$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131715.roa File: AS131715.roa (raw, json) Hash identifier: x3MoSDnNDFHUpyH5IbhU+h4SeZxVNCqCXl/ce3v5nLE= Subject key identifier: 9D:FE:D7:11:51:42:7D:8D:CC:72:84:53:0B:B4:D6:19:01:C3:B8:C5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6A131CA1555DD5BFA197CC8AFACA18B7CB91EF30 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131715.roa Signing time: Tue 07 Nov 2023 00:58:07 +0000 ROA not before: Tue 07 Nov 2023 00:53:07 +0000 ROA not after: Tue 05 Nov 2024 00:58:07 +0000 asID: 131715 IP address blocks: 103.8.228.0/24 maxlen: 24 103.209.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:13:1c:a1:55:5d:d5:bf:a1:97:cc:8a:fa:ca:18:b7:cb:91:ef:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 7 00:53:07 2023 GMT Not After : Nov 5 00:58:07 2024 GMT Subject: CN=9DFED71151427D8DCC7284530BB4D61901C3B8C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:9c:11:9d:d0:d8:ee:7c:29:fa:cf:88:4d:6c: 1e:78:80:ed:bb:b0:54:b7:84:de:0a:4c:5e:58:28: e0:79:c5:d0:e1:96:28:88:d9:32:9d:5d:b8:31:dc: c0:84:b9:07:49:6e:fa:31:db:d9:0a:8c:bc:bc:90: c3:2c:0f:49:4d:98:f0:14:07:63:d2:2b:9d:62:fa: 76:5f:dd:a5:72:e4:79:08:f7:23:eb:30:74:c3:b9: d8:53:45:20:2f:95:4d:65:3b:e5:98:6e:95:d0:7f: 15:a0:d6:13:38:ba:d4:6a:61:27:c4:43:3a:26:e3: 18:dc:68:85:3d:81:b1:ef:9f:19:66:d3:25:1c:75: 92:4d:25:5e:a9:fb:23:e2:ff:94:01:83:ba:f5:09: b6:f8:43:b6:a3:f5:76:b0:85:87:6e:28:af:ca:3c: 3e:ff:94:dd:4a:80:fb:62:c3:a9:7f:bf:a8:32:c0: c5:25:22:9c:35:ec:a8:54:2e:5c:ea:b3:9c:96:25: 18:d2:22:2a:c1:68:e7:5c:26:8b:97:2f:93:e0:9a: a2:c9:f9:78:0a:66:ce:03:89:7b:aa:e5:cc:d5:b9: d1:b9:fb:08:89:a4:6e:60:0c:46:c1:b3:12:f4:35: 17:f7:ac:be:b4:5a:a9:85:7d:bc:f5:08:89:0b:46: b0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:FE:D7:11:51:42:7D:8D:CC:72:84:53:0B:B4:D6:19:01:C3:B8:C5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131715.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.8.228.0/24 103.209.130.0/24 Signature Algorithm: sha256WithRSAEncryption 12:4d:a6:f0:ba:17:0d:32:fe:e7:bc:e5:39:66:85:f0:98:1a: 37:d0:10:2c:25:cd:a7:ab:86:d6:77:6f:67:ee:6f:d3:fe:58: c4:8b:25:19:7c:61:3d:d7:48:53:6a:db:d2:6b:ab:f2:6e:2a: 83:84:ef:ac:88:4b:71:2c:cf:3c:1a:9b:2f:4e:e8:ca:5e:17: ab:99:15:f2:d7:42:2e:39:86:ae:1a:82:a1:25:cf:74:0c:0d: f8:06:81:21:5a:1d:d1:d4:53:96:a4:3c:3a:f6:7a:e6:aa:be: 71:8f:06:e0:c3:27:8f:b6:e6:93:6c:58:15:e8:f6:4d:f0:28: 7e:88:1a:77:7d:13:09:21:96:bc:87:79:b1:92:3f:f2:bc:eb: 2e:e5:df:48:92:7b:44:56:80:1d:f4:67:c7:05:f6:65:9e:58: 13:03:49:b0:40:16:1f:08:b9:7c:98:0e:1a:a4:1f:c3:4d:3b: 07:0f:f0:67:79:12:40:ee:39:ec:de:36:b8:25:9c:52:96:6c: 19:4a:b9:50:64:cc:9b:16:4d:a1:10:dc:f6:56:6c:b7:cb:8a: e4:77:a8:9b:92:fe:7f:32:77:15:d5:aa:3d:30:a8:3d:08:96: 97:65:9e:59:39:8a:ff:c7:ed:12:b9:50:93:b6:ba:e7:d9:d2: a0:46:5a:6b -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUahMcoVVd1b+hl8yK+soYt8uR7zAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwNzAwNTMwN1oX DTI0MTEwNTAwNTgwN1owMzExMC8GA1UEAxMoOURGRUQ3MTE1MTQyN0Q4RENDNzI4 NDUzMEJCNEQ2MTkwMUMzQjhDNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO+cEZ3Q2O58KfrPiE1sHniA7buwVLeE3gpMXlgo4HnF0OGWKIjZMp1duDHc wIS5B0lu+jHb2QqMvLyQwywPSU2Y8BQHY9IrnWL6dl/dpXLkeQj3I+swdMO52FNF IC+VTWU75ZhuldB/FaDWEzi61GphJ8RDOibjGNxohT2Bse+fGWbTJRx1kk0lXqn7 I+L/lAGDuvUJtvhDtqP1drCFh24or8o8Pv+U3UqA+2LDqX+/qDLAxSUinDXsqFQu XOqznJYlGNIiKsFo51wmi5cvk+Caosn5eApmzgOJe6rlzNW50bn7CImkbmAMRsGz EvQ1F/esvrRaqYV9vPUIiQtGsGkCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBSd/tcR UUJ9jcxyhFMLtNYZAcO4xTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTcxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGcI5AMEAGfRgjANBgkqhkiG9w0BAQsFAAOCAQEAEk2m8LoXDTL+ 57zlOWaF8JgaN9AQLCXNp6uG1ndvZ+5v0/5YxIslGXxhPddIU2rb0mur8m4qg4Tv rIhLcSzPPBqbL07oyl4Xq5kV8tdCLjmGrhqCoSXPdAwN+AaBIVod0dRTlqQ8OvZ6 5qq+cY8G4MMnj7bmk2xYFej2TfAofogad30TCSGWvId5sZI/8rzrLuXfSJJ7RFaA HfRnxwX2ZZ5YEwNJsEAWHwi5fJgOGqQfw007Bw/wZ3kSQO457N42uCWcUpZsGUq5 UGTMmxZNoRDc9lZst8uK5Heom5L+fzJ3FdWqPTCoPQiWl2WeWTmK/8ftErlQk7a6 59nSoEZaaw== -----END CERTIFICATE-----Generated at Wed May 8 09:50:35 2024 by rpki-client on console-fra.rpki-client.org