$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS396982.roa File: AS396982.roa (raw, json) Hash identifier: /ExjCD14LYVeifpt9g07aYziCsjPMm/HHB1tGKMKRjg= Subject key identifier: 63:18:E7:0A:62:73:78:D5:14:09:9F:0C:A5:1E:7A:0E:3C:4D:CC:FA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1431CB9A313DB5D981D97263D59792CA42191868 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS396982.roa Signing time: Fri 15 Mar 2024 03:04:13 +0000 ROA not before: Fri 15 Mar 2024 02:59:13 +0000 ROA not after: Fri 14 Mar 2025 03:04:13 +0000 asID: 396982 IP address blocks: 103.165.152.0/24 maxlen: 24 103.165.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:31:cb:9a:31:3d:b5:d9:81:d9:72:63:d5:97:92:ca:42:19:18:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 15 02:59:13 2024 GMT Not After : Mar 14 03:04:13 2025 GMT Subject: CN=6318E70A627378D514099F0CA51E7A0E3C4DCCFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:63:13:0b:76:69:61:0d:99:b1:23:68:42:35: 39:5b:47:81:c7:58:09:c2:54:55:b6:f5:a5:b9:7c: c7:92:99:d9:18:67:74:5a:d9:68:07:bf:90:c3:93: c0:a3:24:dd:6f:7d:53:7c:43:cb:cd:c3:c8:11:3b: 20:97:ab:13:36:d1:0d:d1:25:68:08:d6:f7:49:32: 28:2f:5d:e3:b2:1b:cc:6f:f4:f7:ca:7b:56:c2:89: 44:9c:ab:be:05:d4:d0:07:27:13:a3:de:cf:01:b1: bc:e5:42:4e:28:a1:e0:ec:7f:a8:1e:31:3c:32:b0: dc:71:2c:87:92:b2:f7:6f:ff:41:d5:91:88:e1:9a: ab:be:47:83:fc:41:fb:8e:bf:ce:b5:63:37:6f:39: fa:ba:76:c9:d5:89:7b:23:22:36:9a:53:1a:71:33: bd:34:93:e8:91:03:b5:f2:1e:02:6d:c4:41:37:b8: 6e:87:bf:c2:19:e7:50:ba:a4:09:55:fd:b6:77:90: 98:b5:db:96:17:e4:36:45:0b:31:35:57:bb:7e:20: 39:af:4b:41:5f:48:24:69:7f:b5:7e:f4:ac:50:e7: 44:07:c3:af:c7:25:ba:e1:c5:1c:ea:ac:c5:78:16: f9:47:32:33:e6:d9:0c:4a:d4:d1:0f:8b:5d:cd:e6: 56:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:18:E7:0A:62:73:78:D5:14:09:9F:0C:A5:1E:7A:0E:3C:4D:CC:FA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS396982.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.152.0/23 Signature Algorithm: sha256WithRSAEncryption 01:d0:8f:84:82:de:ad:92:d2:86:e9:89:47:61:09:84:c2:1e: 1d:a4:b2:3b:16:4b:a8:3c:ce:cd:a2:73:70:aa:cb:ad:d7:6e: 83:2c:db:8e:36:85:66:a4:5e:58:5d:2d:69:a0:ef:3a:d2:07: 07:bd:e0:11:74:4b:1c:f2:99:86:ce:08:32:8c:10:8d:ad:9d: c1:80:e2:da:4e:ac:4f:cf:14:ed:1f:d1:13:24:be:94:fb:c9: 14:86:fb:34:61:e6:7f:e7:2c:13:0b:b1:bb:fe:e5:c8:f6:84: 33:7d:30:e3:0d:11:a4:b0:e6:50:e6:bf:51:1f:d5:ef:ff:c6: 69:ec:c0:65:d8:0a:f2:3f:e0:fc:9d:fb:5a:b0:09:52:f6:d0: 44:b4:8f:d3:9d:69:e9:ca:b6:a5:9c:f5:35:22:db:e3:37:48: f0:b6:cb:29:b5:a4:79:10:08:74:44:60:89:73:92:e2:e3:96: f3:94:f8:f1:26:5a:56:25:de:5c:35:20:a3:f4:dd:a9:95:13: 5f:af:3e:d3:64:b8:ac:13:e6:d9:86:a6:99:ee:0d:b9:12:cc: 16:c7:60:8f:8f:b1:e2:72:c7:aa:bc:48:71:3a:d4:9e:88:4e: 02:07:45:00:f0:bf:26:85:74:ec:76:87:33:db:ff:87:b8:61: 3c:28:b4:98 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFDHLmjE9tdmB2XJj1ZeSykIZGGgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxNTAyNTkxM1oX DTI1MDMxNDAzMDQxM1owMzExMC8GA1UEAxMoNjMxOEU3MEE2MjczNzhENTE0MDk5 RjBDQTUxRTdBMEUzQzREQ0NGQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALljEwt2aWENmbEjaEI1OVtHgcdYCcJUVbb1pbl8x5KZ2RhndFrZaAe/kMOT wKMk3W99U3xDy83DyBE7IJerEzbRDdElaAjW90kyKC9d47IbzG/098p7VsKJRJyr vgXU0AcnE6PezwGxvOVCTiih4Ox/qB4xPDKw3HEsh5Ky92//QdWRiOGaq75Hg/xB +46/zrVjN285+rp2ydWJeyMiNppTGnEzvTST6JEDtfIeAm3EQTe4boe/whnnULqk CVX9tneQmLXblhfkNkULMTVXu34gOa9LQV9IJGl/tX70rFDnRAfDr8cluuHFHOqs xXgW+UcyM+bZDErU0Q+LXc3mVtsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRjGOcK YnN41RQJnwylHnoOPE3M+jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM5Njk4Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWelmDANBgkqhkiG9w0BAQsFAAOCAQEAAdCPhILerZLShumJR2EJ hMIeHaSyOxZLqDzOzaJzcKrLrddugyzbjjaFZqReWF0taaDvOtIHB73gEXRLHPKZ hs4IMowQja2dwYDi2k6sT88U7R/REyS+lPvJFIb7NGHmf+csEwuxu/7lyPaEM30w 4w0RpLDmUOa/UR/V7//GaezAZdgK8j/g/J37WrAJUvbQRLSP051p6cq2pZz1NSLb 4zdI8LbLKbWkeRAIdERgiXOS4uOW85T48SZaViXeXDUgo/TdqZUTX68+02S4rBPm 2Yamme4NuRLMFsdgj4+x4nLHqrxIcTrUnohOAgdFAPC/JoV07HaHM9v/h7hhPCi0 mA== -----END CERTIFICATE-----Generated at Mon May 6 01:46:08 2024 by rpki-client on console-ams.rpki-client.org