$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138818.roa File: AS138818.roa (raw, json) Hash identifier: 6uUc9Pi60ylMTK9sz9ZnrZjdBB0XuUqfku6ho16adtU= Subject key identifier: A7:D6:AF:A7:02:BC:D8:BF:5D:4D:A9:A7:8A:A2:46:67:04:5B:FE:D8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 696F0234C293678FD49A5471541CB6FA1C50D2D0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138818.roa Signing time: Thu 11 Apr 2024 09:00:00 +0000 ROA not before: Thu 11 Apr 2024 08:55:00 +0000 ROA not after: Thu 10 Apr 2025 09:00:00 +0000 asID: 138818 IP address blocks: 103.103.136.0/22 maxlen: 24 2406:be40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:6f:02:34:c2:93:67:8f:d4:9a:54:71:54:1c:b6:fa:1c:50:d2:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 11 08:55:00 2024 GMT Not After : Apr 10 09:00:00 2025 GMT Subject: CN=A7D6AFA702BCD8BF5D4DA9A78AA24667045BFED8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cc:22:4a:d4:f6:f7:f0:0d:75:9d:f5:5c:c7: b5:7c:3d:19:8d:85:0a:c9:3d:70:b1:8d:59:52:32: c8:6b:95:8c:44:7e:c4:e1:b2:31:7f:16:30:b6:a5: 56:a5:bb:95:24:41:0a:bc:48:23:e8:e6:f9:0b:53: 23:3a:57:5b:a9:c7:8e:e7:07:30:8a:5c:8c:2c:0c: 5c:c4:a9:ba:cc:69:e3:44:b2:22:a8:b5:45:77:07: 4e:eb:76:ad:0e:d0:c6:30:24:98:66:b5:13:94:83: 63:5e:59:c5:93:71:44:7d:44:b1:da:fd:b5:56:64: 8f:0a:c0:23:ba:72:96:d6:5a:91:a7:86:49:20:f8: 4d:34:42:bc:50:0d:fe:89:1c:fe:8f:35:0b:43:54: 0f:a3:df:8d:7e:47:af:d4:1b:8d:70:a4:5a:c9:61: 22:6b:1c:0c:a8:f2:30:ca:98:9f:20:34:a1:e2:18: 19:7d:dc:3e:ff:db:a8:0b:31:c2:61:39:98:fb:7a: 29:c8:ac:34:c4:ec:c1:e3:7c:90:f1:00:7e:a0:8e: 6e:d1:4a:d5:89:57:e7:07:bc:3e:e9:dc:7a:37:d1: 3f:62:b6:55:ef:72:d4:e9:44:22:d7:22:d0:ef:a2: b7:1f:91:a4:ef:65:7b:d9:c4:cb:16:8b:be:68:98: ab:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D6:AF:A7:02:BC:D8:BF:5D:4D:A9:A7:8A:A2:46:67:04:5B:FE:D8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138818.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.136.0/22 IPv6: 2406:be40::/32 Signature Algorithm: sha256WithRSAEncryption 5a:69:5d:3e:ec:7e:06:43:2a:0c:e5:bc:d8:61:d5:32:47:a1: c1:6b:13:c2:f7:dd:75:67:2a:54:33:9f:f6:28:db:ab:d7:4d: 02:2c:81:12:cd:7e:fc:e2:d1:81:b5:ae:53:0c:9d:d2:bd:f3: 99:98:76:a6:cd:d4:e4:18:11:d8:ba:0c:44:9e:a3:e0:f6:31: 30:3e:79:6c:53:04:77:2d:75:f9:43:22:0d:51:1e:67:b3:69: 0f:36:6e:7e:71:36:d6:e6:74:5b:63:be:7f:8e:b1:f1:1a:b3: 87:c8:20:11:e9:7a:03:00:eb:5d:f9:94:2a:0d:8c:f1:a6:a1: 59:bf:78:26:b0:fe:c6:9b:2e:62:0b:f4:43:89:a9:95:89:d4: 0b:ab:e6:9f:c1:7a:7f:e7:69:d5:89:b5:0a:07:7e:e8:11:5b: 82:cd:2d:e9:ac:ee:11:09:a2:20:17:d6:23:ea:45:78:b0:67: 69:b9:3e:2e:fa:23:ac:1a:84:fa:d8:3c:0a:8c:d7:22:e7:26: f8:1a:9b:78:07:9e:d5:24:5b:b4:ac:24:b8:67:f9:c2:1c:a6: 7d:a0:53:88:eb:f4:9e:e9:18:a2:61:c9:38:38:0a:0d:22:86: 43:da:ff:fb:a2:f3:80:1a:4f:a7:16:43:44:92:4b:10:a5:5d: 29:e6:1a:92 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUaW8CNMKTZ4/UmlRxVBy2+hxQ0tAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQxMTA4NTUwMFoX DTI1MDQxMDA5MDAwMFowMzExMC8GA1UEAxMoQTdENkFGQTcwMkJDRDhCRjVENERB OUE3OEFBMjQ2NjcwNDVCRkVEODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3MIkrU9vfwDXWd9VzHtXw9GY2FCsk9cLGNWVIyyGuVjER+xOGyMX8WMLal VqW7lSRBCrxII+jm+QtTIzpXW6nHjucHMIpcjCwMXMSpusxp40SyIqi1RXcHTut2 rQ7QxjAkmGa1E5SDY15ZxZNxRH1Esdr9tVZkjwrAI7pyltZakaeGSSD4TTRCvFAN /okc/o81C0NUD6PfjX5Hr9QbjXCkWslhImscDKjyMMqYnyA0oeIYGX3cPv/bqAsx wmE5mPt6KcisNMTsweN8kPEAfqCObtFK1YlX5we8PuncejfRP2K2Ve9y1OlEItci 0O+itx+RpO9le9nEyxaLvmiYq/8CAwEAAaOCAd8wggHbMB0GA1UdDgQWBBSn1q+n ArzYv11NqaeKokZnBFv+2DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgxOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAmdniDANBAIAAjAHAwUAJAa+QDANBgkqhkiG9w0BAQsFAAOCAQEA WmldPux+BkMqDOW82GHVMkehwWsTwvfddWcqVDOf9ijbq9dNAiyBEs1+/OLRgbWu Uwyd0r3zmZh2ps3U5BgR2LoMRJ6j4PYxMD55bFMEdy11+UMiDVEeZ7NpDzZufnE2 1uZ0W2O+f46x8Rqzh8ggEel6AwDrXfmUKg2M8aahWb94JrD+xpsuYgv0Q4mplYnU C6vmn8F6f+dp1Ym1Cgd+6BFbgs0t6azuEQmiIBfWI+pFeLBnabk+LvojrBqE+tg8 CozXIucm+BqbeAee1SRbtKwkuGf5whymfaBTiOv0nukYomHJODgKDSKGQ9r/+6Lz gBpPpxZDRJJLEKVdKeYakg== -----END CERTIFICATE-----Generated at Sat May 4 19:57:33 2024 by rpki-client on console-ams.rpki-client.org