$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138816.roa File: AS138816.roa (raw, json) Hash identifier: uUcFimFNIHX79vGopl2IxZAufz2hRviWUns6wr4jigc= Subject key identifier: 17:2B:66:FC:5A:38:01:D2:8D:02:85:F0:DD:59:03:A0:6E:90:55:28 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0253A5FB308057FE954310984F9E0AAD1162B894 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138816.roa Signing time: Tue 10 Dec 2024 05:00:10 +0000 ROA not before: Tue 10 Dec 2024 04:55:10 +0000 ROA not after: Tue 09 Dec 2025 05:00:10 +0000 asID: 138816 IP address blocks: 103.136.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:53:a5:fb:30:80:57:fe:95:43:10:98:4f:9e:0a:ad:11:62:b8:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:10 2024 GMT Not After : Dec 9 05:00:10 2025 GMT Subject: CN=172B66FC5A3801D28D0285F0DD5903A06E905528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e2:91:ef:41:2d:cf:cf:80:98:95:95:d4:5a: ac:f5:97:32:24:97:20:7b:6f:17:51:d3:fb:b3:a8: 6c:f3:62:a1:70:02:06:97:c2:dc:eb:a4:bf:5a:32: 2c:8e:ba:4c:bc:5f:9a:19:6e:48:39:3f:2d:66:bc: 06:4a:93:4e:3f:7b:48:89:14:27:ee:3b:38:5f:45: 46:2e:56:33:06:9f:d7:0e:09:de:68:c9:03:33:10: 07:b2:64:ea:6c:2f:81:3d:db:4a:3f:43:c2:53:c3: 4b:17:69:b6:26:9a:d3:92:95:a8:4e:28:95:e3:2e: e2:67:53:27:50:af:ce:fe:21:a1:c9:ad:39:8c:f7: 64:dd:df:f0:ef:43:bb:89:35:7d:94:4f:d4:2a:9a: a3:cb:0e:9a:e8:7e:92:2c:5c:24:e8:6e:3a:65:c2: 99:74:da:58:52:70:28:18:1d:29:fa:2a:f9:b1:17: 87:41:95:74:eb:fd:7a:6f:64:be:93:b7:e2:09:86: 14:72:eb:79:b9:f8:b2:2b:51:16:f3:37:ce:00:ee: 8b:cd:e6:dd:d4:cb:63:b9:73:ef:d0:d1:a6:de:92: 26:0f:2a:c0:3b:8d:79:5e:2a:54:6b:58:6f:a0:9c: de:c8:3f:e7:24:26:2d:33:94:b6:7f:63:69:17:54: 9d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:2B:66:FC:5A:38:01:D2:8D:02:85:F0:DD:59:03:A0:6E:90:55:28 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138816.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.182.0/23 Signature Algorithm: sha256WithRSAEncryption 85:75:30:aa:27:08:bf:63:f1:25:76:74:14:cc:80:6c:70:ed: 8b:d3:6e:47:16:4f:0e:99:77:58:30:5d:cb:8e:fe:04:9f:54: c0:02:97:89:90:3d:66:84:f8:43:09:a5:12:87:70:d3:4e:1a: 89:04:5a:4c:70:9c:13:cf:29:b0:fb:c1:cb:63:84:78:c0:47: 61:b2:38:61:49:b7:a1:f3:4d:6a:df:bd:8b:ea:4d:6f:ec:61: b6:02:8d:f8:bf:6d:ea:cf:fa:1f:2c:d9:4d:4a:f2:2e:3e:9d: 66:e2:72:06:ee:be:fb:79:16:f3:19:bb:11:d1:91:14:4e:d4: 89:a1:16:d4:b6:e7:84:3d:8e:68:c9:ad:45:23:9f:69:20:0f: 44:18:2d:3f:6f:66:64:8b:08:1b:98:2d:5f:57:40:74:5a:3b: cd:1d:35:42:66:73:40:bb:87:a9:7e:42:c8:bc:18:ec:83:e4: 2c:19:aa:6a:f6:80:53:5d:93:17:31:0c:fd:b3:0e:47:8c:20: 8a:71:89:11:be:87:67:01:f5:81:21:01:16:a4:95:a1:a0:80: 4a:9e:bb:9d:29:f9:41:c4:93:a2:ed:86:14:a3:4e:ea:e1:08: 3c:56:1b:b2:ee:33:67:f0:4e:ac:13:44:d6:80:67:cb:0d:22: 08:86:df:66 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAlOl+zCAV/6VQxCYT54KrRFiuJQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxMFoX DTI1MTIwOTA1MDAxMFowMzExMC8GA1UEAxMoMTcyQjY2RkM1QTM4MDFEMjhEMDI4 NUYwREQ1OTAzQTA2RTkwNTUyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANrike9BLc/PgJiVldRarPWXMiSXIHtvF1HT+7OobPNioXACBpfC3Oukv1oy LI66TLxfmhluSDk/LWa8BkqTTj97SIkUJ+47OF9FRi5WMwaf1w4J3mjJAzMQB7Jk 6mwvgT3bSj9DwlPDSxdptiaa05KVqE4oleMu4mdTJ1Cvzv4hocmtOYz3ZN3f8O9D u4k1fZRP1Cqao8sOmuh+kixcJOhuOmXCmXTaWFJwKBgdKfoq+bEXh0GVdOv9em9k vpO34gmGFHLrebn4sitRFvM3zgDui83m3dTLY7lz79DRpt6SJg8qwDuNeV4qVGtY b6Cc3sg/5yQmLTOUtn9jaRdUne8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQXK2b8 WjgB0o0ChfDdWQOgbpBVKDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgxNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeItjANBgkqhkiG9w0BAQsFAAOCAQEAhXUwqicIv2PxJXZ0FMyA bHDti9NuRxZPDpl3WDBdy47+BJ9UwAKXiZA9ZoT4QwmlEodw004aiQRaTHCcE88p sPvBy2OEeMBHYbI4YUm3ofNNat+9i+pNb+xhtgKN+L9t6s/6HyzZTUryLj6dZuJy Bu6++3kW8xm7EdGRFE7UiaEW1LbnhD2OaMmtRSOfaSAPRBgtP29mZIsIG5gtX1dA dFo7zR01QmZzQLuHqX5CyLwY7IPkLBmqavaAU12TFzEM/bMOR4wginGJEb6HZwH1 gSEBFqSVoaCASp67nSn5QcSTou2GFKNO6uEIPFYbsu4zZ/BOrBNE1oBnyw0iCIbf Zg== -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:07 2025 by rpki-client