$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38773.roa File: AS38773.roa (raw, json) Hash identifier: fNjTRj9Vh+fGzvpvrs+Pc1SaTkD+8m8qGiyjpwPMPC4= Subject key identifier: 22:23:EE:D7:58:E5:EC:82:02:92:52:DD:5D:A4:C7:F4:23:2D:76:2F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1C512F20EDFC6876330524B6C2620E6919CA30FC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38773.roa Signing time: Tue 09 Jan 2024 04:00:29 +0000 ROA not before: Tue 09 Jan 2024 03:55:29 +0000 ROA not after: Tue 07 Jan 2025 04:00:29 +0000 asID: 38773 IP address blocks: 114.141.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:51:2f:20:ed:fc:68:76:33:05:24:b6:c2:62:0e:69:19:ca:30:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:29 2024 GMT Not After : Jan 7 04:00:29 2025 GMT Subject: CN=2223EED758E5EC82029252DD5DA4C7F4232D762F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c8:94:0f:b2:31:a8:12:28:76:43:c8:cf:f9: 8a:b1:df:24:34:4b:97:f9:64:d7:a8:6c:35:bc:9a: 68:c2:fb:bc:bc:4c:6f:85:d1:70:5c:11:47:b0:55: cd:51:8c:00:72:bb:1a:65:a5:ca:8d:8a:76:4a:76: fb:c4:51:95:50:4a:d3:ec:fa:93:67:a8:b0:dd:0a: 03:40:21:f8:d2:e1:87:59:26:b6:aa:17:b2:95:c6: 0e:fd:c1:a6:0c:a4:4a:33:f5:79:3d:a9:18:14:c2: 51:bf:89:fd:42:d2:f6:f7:ba:15:2b:1d:9c:82:d5: 07:89:58:5c:14:98:0a:06:84:94:0f:1a:9c:2d:71: 0a:b4:aa:d7:65:03:f9:73:fa:0c:02:2e:f7:42:71: 3c:fc:8b:b6:37:fd:71:9a:f0:bf:02:ea:86:48:b7: 4a:4e:b2:ff:29:57:5c:27:9e:bc:50:9d:5a:94:96: 52:b2:5c:17:6f:fa:85:78:43:47:47:16:8d:0e:92: 51:e9:19:37:02:41:cd:92:38:c6:3c:b0:04:21:25: 02:36:58:a1:10:11:cc:ca:11:d1:bb:0d:0e:c2:b4: 3f:d0:d5:81:08:3f:97:46:af:34:f7:60:53:ae:b0: 26:de:03:09:42:a8:91:d5:da:48:cb:35:8f:a5:88: 69:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:23:EE:D7:58:E5:EC:82:02:92:52:DD:5D:A4:C7:F4:23:2D:76:2F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38773.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.141.88.0/21 Signature Algorithm: sha256WithRSAEncryption 10:a3:86:19:0d:80:05:cb:d4:d7:c1:4c:e9:57:ba:aa:36:30: 16:3e:de:5c:c9:33:c2:59:a3:47:d7:12:48:b9:2c:4b:2f:a6: 9b:2b:87:5a:b3:0e:50:01:a8:e5:6e:9a:77:a9:05:2c:1f:21: 67:12:c2:72:c3:79:63:a0:7a:28:fb:15:f8:9b:6c:f0:7f:ce: b1:72:63:fd:06:0a:3a:9a:ed:ac:8d:b6:0a:24:0c:6f:31:12: 4f:38:b9:ab:cb:4b:26:0e:5b:48:ca:9c:ed:d0:2a:6f:46:31: 71:ec:32:fb:9b:4e:35:64:0b:1d:0a:39:e1:6c:1c:80:71:96: f5:6c:86:b1:5f:11:49:89:80:d0:1b:dd:3b:d1:69:48:73:b0: 68:8e:ce:41:ac:64:67:e4:16:5e:63:73:3c:94:17:a4:59:6a: ed:d7:aa:cd:f3:9e:9f:46:28:48:e2:08:cb:ef:6e:a4:c3:ea: 89:a8:d0:15:51:00:8b:5a:0b:b0:d9:05:15:fd:bb:bf:94:b7: b7:6b:d8:9a:98:ff:88:04:75:34:50:47:3e:40:dd:e8:63:a5: 14:cd:91:c7:13:85:73:e2:08:6e:f0:51:9b:b0:67:a1:11:29: 1b:1e:47:c5:c9:bb:06:44:37:25:be:3c:4c:b2:5b:c5:b7:d0: 18:39:68:60 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUHFEvIO38aHYzBSS2wmIOaRnKMPwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyOVoX DTI1MDEwNzA0MDAyOVowMzExMC8GA1UEAxMoMjIyM0VFRDc1OEU1RUM4MjAyOTI1 MkRENURBNEM3RjQyMzJENzYyRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMDIlA+yMagSKHZDyM/5irHfJDRLl/lk16hsNbyaaML7vLxMb4XRcFwRR7BV zVGMAHK7GmWlyo2Kdkp2+8RRlVBK0+z6k2eosN0KA0Ah+NLhh1kmtqoXspXGDv3B pgykSjP1eT2pGBTCUb+J/ULS9ve6FSsdnILVB4lYXBSYCgaElA8anC1xCrSq12UD +XP6DAIu90JxPPyLtjf9cZrwvwLqhki3Sk6y/ylXXCeevFCdWpSWUrJcF2/6hXhD R0cWjQ6SUekZNwJBzZI4xjywBCElAjZYoRARzMoR0bsNDsK0P9DVgQg/l0avNPdg U66wJt4DCUKokdXaSMs1j6WIaRUCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQiI+7X WOXsggKSUt1dpMf0Iy12LzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4NzczLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDco1YMA0GCSqGSIb3DQEBCwUAA4IBAQAQo4YZDYAFy9TXwUzpV7qq NjAWPt5cyTPCWaNH1xJIuSxLL6abK4dasw5QAajlbpp3qQUsHyFnEsJyw3ljoHoo +xX4m2zwf86xcmP9Bgo6mu2sjbYKJAxvMRJPOLmry0smDltIypzt0CpvRjFx7DL7 m041ZAsdCjnhbByAcZb1bIaxXxFJiYDQG9070WlIc7Bojs5BrGRn5BZeY3M8lBek WWrt16rN856fRihI4gjL726kw+qJqNAVUQCLWguw2QUV/bu/lLe3a9iamP+IBHU0 UEc+QN3oY6UUzZHHE4Vz4ghu8FGbsGehESkbHkfFybsGRDclvjxMslvFt9AYOWhg -----END CERTIFICATE-----Generated at Fri May 3 04:42:28 2024 by rpki-client on console-fra.rpki-client.org