$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133352.roa File: AS133352.roa (raw, json) Hash identifier: ilXJen63TmHQvfqcCA6yMeb0e1baTentI5kFisa6ki4= Subject key identifier: D6:E6:13:D9:7A:1A:8D:F0:19:9C:BB:48:B2:85:C7:2B:D9:80:20:30 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7A0341A7DA404E1C5A71DA20DFEF78A6714296AA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133352.roa Signing time: Thu 14 Mar 2024 06:07:29 +0000 ROA not before: Thu 14 Mar 2024 06:02:29 +0000 ROA not after: Thu 13 Mar 2025 06:07:29 +0000 asID: 133352 IP address blocks: 43.250.76.0/22 maxlen: 24 43.250.76.0/24 maxlen: 24 43.250.77.0/24 maxlen: 24 43.250.78.0/24 maxlen: 24 43.250.79.0/24 maxlen: 24 103.231.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:03:41:a7:da:40:4e:1c:5a:71:da:20:df:ef:78:a6:71:42:96:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 14 06:02:29 2024 GMT Not After : Mar 13 06:07:29 2025 GMT Subject: CN=D6E613D97A1A8DF0199CBB48B285C72BD9802030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f9:de:72:d5:36:16:83:10:22:10:47:f0:41: fe:79:58:0e:13:4d:b8:25:86:35:4e:51:b9:72:1b: c7:c7:ec:10:ee:52:00:ba:b5:c4:36:07:d1:6e:8f: 59:86:c5:77:c1:d2:7c:e8:b4:28:7e:a6:fc:fb:b2: 07:43:08:f1:9b:0c:bf:b0:8f:37:34:e8:22:78:87: 3e:6b:8f:78:b0:e6:cf:aa:60:f5:de:c7:a4:7a:5d: 9f:0c:36:98:37:64:b1:7f:0c:46:0f:63:c5:51:e7: f1:67:c5:c3:d5:b6:f3:7a:0c:45:ae:84:f2:76:78: e4:7a:c1:f3:7b:12:a4:4d:0d:33:e5:df:44:87:a0: 99:60:a6:73:ff:a8:45:d2:aa:61:b9:7f:87:20:c1: 07:47:65:d1:65:bc:04:d6:1a:80:63:78:fc:c9:42: cd:e9:c6:cf:58:c1:82:44:9d:eb:11:b2:19:3a:eb: 56:36:f0:0f:d3:16:d0:e3:af:04:98:38:a9:da:81: e8:7c:da:3b:2d:57:43:dc:61:c7:2e:0e:87:68:3b: fa:25:9f:5a:84:c4:9e:b2:14:2c:c3:97:25:d6:e9: 46:dc:e6:11:f1:f4:8c:4a:99:8b:fd:49:ea:f9:6b: 36:a5:66:ab:b8:8a:d5:d5:85:d2:00:9a:98:63:d4: f8:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:E6:13:D9:7A:1A:8D:F0:19:9C:BB:48:B2:85:C7:2B:D9:80:20:30 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133352.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.250.76.0/22 103.231.200.0/22 Signature Algorithm: sha256WithRSAEncryption 30:f3:62:55:9d:4b:e1:53:5c:69:36:2e:ec:21:a9:f1:e0:eb: 8f:ac:6a:08:e1:78:06:e7:99:8d:58:a8:18:69:7b:00:6e:fc: 86:be:d8:67:76:66:25:74:d4:a3:0e:48:74:2f:ce:05:d7:f6: 3a:58:7a:45:f4:ae:0c:cc:9a:7a:f2:b8:fa:5d:4f:87:d5:7b: 8b:82:e4:35:a6:1e:f6:39:37:a1:d7:db:ab:ad:74:cf:23:78: a6:92:1e:7d:af:47:20:b9:a7:6f:81:e9:82:5c:f2:69:ec:5e: 62:1c:90:fe:7c:bc:34:a1:cd:22:5e:70:91:50:9a:35:67:68: 03:5e:eb:61:43:00:63:b7:f4:d6:d3:f1:db:34:e8:b4:89:4c: 7f:7a:2a:66:ea:7c:c6:07:e9:d6:72:f5:c8:33:9c:82:dd:f7: 5f:a8:35:2d:31:8f:c1:66:0b:3c:a0:ab:50:8d:a2:99:13:89: fd:26:76:59:c9:fc:59:f9:ca:33:b5:62:7d:6b:ae:ba:6f:21: d0:7c:98:0a:ab:c9:0b:d4:54:13:65:65:75:55:f4:94:f9:3c: af:37:9f:11:ce:68:94:8a:2a:96:21:a6:35:94:d7:5b:bf:5f: 8e:5d:df:93:be:5a:df:a7:8e:34:64:67:d3:f2:e8:22:ac:2d: 20:7c:f5:60 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUegNBp9pAThxacdog3+94pnFClqowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxNDA2MDIyOVoX DTI1MDMxMzA2MDcyOVowMzExMC8GA1UEAxMoRDZFNjEzRDk3QTFBOERGMDE5OUNC QjQ4QjI4NUM3MkJEOTgwMjAzMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAML53nLVNhaDECIQR/BB/nlYDhNNuCWGNU5RuXIbx8fsEO5SALq1xDYH0W6P WYbFd8HSfOi0KH6m/PuyB0MI8ZsMv7CPNzToIniHPmuPeLDmz6pg9d7HpHpdnww2 mDdksX8MRg9jxVHn8WfFw9W283oMRa6E8nZ45HrB83sSpE0NM+XfRIegmWCmc/+o RdKqYbl/hyDBB0dl0WW8BNYagGN4/MlCzenGz1jBgkSd6xGyGTrrVjbwD9MW0OOv BJg4qdqB6HzaOy1XQ9xhxy4Oh2g7+iWfWoTEnrIULMOXJdbpRtzmEfH0jEqZi/1J 6vlrNqVmq7iK1dWF0gCamGPU+NsCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBTW5hPZ ehqN8Bmcu0iyhccr2YAgMDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMzM1Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAiv6TAMEAmfnyDANBgkqhkiG9w0BAQsFAAOCAQEAMPNiVZ1L4VNc aTYu7CGp8eDrj6xqCOF4BueZjVioGGl7AG78hr7YZ3ZmJXTUow5IdC/OBdf2Olh6 RfSuDMyaevK4+l1Ph9V7i4LkNaYe9jk3odfbq610zyN4ppIefa9HILmnb4Hpglzy aexeYhyQ/ny8NKHNIl5wkVCaNWdoA17rYUMAY7f01tPx2zTotIlMf3oqZup8xgfp 1nL1yDOcgt33X6g1LTGPwWYLPKCrUI2imROJ/SZ2Wcn8WfnKM7VifWuuum8h0HyY CqvJC9RUE2VldVX0lPk8rzefEc5olIoqliGmNZTXW79fjl3fk75a36eONGRn0/Lo IqwtIHz1YA== -----END CERTIFICATE-----Generated at Sat Apr 27 21:40:19 2024 by rpki-client on console-ams.rpki-client.org