$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138864.roa File: AS138864.roa (raw, json) Hash identifier: kmFUAvaFIqFOZBCbe/k/Tzcp6u9b2QjXijkqooJXzC4= Subject key identifier: 69:4E:75:2D:31:B1:55:1F:97:C5:82:8B:88:83:3E:A4:70:4F:BE:EA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 27001FD187C3D32B5BC7F2475E90FBC222A45278 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138864.roa Signing time: Tue 09 Jan 2024 04:00:07 +0000 ROA not before: Tue 09 Jan 2024 03:55:07 +0000 ROA not after: Tue 07 Jan 2025 04:00:07 +0000 asID: 138864 IP address blocks: 103.139.174.0/24 maxlen: 24 2407:74c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:00:1f:d1:87:c3:d3:2b:5b:c7:f2:47:5e:90:fb:c2:22:a4:52:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:07 2024 GMT Not After : Jan 7 04:00:07 2025 GMT Subject: CN=694E752D31B1551F97C5828B88833EA4704FBEEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:61:2c:0e:86:5f:a7:1f:ed:d0:dc:6f:c5:14: c2:e9:bb:96:c9:f8:25:ed:b3:03:38:d4:6a:43:14: 4a:18:59:69:aa:78:a1:fd:35:50:9f:90:e0:17:df: 19:42:d3:5f:ce:1e:1d:28:b7:87:ef:be:53:3c:07: 4a:34:9a:ca:01:0e:20:95:df:cd:ad:ce:15:bc:f1: 31:74:91:80:1e:92:76:d2:b8:2c:e9:ae:4f:74:5e: 84:d6:5d:9d:3e:58:c2:df:47:70:cf:1c:27:cd:88: 99:44:4b:0f:c7:72:15:92:0d:6c:5a:87:be:ef:8a: e0:64:98:05:c0:0e:89:74:52:7d:72:ca:e7:91:6d: cc:8e:9f:7e:87:04:cf:83:5d:62:74:01:a8:71:fc: 50:98:db:11:85:8f:61:e6:13:6d:6a:b1:6d:08:58: 2d:1b:48:c1:d1:ad:2b:40:9c:84:4e:74:10:b7:04: 05:83:10:77:ed:dc:95:17:4f:51:5a:ef:69:df:a9: 35:a1:91:25:c3:93:8b:35:0a:83:42:22:30:c8:1c: d1:56:a0:8b:34:76:e9:7e:e3:4a:62:42:a9:d7:6e: aa:63:44:78:0f:fc:8f:8e:ea:c7:d9:55:cb:18:ab: 9a:6c:ec:f8:ee:6c:bc:4e:b1:33:bc:da:a3:c5:99: 47:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:4E:75:2D:31:B1:55:1F:97:C5:82:8B:88:83:3E:A4:70:4F:BE:EA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138864.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.174.0/24 IPv6: 2407:74c0::/32 Signature Algorithm: sha256WithRSAEncryption 41:bb:0f:89:07:59:b0:49:7d:89:e5:42:89:0b:3a:06:b0:0a: 3c:94:ea:a2:f0:fd:71:b4:e7:02:08:b7:0d:69:d3:04:b9:e1: b4:75:9a:78:8e:f4:b0:65:48:98:09:35:4e:48:5f:ea:14:b0: 3b:8a:40:77:c5:01:75:f1:c1:01:f6:28:7f:1d:37:d3:0d:9d: fc:a0:09:9e:fd:1d:d3:ed:de:30:7a:71:af:81:ab:21:88:79: e4:72:1b:85:56:26:9f:73:bb:70:4c:ce:98:32:19:da:81:f9: 64:e7:94:2f:55:0d:28:5b:7f:7b:94:27:d4:ac:3a:97:64:e4: db:ae:ba:a2:0c:7c:f2:e1:52:9d:72:31:67:8f:63:c8:b0:b0: c7:d2:37:c2:ee:80:db:14:7b:c6:2d:e0:a6:21:a9:78:a2:45: 74:b0:68:97:68:8d:ff:38:b1:e7:e8:e9:0b:23:fa:b4:35:8c: 0e:bb:22:be:b3:70:cc:0d:6a:f4:a4:c2:e1:c7:11:aa:bf:ed: 85:e6:f3:75:d8:6e:ed:fa:31:63:47:1c:ec:35:99:16:b9:33: 95:e3:d5:50:5f:05:18:a0:65:9b:0f:60:4b:a9:b5:38:2b:16: 11:b7:b7:fd:29:1b:37:16:18:73:6e:8d:dd:f3:23:15:95:9c: d5:c6:02:39 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUJwAf0YfD0ytbx/JHXpD7wiKkUngwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwN1oX DTI1MDEwNzA0MDAwN1owMzExMC8GA1UEAxMoNjk0RTc1MkQzMUIxNTUxRjk3QzU4 MjhCODg4MzNFQTQ3MDRGQkVFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOFhLA6GX6cf7dDcb8UUwum7lsn4Je2zAzjUakMUShhZaap4of01UJ+Q4Bff GULTX84eHSi3h+++UzwHSjSaygEOIJXfza3OFbzxMXSRgB6SdtK4LOmuT3RehNZd nT5Ywt9HcM8cJ82ImURLD8dyFZINbFqHvu+K4GSYBcAOiXRSfXLK55FtzI6ffocE z4NdYnQBqHH8UJjbEYWPYeYTbWqxbQhYLRtIwdGtK0CchE50ELcEBYMQd+3clRdP UVrvad+pNaGRJcOTizUKg0IiMMgc0VagizR26X7jSmJCqdduqmNEeA/8j47qx9lV yxirmmzs+O5svE6xM7zao8WZR5kCAwEAAaOCAd8wggHbMB0GA1UdDgQWBBRpTnUt MbFVH5fFgouIgz6kcE++6jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODg2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAGeLrjANBAIAAjAHAwUAJAd0wDANBgkqhkiG9w0BAQsFAAOCAQEA QbsPiQdZsEl9ieVCiQs6BrAKPJTqovD9cbTnAgi3DWnTBLnhtHWaeI70sGVImAk1 Tkhf6hSwO4pAd8UBdfHBAfYofx030w2d/KAJnv0d0+3eMHpxr4GrIYh55HIbhVYm n3O7cEzOmDIZ2oH5ZOeUL1UNKFt/e5Qn1Kw6l2Tk2666ogx88uFSnXIxZ49jyLCw x9I3wu6A2xR7xi3gpiGpeKJFdLBol2iN/zix5+jpCyP6tDWMDrsivrNwzA1q9KTC 4ccRqr/thebzddhu7foxY0cc7DWZFrkzlePVUF8FGKBlmw9gS6m1OCsWEbe3/Skb NxYYc26N3fMjFZWc1cYCOQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:24 2024 by rpki-client on console-fra.rpki-client.org