$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55701.roa File: AS55701.roa (raw, json) Hash identifier: cJeUIad5LBvFRizhsoPtQjVbfvqwgFCPs+50u0UPfOM= Subject key identifier: F8:8F:5C:01:42:55:CB:AB:B5:1E:2B:81:BD:73:CE:FB:33:BF:4C:DC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4DBD9CD67B42DED0C4DB12BD5FEE34F23568D45A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55701.roa Signing time: Tue 09 Jan 2024 04:00:11 +0000 ROA not before: Tue 09 Jan 2024 03:55:11 +0000 ROA not after: Tue 07 Jan 2025 04:00:11 +0000 asID: 55701 IP address blocks: 103.163.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 04:11:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:bd:9c:d6:7b:42:de:d0:c4:db:12:bd:5f:ee:34:f2:35:68:d4:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:11 2024 GMT Not After : Jan 7 04:00:11 2025 GMT Subject: CN=F88F5C014255CBABB51E2B81BD73CEFB33BF4CDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d4:b3:7c:b9:22:63:ee:16:4e:02:43:ab:ad: 09:ce:5a:65:fe:52:a9:91:7a:36:95:42:62:e1:c9: 32:9f:e7:2b:f8:3c:f8:dc:20:bb:74:b6:6d:19:8b: 7d:83:57:b8:45:01:6e:60:ce:89:17:e6:33:52:9d: 03:7f:63:42:93:45:d3:fc:5a:f9:2d:b6:4c:ff:e6: c8:c0:f7:df:1f:9a:36:f4:66:1d:b6:a5:95:4d:df: 82:85:b1:25:dc:3c:ec:70:ec:2c:08:4f:07:24:f2: 26:3a:eb:04:08:23:f2:28:70:f8:15:83:b3:d4:4b: bd:37:a2:33:10:0a:47:41:4a:38:9b:60:f5:e5:72: 5e:c6:a8:f8:1d:26:44:86:34:50:f4:1b:6b:4f:62: 2d:ec:08:3e:00:73:5a:06:82:a2:71:06:66:96:f3: 39:85:04:4e:12:f6:07:36:23:01:b9:e2:36:34:5a: bf:e5:e1:95:fd:6a:41:ed:be:e4:fc:73:81:e2:3e: 19:e2:49:c4:c5:80:10:55:7f:9e:ab:00:f2:82:6e: ca:11:98:e3:ac:75:48:56:29:fe:2e:57:01:f4:cd: af:9c:3e:d2:5f:80:07:88:ec:9e:98:b3:08:1f:c4: 76:7d:e5:c5:09:34:bd:69:23:86:21:43:f0:eb:f5: d7:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:8F:5C:01:42:55:CB:AB:B5:1E:2B:81:BD:73:CE:FB:33:BF:4C:DC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55701.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.160.0/24 Signature Algorithm: sha256WithRSAEncryption 87:1e:64:4b:2b:34:ca:56:f5:dc:32:01:11:4f:9b:90:63:e2: 42:8f:f3:2a:47:8f:f9:ad:39:01:2f:1d:67:9c:1a:56:44:ba: 7d:21:a0:79:02:36:ec:22:ff:22:42:88:4c:aa:1a:66:1b:64: 74:2e:94:a5:87:24:f8:cb:c3:29:27:64:00:a3:b9:87:01:85: 17:4d:ef:20:ac:b2:fc:92:b6:df:42:ce:b1:4d:09:3c:9b:a9: 9e:41:09:68:39:6b:53:17:eb:e1:e1:46:1c:c0:43:5f:23:42: 2f:a2:00:80:6c:6d:db:53:5e:3c:e4:ff:74:67:a5:6c:b6:5a: 1f:06:1b:94:9c:54:5b:a4:d8:1a:08:25:c3:be:dd:bb:1e:dd: 64:e6:01:f3:90:24:c2:ed:a2:d2:3d:c9:d7:1b:95:9b:eb:b9: 4d:65:50:09:dc:f8:26:2b:2f:7e:f9:fa:97:2e:03:99:e6:60: c3:93:20:4a:63:a7:2b:93:3d:f4:17:51:e5:14:66:2b:fa:fb: 2d:0f:40:57:fc:83:6f:2a:0f:d9:8d:2f:86:2a:97:01:68:d3: 75:c7:e2:04:a3:fd:04:a3:0f:3f:c9:ef:26:57:8d:7a:ef:82: d8:80:4a:8c:85:3f:25:b6:b8:48:33:c2:87:c2:bb:3c:99:00: 2d:09:29:8b -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUTb2c1ntC3tDE2xK9X+408jVo1FowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxMVoX DTI1MDEwNzA0MDAxMVowMzExMC8GA1UEAxMoRjg4RjVDMDE0MjU1Q0JBQkI1MUUy QjgxQkQ3M0NFRkIzM0JGNENEQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKnUs3y5ImPuFk4CQ6utCc5aZf5SqZF6NpVCYuHJMp/nK/g8+Nwgu3S2bRmL fYNXuEUBbmDOiRfmM1KdA39jQpNF0/xa+S22TP/myMD33x+aNvRmHballU3fgoWx Jdw87HDsLAhPByTyJjrrBAgj8ihw+BWDs9RLvTeiMxAKR0FKOJtg9eVyXsao+B0m RIY0UPQba09iLewIPgBzWgaConEGZpbzOYUEThL2BzYjAbniNjRav+Xhlf1qQe2+ 5PxzgeI+GeJJxMWAEFV/nqsA8oJuyhGY46x1SFYp/i5XAfTNr5w+0l+AB4jsnpiz CB/Edn3lxQk0vWkjhiFD8Ov1100CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBT4j1wB QlXLq7UeK4G9c877M79M3DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU1NzAxLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6OgMA0GCSqGSIb3DQEBCwUAA4IBAQCHHmRLKzTKVvXcMgERT5uQ Y+JCj/MqR4/5rTkBLx1nnBpWRLp9IaB5AjbsIv8iQohMqhpmG2R0LpSlhyT4y8Mp J2QAo7mHAYUXTe8grLL8krbfQs6xTQk8m6meQQloOWtTF+vh4UYcwENfI0IvogCA bG3bU1485P90Z6VstlofBhuUnFRbpNgaCCXDvt27Ht1k5gHzkCTC7aLSPcnXG5Wb 67lNZVAJ3PgmKy9++fqXLgOZ5mDDkyBKY6crkz30F1HlFGYr+vstD0BX/INvKg/Z jS+GKpcBaNN1x+IEo/0Eow8/ye8mV41674LYgEqMhT8ltrhIM8KHwrs8mQAtCSmL -----END CERTIFICATE-----Generated at Sat Apr 27 17:53:10 2024 by rpki-client on console-ams.rpki-client.org