$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18059.roa File: AS18059.roa (raw, json) Hash identifier: oeuLlN+f6gJAzy3S/gePXweQxEg/gkRKkCS//A8Ivdw= Subject key identifier: 64:8A:8C:77:48:A5:F3:0B:D2:44:E7:52:11:A9:94:A3:3F:87:C3:F0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 16A02E34383A2900BAE20CA8F1707FDEF296C869 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18059.roa Signing time: Tue 09 Jan 2024 04:00:03 +0000 ROA not before: Tue 09 Jan 2024 03:55:03 +0000 ROA not after: Tue 07 Jan 2025 04:00:03 +0000 asID: 18059 IP address blocks: 103.168.114.0/23 maxlen: 24 103.168.116.0/23 maxlen: 24 103.168.118.0/23 maxlen: 24 103.168.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:a0:2e:34:38:3a:29:00:ba:e2:0c:a8:f1:70:7f:de:f2:96:c8:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:03 2024 GMT Not After : Jan 7 04:00:03 2025 GMT Subject: CN=648A8C7748A5F30BD244E75211A994A33F87C3F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b5:26:45:e7:48:08:d1:f7:f3:2e:81:99:59: 8f:1b:19:d3:87:17:06:53:51:83:68:3e:6c:3d:74: 9b:48:80:c9:65:ec:77:96:62:91:7f:83:b6:28:5e: 13:a7:1d:d5:1d:ca:a5:a3:e6:78:4b:06:57:51:41: 84:c9:e4:c7:e7:5f:af:33:e8:5f:cf:d2:7e:67:e0: d5:ed:53:7f:ff:b6:ae:28:da:b5:b8:07:62:70:fc: 42:b5:2e:ab:2a:70:e5:b7:28:94:ca:4c:1a:31:1e: 28:84:fd:2d:40:39:f0:b2:62:a5:c0:37:d5:e9:a0: 3d:3c:1f:0d:cf:4d:b6:70:8a:ce:40:8d:b4:da:0e: 42:7a:3b:c6:bc:79:2a:04:4f:2e:7e:28:0c:c1:19: bf:41:b0:7d:c1:19:77:f0:14:01:9f:0e:fa:66:bb: 68:8c:c0:3c:d7:51:d8:29:1e:6f:cf:a9:14:83:45: 82:e8:e9:6a:7e:72:bb:0a:fa:fc:14:ca:c0:5f:91: 99:8c:f2:c6:67:78:a6:e6:bf:c2:d2:72:f1:fd:20: 91:aa:dd:80:88:8a:c7:55:a3:c0:77:19:61:d1:74: 97:26:44:10:11:09:58:c3:c2:8e:e4:e9:43:d1:8e: fd:bf:03:e9:91:d9:17:98:65:73:df:0a:ca:10:12: 09:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:8A:8C:77:48:A5:F3:0B:D2:44:E7:52:11:A9:94:A3:3F:87:C3:F0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18059.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.114.0-103.168.121.255 Signature Algorithm: sha256WithRSAEncryption 0e:f2:81:04:79:77:54:cc:bf:f6:26:1d:c2:7c:27:12:b3:3b: 96:85:ca:89:39:04:a0:61:d0:2b:66:d0:6c:28:c1:bf:e5:6b: 18:94:5d:cb:50:54:5d:78:ac:e8:15:a4:77:54:9f:66:d2:c7: b3:a1:00:8b:2f:de:74:e1:4c:c0:77:b2:2d:61:e5:66:8f:fc: e0:82:3c:eb:74:f2:5a:c4:9a:15:7c:55:57:41:b9:f6:bd:f6: e0:75:81:48:cb:40:8c:2b:80:2d:7e:87:de:b2:d1:01:08:f4: 13:7b:bc:ea:69:f9:5c:c9:1b:3e:f8:22:88:32:1c:6b:67:64: f7:44:50:33:14:3e:b2:e5:62:46:ba:e9:1c:cc:da:d0:84:7c: 36:c1:77:33:07:3a:8a:47:97:83:fc:12:f1:6c:84:e4:d9:31: 70:be:d5:e9:1c:5b:be:56:ba:01:7f:c5:56:ab:aa:ae:cf:c7: 52:3a:4e:a0:93:1f:59:a7:ed:8c:3b:e4:e1:63:90:98:f7:69: d2:36:fb:db:00:55:68:66:01:dc:e4:b0:75:fd:43:5f:64:1a: af:21:35:c8:fb:15:74:ac:f4:ae:f9:c2:e1:3f:6b:b1:f0:09: 92:50:37:4f:7e:7d:03:84:e0:2d:9c:10:51:e4:6e:d7:69:00: 1d:c8:37:fe -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUFqAuNDg6KQC64gyo8XB/3vKWyGkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwM1oX DTI1MDEwNzA0MDAwM1owMzExMC8GA1UEAxMoNjQ4QThDNzc0OEE1RjMwQkQyNDRF NzUyMTFBOTk0QTMzRjg3QzNGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKO1JkXnSAjR9/MugZlZjxsZ04cXBlNRg2g+bD10m0iAyWXsd5ZikX+Dtihe E6cd1R3KpaPmeEsGV1FBhMnkx+dfrzPoX8/Sfmfg1e1Tf/+2rijatbgHYnD8QrUu qypw5bcolMpMGjEeKIT9LUA58LJipcA31emgPTwfDc9NtnCKzkCNtNoOQno7xrx5 KgRPLn4oDMEZv0GwfcEZd/AUAZ8O+ma7aIzAPNdR2Ckeb8+pFINFgujpan5yuwr6 /BTKwF+RmYzyxmd4pua/wtJy8f0gkardgIiKx1WjwHcZYdF0lyZEEBEJWMPCjuTp Q9GO/b8D6ZHZF5hlc98KyhASCZcCAwEAAaOCAdcwggHTMB0GA1UdDgQWBBRkiox3 SKXzC9JE51IRqZSjP4fD8DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE4MDU5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAFnqHIDBAFnqHgwDQYJKoZIhvcNAQELBQADggEBAA7ygQR5d1TM v/YmHcJ8JxKzO5aFyok5BKBh0Ctm0Gwowb/laxiUXctQVF14rOgVpHdUn2bSx7Oh AIsv3nThTMB3si1h5WaP/OCCPOt08lrEmhV8VVdBufa99uB1gUjLQIwrgC1+h96y 0QEI9BN7vOpp+VzJGz74IogyHGtnZPdEUDMUPrLlYka66RzM2tCEfDbBdzMHOopH l4P8EvFshOTZMXC+1ekcW75WugF/xVarqq7Px1I6TqCTH1mn7Yw75OFjkJj3adI2 +9sAVWhmAdzksHX9Q19kGq8hNcj7FXSs9K75wuE/a7HwCZJQN09+fQOE4C2cEFHk btdpAB3IN/4= -----END CERTIFICATE-----Generated at Tue Apr 30 12:55:54 2024 by rpki-client on console-fra.rpki-client.org