$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138816.roa File: AS138816.roa (raw, json) Hash identifier: C24t4sTFVX+abuG4ZTrPufCNtjKhZ1VOF7G/vwUoFJI= Subject key identifier: 13:67:EC:5E:0C:ED:03:65:38:F9:E3:94:58:1D:8C:0F:64:98:3E:C0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 14F4BD7C3150781B13BE5310B89501779756B112 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138816.roa Signing time: Tue 09 Jan 2024 04:00:12 +0000 ROA not before: Tue 09 Jan 2024 03:55:12 +0000 ROA not after: Tue 07 Jan 2025 04:00:12 +0000 asID: 138816 IP address blocks: 103.136.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f4:bd:7c:31:50:78:1b:13:be:53:10:b8:95:01:77:97:56:b1:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:12 2024 GMT Not After : Jan 7 04:00:12 2025 GMT Subject: CN=1367EC5E0CED036538F9E394581D8C0F64983EC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d1:ca:3c:a7:51:b2:ff:8d:e6:26:b8:01:a6: 8a:1e:df:da:3c:ec:58:6e:3b:81:2c:6e:f8:bc:a6: 93:0b:49:d3:5c:25:8f:bb:79:31:a2:10:a3:3e:90: 71:fc:99:c9:94:6b:67:1b:4c:b0:8b:d2:75:db:ae: e3:b4:40:8f:1a:ab:20:b0:44:01:d4:e7:84:d3:9d: 40:fc:62:5c:dc:42:4f:46:53:ab:61:51:8c:89:11: 04:50:bf:bf:69:a6:14:f0:0e:89:89:91:32:33:2c: 73:ab:82:76:ad:92:f1:09:2b:89:96:7d:ff:39:40: 84:7a:54:2b:05:94:92:91:75:3c:d2:7f:c8:8e:c3: 7c:89:de:8e:ee:e4:26:68:ff:6b:6e:66:e5:c3:69: d2:55:8e:48:b0:3a:82:04:57:62:fc:cb:06:6a:b7: f4:13:2d:75:c7:5f:c7:6d:97:d8:ef:cc:e7:3b:ff: a5:06:e6:e4:00:40:2a:37:76:c7:f2:94:a1:bf:4f: 30:4f:2a:79:5d:ca:5b:30:e3:1f:45:f7:9e:12:aa: 63:db:1a:b0:55:8e:27:64:70:d5:52:e5:2c:c0:ad: 25:e1:fb:5d:b5:2c:f2:ae:df:46:c1:4c:70:1c:94: 7c:bc:bb:da:12:be:ac:e2:4a:60:29:a4:2d:e9:8f: 2d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:67:EC:5E:0C:ED:03:65:38:F9:E3:94:58:1D:8C:0F:64:98:3E:C0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138816.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.182.0/23 Signature Algorithm: sha256WithRSAEncryption 79:76:61:b7:36:33:1c:b5:c9:e5:b0:02:39:af:7f:7c:07:c9: e1:82:d0:7a:13:a3:92:91:90:bc:6f:5c:fb:a5:75:6e:b7:a7: 7e:db:c4:a5:1d:97:a3:e4:3e:93:1d:ab:d2:0c:a1:45:b2:fd: 20:f1:2b:19:9a:9b:28:4a:99:97:e0:25:60:20:e3:ed:af:70: 0c:34:f2:c0:88:ba:3c:85:bc:1f:bb:c5:ef:c8:61:b3:29:52: 49:47:5e:c6:db:84:8d:56:6b:e3:d1:6d:05:a9:a8:24:2f:7f: d2:6f:d4:69:22:19:a5:a4:c9:18:10:ca:90:f5:a6:2c:77:1a: ae:09:b3:4a:dc:e9:6c:bf:6a:97:78:c0:f7:e0:2b:d6:14:91: d0:9b:ce:ae:6d:ba:7c:6f:d8:3e:13:d9:5f:56:05:a9:80:48: 06:c0:43:32:d4:12:7a:bc:71:a8:13:28:80:b4:f0:9f:b8:73: 09:90:e1:2c:69:fe:43:c6:3c:d9:fc:1c:20:65:74:5a:9e:6f: f6:e9:3e:1f:f9:f8:e4:8e:01:24:97:d4:df:1a:63:39:8f:c2: 88:16:51:d1:7e:b3:3d:24:49:1d:fa:ae:90:58:a5:e7:af:20: 18:90:07:45:7c:71:72:96:99:15:03:71:57:0a:df:75:ed:57: 17:88:55:db -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFPS9fDFQeBsTvlMQuJUBd5dWsRIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxMloX DTI1MDEwNzA0MDAxMlowMzExMC8GA1UEAxMoMTM2N0VDNUUwQ0VEMDM2NTM4RjlF Mzk0NTgxRDhDMEY2NDk4M0VDMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKfRyjynUbL/jeYmuAGmih7f2jzsWG47gSxu+LymkwtJ01wlj7t5MaIQoz6Q cfyZyZRrZxtMsIvSdduu47RAjxqrILBEAdTnhNOdQPxiXNxCT0ZTq2FRjIkRBFC/ v2mmFPAOiYmRMjMsc6uCdq2S8QkriZZ9/zlAhHpUKwWUkpF1PNJ/yI7DfIneju7k Jmj/a25m5cNp0lWOSLA6ggRXYvzLBmq39BMtdcdfx22X2O/M5zv/pQbm5ABAKjd2 x/KUob9PME8qeV3KWzDjH0X3nhKqY9sasFWOJ2Rw1VLlLMCtJeH7XbUs8q7fRsFM cByUfLy72hK+rOJKYCmkLemPLbsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQTZ+xe DO0DZTj545RYHYwPZJg+wDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgxNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeItjANBgkqhkiG9w0BAQsFAAOCAQEAeXZhtzYzHLXJ5bACOa9/ fAfJ4YLQehOjkpGQvG9c+6V1brenftvEpR2Xo+Q+kx2r0gyhRbL9IPErGZqbKEqZ l+AlYCDj7a9wDDTywIi6PIW8H7vF78hhsylSSUdextuEjVZr49FtBamoJC9/0m/U aSIZpaTJGBDKkPWmLHcargmzStzpbL9ql3jA9+Ar1hSR0JvOrm26fG/YPhPZX1YF qYBIBsBDMtQSerxxqBMogLTwn7hzCZDhLGn+Q8Y82fwcIGV0Wp5v9uk+H/n45I4B JJfU3xpjOY/CiBZR0X6zPSRJHfqukFil568gGJAHRXxxcpaZFQNxVwrfde1XF4hV 2w== -----END CERTIFICATE-----Generated at Fri May 3 04:42:25 2024 by rpki-client on console-fra.rpki-client.org