$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138871.roa File: AS138871.roa (raw, json) Hash identifier: hNqdiqwoZNkV1f4e27PDRUw4wMlQ0sxVUEuhETQ/iFc= Subject key identifier: C6:5C:D0:6B:A6:32:15:5C:11:8D:AF:5B:58:2A:9D:6F:8F:E4:72:13 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2AD5EDA96AC8017FE6D481B845DC860E4BF008B1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138871.roa Signing time: Tue 10 Dec 2024 05:00:06 +0000 ROA not before: Tue 10 Dec 2024 04:55:06 +0000 ROA not after: Tue 09 Dec 2025 05:00:06 +0000 asID: 138871 IP address blocks: 103.135.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d5:ed:a9:6a:c8:01:7f:e6:d4:81:b8:45:dc:86:0e:4b:f0:08:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:06 2024 GMT Not After : Dec 9 05:00:06 2025 GMT Subject: CN=C65CD06BA632155C118DAF5B582A9D6F8FE47213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:70:f5:ef:f9:7f:36:fe:fd:85:2a:3a:90:c1: 2f:9d:28:eb:78:db:94:55:3f:96:60:39:05:f9:bb: d7:c9:e7:53:79:d8:c6:6a:d2:24:1a:df:b3:28:4c: e7:f9:22:66:c6:a5:28:1f:46:25:18:0c:83:00:96: ce:c3:a2:52:8b:97:0c:2f:79:1c:b7:c5:9f:c7:9d: 08:69:e8:d9:04:fa:e3:8e:78:ac:99:c0:01:4b:cb: c5:32:21:ea:54:02:0e:27:43:de:96:dd:a6:44:e9: 3c:a4:1e:50:a6:32:02:f2:5c:a0:31:03:f6:29:dc: 56:dc:a1:b9:0e:90:f4:fe:29:60:35:69:c7:0c:24: 7c:92:4d:50:85:17:0c:51:a6:22:30:b9:3b:a6:53: 55:e0:64:52:0d:ba:af:ba:c1:d4:c2:49:86:97:1f: 05:f9:e4:80:e9:93:ac:a3:9d:b6:37:68:f8:0e:7c: 48:96:20:de:e1:5c:9f:26:71:42:9c:4e:d4:a5:21: 3f:84:a7:1d:d2:a6:fe:a6:0e:27:a8:f5:70:c5:90: 8f:a5:ba:28:40:d0:0e:bb:4d:e0:37:e9:8a:a4:82: c1:b4:ab:e1:3d:1a:76:04:15:74:6a:21:07:f5:4e: 67:ef:c1:2e:ac:5c:d6:40:83:1f:c1:e5:03:88:19: ef:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:5C:D0:6B:A6:32:15:5C:11:8D:AF:5B:58:2A:9D:6F:8F:E4:72:13 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138871.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.135.224.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:ea:b7:81:39:47:6d:21:95:82:12:0a:21:05:f5:f8:fe:f7: 60:55:11:72:4f:d9:e7:05:86:79:f1:a8:85:45:a4:a6:f0:42: f4:f0:05:c9:20:3c:c5:26:0c:a9:3b:72:a5:9d:82:a4:7e:c3: 75:93:0d:68:3a:1b:eb:62:d2:1d:eb:b2:66:82:50:56:73:b5: 37:ac:c6:6d:ca:5e:0c:5b:f0:fc:6f:fa:ec:51:83:bc:d4:69: d2:71:b7:04:41:95:7b:6e:5a:b9:82:c4:06:f9:88:03:cc:24: 84:95:d6:d4:7a:a9:12:51:1f:f4:59:c0:17:3d:41:7c:3d:66: 35:2a:55:41:2c:32:f5:6e:df:8f:cc:b1:f8:78:e1:4b:0c:b2: 82:35:cf:9c:c8:ad:e0:3d:14:a3:5f:41:9a:4b:ad:d5:59:aa: 8c:d0:df:1a:9b:7f:07:0a:fb:0c:54:f4:78:f0:7f:3f:fd:74: d3:83:af:14:83:a8:21:cb:19:5e:18:fc:32:7c:c9:11:6d:7c: 71:91:b7:f0:26:e6:4d:9b:7d:53:23:25:e3:a4:5b:35:39:a1: 80:a6:ad:e2:11:88:11:f8:61:23:75:7e:59:e3:ab:18:fd:95: dc:27:9e:4a:ff:44:a7:ed:77:a3:fe:8f:e9:98:36:c2:e6:67: c0:55:84:7b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKtXtqWrIAX/m1IG4RdyGDkvwCLEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwNloX DTI1MTIwOTA1MDAwNlowMzExMC8GA1UEAxMoQzY1Q0QwNkJBNjMyMTU1QzExOERB RjVCNTgyQTlENkY4RkU0NzIxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKJw9e/5fzb+/YUqOpDBL50o63jblFU/lmA5Bfm718nnU3nYxmrSJBrfsyhM 5/kiZsalKB9GJRgMgwCWzsOiUouXDC95HLfFn8edCGno2QT64454rJnAAUvLxTIh 6lQCDidD3pbdpkTpPKQeUKYyAvJcoDED9incVtyhuQ6Q9P4pYDVpxwwkfJJNUIUX DFGmIjC5O6ZTVeBkUg26r7rB1MJJhpcfBfnkgOmTrKOdtjdo+A58SJYg3uFcnyZx QpxO1KUhP4SnHdKm/qYOJ6j1cMWQj6W6KEDQDrtN4DfpiqSCwbSr4T0adgQVdGoh B/VOZ+/BLqxc1kCDH8HlA4gZ7zsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTGXNBr pjIVXBGNr1tYKp1vj+RyEzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODg3MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmeH4DANBgkqhkiG9w0BAQsFAAOCAQEAXeq3gTlHbSGVghIKIQX1 +P73YFURck/Z5wWGefGohUWkpvBC9PAFySA8xSYMqTtypZ2CpH7DdZMNaDob62LS HeuyZoJQVnO1N6zGbcpeDFvw/G/67FGDvNRp0nG3BEGVe25auYLEBvmIA8wkhJXW 1HqpElEf9FnAFz1BfD1mNSpVQSwy9W7fj8yx+HjhSwyygjXPnMit4D0Uo19Bmkut 1VmqjNDfGpt/Bwr7DFT0ePB/P/1004OvFIOoIcsZXhj8MnzJEW18cZG38CbmTZt9 UyMl46RbNTmhgKat4hGIEfhhI3V+WeOrGP2V3CeeSv9Ep+13o/6P6Zg2wuZnwFWE ew== -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:17 2025 by rpki-client