$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131704.roa File: AS131704.roa (raw, json) Hash identifier: AHAOKFK60Og7Z9qbrwHOu8HwB78R9GiahmvHxaQw2wY= Subject key identifier: 19:06:EE:B0:38:EB:B4:43:4C:C8:AA:0F:B4:38:3C:8A:79:DE:D7:73 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 17E79113BB2E71B914E493999680CF803DB0EE04 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131704.roa Signing time: Tue 10 Dec 2024 05:00:05 +0000 ROA not before: Tue 10 Dec 2024 04:55:05 +0000 ROA not after: Tue 09 Dec 2025 05:00:05 +0000 asID: 131704 IP address blocks: 119.2.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:e7:91:13:bb:2e:71:b9:14:e4:93:99:96:80:cf:80:3d:b0:ee:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:05 2024 GMT Not After : Dec 9 05:00:05 2025 GMT Subject: CN=1906EEB038EBB4434CC8AA0FB4383C8A79DED773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0c:47:d2:31:83:91:9e:51:11:96:73:9b:d3: cc:26:e8:21:b4:fa:cc:f8:52:fe:9c:ce:9b:08:34: b3:1f:c2:aa:9f:2c:5c:c8:62:d4:28:e9:29:db:ff: 8b:a2:cc:85:11:e9:0d:ea:96:a0:bf:b1:fb:5b:2f: 2d:f9:4b:a1:0d:be:a4:c2:2b:83:7c:0b:78:e1:36: 3a:15:f3:0d:af:e7:50:ff:80:f0:e8:65:d6:19:2c: 3d:e4:e5:dd:ea:d2:d0:13:00:e1:39:b4:02:03:1c: 52:b5:8d:5c:bb:92:60:3e:cc:fa:49:da:e8:61:e1: 66:18:bb:67:db:cf:f2:00:5c:b2:cc:a2:62:3c:38: 59:8a:2b:b2:ea:66:91:d5:25:fd:96:cb:2e:46:dd: a8:a8:02:33:6a:92:c8:3f:96:e3:15:e1:cb:5a:5d: f4:ab:2e:91:68:7b:3a:14:19:1f:86:a0:f4:0c:8e: c4:ff:1d:81:b6:3c:75:39:35:92:2d:84:38:5f:94: fe:d3:12:b1:0b:24:8f:a0:79:a5:da:d2:21:03:f6: 1f:ac:be:d3:1e:8f:07:cb:d0:70:66:52:1e:56:32: a3:83:a0:55:91:42:0d:a7:07:01:47:8b:45:cd:5b: f4:62:83:57:18:73:be:46:d6:59:0d:0b:a0:fe:1b: ff:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:06:EE:B0:38:EB:B4:43:4C:C8:AA:0F:B4:38:3C:8A:79:DE:D7:73 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131704.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.64.0/19 Signature Algorithm: sha256WithRSAEncryption 26:06:ce:d9:ef:54:68:b4:a8:cb:cd:88:13:71:e8:d1:34:7c: 57:42:9e:6d:2a:42:4b:ee:79:19:00:3d:09:2c:04:cc:e9:52: 6f:2b:3f:4d:9d:93:5d:22:7f:fa:67:4e:e1:4e:27:59:e8:7d: 55:5e:f9:81:70:6c:f0:40:a3:ce:e2:8e:17:90:be:57:a5:3a: 34:8b:64:d9:52:98:89:ca:64:9d:be:03:53:06:d8:d3:f1:a0: 74:ee:1b:e5:f5:0f:8f:54:62:c1:92:1b:a2:2e:3f:b2:c1:65: c5:1b:7f:13:45:d2:32:b6:09:f1:c7:dd:e2:c0:a6:82:de:22: e5:05:bb:b4:bc:b8:c0:94:29:52:64:8a:3a:1d:ad:78:a7:bb: e3:e2:22:0f:1b:fb:72:4d:a9:3b:b1:90:1e:9b:ff:e4:02:90: a1:23:a8:2b:bf:2f:08:2e:29:31:86:8c:0d:58:29:f5:16:27: ee:cc:81:3a:87:30:8d:69:8e:23:f0:1e:4f:2b:11:4f:cc:45: c7:94:f8:a2:08:50:10:b9:cf:fd:c6:e3:16:3f:13:89:e8:01: 67:55:89:92:26:0d:a9:6f:91:44:5b:73:8c:e0:34:4f:86:3e: 4f:39:87:05:d5:8a:a7:fc:e9:2e:64:72:f3:9d:04:91:e7:0e: 0a:e3:19:95 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUF+eRE7sucbkU5JOZloDPgD2w7gQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwNVoX DTI1MTIwOTA1MDAwNVowMzExMC8GA1UEAxMoMTkwNkVFQjAzOEVCQjQ0MzRDQzhB QTBGQjQzODNDOEE3OURFRDc3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKMMR9Ixg5GeURGWc5vTzCboIbT6zPhS/pzOmwg0sx/Cqp8sXMhi1CjpKdv/ i6LMhRHpDeqWoL+x+1svLflLoQ2+pMIrg3wLeOE2OhXzDa/nUP+A8Ohl1hksPeTl 3erS0BMA4Tm0AgMcUrWNXLuSYD7M+kna6GHhZhi7Z9vP8gBcssyiYjw4WYorsupm kdUl/ZbLLkbdqKgCM2qSyD+W4xXhy1pd9KsukWh7OhQZH4ag9AyOxP8dgbY8dTk1 ki2EOF+U/tMSsQskj6B5pdrSIQP2H6y+0x6PB8vQcGZSHlYyo4OgVZFCDacHAUeL Rc1b9GKDVxhzvkbWWQ0LoP4b//kCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQZBu6w OOu0Q0zIqg+0ODyKed7XczAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTcwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBXcCQDANBgkqhkiG9w0BAQsFAAOCAQEAJgbO2e9UaLSoy82IE3Ho 0TR8V0KebSpCS+55GQA9CSwEzOlSbys/TZ2TXSJ/+mdO4U4nWeh9VV75gXBs8ECj zuKOF5C+V6U6NItk2VKYicpknb4DUwbY0/GgdO4b5fUPj1RiwZIboi4/ssFlxRt/ E0XSMrYJ8cfd4sCmgt4i5QW7tLy4wJQpUmSKOh2teKe74+IiDxv7ck2pO7GQHpv/ 5AKQoSOoK78vCC4pMYaMDVgp9RYn7syBOocwjWmOI/AeTysRT8xFx5T4oghQELnP /cbjFj8TiegBZ1WJkiYNqW+RRFtzjOA0T4Y+TzmHBdWKp/zpLmRy850EkecOCuMZ lQ== -----END CERTIFICATE-----Generated at Tue Apr 8 12:10:39 2025 by rpki-client