$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138828.roa File: AS138828.roa (raw, json) Hash identifier: GXJdjjahV6ZrmteOJAXVaBeOeaGtoWDl0INgjTtnAp8= Subject key identifier: 06:61:4E:74:7C:69:D3:90:B7:C8:53:65:9C:14:3E:4B:4D:D5:7C:BC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4F70B6D0C6C4DD8E9C6518A770A18D6E21B4704F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138828.roa Signing time: Wed 23 Aug 2023 08:00:00 +0000 ROA not before: Wed 23 Aug 2023 07:55:00 +0000 ROA not after: Wed 21 Aug 2024 08:00:00 +0000 asID: 138828 IP address blocks: 103.55.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:70:b6:d0:c6:c4:dd:8e:9c:65:18:a7:70:a1:8d:6e:21:b4:70:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 23 07:55:00 2023 GMT Not After : Aug 21 08:00:00 2024 GMT Subject: CN=06614E747C69D390B7C853659C143E4B4DD57CBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:00:3d:ee:0e:96:b0:03:2c:2a:32:27:a7:68: 3a:0a:1c:9b:76:d8:22:38:fa:bc:3d:95:74:d2:40: a1:27:f8:7d:03:6b:f3:60:a7:d2:15:f3:df:c6:8c: 1d:90:26:36:66:16:f2:d9:9a:0a:fa:39:3c:ce:c9: df:b1:7c:7b:8b:3d:62:74:3c:fd:2f:4e:71:2d:3b: ab:95:80:ea:86:e3:d5:24:03:5b:ec:3a:9c:08:c3: 4d:4c:fc:11:6c:31:db:86:13:12:50:20:29:d8:02: 4d:e9:35:a7:1a:c3:7d:f8:9a:84:a1:19:70:29:b0: 09:5a:75:61:a7:15:5b:2f:eb:38:b5:3a:ca:94:70: 07:f4:aa:e8:38:81:d6:29:d2:6b:f0:97:1c:d3:7d: 13:9f:d3:10:5f:2e:12:2f:49:c6:a7:33:41:d0:3f: f3:86:b3:02:7c:77:d4:a8:bd:8d:e4:4c:d4:c8:43: df:8b:31:89:16:fd:b8:d1:c8:72:5e:bb:ac:d2:ed: 8f:0a:04:13:38:86:c5:40:34:a4:7a:0d:d6:41:54: 86:9d:1c:16:9f:1e:18:39:fc:fb:f0:09:e1:81:c1: 48:3c:23:ad:4a:26:af:1c:14:29:5d:ba:ff:b7:e8: a6:3b:29:5d:24:83:5f:b2:fb:5f:f0:37:e4:d0:1e: e9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:61:4E:74:7C:69:D3:90:B7:C8:53:65:9C:14:3E:4B:4D:D5:7C:BC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138828.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.159.0/24 Signature Algorithm: sha256WithRSAEncryption 35:3a:2f:27:54:ed:a7:e6:e9:25:6f:8e:8b:37:10:05:43:28: e0:2d:7d:fc:06:e7:66:6b:a3:02:a0:5f:73:e6:90:0a:da:d9: 5c:26:19:ff:d3:48:4f:5c:03:03:cd:8d:37:63:32:10:33:4e: 54:55:2e:97:ad:27:d4:1b:8f:98:f5:94:9c:19:55:e3:e1:6a: 88:2f:6d:c3:ad:49:bc:0c:94:42:90:9a:34:de:e4:3c:9f:ba: 99:87:bc:e1:15:44:91:34:e8:f7:1a:dc:ba:1b:5a:74:e4:a3: 0e:a0:73:9b:e6:aa:12:c4:f1:87:50:af:2f:34:92:3c:7b:a7: be:2c:90:ed:fc:6d:cd:e1:a0:96:ac:de:51:53:ea:f4:9e:5a: ca:d1:3b:6e:0b:fe:31:b7:68:c4:48:d5:72:4c:9b:d0:ef:cc: bf:82:7d:b4:cb:a1:a0:76:1c:bb:5a:f3:10:16:13:2b:a1:f9: 48:fb:0a:64:d9:ca:11:6f:d6:1f:ba:8c:b9:d8:ea:ca:af:3f: 17:3f:05:04:87:c5:f8:ea:d0:99:cc:a5:aa:84:8d:04:55:63: ea:cf:f5:59:3a:3f:f5:64:10:0e:11:77:6c:b1:77:60:9c:19: a2:14:30:10:3e:89:ae:5b:69:b5:d7:04:dc:f2:59:34:63:e1: 7d:33:b4:87 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUT3C20MbE3Y6cZRincKGNbiG0cE8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgyMzA3NTUwMFoX DTI0MDgyMTA4MDAwMFowMzExMC8GA1UEAxMoMDY2MTRFNzQ3QzY5RDM5MEI3Qzg1 MzY1OUMxNDNFNEI0REQ1N0NCQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIAPe4OlrADLCoyJ6doOgocm3bYIjj6vD2VdNJAoSf4fQNr82Cn0hXz38aM HZAmNmYW8tmaCvo5PM7J37F8e4s9YnQ8/S9OcS07q5WA6obj1SQDW+w6nAjDTUz8 EWwx24YTElAgKdgCTek1pxrDffiahKEZcCmwCVp1YacVWy/rOLU6ypRwB/Sq6DiB 1inSa/CXHNN9E5/TEF8uEi9JxqczQdA/84azAnx31Ki9jeRM1MhD34sxiRb9uNHI cl67rNLtjwoEEziGxUA0pHoN1kFUhp0cFp8eGDn8+/AJ4YHBSDwjrUomrxwUKV26 /7fopjspXSSDX7L7X/A35NAe6cMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQGYU50 fGnTkLfIU2WcFD5LTdV8vDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgyOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGc3nzANBgkqhkiG9w0BAQsFAAOCAQEANTovJ1Ttp+bpJW+OizcQ BUMo4C19/AbnZmujAqBfc+aQCtrZXCYZ/9NIT1wDA82NN2MyEDNOVFUul60n1BuP mPWUnBlV4+FqiC9tw61JvAyUQpCaNN7kPJ+6mYe84RVEkTTo9xrcuhtadOSjDqBz m+aqEsTxh1CvLzSSPHunviyQ7fxtzeGglqzeUVPq9J5aytE7bgv+MbdoxEjVckyb 0O/Mv4J9tMuhoHYcu1rzEBYTK6H5SPsKZNnKEW/WH7qMudjqyq8/Fz8FBIfF+OrQ mcylqoSNBFVj6s/1WTo/9WQQDhF3bLF3YJwZohQwED6JrltptdcE3PJZNGPhfTO0 hw== -----END CERTIFICATE-----Generated at Fri May 3 03:08:30 2024 by rpki-client on console-ams.rpki-client.org