$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138890.roa File: AS138890.roa (raw, json) Hash identifier: FECwmUK55kR12egtkBKMIOqk4rt9b2gAlQVj3lmkaLk= Subject key identifier: B5:C6:B9:5F:96:84:BD:51:9A:D0:BA:73:56:75:11:31:F7:CE:41:23 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0D25410925872BE72CD5FC944A3319054E330B66 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138890.roa Signing time: Tue 09 Jan 2024 04:00:13 +0000 ROA not before: Tue 09 Jan 2024 03:55:13 +0000 ROA not after: Tue 07 Jan 2025 04:00:13 +0000 asID: 138890 IP address blocks: 103.141.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:25:41:09:25:87:2b:e7:2c:d5:fc:94:4a:33:19:05:4e:33:0b:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:13 2024 GMT Not After : Jan 7 04:00:13 2025 GMT Subject: CN=B5C6B95F9684BD519AD0BA7356751131F7CE4123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:80:84:d5:ad:7e:57:51:d0:93:ae:6b:2b:cb: 5c:01:24:83:86:65:e4:06:35:eb:69:77:29:e6:9c: df:b4:59:07:3c:ef:38:9b:19:1a:c5:aa:a4:78:b7: 2a:7f:ed:45:a6:83:6f:bc:44:fc:e6:47:a2:ec:c2: 97:5d:ba:4a:57:57:ba:6a:4c:63:65:04:fc:1c:d8: e7:9a:cb:b5:cf:e7:a8:ea:cd:ec:3b:65:ff:93:81: 05:cb:97:22:c2:01:90:11:dc:71:84:ae:70:5c:22: d7:1f:5f:85:ce:b0:10:14:65:83:93:15:ae:e8:1c: 31:f4:3d:9c:5e:f0:2a:1b:8d:27:62:d5:a3:69:2d: 6a:b0:39:34:9b:5d:f8:36:9e:4d:2a:c1:99:d5:d7: c3:42:bb:34:0e:4d:56:d4:31:66:58:ff:ec:ac:51: 1d:e5:49:09:37:ec:bd:1c:c7:d2:fe:9a:27:60:5f: 60:c3:3b:57:25:da:12:ee:d8:8a:05:6a:14:e1:ef: 08:93:1c:31:ef:a5:ba:63:84:4c:a7:53:a5:1b:fe: 2b:b2:7b:ad:4c:77:b1:90:19:54:c6:f4:09:c0:42: ca:75:c3:de:41:83:4e:9f:fb:88:23:02:f3:f7:04: 02:9a:17:fe:f8:c7:73:fd:03:9f:67:e3:80:02:da: 90:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:C6:B9:5F:96:84:BD:51:9A:D0:BA:73:56:75:11:31:F7:CE:41:23 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138890.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.148.0/23 Signature Algorithm: sha256WithRSAEncryption 62:7b:d2:1d:57:35:7e:ff:d1:6f:00:b8:e9:51:06:d1:c3:5a: 3e:1e:af:45:b1:f9:85:c1:ba:95:bb:c3:f0:9d:5b:df:ab:77: dd:b6:90:19:82:0a:f2:81:01:b9:1c:be:79:3a:31:ca:9a:60: 94:c5:92:5f:4e:59:d5:ed:3e:e5:90:17:c3:51:2c:cb:46:fc: 96:e2:b3:e8:1b:34:d8:17:14:d0:9d:98:45:84:cf:83:e0:c7: 8d:3f:4f:09:cc:ca:2b:83:f3:a6:89:6c:00:40:67:55:ee:81: 65:97:e9:c2:a4:c4:1d:b1:cc:e8:df:fa:d4:83:aa:ed:8d:51: 54:af:81:d7:b3:e3:85:a7:64:21:29:cc:13:02:70:30:67:32: 8b:6b:51:c5:88:80:6f:71:60:d9:2a:c3:cc:75:99:85:2f:66: c2:1d:e5:c2:4a:ec:91:d4:98:b8:b9:fa:ea:a6:58:23:ca:df: 6e:5c:be:9c:0d:41:80:85:a7:f3:bf:0a:7f:e2:2b:4d:f8:ed: e8:70:73:e6:25:76:06:05:27:19:7f:2e:12:4b:a2:bb:f3:b0: e9:c0:6f:8d:28:10:16:8e:84:af:94:81:d0:f0:1c:13:08:4f: 95:d0:b1:fd:f4:bd:6d:de:5b:4d:5d:d1:c9:38:fa:b2:89:cc: be:87:82:0a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDSVBCSWHK+cs1fyUSjMZBU4zC2YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxM1oX DTI1MDEwNzA0MDAxM1owMzExMC8GA1UEAxMoQjVDNkI5NUY5Njg0QkQ1MTlBRDBC QTczNTY3NTExMzFGN0NFNDEyMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALaAhNWtfldR0JOuayvLXAEkg4Zl5AY162l3Keac37RZBzzvOJsZGsWqpHi3 Kn/tRaaDb7xE/OZHouzCl126SldXumpMY2UE/BzY55rLtc/nqOrN7Dtl/5OBBcuX IsIBkBHccYSucFwi1x9fhc6wEBRlg5MVrugcMfQ9nF7wKhuNJ2LVo2ktarA5NJtd +DaeTSrBmdXXw0K7NA5NVtQxZlj/7KxRHeVJCTfsvRzH0v6aJ2BfYMM7VyXaEu7Y igVqFOHvCJMcMe+lumOETKdTpRv+K7J7rUx3sZAZVMb0CcBCynXD3kGDTp/7iCMC 8/cEApoX/vjHc/0Dn2fjgALakCUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS1xrlf loS9UZrQunNWdREx985BIzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODg5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeNlDANBgkqhkiG9w0BAQsFAAOCAQEAYnvSHVc1fv/RbwC46VEG 0cNaPh6vRbH5hcG6lbvD8J1b36t33baQGYIK8oEBuRy+eToxyppglMWSX05Z1e0+ 5ZAXw1Esy0b8luKz6Bs02BcU0J2YRYTPg+DHjT9PCczKK4PzpolsAEBnVe6BZZfp wqTEHbHM6N/61IOq7Y1RVK+B17PjhadkISnMEwJwMGcyi2tRxYiAb3Fg2SrDzHWZ hS9mwh3lwkrskdSYuLn66qZYI8rfbly+nA1BgIWn878Kf+IrTfjt6HBz5iV2BgUn GX8uEkuiu/Ow6cBvjSgQFo6Er5SB0PAcEwhPldCx/fS9bd5bTV3RyTj6sonMvoeC Cg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:47 2024 by rpki-client on console-ams.rpki-client.org