$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38771.roa File: AS38771.roa (raw, json) Hash identifier: jiQy/jR+NLp4C7qAD1bZaZ+0I1vJF7RHdD85LkXpeqM= Subject key identifier: 2A:7B:5B:B7:C3:32:13:EB:9C:C3:64:4D:EE:E7:14:98:C4:58:A6:F3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0480871661AE076DF8F3FB5C33355B678CF97974 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38771.roa Signing time: Tue 10 Dec 2024 05:00:01 +0000 ROA not before: Tue 10 Dec 2024 04:55:01 +0000 ROA not after: Tue 09 Dec 2025 05:00:01 +0000 asID: 38771 IP address blocks: 103.171.234.0/23 maxlen: 24 114.141.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:80:87:16:61:ae:07:6d:f8:f3:fb:5c:33:35:5b:67:8c:f9:79:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:01 2024 GMT Not After : Dec 9 05:00:01 2025 GMT Subject: CN=2A7B5BB7C33213EB9CC3644DEEE71498C458A6F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:02:8b:10:99:11:d5:d0:5b:ea:31:b0:db:34: b4:f9:ee:34:53:69:12:bb:ef:b7:89:35:d2:5f:a5: 40:fc:f5:d1:81:5d:2c:c9:ec:6a:66:ab:f2:8e:6e: 60:d4:a9:02:25:10:2a:eb:ee:33:b3:f8:ab:36:0f: 51:d4:18:b8:87:69:b7:ed:7a:c7:8d:0f:17:45:7e: 9e:e2:2b:1b:d5:f9:f4:a4:94:9d:72:d9:9d:c6:92: c5:3f:39:70:f8:d1:c6:10:52:db:56:35:d4:fa:3d: c2:d3:b9:5d:1f:b1:6d:36:62:4e:5a:bd:d6:f3:72: b8:30:1b:99:ef:5f:ba:f1:ae:38:86:c2:d2:36:67: a8:a3:5a:ce:e3:56:f7:55:0a:67:66:8e:ac:25:2e: 6f:ca:a4:53:ae:93:49:84:e1:d1:08:10:ae:8f:e3: 51:82:b1:bb:eb:8e:bb:54:ca:7c:08:b2:4f:36:4a: c6:3d:4e:dd:f4:98:bf:82:1f:cf:37:9e:d5:bb:e8: de:6f:ff:0b:41:a0:13:ea:d6:1f:0c:36:d3:a3:70: 6f:b4:7b:51:ff:a5:91:46:e7:21:94:00:d0:ad:b6: 18:e9:a8:77:b8:3b:a1:26:48:5c:12:c6:a9:ba:ec: c1:70:25:99:1a:d9:b5:69:c5:e9:b2:fc:2f:9f:5f: 27:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:7B:5B:B7:C3:32:13:EB:9C:C3:64:4D:EE:E7:14:98:C4:58:A6:F3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38771.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.234.0/23 114.141.48.0/21 Signature Algorithm: sha256WithRSAEncryption 8d:b4:e8:f3:c3:24:21:d1:6b:d3:9a:32:2c:6e:dc:73:54:8e: 44:11:0f:a8:0b:d7:60:b6:cd:58:3b:2d:38:16:62:78:d2:55: 24:1c:7b:2f:2a:44:61:5a:84:01:85:df:7a:df:ad:05:a4:b3: 15:8e:1a:09:55:e3:e0:32:46:9a:dc:2e:c3:fc:04:88:b9:21: 0f:5c:23:29:b4:08:99:3b:c3:0e:d2:d8:44:34:1b:4b:8f:94: 32:fe:cc:fd:ce:32:61:4d:7d:8d:eb:33:41:fa:b3:50:4c:bd: 9d:d3:e3:e2:5c:bc:5b:62:f1:41:4a:12:49:b3:ab:21:74:0d: 91:8f:79:c2:c5:02:dd:b5:6f:26:b7:49:6f:a9:44:10:50:1c: 3e:bf:c8:85:fd:c6:95:04:6d:d4:6d:01:dc:38:20:46:b1:fe: 3a:aa:19:14:37:fd:5e:43:bc:4a:94:0f:f7:34:b3:7e:0f:ab: 82:14:0a:42:8e:db:f7:18:21:5b:05:5e:93:d1:f2:66:24:0b: 3c:d1:5c:3e:65:ed:09:a9:77:d5:e7:3b:b2:40:1f:c8:8e:23: 02:7b:e9:f2:99:db:fe:95:bf:fe:19:96:ea:db:06:18:a5:8a: b1:11:69:7f:29:ab:64:a4:f9:2e:cb:03:33:45:31:fa:eb:a3: c5:94:b7:cd -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUBICHFmGuB2348/tcMzVbZ4z5eXQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwMVoX DTI1MTIwOTA1MDAwMVowMzExMC8GA1UEAxMoMkE3QjVCQjdDMzMyMTNFQjlDQzM2 NDRERUVFNzE0OThDNDU4QTZGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOwCixCZEdXQW+oxsNs0tPnuNFNpErvvt4k10l+lQPz10YFdLMnsamar8o5u YNSpAiUQKuvuM7P4qzYPUdQYuIdpt+16x40PF0V+nuIrG9X59KSUnXLZncaSxT85 cPjRxhBS21Y11Po9wtO5XR+xbTZiTlq91vNyuDAbme9fuvGuOIbC0jZnqKNazuNW 91UKZ2aOrCUub8qkU66TSYTh0QgQro/jUYKxu+uOu1TKfAiyTzZKxj1O3fSYv4If zzee1bvo3m//C0GgE+rWHww206Nwb7R7Uf+lkUbnIZQA0K22GOmod7g7oSZIXBLG qbrswXAlmRrZtWnF6bL8L59fJwECAwEAAaOCAdUwggHRMB0GA1UdDgQWBBQqe1u3 wzIT65zDZE3u5xSYxFim8zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4NzcxLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ6vqAwQDco0wMA0GCSqGSIb3DQEBCwUAA4IBAQCNtOjzwyQh0WvT mjIsbtxzVI5EEQ+oC9dgts1YOy04FmJ40lUkHHsvKkRhWoQBhd96360FpLMVjhoJ VePgMkaa3C7D/ASIuSEPXCMptAiZO8MO0thENBtLj5Qy/sz9zjJhTX2N6zNB+rNQ TL2d0+PiXLxbYvFBShJJs6shdA2Rj3nCxQLdtW8mt0lvqUQQUBw+v8iF/caVBG3U bQHcOCBGsf46qhkUN/1eQ7xKlA/3NLN+D6uCFApCjtv3GCFbBV6T0fJmJAs80Vw+ Ze0JqXfV5zuyQB/IjiMCe+nymdv+lb/+GZbq2wYYpYqxEWl/KatkpPkuywMzRTH6 66PFlLfN -----END CERTIFICATE-----Generated at Sun Feb 16 20:46:27 2025 by rpki-client