$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138829.roa File: AS138829.roa (raw, json) Hash identifier: ArK+fZvbdD9zQaPP9dqgMym5/4ltS6gLnpBOw1Kz2J4= Subject key identifier: 12:96:92:F3:06:F0:A0:6D:BF:49:C8:3E:43:4A:4D:49:CA:E0:A8:46 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5036041FC928C42ED5DA79729B9B6B730ED1B12D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138829.roa Signing time: Tue 09 Jan 2024 06:21:49 +0000 ROA not before: Tue 09 Jan 2024 06:16:49 +0000 ROA not after: Tue 07 Jan 2025 06:21:49 +0000 asID: 138829 IP address blocks: 36.50.253.0/24 maxlen: 24 103.11.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:36:04:1f:c9:28:c4:2e:d5:da:79:72:9b:9b:6b:73:0e:d1:b1:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 06:16:49 2024 GMT Not After : Jan 7 06:21:49 2025 GMT Subject: CN=129692F306F0A06DBF49C83E434A4D49CAE0A846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:33:32:c4:cc:a9:3f:c4:d3:dc:1c:29:91:0c: 19:61:7e:c7:0d:5d:32:1a:09:24:31:10:7b:9f:41: 16:2f:aa:4b:47:29:2c:46:50:c8:e9:2a:83:a2:2e: dd:ee:cb:31:96:57:12:67:0c:fc:5b:1f:b1:9b:b1: e5:bb:56:e7:0d:90:a2:73:66:33:0b:47:e4:dd:fa: 93:28:fc:7d:75:2c:d7:cb:35:57:23:62:1c:4c:72: 71:1f:f0:0f:af:93:e9:52:60:ed:74:1f:0b:b6:27: 0f:38:c9:3d:c0:ab:b0:08:a8:74:ca:97:a0:38:80: cd:16:77:71:c8:9f:dd:49:42:d6:58:e3:79:c4:4d: 0b:ae:24:08:5b:b4:34:e9:f9:b3:39:05:b7:3c:af: 5c:7e:4d:f6:1d:c9:f2:fa:f3:ea:a6:7c:5a:6e:38: f5:b1:01:09:9c:d8:bf:15:6e:41:9a:05:ac:a8:95: 05:e6:41:3b:fa:e3:dc:05:d1:a6:a9:8f:ac:15:38: 66:b8:09:07:f5:84:18:03:23:29:60:16:8a:d1:20: a4:cd:d9:b0:79:d7:09:24:40:7d:99:1f:1e:f7:55: 84:74:42:9b:c3:6e:f5:9e:7a:4f:c8:ee:82:60:02: 3e:9e:db:5a:af:95:b3:09:0b:cf:d6:45:e2:5d:f2: 5c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:96:92:F3:06:F0:A0:6D:BF:49:C8:3E:43:4A:4D:49:CA:E0:A8:46 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138829.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.253.0/24 103.11.132.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:a5:08:c9:8d:84:99:7c:04:73:62:49:e2:cb:33:c9:41:34: 0f:97:72:1f:c1:ce:8c:61:f6:10:f8:f8:b7:c0:4e:48:61:41: 22:29:16:36:3d:8e:de:42:b7:97:46:61:65:71:13:bd:1e:e1: 42:50:5a:58:1d:fc:43:02:db:48:f4:95:95:81:f6:a7:db:1f: 64:b4:36:89:f0:bb:ee:0f:0f:07:07:9b:a1:47:9b:d8:90:33: 68:46:7e:af:fa:ca:8d:d1:09:e5:21:70:e1:9f:92:4a:ea:d8: 9e:89:2b:ba:08:32:69:19:23:9d:64:76:2b:16:2a:87:da:fe: e1:6f:47:67:dd:02:2e:fe:2e:17:7c:dd:9c:e0:7a:41:41:87: c1:71:3a:34:20:fc:2b:71:e4:3f:48:f4:36:f2:e4:cb:fe:13: 83:ab:ef:68:3b:c3:77:55:e3:16:ae:6a:10:3c:80:26:ff:50: da:17:4f:1d:3b:18:75:13:ad:6a:a8:52:bb:5a:d3:11:af:d6: 8e:fc:5c:b0:c9:e7:ed:68:7d:05:f7:f6:21:35:44:15:e9:f8: 84:08:da:97:a5:0b:72:cb:7d:8e:d1:7d:ca:e9:7b:cc:b7:7f: 8e:66:95:0e:64:ba:55:42:34:78:34:98:08:f0:fb:29:ad:96: 78:83:17:c5 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUUDYEH8koxC7V2nlym5trcw7RsS0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTA2MTY0OVoX DTI1MDEwNzA2MjE0OVowMzExMC8GA1UEAxMoMTI5NjkyRjMwNkYwQTA2REJGNDlD ODNFNDM0QTRENDlDQUUwQTg0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALozMsTMqT/E09wcKZEMGWF+xw1dMhoJJDEQe59BFi+qS0cpLEZQyOkqg6Iu 3e7LMZZXEmcM/FsfsZux5btW5w2QonNmMwtH5N36kyj8fXUs18s1VyNiHExycR/w D6+T6VJg7XQfC7YnDzjJPcCrsAiodMqXoDiAzRZ3ccif3UlC1ljjecRNC64kCFu0 NOn5szkFtzyvXH5N9h3J8vrz6qZ8Wm449bEBCZzYvxVuQZoFrKiVBeZBO/rj3AXR pqmPrBU4ZrgJB/WEGAMjKWAWitEgpM3ZsHnXCSRAfZkfHvdVhHRCm8Nu9Z56T8ju gmACPp7bWq+VswkLz9ZF4l3yXOUCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQSlpLz BvCgbb9JyD5DSk1JyuCoRjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgyOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEACQy/QMEAWcLhDANBgkqhkiG9w0BAQsFAAOCAQEAjaUIyY2EmXwE c2JJ4sszyUE0D5dyH8HOjGH2EPj4t8BOSGFBIikWNj2O3kK3l0ZhZXETvR7hQlBa WB38QwLbSPSVlYH2p9sfZLQ2ifC77g8PBweboUeb2JAzaEZ+r/rKjdEJ5SFw4Z+S SurYnokruggyaRkjnWR2KxYqh9r+4W9HZ90CLv4uF3zdnOB6QUGHwXE6NCD8K3Hk P0j0NvLky/4Tg6vvaDvDd1XjFq5qEDyAJv9Q2hdPHTsYdROtaqhSu1rTEa/Wjvxc sMnn7Wh9Bff2ITVEFen4hAjal6ULcst9jtF9yul7zLd/jmaVDmS6VUI0eDSYCPD7 Ka2WeIMXxQ== -----END CERTIFICATE-----Generated at Wed May 8 17:45:21 2024 by rpki-client on console-ams.rpki-client.org