$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138894.roa File: AS138894.roa (raw, json) Hash identifier: 3gq7pAu9XXBL4rn7qJCGoPGkLbtLI1MpDbjLl5G3xio= Subject key identifier: 9D:89:E1:2E:E1:B4:EE:AA:33:C6:90:5A:5F:F3:28:34:14:33:0E:40 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4613971D733D676899A5F15B2DC0593CA8C6199C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138894.roa Signing time: Tue 09 Jan 2024 04:00:02 +0000 ROA not before: Tue 09 Jan 2024 03:55:02 +0000 ROA not after: Tue 07 Jan 2025 04:00:02 +0000 asID: 138894 IP address blocks: 103.141.40.0/23 maxlen: 24 2001:df0:ec80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:13:97:1d:73:3d:67:68:99:a5:f1:5b:2d:c0:59:3c:a8:c6:19:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:02 2024 GMT Not After : Jan 7 04:00:02 2025 GMT Subject: CN=9D89E12EE1B4EEAA33C6905A5FF3283414330E40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b0:45:4e:f0:2f:01:97:bd:00:01:f0:41:93: 21:93:3a:de:96:20:a2:f4:4f:b3:01:2f:b8:0f:49: 59:b2:2f:61:03:69:15:58:d9:30:ec:04:fd:ea:65: c8:f5:3c:03:22:dc:4f:f3:a9:c2:41:9e:fb:1a:f3: 91:24:5c:35:4d:f2:69:9b:48:47:d0:b8:e4:2b:5e: 64:4f:a4:b0:28:f6:f5:d3:c6:e6:67:35:56:88:60: d1:b7:81:cf:92:46:91:77:d8:ea:f3:84:f4:f6:08: 6b:c9:c7:7d:8b:76:4e:eb:01:24:39:f6:fa:cd:eb: 51:e8:59:cd:e4:50:b6:80:f5:fe:a7:af:ff:04:2d: 55:ab:4b:21:8c:fc:c7:0e:d1:bc:11:c1:16:6e:69: bd:a7:62:55:b1:cc:a2:68:a4:97:5d:40:fb:cc:33: ac:88:4f:42:b8:1b:81:89:d7:e1:4a:4e:dc:0c:9f: 8c:2f:ed:b1:70:85:a4:91:12:74:8e:82:3e:e0:b4: 64:78:20:c5:3f:59:c0:20:f2:af:11:e3:29:83:68: d9:14:25:1c:37:24:6a:47:8d:34:53:c8:5b:5d:9b: 69:a9:20:ca:f0:d7:54:f8:9b:27:2e:80:1f:50:3a: e0:41:61:69:e4:58:bf:ef:cf:1b:9c:6b:9b:96:e8: a8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:89:E1:2E:E1:B4:EE:AA:33:C6:90:5A:5F:F3:28:34:14:33:0E:40 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138894.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.40.0/23 IPv6: 2001:df0:ec80::/48 Signature Algorithm: sha256WithRSAEncryption 81:f6:17:ce:e9:02:57:b7:ca:6f:97:8d:b6:2a:80:4d:17:61: 68:bc:df:82:8f:70:49:1c:7a:d5:76:21:3c:13:e6:72:6e:f0: 0b:58:74:84:8b:50:25:3f:62:76:84:14:c1:4d:78:80:f6:59: 18:62:45:cb:86:2a:35:53:30:3d:90:1c:03:66:8f:cb:a8:7b: f3:b7:49:b9:85:7a:fa:51:b3:c2:1f:97:82:ea:4d:74:95:cc: 75:f7:be:3d:b1:b6:11:b8:3f:d3:74:8a:cb:41:76:c7:21:7e: 94:f4:e2:80:1b:76:cd:0a:7a:86:4f:af:72:8c:78:23:66:3f: 61:6a:f5:3d:3c:e6:a5:2e:ae:db:de:6e:25:a0:ef:a1:0e:88: d0:bb:36:2c:de:c1:92:82:89:31:07:16:0b:30:df:36:7d:2f: 05:27:b7:78:da:59:ee:57:1b:79:f0:65:e7:52:97:5a:c9:d4: e2:8f:d4:ae:19:67:79:c9:6f:f6:81:f3:22:1e:36:0f:ff:29: 51:4c:bc:49:89:fd:3b:1d:41:7a:1f:86:3b:96:30:14:9a:56: 70:9a:92:8e:6f:ff:97:81:5e:a8:43:48:18:60:60:e5:76:56: f4:95:30:48:cb:f5:c9:15:f3:ee:1d:1a:83:4f:97:a9:d8:10: 39:ac:56:59 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIURhOXHXM9Z2iZpfFbLcBZPKjGGZwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwMloX DTI1MDEwNzA0MDAwMlowMzExMC8GA1UEAxMoOUQ4OUUxMkVFMUI0RUVBQTMzQzY5 MDVBNUZGMzI4MzQxNDMzMEU0MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOewRU7wLwGXvQAB8EGTIZM63pYgovRPswEvuA9JWbIvYQNpFVjZMOwE/epl yPU8AyLcT/OpwkGe+xrzkSRcNU3yaZtIR9C45CteZE+ksCj29dPG5mc1Vohg0beB z5JGkXfY6vOE9PYIa8nHfYt2TusBJDn2+s3rUehZzeRQtoD1/qev/wQtVatLIYz8 xw7RvBHBFm5pvadiVbHMomikl11A+8wzrIhPQrgbgYnX4UpO3AyfjC/tsXCFpJES dI6CPuC0ZHggxT9ZwCDyrxHjKYNo2RQlHDckakeNNFPIW12baakgyvDXVPibJy6A H1A64EFhaeRYv+/PG5xrm5boqDUCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSdieEu 4bTuqjPGkFpf8yg0FDMOQDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODg5NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWeNKDAPBAIAAjAJAwcAIAEN8OyAMA0GCSqGSIb3DQEBCwUAA4IB AQCB9hfO6QJXt8pvl422KoBNF2FovN+Cj3BJHHrVdiE8E+ZybvALWHSEi1AlP2J2 hBTBTXiA9lkYYkXLhio1UzA9kBwDZo/LqHvzt0m5hXr6UbPCH5eC6k10lcx19749 sbYRuD/TdIrLQXbHIX6U9OKAG3bNCnqGT69yjHgjZj9havU9POalLq7b3m4loO+h DojQuzYs3sGSgokxBxYLMN82fS8FJ7d42lnuVxt58GXnUpdaydTij9SuGWd5yW/2 gfMiHjYP/ylRTLxJif07HUF6H4Y7ljAUmlZwmpKOb/+XgV6oQ0gYYGDldlb0lTBI y/XJFfPuHRqDT5ep2BA5rFZZ -----END CERTIFICATE-----Generated at Mon May 6 17:32:45 2024 by rpki-client on console-fra.rpki-client.org