$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138842.roa File: AS138842.roa (raw, json) Hash identifier: Jnbq0IFOnq13wFrbdxWOAcWn2V5LVAGFjdmmlT9GD94= Subject key identifier: CE:C4:1F:39:CE:22:8E:57:CF:3E:81:09:9C:33:28:A7:0B:9F:03:B0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 34456DB8D7C5A80D79F5828DDC3B0FE7707CFF7B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138842.roa Signing time: Wed 09 Apr 2025 06:16:18 +0000 ROA not before: Wed 09 Apr 2025 06:11:18 +0000 ROA not after: Wed 08 Apr 2026 06:16:18 +0000 asID: 138842 IP address blocks: 103.155.106.0/23 maxlen: 24 103.176.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:45:6d:b8:d7:c5:a8:0d:79:f5:82:8d:dc:3b:0f:e7:70:7c:ff:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 9 06:11:18 2025 GMT Not After : Apr 8 06:16:18 2026 GMT Subject: CN=CEC41F39CE228E57CF3E81099C3328A70B9F03B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ee:2e:df:da:8d:82:d7:d7:3a:b3:2b:3d:e1: bb:8f:d6:94:a4:fd:1f:25:c3:46:a3:d6:82:0b:a2: 07:38:89:b1:09:56:87:06:28:c1:eb:a1:60:c8:a4: 5d:6e:c2:d2:71:ae:f6:b5:00:eb:99:02:3f:83:3b: 1f:d9:fd:24:43:54:70:bd:e5:b5:5a:3e:fe:dd:23: 81:3c:e0:06:c9:8d:ce:fd:67:a7:f9:71:d2:c2:b5: f7:69:30:8a:21:6b:91:f4:0c:1f:d7:ea:70:e4:b8: ad:d7:d6:17:08:c8:75:2f:bf:50:50:85:fc:2f:18: 0f:d0:d4:6f:2e:72:a5:01:2d:0e:b2:ee:2a:62:4e: 3a:ee:b0:6e:05:c0:5a:ef:20:57:32:69:85:72:33: 49:72:2d:d0:1a:d5:15:e4:1a:af:b5:d5:63:57:93: 2a:3a:5a:21:33:ef:72:8c:ee:fa:ae:95:03:c7:c2: f2:e4:96:66:f2:9f:c4:37:09:23:cf:db:2c:b7:e5: 29:76:b2:a5:5c:8b:b1:aa:87:91:c5:6c:ff:96:f4: 7d:c0:0e:e4:77:12:f8:c5:da:4c:10:6f:ae:26:1e: 4c:07:77:5a:d1:0a:4f:77:6a:fa:0e:34:a6:79:e4: 5f:8d:2a:0a:ca:e9:1d:88:f6:d9:f4:05:48:fd:c7: 66:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:C4:1F:39:CE:22:8E:57:CF:3E:81:09:9C:33:28:A7:0B:9F:03:B0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138842.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.106.0/23 103.176.26.0/23 Signature Algorithm: sha256WithRSAEncryption 64:35:0e:56:58:ef:30:fa:dc:b6:dc:7b:26:e0:31:b4:fe:c1: 83:0d:4b:c0:cb:5c:20:05:25:1d:b0:8d:c7:0e:92:c9:cb:21: 12:9b:11:34:48:fc:26:f7:42:55:88:79:52:48:0b:84:21:a5: e2:05:b9:39:37:8d:b0:20:77:20:97:a6:cf:e3:9e:cc:9e:1c: 5d:8d:ad:f3:53:82:fd:d7:2b:f8:40:25:06:44:b5:36:74:9e: 58:48:3e:97:6d:8c:ac:6d:91:57:a6:b0:dd:b2:d1:36:b7:4b: 61:bb:c9:dc:5d:27:c9:b8:eb:4d:b5:4e:a2:c5:4b:0e:04:bf: 6c:02:e8:43:6a:f4:33:18:53:ae:a7:ff:c8:1b:fc:b8:e1:ab: 2d:87:bb:eb:78:16:8a:cc:12:f5:40:05:e4:91:ad:bd:10:53: 21:e7:90:5d:84:71:67:f2:09:04:96:6b:0e:33:ef:8b:15:50: ed:29:0e:15:f0:f4:18:70:80:b4:50:62:7b:a8:a9:4f:5d:dd: 31:b3:91:12:88:c4:d6:25:7e:2a:0c:62:d8:43:61:86:5a:76: aa:b9:5b:ec:14:42:01:2f:2b:35:af:f7:59:0c:0f:9b:e1:bb: 3a:32:96:16:df:01:85:32:67:8b:3a:eb:7f:fc:67:be:96:15: e2:da:50:7a -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUNEVtuNfFqA159YKN3DsP53B8/3swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwOTA2MTExOFoX DTI2MDQwODA2MTYxOFowMzExMC8GA1UEAxMoQ0VDNDFGMzlDRTIyOEU1N0NGM0U4 MTA5OUMzMzI4QTcwQjlGMDNCMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALPuLt/ajYLX1zqzKz3hu4/WlKT9HyXDRqPWgguiBziJsQlWhwYoweuhYMik XW7C0nGu9rUA65kCP4M7H9n9JENUcL3ltVo+/t0jgTzgBsmNzv1np/lx0sK192kw iiFrkfQMH9fqcOS4rdfWFwjIdS+/UFCF/C8YD9DUby5ypQEtDrLuKmJOOu6wbgXA Wu8gVzJphXIzSXIt0BrVFeQar7XVY1eTKjpaITPvcozu+q6VA8fC8uSWZvKfxDcJ I8/bLLflKXaypVyLsaqHkcVs/5b0fcAO5HcS+MXaTBBvriYeTAd3WtEKT3dq+g40 pnnkX40qCsrpHYj22fQFSP3HZkUCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBTOxB85 ziKOV88+gQmcMyinC58DsDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODg0Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAWebagMEAWewGjANBgkqhkiG9w0BAQsFAAOCAQEAZDUOVljvMPrc ttx7JuAxtP7Bgw1LwMtcIAUlHbCNxw6SycshEpsRNEj8JvdCVYh5UkgLhCGl4gW5 OTeNsCB3IJemz+OezJ4cXY2t81OC/dcr+EAlBkS1NnSeWEg+l22MrG2RV6aw3bLR NrdLYbvJ3F0nybjrTbVOosVLDgS/bALoQ2r0MxhTrqf/yBv8uOGrLYe763gWiswS 9UAF5JGtvRBTIeeQXYRxZ/IJBJZrDjPvixVQ7SkOFfD0GHCAtFBie6ipT13dMbOR EojE1iV+Kgxi2ENhhlp2qrlb7BRCAS8rNa/3WQwPm+G7OjKWFt8BhTJnizrrf/xn vpYV4tpQeg== -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:18 2025 by rpki-client on console.sobornost.net