$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131702.roa File: AS131702.roa (raw, json) Hash identifier: orJJe6iIrEEmOA+HDeaP9G66cPyHcNc7+ij0wxShjpU= Subject key identifier: 74:66:AA:08:0A:0E:42:2B:E8:38:9A:5E:91:56:78:80:48:40:D3:18 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3A58F8C54C59BDD010B6AE1A8BE0FBDABA7B8912 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131702.roa Signing time: Thu 14 Mar 2024 08:00:00 +0000 ROA not before: Thu 14 Mar 2024 07:55:00 +0000 ROA not after: Thu 13 Mar 2025 08:00:00 +0000 asID: 131702 IP address blocks: 103.154.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:58:f8:c5:4c:59:bd:d0:10:b6:ae:1a:8b:e0:fb:da:ba:7b:89:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 14 07:55:00 2024 GMT Not After : Mar 13 08:00:00 2025 GMT Subject: CN=7466AA080A0E422BE8389A5E915678804840D318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:91:7d:a9:30:58:da:0c:56:9c:97:63:4a:e0: 05:62:20:51:b4:bd:36:a9:98:1f:81:a4:21:f6:25: fc:89:9b:0d:0e:3c:7c:51:5b:b5:7b:e1:e5:d7:f2: bd:1a:bf:40:01:89:b7:8a:ca:32:3d:95:aa:aa:00: f5:b2:b1:11:a2:87:e8:82:bb:c1:34:2e:3e:28:bf: f7:a1:91:3b:03:28:b9:6e:03:ee:82:87:7d:9b:2b: 15:8f:dc:20:0a:60:a1:0f:67:e0:32:e9:a1:d3:8b: b1:2d:d5:67:c6:f0:4b:db:d9:d4:3f:7e:6e:63:0e: ec:a7:87:cd:78:2f:e6:35:cc:d1:4a:47:46:f4:77: 84:0b:3c:8e:69:6f:31:0f:c2:30:d1:eb:04:79:af: 09:e7:d2:47:d4:6e:00:a4:f9:72:20:77:90:ee:ce: d1:64:68:35:15:5d:65:d3:50:e7:fa:27:26:f3:e4: ff:18:cf:53:85:3b:af:74:6a:8a:63:a4:15:3b:d5: 5e:6b:b0:6f:36:d7:ad:2d:d2:1b:7f:c8:94:34:9c: de:cf:ac:6f:f5:25:6e:0a:fd:9b:30:e7:8a:a2:90: 03:d7:62:49:85:89:97:a8:81:46:0e:e4:4f:3f:68: 0d:7a:fd:42:7d:3b:eb:05:80:86:ed:88:b7:e6:10: c4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:66:AA:08:0A:0E:42:2B:E8:38:9A:5E:91:56:78:80:48:40:D3:18 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131702.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.227.0/24 Signature Algorithm: sha256WithRSAEncryption 11:e6:ed:5d:3e:ed:df:cb:51:6b:2b:b9:7b:d3:94:32:42:de: 04:86:a1:b7:94:ed:8a:57:6c:0c:11:13:41:ff:18:15:87:d2: c1:bb:fe:02:11:ca:ce:14:e5:77:3f:7d:72:a9:a0:9b:67:f3: 2b:61:8c:0e:2f:ca:e0:36:a4:35:e6:45:4e:bc:47:b3:30:cd: 62:bd:a8:8d:f8:68:9f:9d:20:17:db:9d:7e:ba:b7:22:15:39: fb:17:29:65:db:7f:5f:7b:d4:8c:43:51:69:ca:c2:56:e2:eb: fa:d1:4c:a0:83:b0:bf:23:c4:22:9c:54:12:55:23:45:0d:f3: 91:84:82:7a:b0:ee:3d:04:22:32:b2:e4:90:cc:48:3b:82:7d: d7:21:68:57:10:10:ba:9c:f0:78:cb:aa:0c:4f:c7:da:ad:cd: 49:c8:d3:2c:37:94:47:e2:f4:0a:04:a5:db:53:50:0e:59:51: fa:4e:2f:cb:27:aa:4a:8e:54:07:26:04:bb:54:4c:5c:71:f9: 37:dc:b2:c0:81:8d:23:d7:47:8c:b1:04:af:2c:27:6e:94:42: a2:72:5e:c2:a2:11:08:00:6d:95:ce:dd:94:45:4c:92:9d:9f: 22:90:a3:66:8d:29:7e:b5:58:48:26:f7:75:66:cb:c0:76:47: d2:d6:f2:4c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOlj4xUxZvdAQtq4ai+D72rp7iRIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxNDA3NTUwMFoX DTI1MDMxMzA4MDAwMFowMzExMC8GA1UEAxMoNzQ2NkFBMDgwQTBFNDIyQkU4Mzg5 QTVFOTE1Njc4ODA0ODQwRDMxODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+RfakwWNoMVpyXY0rgBWIgUbS9NqmYH4GkIfYl/ImbDQ48fFFbtXvh5dfy vRq/QAGJt4rKMj2VqqoA9bKxEaKH6IK7wTQuPii/96GROwMouW4D7oKHfZsrFY/c IApgoQ9n4DLpodOLsS3VZ8bwS9vZ1D9+bmMO7KeHzXgv5jXM0UpHRvR3hAs8jmlv MQ/CMNHrBHmvCefSR9RuAKT5ciB3kO7O0WRoNRVdZdNQ5/onJvPk/xjPU4U7r3Rq imOkFTvVXmuwbzbXrS3SG3/IlDSc3s+sb/Ulbgr9mzDniqKQA9diSYWJl6iBRg7k Tz9oDXr9Qn076wWAhu2It+YQxAkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR0ZqoI Cg5CK+g4ml6RVniASEDTGDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTcwMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGea4zANBgkqhkiG9w0BAQsFAAOCAQEAEebtXT7t38tRayu5e9OU MkLeBIaht5TtildsDBETQf8YFYfSwbv+AhHKzhTldz99cqmgm2fzK2GMDi/K4Dak NeZFTrxHszDNYr2ojfhon50gF9udfrq3IhU5+xcpZdt/X3vUjENRacrCVuLr+tFM oIOwvyPEIpxUElUjRQ3zkYSCerDuPQQiMrLkkMxIO4J91yFoVxAQupzweMuqDE/H 2q3NScjTLDeUR+L0CgSl21NQDllR+k4vyyeqSo5UByYEu1RMXHH5N9yywIGNI9dH jLEErywnbpRConJewqIRCABtlc7dlEVMkp2fIpCjZo0pfrVYSCb3dWbLwHZH0tby TA== -----END CERTIFICATE-----Generated at Tue May 7 16:42:39 2024 by rpki-client on console-ams.rpki-client.org