e9:12:9b:9d:05:66:ce: a1:d3:6d:a6:17:12:bd:f2:7c:2c:79:7d:51:f8:13:5c:35:b0: 25:7f:67:85:29:89:6a:c0:9f:09:35:a6:54:d0:1b:cb:05:c0: 10:4f:02:9f:bd:63:0a:b0:b4:8b:fa:88:b9:f0:fe:d6:80:2a: be:27:5b:ac:15:52:e6:71:4a:22:42:5f:0a:75:b1:7c:30:5d: e4:cf:ad:bc:23:76:f6:ca:bf:ee:1c:46:a6:7e:fc:8b:42:b6: 6b:f5:86:62:b1:ba:61:f5:45:af:a1:8d:aa:9f:12:0d:71:95: cc:5e:cb:b0:68:71:b1:6d:62:09:dd:bb:2d:49:15:f8:b7:2e: 30:42:d8:2a:77:b4:2a:08:5e:a5:9b:d5:d2:8e:21:e5:3a:a3: 8a:33:df:ba:49:e5:ea:8c:60:ab:3a:61:0b:7c:66:9d:55:ba: f8:29:3f:6d:4a:2a:8d:c7:34:c1:1c:14:72:54:4b:13:55:93: 8f:5e:9c:16:f3:87:ff:45:5d:28:51:32:f4:57:65:9e:e5:53: b8:3d:6f:4a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfQH785Vlnjhr30Ys64cJaASlvUcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExNzA3NTUwMFoX DTI1MDExNTA4MDAwMFowMzExMC8GA1UEAxMoNEE0NkU0QzczNDgwMTlCODk0QUM4 QkU0NzhFMkQ1ODE5MkExQjU4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANZ2QnQJ45rsYHMsg0ttugu80mW/aoPnZvwSviOMPzQCOKma207WonD7N76b hKV3A5rQNJu0HbPjNAgGPTeSeDQJoiteKB4i4yoLDKhtwJ/snEzMR/NMKgdzuMSA +i2WM3PKJ2UejzJG9neGy1nOw0qEFlFcU95nqxxASy5aHGIsGxedRXobWXCitsA/ ixFPxSgLBvotDAt+e+gCTQQ+MiWuckskrmzpuLut2jDkXEAT7kS37sgH0fnfZwzy DUlHg9OYPqkedy7fV1LHc1MVHanDaWHdIH7J8rQCn01jxvAOWp8CKFhPTfjNz3Eb 0WZ3RXFkfh2V/6sOCj0XSzrFgpECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRKRuTH NIAZuJSsi+R44tWBkqG1izAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeG1TANBgkqhkiG9w0BAQsFAAOCAQEAH1In8kSyMXFqPc2jfTZz eALshspPRZ/tq60oJ38SuusahGkKYyRaNpDa11VBHpnpEpudBWbOodNtphcSvfJ8 LHl9UfgTXDWwJX9nhSmJasCfCTWmVNAbywXAEE8Cn71jCrC0i/qIufD+1oAqvidb rBVS5nFKIkJfCnWxfDBd5M+tvCN29sq/7hxGpn78i0K2a/WGYrG6YfVFr6GNqp8S DXGVzF7LsGhxsW1iCd27LUkV+LcuMELYKne0KghepZvV0o4h5TqjijPfuknl6oxg qzphC3xmnVW6+Ck/bUoqjcc0wRwUclRLE1WTj16cFvOH/0VdKFEy9FdlnuVTuD1v Sg== -----END CERTIFICATE-----Generated at Wed May 8 17:45:21 2024 by rpki-client on console-ams.rpki-client.org