$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136823.roa File: AS136823.roa (raw, json) Hash identifier: ceLd5U2C/nGvxWkz9BV4kcZnMuqI9AkmQ5O5TQIHWsM= Subject key identifier: F1:19:53:53:EF:47:6E:02:F5:4A:90:A4:B0:19:96:96:AA:36:1A:D7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 04D0B689EBDFA767A1F04F3010AC23D0F7E35382 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136823.roa Signing time: Tue 09 Jan 2024 04:00:25 +0000 ROA not before: Tue 09 Jan 2024 03:55:25 +0000 ROA not after: Tue 07 Jan 2025 04:00:25 +0000 asID: 136823 IP address blocks: 103.92.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:d0:b6:89:eb:df:a7:67:a1:f0:4f:30:10:ac:23:d0:f7:e3:53:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:25 2024 GMT Not After : Jan 7 04:00:25 2025 GMT Subject: CN=F1195353EF476E02F54A90A4B0199696AA361AD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:83:d1:d3:56:11:10:d9:df:da:4f:3d:9c:39: 42:34:7b:35:8f:8c:a9:54:d7:dd:7f:13:08:92:ea: ab:38:b2:cd:c7:c8:ca:ba:25:be:1f:e4:d8:57:6e: 2e:51:3b:cf:28:88:7f:46:cd:d1:93:40:08:97:f2: 25:97:6b:04:9d:b7:5c:9a:ef:fa:dd:43:e7:33:ec: 3a:a1:b9:dd:2e:31:11:3c:4c:2b:4e:55:a6:60:fa: 96:ff:db:a1:ae:18:cf:6c:5b:5a:e4:e9:ac:73:09: 91:4f:be:2f:8b:38:30:c5:e9:b2:fd:35:9f:b0:9d: 2b:5c:1e:fb:89:7a:7a:34:5a:1b:44:e5:e3:78:db: 2f:8d:2c:73:62:37:d5:f8:17:3b:d0:11:3d:53:e5: 5e:1a:43:4f:30:69:d5:fe:75:7e:18:4c:11:3f:c8: f3:be:d9:9d:a6:21:a4:59:77:7d:c5:00:b8:fb:e7: 9e:c1:06:68:f2:5d:44:7a:cb:e8:54:35:10:74:62: 06:7f:b6:c1:9c:79:1a:f4:97:98:b7:0c:0b:2b:ce: cc:36:63:49:48:96:96:c9:19:81:49:0b:37:14:2a: 40:a7:33:23:a2:80:9f:9b:78:65:56:53:80:3b:95: b7:04:50:a9:3b:c3:02:e7:82:53:b0:51:62:92:1f: 3f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:19:53:53:EF:47:6E:02:F5:4A:90:A4:B0:19:96:96:AA:36:1A:D7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136823.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.92.224.0/22 Signature Algorithm: sha256WithRSAEncryption 06:af:cb:7f:bb:09:70:5f:63:9f:08:cc:b1:dd:d5:43:a2:f2: bc:0b:4b:92:3a:62:7c:7f:b6:d8:58:e7:be:e8:14:e2:16:c1: b3:53:dd:d4:25:21:0a:d2:80:df:6e:9e:a4:37:c6:30:a8:23: b5:b5:62:d1:3b:b5:10:9c:8f:57:b8:49:3b:fc:6b:c4:90:e5: 4c:dd:76:36:9a:8e:7c:0c:ed:c5:5c:d3:16:65:db:87:f8:0c: 87:94:c3:92:4e:12:c8:bc:52:de:e9:b0:0e:14:06:9d:f4:f4: f9:6a:dc:06:01:fa:72:41:33:e5:9d:bd:07:88:ec:33:01:b8: 88:eb:e2:e8:60:28:c0:f1:01:c0:03:a2:21:43:53:f2:7f:00: fa:01:1c:e3:e4:4e:a2:9c:b1:d2:dc:e2:06:f4:fe:c1:81:22: 13:15:e4:24:b6:2c:3d:43:e3:d3:19:d4:a2:ba:86:1b:46:b5: dc:df:b9:bf:67:52:bf:89:08:ff:f3:fb:e1:02:cb:5e:40:c6: e2:9a:dd:09:c2:5b:da:d7:8f:a3:21:74:28:7c:a2:7b:49:6b: f1:3d:f4:5a:99:53:2e:02:81:59:19:7e:d5:41:16:2c:ec:43: 68:e2:01:35:d2:16:e1:ee:5c:fa:0f:81:db:66:d2:5a:a6:76: 70:d8:42:63 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUBNC2ievfp2eh8E8wEKwj0PfjU4IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyNVoX DTI1MDEwNzA0MDAyNVowMzExMC8GA1UEAxMoRjExOTUzNTNFRjQ3NkUwMkY1NEE5 MEE0QjAxOTk2OTZBQTM2MUFENzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANuD0dNWERDZ39pPPZw5QjR7NY+MqVTX3X8TCJLqqziyzcfIyrolvh/k2Fdu LlE7zyiIf0bN0ZNACJfyJZdrBJ23XJrv+t1D5zPsOqG53S4xETxMK05VpmD6lv/b oa4Yz2xbWuTprHMJkU++L4s4MMXpsv01n7CdK1we+4l6ejRaG0Tl43jbL40sc2I3 1fgXO9ARPVPlXhpDTzBp1f51fhhMET/I877ZnaYhpFl3fcUAuPvnnsEGaPJdRHrL 6FQ1EHRiBn+2wZx5GvSXmLcMCyvOzDZjSUiWlskZgUkLNxQqQKczI6KAn5t4ZVZT gDuVtwRQqTvDAueCU7BRYpIfP8cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTxGVNT 70duAvVKkKSwGZaWqjYa1zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjgyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmdc4DANBgkqhkiG9w0BAQsFAAOCAQEABq/Lf7sJcF9jnwjMsd3V Q6LyvAtLkjpifH+22FjnvugU4hbBs1Pd1CUhCtKA326epDfGMKgjtbVi0Tu1EJyP V7hJO/xrxJDlTN12NpqOfAztxVzTFmXbh/gMh5TDkk4SyLxS3umwDhQGnfT0+Wrc BgH6ckEz5Z29B4jsMwG4iOvi6GAowPEBwAOiIUNT8n8A+gEc4+ROopyx0tziBvT+ wYEiExXkJLYsPUPj0xnUorqGG0a13N+5v2dSv4kI//P74QLLXkDG4prdCcJb2teP oyF0KHyie0lr8T30WplTLgKBWRl+1UEWLOxDaOIBNdIW4e5c+g+B22bSWqZ2cNhC Yw== -----END CERTIFICATE-----Generated at Fri May 3 03:08:30 2024 by rpki-client on console-ams.rpki-client.org