$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38157.roa File: AS38157.roa (raw, json) Hash identifier: d0yxdOavEF4fWAtmGH34VH1qNvZZriM/A0KXajR4oZA= Subject key identifier: DF:DC:4B:39:14:64:B6:37:E2:62:33:D8:45:21:12:70:56:93:DA:B6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0FEF95DBB16225926D34119D07D9A436601ABEBA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38157.roa Signing time: Wed 05 Jun 2024 07:00:00 +0000 ROA not before: Wed 05 Jun 2024 06:55:00 +0000 ROA not after: Wed 04 Jun 2025 07:00:00 +0000 asID: 38157 IP address blocks: 103.147.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ef:95:db:b1:62:25:92:6d:34:11:9d:07:d9:a4:36:60:1a:be:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 5 06:55:00 2024 GMT Not After : Jun 4 07:00:00 2025 GMT Subject: CN=DFDC4B391464B637E26233D8452112705693DAB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:48:22:91:9f:0a:48:fe:65:ae:44:5a:5d:5b: c8:b4:3a:77:71:2e:c1:5d:cd:52:93:6d:a9:22:4c: 59:75:e4:d3:d4:4f:18:a4:d6:df:d6:1d:c9:0b:45: 11:df:46:f0:b3:36:e4:a6:fb:7e:ee:f6:7c:db:38: b0:41:d9:0d:13:0d:a3:8f:ac:d4:82:56:17:a5:33: a6:22:ca:e3:cf:9a:18:d0:74:70:44:5b:40:0b:35: cd:4a:3d:5e:02:51:55:61:af:3e:a6:c8:44:b0:a0: ac:9b:86:27:3f:09:b9:03:2b:f2:84:04:e1:6d:31: 7f:62:5c:25:10:21:99:95:3f:55:19:94:1e:59:f8: 9a:67:38:bf:0f:b0:49:af:f4:8f:49:7f:ac:2a:df: fa:f8:e4:44:28:b4:3d:1f:17:07:37:ae:c7:f3:d8: fa:7c:18:34:56:b8:99:72:5a:36:b4:00:44:80:ed: 74:c4:1e:d3:5c:de:3e:c6:cd:e8:10:39:98:5e:22: 67:08:a5:62:d0:13:b0:b7:50:8d:23:13:7a:7f:97: 47:25:3d:a0:db:07:63:6a:72:e6:80:3e:65:d1:38: 4e:5f:59:ec:c0:59:96:8b:e9:03:82:8e:9e:35:58: 08:4e:42:58:7f:d5:3a:69:88:94:ea:70:87:3c:ef: f9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:DC:4B:39:14:64:B6:37:E2:62:33:D8:45:21:12:70:56:93:DA:B6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38157.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.231.0/24 Signature Algorithm: sha256WithRSAEncryption 43:32:de:fa:1f:8f:33:e9:a9:46:f7:ce:29:70:76:63:7d:55: 80:94:58:c1:c3:58:f6:7a:72:9d:c2:5e:55:a9:20:73:69:18: 48:cd:69:0f:61:30:a1:d7:9b:ce:26:5c:68:d5:72:ab:09:99: d7:a6:00:92:7c:f8:88:3a:42:a0:cd:41:71:29:74:7e:74:99: 9b:44:d7:a8:83:a7:be:6a:81:65:7f:80:ef:d2:fb:6c:39:23: b5:81:a5:ba:6e:94:4f:cd:f2:f7:b0:6a:0e:0a:97:59:e0:4c: 94:b1:bc:3f:02:b4:67:b8:09:9d:3e:c3:af:30:05:8f:7b:6d: 37:a3:a5:b8:45:69:dc:13:12:32:e5:4a:b0:30:71:3b:38:e8: b8:82:58:23:ef:49:6d:c2:8d:68:47:c5:bb:1d:41:74:aa:a1: 8c:07:32:1e:c3:80:ea:69:be:62:21:4b:1c:24:05:f3:a9:02: 36:9b:43:ac:c1:ac:65:2e:0d:d9:1b:89:39:96:ee:32:15:7b: fe:ce:8a:55:55:90:c9:09:f8:7e:76:c5:4f:b8:a6:de:37:fa: be:25:15:ba:47:7d:3f:18:8c:f4:bb:8b:cf:7a:ba:ab:cf:8b: ac:0c:b6:3b:84:97:52:2e:7b:7f:c6:12:94:a7:23:85:74:d1: 02:7a:3b:7c -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUD++V27FiJZJtNBGdB9mkNmAavrowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYwNTA2NTUwMFoX DTI1MDYwNDA3MDAwMFowMzExMC8GA1UEAxMoREZEQzRCMzkxNDY0QjYzN0UyNjIz M0Q4NDUyMTEyNzA1NjkzREFCNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMtIIpGfCkj+Za5EWl1byLQ6d3EuwV3NUpNtqSJMWXXk09RPGKTW39YdyQtF Ed9G8LM25Kb7fu72fNs4sEHZDRMNo4+s1IJWF6UzpiLK48+aGNB0cERbQAs1zUo9 XgJRVWGvPqbIRLCgrJuGJz8JuQMr8oQE4W0xf2JcJRAhmZU/VRmUHln4mmc4vw+w Sa/0j0l/rCrf+vjkRCi0PR8XBzeux/PY+nwYNFa4mXJaNrQARIDtdMQe01zePsbN 6BA5mF4iZwilYtATsLdQjSMTen+XRyU9oNsHY2py5oA+ZdE4Tl9Z7MBZlovpA4KO njVYCE5CWH/VOmmIlOpwhzzv+QcCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBTf3Es5 FGS2N+JiM9hFIRJwVpPatjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4MTU3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5PnMA0GCSqGSIb3DQEBCwUAA4IBAQBDMt76H48z6alG984pcHZj fVWAlFjBw1j2enKdwl5VqSBzaRhIzWkPYTCh15vOJlxo1XKrCZnXpgCSfPiIOkKg zUFxKXR+dJmbRNeog6e+aoFlf4Dv0vtsOSO1gaW6bpRPzfL3sGoOCpdZ4EyUsbw/ ArRnuAmdPsOvMAWPe203o6W4RWncExIy5UqwMHE7OOi4glgj70ltwo1oR8W7HUF0 qqGMBzIew4Dqab5iIUscJAXzqQI2m0OswaxlLg3ZG4k5lu4yFXv+zopVVZDJCfh+ dsVPuKbeN/q+JRW6R30/GIz0u4vPerqrz4usDLY7hJdSLnt/xhKUpyOFdNECejt8 -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:58 2024 by rpki-client on console-fra.rpki-client.org