$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138839.roa File: AS138839.roa (raw, json) Hash identifier: sueYgeT2G/ffw/74ai23E1lDbn2SFRObzNHKffI6oPk= Subject key identifier: 6F:11:70:1B:22:8A:6B:59:D3:1C:AA:AA:B4:63:0E:B9:8D:0C:74:74 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3E3DA1D5C3A9576D5E9ACE37D7E4927C447FA1FA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138839.roa Signing time: Tue 09 Jan 2024 04:00:01 +0000 ROA not before: Tue 09 Jan 2024 03:55:01 +0000 ROA not after: Tue 07 Jan 2025 04:00:01 +0000 asID: 138839 IP address blocks: 103.138.14.0/23 maxlen: 24 2404:bdc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:3d:a1:d5:c3:a9:57:6d:5e:9a:ce:37:d7:e4:92:7c:44:7f:a1:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:01 2024 GMT Not After : Jan 7 04:00:01 2025 GMT Subject: CN=6F11701B228A6B59D31CAAAAB4630EB98D0C7474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:99:54:fa:28:4b:2d:ec:a6:b5:ef:3b:aa:82: 26:b1:14:27:30:18:4b:4d:da:a6:30:af:87:60:d9: c0:08:04:a6:e4:0a:2f:10:b1:05:31:93:ab:73:2f: 95:4f:85:78:19:d0:37:c3:39:88:01:db:c0:7e:25: 5e:71:e3:92:6a:82:a0:6d:9a:3b:6c:45:38:c3:b2: 0e:ea:d6:74:18:46:42:61:ab:53:39:a9:1c:32:a2: 6b:a3:da:d8:59:b4:40:9e:49:28:17:5b:67:36:18: 3e:87:fe:f9:be:a4:56:87:55:cc:18:fd:44:e7:1a: 25:08:d3:fe:00:2d:f8:81:da:90:82:2b:ad:ab:98: 7b:1d:7f:b5:23:ad:2b:c8:f4:a7:3e:6f:1e:f9:58: 2e:35:a6:d9:50:0d:14:8a:f9:2c:66:ea:ae:5f:48: 64:4d:86:2d:cf:a1:73:a1:15:e5:08:e8:f5:a1:cb: 29:4f:c1:4c:62:33:99:1d:7b:e8:f0:06:af:31:74: b0:62:cd:e8:26:f3:2e:7d:04:17:42:53:76:be:01: 8d:50:15:14:f1:05:8d:f4:21:ac:df:33:b9:f6:0c: 1f:a8:3f:b4:73:44:a4:d0:22:3a:b5:c3:f7:72:b9: fc:56:92:7d:84:6c:30:13:3a:a1:0f:82:da:51:0f: a9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:11:70:1B:22:8A:6B:59:D3:1C:AA:AA:B4:63:0E:B9:8D:0C:74:74 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.14.0/23 IPv6: 2404:bdc0::/32 Signature Algorithm: sha256WithRSAEncryption 3e:13:b9:75:ee:e1:02:d7:9a:b9:b3:10:56:b7:22:a7:71:48: 67:69:71:10:c7:36:13:b7:59:68:64:1d:3e:9a:63:29:61:3c: 8a:16:cf:b9:28:55:d3:3b:16:fc:27:d0:5d:d4:f6:79:8b:e5: c8:c9:4c:5d:b8:39:51:b6:15:65:2e:83:0e:17:a0:3e:42:aa: c6:30:42:2c:a6:94:ca:6d:68:97:c0:97:20:aa:b2:9a:63:b8: 21:b0:13:68:ce:96:30:e4:8d:7a:5a:32:71:62:5b:ef:5d:4d: 97:92:8f:2a:06:39:66:c4:34:79:25:b3:15:b6:b7:be:38:d5: ca:fc:9c:b9:b9:5e:01:67:c6:78:47:5a:62:b4:48:ce:44:92: 14:3a:04:60:11:1e:ca:04:7d:37:4c:29:96:ba:c8:09:aa:f7: 0f:be:3b:9d:87:e7:03:c0:bb:ef:b9:94:38:df:f8:1d:6a:ff: 64:d2:8a:ba:30:2a:77:c8:e9:c0:9e:f0:63:80:29:89:e7:22: 16:e7:c2:94:75:bf:8b:63:41:6a:1a:b2:ec:ec:42:2c:92:2f: a4:ca:a5:0c:32:80:53:2e:34:8d:fb:69:a4:07:13:61:77:44: 11:c8:27:5c:22:62:d5:70:e0:56:d4:e3:63:6e:3c:65:64:56: 59:75:4e:94 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUPj2h1cOpV21ems431+SSfER/ofowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwMVoX DTI1MDEwNzA0MDAwMVowMzExMC8GA1UEAxMoNkYxMTcwMUIyMjhBNkI1OUQzMUNB QUFBQjQ2MzBFQjk4RDBDNzQ3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGZVPooSy3sprXvO6qCJrEUJzAYS03apjCvh2DZwAgEpuQKLxCxBTGTq3Mv lU+FeBnQN8M5iAHbwH4lXnHjkmqCoG2aO2xFOMOyDurWdBhGQmGrUzmpHDKia6Pa 2Fm0QJ5JKBdbZzYYPof++b6kVodVzBj9ROcaJQjT/gAt+IHakIIrrauYex1/tSOt K8j0pz5vHvlYLjWm2VANFIr5LGbqrl9IZE2GLc+hc6EV5Qjo9aHLKU/BTGIzmR17 6PAGrzF0sGLN6CbzLn0EF0JTdr4BjVAVFPEFjfQhrN8zufYMH6g/tHNEpNAiOrXD 93K5/FaSfYRsMBM6oQ+C2lEPqQ0CAwEAAaOCAd8wggHbMB0GA1UdDgQWBBRvEXAb IoprWdMcqqq0Yw65jQx0dDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWeKDjANBAIAAjAHAwUAJAS9wDANBgkqhkiG9w0BAQsFAAOCAQEA PhO5de7hAteaubMQVrcip3FIZ2lxEMc2E7dZaGQdPppjKWE8ihbPuShV0zsW/CfQ XdT2eYvlyMlMXbg5UbYVZS6DDhegPkKqxjBCLKaUym1ol8CXIKqymmO4IbATaM6W MOSNeloycWJb711Nl5KPKgY5ZsQ0eSWzFba3vjjVyvycubleAWfGeEdaYrRIzkSS FDoEYBEeygR9N0wplrrICar3D747nYfnA8C777mUON/4HWr/ZNKKujAqd8jpwJ7w Y4ApieciFufClHW/i2NBahqy7OxCLJIvpMqlDDKAUy40jftppAcTYXdEEcgnXCJi 1XDgVtTjY248ZWRWWXVOlA== -----END CERTIFICATE-----Generated at Wed May 8 21:02:21 2024 by rpki-client on console-fra.rpki-client.org