$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138829.roa File: AS138829.roa (raw, json) Hash identifier: jxhhO+U1yZc+w7qhUa/l/2iWjpW/aM8knhknB5ivq1I= Subject key identifier: 2F:BE:A1:FB:A7:78:D4:9C:A5:CB:DB:7A:E7:18:D3:AE:19:07:42:15 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 28C2C66172667F1E27F816E4C122EA0D59271DEB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138829.roa Signing time: Wed 05 Mar 2025 01:08:58 +0000 ROA not before: Wed 05 Mar 2025 01:03:58 +0000 ROA not after: Wed 04 Mar 2026 01:08:58 +0000 asID: 138829 IP address blocks: 36.50.253.0/24 maxlen: 24 103.11.132.0/23 maxlen: 24 163.61.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:c2:c6:61:72:66:7f:1e:27:f8:16:e4:c1:22:ea:0d:59:27:1d:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 5 01:03:58 2025 GMT Not After : Mar 4 01:08:58 2026 GMT Subject: CN=2FBEA1FBA778D49CA5CBDB7AE718D3AE19074215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7e:b8:b0:4f:f3:65:77:80:f9:e2:71:f1:54: f2:84:87:7c:21:98:e0:84:06:0a:63:d9:ac:73:8b: f7:29:0d:3d:1f:8b:1e:58:69:00:79:f5:4d:b6:58: eb:64:b6:e1:88:fe:b0:40:8e:35:11:0b:9f:7d:19: 63:ce:4d:d4:ef:8d:99:de:b5:e7:24:e2:8e:60:17: 8a:c2:d6:35:d6:99:9b:1a:52:b3:b1:48:57:b4:e5: 33:8e:14:21:1b:6f:8c:6d:62:e7:bc:31:4d:88:4d: 20:a9:67:ae:61:06:33:cc:f5:58:3a:ed:ae:58:0a: 5f:fe:c8:1f:7a:c6:04:50:2e:4f:6b:97:97:99:51: 2e:6f:7e:65:e9:3c:18:ce:3a:2e:1c:03:e2:57:1b: 86:5c:cb:e8:e6:b0:92:1f:2a:27:6b:a2:a1:4f:fa: b5:b7:c6:21:85:6f:b2:1b:16:95:57:91:28:2a:c9: a8:2f:6a:cc:f5:80:ed:ba:15:05:8d:bf:bd:4d:6b: c8:67:cd:08:27:2b:67:e6:a6:7b:b2:4f:58:51:fe: 77:1d:fc:d7:39:43:b4:1b:9c:c7:3c:61:ce:42:f7: 26:97:c8:0d:9e:42:87:51:3c:9b:16:fe:0d:44:b7: 4f:6e:03:c1:47:db:c2:b3:fb:a3:ea:c0:78:5f:78: fb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BE:A1:FB:A7:78:D4:9C:A5:CB:DB:7A:E7:18:D3:AE:19:07:42:15 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138829.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.253.0/24 103.11.132.0/23 163.61.58.0/24 Signature Algorithm: sha256WithRSAEncryption 15:6f:d9:5c:85:fa:cf:0c:0a:49:fa:13:3a:f3:1f:94:0b:22: 70:32:68:e9:39:e6:75:3b:4b:5f:e2:a6:d7:d8:c9:2f:eb:79: 3d:bc:4a:52:45:8c:1f:b3:1e:02:51:b8:4c:ce:23:d8:ed:06: 44:26:55:d1:67:38:cd:20:8d:0e:75:ec:9c:66:14:01:b9:82: 59:bc:5a:17:8e:7c:10:76:dd:cf:f5:5a:54:d8:fb:b8:f9:66: 03:b5:39:b7:21:3f:65:60:e4:28:7a:c8:9a:cd:db:d4:53:87: f5:35:a3:95:0a:d0:4c:f7:1f:9d:3d:eb:86:66:1f:47:c4:48: 07:10:e2:82:47:f2:c0:c6:45:e8:57:3f:03:9d:2d:e2:7d:a7: ca:bb:c7:7b:25:b0:78:60:e8:08:a5:94:19:63:fc:2e:3f:4f: 40:4e:54:73:42:8f:9c:87:c7:63:13:4c:30:84:73:31:d4:1f: fa:ee:a8:fd:63:37:ad:cf:e2:c8:45:5d:58:53:1f:03:94:61: c7:4d:21:c4:6b:d7:fb:05:d9:0a:c6:8f:35:fe:34:64:9d:74: 5b:81:3c:ce:33:ae:45:34:e0:dc:93:64:5e:59:a4:88:22:07: 7b:97:3a:95:87:51:0b:fd:8f:59:77:50:18:59:e4:66:7c:15: 27:52:4d:19 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUKMLGYXJmfx4n+BbkwSLqDVknHeswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMwNTAxMDM1OFoX DTI2MDMwNDAxMDg1OFowMzExMC8GA1UEAxMoMkZCRUExRkJBNzc4RDQ5Q0E1Q0JE QjdBRTcxOEQzQUUxOTA3NDIxNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALN+uLBP82V3gPnicfFU8oSHfCGY4IQGCmPZrHOL9ykNPR+LHlhpAHn1TbZY 62S24Yj+sECONRELn30ZY85N1O+Nmd615yTijmAXisLWNdaZmxpSs7FIV7TlM44U IRtvjG1i57wxTYhNIKlnrmEGM8z1WDrtrlgKX/7IH3rGBFAuT2uXl5lRLm9+Zek8 GM46LhwD4lcbhlzL6Oawkh8qJ2uioU/6tbfGIYVvshsWlVeRKCrJqC9qzPWA7boV BY2/vU1ryGfNCCcrZ+ame7JPWFH+dx381zlDtBucxzxhzkL3JpfIDZ5Ch1E8mxb+ DUS3T24DwUfbwrP7o+rAeF94+3cCAwEAAaOCAdwwggHYMB0GA1UdDgQWBBQvvqH7 p3jUnKXL23rnGNOuGQdCFTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgyOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEACQy/QMEAWcLhAMEAKM9OjANBgkqhkiG9w0BAQsFAAOCAQEAFW/Z XIX6zwwKSfoTOvMflAsicDJo6TnmdTtLX+Km19jJL+t5PbxKUkWMH7MeAlG4TM4j 2O0GRCZV0Wc4zSCNDnXsnGYUAbmCWbxaF458EHbdz/VaVNj7uPlmA7U5tyE/ZWDk KHrIms3b1FOH9TWjlQrQTPcfnT3rhmYfR8RIBxDigkfywMZF6Fc/A50t4n2nyrvH eyWweGDoCKWUGWP8Lj9PQE5Uc0KPnIfHYxNMMIRzMdQf+u6o/WM3rc/iyEVdWFMf A5Rhx00hxGvX+wXZCsaPNf40ZJ10W4E8zjOuRTTg3JNkXlmkiCIHe5c6lYdRC/2P WXdQGFnkZnwVJ1JNGQ== -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:43 2025 by rpki-client