$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138880.roa File: AS138880.roa (raw, json) Hash identifier: avn6sIp7R4LGdqkvl+w/ClygsWDgv3sYcSEc3MNb/lE= Subject key identifier: 8C:44:3A:EF:6F:BE:EF:C8:E3:90:8F:14:7A:2F:4F:4D:19:29:D0:EA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 40802E60496BB4CCCB2996351635A781894ECAC2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138880.roa Signing time: Tue 10 Dec 2024 05:00:16 +0000 ROA not before: Tue 10 Dec 2024 04:55:16 +0000 ROA not after: Tue 09 Dec 2025 05:00:16 +0000 asID: 138880 IP address blocks: 103.140.184.0/24 maxlen: 24 2001:df0:e180::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:80:2e:60:49:6b:b4:cc:cb:29:96:35:16:35:a7:81:89:4e:ca:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:16 2024 GMT Not After : Dec 9 05:00:16 2025 GMT Subject: CN=8C443AEF6FBEEFC8E3908F147A2F4F4D1929D0EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fa:fe:25:6e:bc:65:da:b8:81:ea:43:bf:78: 1f:6d:ef:c6:17:c9:e5:4f:69:af:0f:83:f1:1e:22: 83:80:a6:ad:4e:0b:1f:3c:f3:cb:d6:39:5a:73:e9: 70:11:be:af:c5:ad:38:77:88:44:cf:03:78:81:ff: b7:e5:e7:c9:e8:c2:06:25:36:1b:79:96:30:a1:f2: 20:0a:55:76:e6:b4:25:cb:8c:58:09:91:0d:97:0c: 03:12:29:5d:29:03:78:e1:ff:72:bd:b0:a4:65:5b: 73:94:91:4c:09:44:e0:01:6c:dc:ad:4a:f8:54:e4: 7e:0f:bb:01:87:5a:d3:1c:b1:a9:7a:a1:0f:ee:7c: 87:07:ba:4d:1f:db:e2:3f:fc:d5:6d:69:f9:89:ba: 0b:37:0f:e6:8b:42:c5:a7:64:aa:36:40:b7:46:4f: 6d:5d:14:a4:c5:c7:78:df:b5:2b:bc:ea:4b:f0:65: 15:c3:45:a3:98:f3:f1:ff:77:d9:3c:43:bd:46:76: 6e:1f:f7:cd:ed:57:f2:4d:e9:6b:72:8d:a9:24:5e: 12:7b:c4:22:90:ca:7d:42:5c:75:1d:eb:bd:71:df: 86:e6:32:3a:3a:51:34:a7:57:15:b1:64:2f:b1:8e: 41:30:08:9f:01:00:9b:18:fa:9c:92:4b:6b:0d:5c: 5c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:44:3A:EF:6F:BE:EF:C8:E3:90:8F:14:7A:2F:4F:4D:19:29:D0:EA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138880.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.184.0/24 IPv6: 2001:df0:e180::/48 Signature Algorithm: sha256WithRSAEncryption 78:7e:15:83:c9:9f:be:3e:49:e2:a4:2a:a9:99:da:c4:77:0f: a1:c2:d3:6a:0b:e0:f3:0b:80:dc:b4:c7:cc:df:a4:77:6e:72: 96:4a:37:d1:09:46:b1:d0:f4:85:9c:64:86:95:c9:9b:be:91: 40:4a:28:43:1f:41:79:71:43:0f:d4:23:55:a0:3a:d2:1b:f5: aa:95:5f:3c:00:95:44:db:f3:1f:f2:a0:f4:d0:9b:85:6c:79: e2:29:8d:6a:4f:a2:61:57:10:a4:a0:49:26:96:41:5c:e0:2a: 43:ca:0d:60:b4:7d:38:6b:b5:9b:10:13:3e:55:b8:16:7e:ce: 7e:b7:45:e8:5b:47:7d:0c:2c:b0:5d:d0:38:ea:06:34:42:b5: d1:cb:77:44:be:8c:1b:23:dc:ce:23:e7:77:c1:78:21:db:5e: c9:42:ff:1f:ad:fb:1a:24:61:d6:9e:23:c9:4e:92:e5:05:6e: f5:09:7a:b2:92:4b:04:2a:50:53:d4:c5:3c:23:cb:ba:e5:b6: 09:8d:6f:52:43:6c:18:e3:82:0f:c3:2d:dc:18:b1:14:b3:06: 3a:0a:b7:24:8b:b8:3a:cb:a1:35:4e:2d:18:7f:00:a4:0d:fe: 12:46:4f:3b:80:ca:f2:95:c0:63:29:aa:28:60:0f:37:f8:80: 46:89:67:11 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUQIAuYElrtMzLKZY1FjWngYlOysIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxNloX DTI1MTIwOTA1MDAxNlowMzExMC8GA1UEAxMoOEM0NDNBRUY2RkJFRUZDOEUzOTA4 RjE0N0EyRjRGNEQxOTI5RDBFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALT6/iVuvGXauIHqQ794H23vxhfJ5U9prw+D8R4ig4CmrU4LHzzzy9Y5WnPp cBG+r8WtOHeIRM8DeIH/t+XnyejCBiU2G3mWMKHyIApVdua0JcuMWAmRDZcMAxIp XSkDeOH/cr2wpGVbc5SRTAlE4AFs3K1K+FTkfg+7AYda0xyxqXqhD+58hwe6TR/b 4j/81W1p+Ym6CzcP5otCxadkqjZAt0ZPbV0UpMXHeN+1K7zqS/BlFcNFo5jz8f93 2TxDvUZ2bh/3ze1X8k3pa3KNqSReEnvEIpDKfUJcdR3rvXHfhuYyOjpRNKdXFbFk L7GOQTAInwEAmxj6nJJLaw1cXNMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSMRDrv b77vyOOQjxR6L09NGSnQ6jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODg4MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGeMuDAPBAIAAjAJAwcAIAEN8OGAMA0GCSqGSIb3DQEBCwUAA4IB AQB4fhWDyZ++PknipCqpmdrEdw+hwtNqC+DzC4DctMfM36R3bnKWSjfRCUax0PSF nGSGlcmbvpFASihDH0F5cUMP1CNVoDrSG/WqlV88AJVE2/Mf8qD00JuFbHniKY1q T6JhVxCkoEkmlkFc4CpDyg1gtH04a7WbEBM+VbgWfs5+t0XoW0d9DCywXdA46gY0 QrXRy3dEvowbI9zOI+d3wXgh217JQv8frfsaJGHWniPJTpLlBW71CXqykksEKlBT 1MU8I8u65bYJjW9SQ2wY44IPwy3cGLEUswY6Crcki7g6y6E1Ti0YfwCkDf4SRk87 gMrylcBjKaooYA83+IBGiWcR -----END CERTIFICATE-----Generated at Sun Feb 16 20:52:31 2025 by rpki-client