$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131704.roa File: AS131704.roa (raw, json) Hash identifier: UB6GzBLsA01xo8EdB8PmPVc4QMPtlduNO9x6/frVKEg= Subject key identifier: 7C:65:B0:6E:42:DF:BA:2A:3D:CD:84:80:6F:57:7B:14:9F:5D:03:46 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 79559EB249235463259F53571D01358695926C62 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131704.roa Signing time: Tue 09 Jan 2024 05:00:00 +0000 ROA not before: Tue 09 Jan 2024 04:55:00 +0000 ROA not after: Tue 07 Jan 2025 05:00:00 +0000 asID: 131704 IP address blocks: 119.2.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:55:9e:b2:49:23:54:63:25:9f:53:57:1d:01:35:86:95:92:6c:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 04:55:00 2024 GMT Not After : Jan 7 05:00:00 2025 GMT Subject: CN=7C65B06E42DFBA2A3DCD84806F577B149F5D0346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2f:66:18:c7:62:dc:5c:9b:44:15:37:d2:d5: 64:e8:7b:f7:6b:52:a6:e7:f6:1b:af:b4:39:e6:60: dc:84:4a:be:f3:58:86:fb:08:f9:12:2b:26:c3:43: fd:da:53:99:2f:b5:e7:9f:71:3c:7c:5f:72:2d:27: 2b:05:a1:ef:81:6e:e6:91:18:8b:4d:e1:a1:7f:54: ea:6c:f1:1d:90:b1:a9:82:d6:aa:83:96:9d:85:7d: 4b:bb:b3:9e:4f:ea:9b:a6:04:85:e8:b8:f2:13:4b: 4b:25:e8:bd:4b:ff:9c:8e:85:f9:c5:fb:37:a3:9b: 4d:3f:d0:47:c9:a1:cf:41:61:23:64:38:b2:91:2a: 5d:38:26:14:e3:ef:46:6b:85:3e:8c:ed:f3:4f:57: 56:5f:56:12:40:c6:a6:65:bb:af:96:e5:13:ec:d3: a6:eb:14:df:c3:72:16:b5:51:73:a3:17:94:33:d3: 5f:97:4f:09:ae:12:7b:87:8d:cf:0b:44:c1:e8:b3: 53:9e:46:4c:6d:10:1e:77:bd:5a:70:c5:da:64:fe: c6:30:f2:cb:a9:72:38:51:5d:61:24:ff:03:69:db: b5:45:74:90:9b:77:0b:57:63:13:3e:83:33:05:95: 63:a8:3b:a6:b8:1d:6d:a9:7d:b0:97:d0:f6:65:91: 16:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:65:B0:6E:42:DF:BA:2A:3D:CD:84:80:6F:57:7B:14:9F:5D:03:46 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131704.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.64.0/19 Signature Algorithm: sha256WithRSAEncryption 21:01:67:c4:fa:dc:14:d5:42:67:15:f2:ac:e5:e9:14:fd:f8: 7d:0b:9e:33:fb:a1:4a:11:27:04:35:c3:44:d8:4a:b5:5b:92: 78:de:e5:af:d6:a5:4c:56:7a:0c:f8:c6:4f:e3:ab:49:32:7a: 66:a7:c5:62:79:9b:fd:6b:98:b3:fa:ad:aa:42:d0:13:78:c6: df:26:99:14:b4:21:b7:aa:22:5b:59:85:06:8d:8e:ce:b4:00: c4:36:b3:7d:a3:d1:86:fb:08:78:2d:46:3e:61:08:ca:c4:e6: 28:6a:20:1b:99:fd:f8:33:56:a4:cf:6d:ae:6c:24:98:34:21: 47:be:74:6b:3e:26:38:fd:8b:db:73:e8:22:84:ad:9f:d1:82: 8b:73:9a:1a:f1:09:48:d0:de:35:1e:db:02:f3:3d:5b:f6:76: 85:53:08:56:c0:5f:d6:f4:f3:9b:fb:3d:d9:4d:88:c3:e9:e5: 3f:97:fe:28:b7:1e:c5:7b:66:bc:0c:9a:ec:68:99:d1:c0:e7: f6:9c:56:aa:6e:22:9d:3c:53:36:9f:66:1a:d3:b0:b3:2c:42: 59:08:6b:91:1c:c5:cc:c8:d7:30:28:3f:07:11:a8:ee:39:eb: 89:56:2a:1f:c9:7c:fa:eb:27:76:0e:4d:84:eb:1e:b4:c0:c6: 42:2a:ba:86 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUeVWeskkjVGMln1NXHQE1hpWSbGIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTA0NTUwMFoX DTI1MDEwNzA1MDAwMFowMzExMC8GA1UEAxMoN0M2NUIwNkU0MkRGQkEyQTNEQ0Q4 NDgwNkY1NzdCMTQ5RjVEMDM0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALQvZhjHYtxcm0QVN9LVZOh792tSpuf2G6+0OeZg3IRKvvNYhvsI+RIrJsND /dpTmS+1559xPHxfci0nKwWh74Fu5pEYi03hoX9U6mzxHZCxqYLWqoOWnYV9S7uz nk/qm6YEhei48hNLSyXovUv/nI6F+cX7N6ObTT/QR8mhz0FhI2Q4spEqXTgmFOPv RmuFPozt809XVl9WEkDGpmW7r5blE+zTpusU38NyFrVRc6MXlDPTX5dPCa4Se4eN zwtEweizU55GTG0QHne9WnDF2mT+xjDyy6lyOFFdYST/A2nbtUV0kJt3C1djEz6D MwWVY6g7prgdbal9sJfQ9mWRFukCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR8ZbBu Qt+6Kj3NhIBvV3sUn10DRjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTcwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBXcCQDANBgkqhkiG9w0BAQsFAAOCAQEAIQFnxPrcFNVCZxXyrOXp FP34fQueM/uhShEnBDXDRNhKtVuSeN7lr9alTFZ6DPjGT+OrSTJ6ZqfFYnmb/WuY s/qtqkLQE3jG3yaZFLQht6oiW1mFBo2OzrQAxDazfaPRhvsIeC1GPmEIysTmKGog G5n9+DNWpM9trmwkmDQhR750az4mOP2L23PoIoStn9GCi3OaGvEJSNDeNR7bAvM9 W/Z2hVMIVsBf1vTzm/s92U2Iw+nlP5f+KLcexXtmvAya7GiZ0cDn9pxWqm4inTxT Np9mGtOwsyxCWQhrkRzFzMjXMCg/BxGo7jnriVYqH8l8+usndg5NhOsetMDGQiq6 hg== -----END CERTIFICATE-----Generated at Wed May 8 15:17:41 2024 by rpki-client on console-fra.rpki-client.org