$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138833.roa File: AS138833.roa (raw, json) Hash identifier: 41RlJXHIoMHRWu5sBCukZ0QcghLzJ2TnFIwAjkDhpk8= Subject key identifier: 6D:1C:90:96:1A:43:A9:5A:7C:B0:BB:74:4C:E6:07:69:C4:79:0F:6D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 235B7C0C6B6A934954FFEB70E55C6EC8CB4BC750 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138833.roa Signing time: Tue 09 Jan 2024 04:00:21 +0000 ROA not before: Tue 09 Jan 2024 03:55:21 +0000 ROA not after: Tue 07 Jan 2025 04:00:21 +0000 asID: 138833 IP address blocks: 103.137.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:5b:7c:0c:6b:6a:93:49:54:ff:eb:70:e5:5c:6e:c8:cb:4b:c7:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:21 2024 GMT Not After : Jan 7 04:00:21 2025 GMT Subject: CN=6D1C90961A43A95A7CB0BB744CE60769C4790F6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:56:35:2b:61:f9:db:d8:05:f5:1a:74:e8:8c: f3:dc:69:e3:fb:f6:7d:45:fb:3c:06:49:ba:1b:48: 78:55:bb:60:77:71:99:46:1d:c6:4d:1c:8e:58:a9: b4:00:3d:9c:5e:27:ad:22:42:56:c5:15:9a:e1:4e: de:f4:cc:31:87:01:b7:c5:41:3d:dd:a8:5f:aa:cc: 78:b0:4d:47:3e:a6:38:a4:b3:64:ac:da:bd:a8:bb: 15:64:a1:cf:8c:2f:73:d9:44:b0:1e:f6:e1:f0:aa: a6:bd:0c:75:cb:40:da:e1:69:5a:b2:4d:a3:9e:5e: b2:97:59:7c:48:f3:f4:4a:04:d4:9e:2d:79:53:b8: ea:8f:f3:f0:b7:c2:11:e3:d0:19:2b:5d:c0:be:12: 81:ab:f1:26:70:e4:a7:e9:5e:c7:61:79:72:77:51: a6:f5:8f:89:67:2f:a1:80:70:52:79:11:56:f3:8e: 95:6e:a0:9f:ac:4e:28:30:74:40:8a:52:b5:65:8f: c9:9a:8a:2f:ad:55:57:45:74:35:f8:5c:73:72:c7: 0d:43:ca:98:ac:cc:62:1c:4b:46:48:42:5b:c8:36: df:42:f1:9f:42:6a:bc:64:0a:e9:d8:6d:d2:da:de: 51:a4:39:8d:94:be:a7:5c:2d:3b:75:46:3b:1a:b2: f3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:1C:90:96:1A:43:A9:5A:7C:B0:BB:74:4C:E6:07:69:C4:79:0F:6D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.254.0/23 Signature Algorithm: sha256WithRSAEncryption 86:40:3d:67:6a:52:fd:e8:b3:56:3f:3b:b6:b9:a6:18:e3:c1: 62:45:29:01:ab:e0:0d:82:9a:2d:7f:7d:05:53:73:86:62:dd: 5f:bf:bc:3d:4a:de:c7:81:d9:21:54:0c:fc:a0:c7:71:ff:4a: 3e:f0:d0:f0:81:03:99:e3:71:09:ce:68:d8:a2:49:f9:37:92: 99:dc:8d:80:d8:38:55:14:68:e6:0e:6e:8e:4b:97:eb:88:6b: 5d:85:c2:07:cc:c7:85:1d:d2:df:0f:bd:d9:34:a8:d1:9b:90: f1:78:04:7a:46:74:0c:c1:b6:e3:51:31:55:f0:8a:e4:ce:9a: 83:47:d5:ab:7a:7e:3d:f0:35:1a:8a:b0:e5:64:15:80:23:26: af:66:a5:f9:26:81:10:4e:65:dc:73:32:47:89:46:53:cf:30: bc:ae:3f:0e:31:cd:0f:60:f6:f1:e4:d4:9b:99:3b:eb:26:e9: d2:8a:19:ef:6c:8d:74:04:cb:8b:43:da:2c:38:e0:48:f1:dd: 1d:de:7a:2b:d9:58:41:a6:e9:e5:34:30:9c:0a:c2:db:11:38: 96:3d:45:9e:4f:b2:2c:c4:7e:fe:3c:03:8e:11:99:3a:9d:3f: e1:67:59:92:de:b7:76:9f:db:ac:72:b8:cd:59:9f:ba:ee:1f: 64:d1:b0:9d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUI1t8DGtqk0lU/+tw5VxuyMtLx1AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyMVoX DTI1MDEwNzA0MDAyMVowMzExMC8GA1UEAxMoNkQxQzkwOTYxQTQzQTk1QTdDQjBC Qjc0NENFNjA3NjlDNDc5MEY2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANpWNSth+dvYBfUadOiM89xp4/v2fUX7PAZJuhtIeFW7YHdxmUYdxk0cjlip tAA9nF4nrSJCVsUVmuFO3vTMMYcBt8VBPd2oX6rMeLBNRz6mOKSzZKzavai7FWSh z4wvc9lEsB724fCqpr0MdctA2uFpWrJNo55espdZfEjz9EoE1J4teVO46o/z8LfC EePQGStdwL4SgavxJnDkp+lex2F5cndRpvWPiWcvoYBwUnkRVvOOlW6gn6xOKDB0 QIpStWWPyZqKL61VV0V0Nfhcc3LHDUPKmKzMYhxLRkhCW8g230Lxn0JqvGQK6dht 0treUaQ5jZS+p1wtO3VGOxqy8zsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRtHJCW GkOpWnywu3RM5gdpxHkPbTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeJ/jANBgkqhkiG9w0BAQsFAAOCAQEAhkA9Z2pS/eizVj87trmm GOPBYkUpAavgDYKaLX99BVNzhmLdX7+8PUrex4HZIVQM/KDHcf9KPvDQ8IEDmeNx Cc5o2KJJ+TeSmdyNgNg4VRRo5g5ujkuX64hrXYXCB8zHhR3S3w+92TSo0ZuQ8XgE ekZ0DMG241ExVfCK5M6ag0fVq3p+PfA1Goqw5WQVgCMmr2al+SaBEE5l3HMyR4lG U88wvK4/DjHND2D28eTUm5k76ybp0ooZ72yNdATLi0PaLDjgSPHdHd56K9lYQabp 5TQwnArC2xE4lj1Fnk+yLMR+/jwDjhGZOp0/4WdZkt63dp/brHK4zVmfuu4fZNGw nQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:54 2024 by rpki-client on console-fra.rpki-client.org