$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38157.roa File: AS38157.roa (raw, json) Hash identifier: 2HFINnakVCzSozMkr6l36ouSlW56ZCVj1Lj1XizJlH8= Subject key identifier: B9:1F:E0:E1:C8:4F:23:88:EC:40:65:5C:4D:35:3C:0E:18:86:AD:43 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1869E1C789A722B970C2F21689D4B4478EEF37BF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38157.roa Signing time: Wed 05 Jul 2023 07:00:00 +0000 ROA not before: Wed 05 Jul 2023 06:55:00 +0000 ROA not after: Wed 03 Jul 2024 07:00:00 +0000 asID: 38157 IP address blocks: 103.147.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:69:e1:c7:89:a7:22:b9:70:c2:f2:16:89:d4:b4:47:8e:ef:37:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 5 06:55:00 2023 GMT Not After : Jul 3 07:00:00 2024 GMT Subject: CN=B91FE0E1C84F2388EC40655C4D353C0E1886AD43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ed:04:a7:a7:a6:5b:e9:72:69:26:89:4d:be: 31:4e:32:86:2d:bd:d8:b9:b0:01:71:cf:aa:d1:09: c8:44:89:bb:46:ab:5b:9c:a8:2b:b1:10:ee:be:47: 65:61:17:6c:e1:97:5c:02:f6:f6:53:20:cd:47:b7: 11:30:9a:90:6f:af:e1:57:2d:e6:f1:b6:96:2b:00: 27:71:10:d8:3f:03:f9:fa:5f:7b:70:ef:9f:5c:1e: 87:0f:01:81:71:13:55:6e:4e:b6:39:87:b9:34:36: ef:c7:c7:1a:40:cf:14:76:1d:ae:99:20:62:94:d7: 9a:9f:be:1d:13:44:43:14:80:df:91:ba:c0:37:22: 98:ce:2c:fd:e6:4f:79:e8:65:74:89:41:4f:af:6c: 73:e6:86:4f:38:b1:b8:57:f0:bd:f2:26:76:7f:93: a1:99:4c:9b:e2:6f:41:7c:a1:be:60:ac:ef:4b:6c: 7f:a4:e9:34:de:88:f5:3e:bd:ca:3e:ce:ed:14:08: 47:3b:8b:7b:67:12:36:fb:c7:93:76:36:23:5e:3d: 79:99:01:68:57:ca:a5:0f:c7:66:e1:16:87:70:88: 49:d9:36:af:52:fb:0c:8b:d9:ca:04:41:3d:50:a2: 16:9b:48:d1:22:9e:e7:be:b2:d3:45:e1:fb:7b:f4: da:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:1F:E0:E1:C8:4F:23:88:EC:40:65:5C:4D:35:3C:0E:18:86:AD:43 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38157.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.231.0/24 Signature Algorithm: sha256WithRSAEncryption 72:07:11:e3:b7:01:d9:3d:26:18:f4:fa:f6:a8:1d:b9:70:d2: 32:c1:22:06:ca:de:ec:0b:53:a8:17:ee:f1:19:7f:4b:51:9c: 8e:f8:5f:f1:b6:32:35:cd:a6:fc:89:43:42:be:73:5a:20:12: 00:57:0c:97:da:ef:6c:35:19:8d:16:bf:58:55:a3:bf:93:54: ae:e0:5c:26:80:13:7b:ab:52:73:e4:be:fa:2e:d5:17:37:5b: 98:99:8c:d8:e0:df:8c:e1:4d:15:e2:ec:16:0a:22:ec:21:0a: bd:22:7c:b4:9d:ac:c2:30:33:47:67:66:8a:5f:19:25:15:27: 50:c8:1e:4a:74:11:7e:5f:05:38:60:0f:eb:c5:55:00:60:55: 56:4a:0d:0b:d0:83:25:78:55:2f:48:c8:2b:cd:69:3d:c6:dd: 3c:b4:fa:3a:de:77:b7:ae:fa:de:b4:40:ae:9f:a8:9a:b6:51: 58:59:0e:cc:30:cf:67:92:5f:94:3c:10:62:6c:b6:8d:0c:7f: ac:cd:a4:0d:61:68:bf:62:89:dc:be:75:41:ca:c6:94:a5:fd: d0:29:e9:b9:8d:77:32:bb:2d:f1:a4:29:83:9d:d3:28:d8:af: 51:6c:95:6c:d5:41:ef:f6:3b:45:c6:22:83:a3:76:6e:17:64: 18:a8:9f:03 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUGGnhx4mnIrlwwvIWidS0R47vN78wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcwNTA2NTUwMFoX DTI0MDcwMzA3MDAwMFowMzExMC8GA1UEAxMoQjkxRkUwRTFDODRGMjM4OEVDNDA2 NTVDNEQzNTNDMEUxODg2QUQ0MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOHtBKenplvpcmkmiU2+MU4yhi292LmwAXHPqtEJyESJu0arW5yoK7EQ7r5H ZWEXbOGXXAL29lMgzUe3ETCakG+v4Vct5vG2lisAJ3EQ2D8D+fpfe3Dvn1wehw8B gXETVW5OtjmHuTQ278fHGkDPFHYdrpkgYpTXmp++HRNEQxSA35G6wDcimM4s/eZP eehldIlBT69sc+aGTzixuFfwvfImdn+ToZlMm+JvQXyhvmCs70tsf6TpNN6I9T69 yj7O7RQIRzuLe2cSNvvHk3Y2I149eZkBaFfKpQ/HZuEWh3CISdk2r1L7DIvZygRB PVCiFptI0SKe576y00Xh+3v02s0CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBS5H+Dh yE8jiOxAZVxNNTwOGIatQzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4MTU3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5PnMA0GCSqGSIb3DQEBCwUAA4IBAQByBxHjtwHZPSYY9Pr2qB25 cNIywSIGyt7sC1OoF+7xGX9LUZyO+F/xtjI1zab8iUNCvnNaIBIAVwyX2u9sNRmN Fr9YVaO/k1Su4FwmgBN7q1Jz5L76LtUXN1uYmYzY4N+M4U0V4uwWCiLsIQq9Iny0 nazCMDNHZ2aKXxklFSdQyB5KdBF+XwU4YA/rxVUAYFVWSg0L0IMleFUvSMgrzWk9 xt08tPo63ne3rvretECun6iatlFYWQ7MMM9nkl+UPBBibLaNDH+szaQNYWi/Yonc vnVBysaUpf3QKem5jXcyuy3xpCmDndMo2K9RbJVs1UHv9jtFxiKDo3ZuF2QYqJ8D -----END CERTIFICATE-----Generated at Wed May 8 18:12:18 2024 by rpki-client on console-fra.rpki-client.org