$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131715.roa File: AS131715.roa (raw, json) Hash identifier: MUrsEyF7cZNg53hU5APQO7BoLin/Z0FGwXdTy+yvrMk= Subject key identifier: 06:BB:D5:BF:C2:65:DE:69:11:43:28:5A:6A:19:FF:92:45:9D:F4:06 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 14AC0BF27A9B90B84F1EB8E67F1489EAAE483BDF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131715.roa Signing time: Tue 08 Oct 2024 01:00:00 +0000 ROA not before: Tue 08 Oct 2024 00:55:00 +0000 ROA not after: Tue 07 Oct 2025 01:00:00 +0000 asID: 131715 IP address blocks: 103.8.228.0/24 maxlen: 24 103.209.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:ac:0b:f2:7a:9b:90:b8:4f:1e:b8:e6:7f:14:89:ea:ae:48:3b:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 8 00:55:00 2024 GMT Not After : Oct 7 01:00:00 2025 GMT Subject: CN=06BBD5BFC265DE691143285A6A19FF92459DF406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:21:9c:a2:c5:17:66:68:bc:10:1b:1f:1e:c1: df:45:00:67:49:fb:b1:ea:0d:9f:7b:0f:6f:ee:9c: 37:cd:fc:2f:f0:cc:83:d2:b4:cf:ff:ed:a6:c7:31: d7:ad:24:52:12:30:66:d6:42:81:bb:5d:fc:ff:dd: d0:ac:88:f8:dc:04:26:e8:f5:f1:89:36:31:9a:52: 88:51:c8:1a:12:0e:8e:d6:32:d0:81:1f:a5:17:59: 9a:19:1f:3d:82:8d:0f:31:b0:91:20:7e:c6:3f:da: 85:d1:92:55:e0:a0:eb:b9:12:1e:3d:f7:89:93:97: a4:34:23:65:9d:c1:c2:c9:5e:fc:f9:68:06:5d:e2: 90:c2:aa:20:51:86:f9:12:3f:cd:2a:19:e8:75:14: e6:49:7c:c9:20:e8:4b:8a:90:45:d8:bd:d5:27:48: fe:86:f1:2f:05:bf:fd:3c:cd:a4:26:c4:fb:f4:e8: c3:e6:27:81:ab:d7:82:ad:87:8e:22:5d:c5:04:01: fe:8a:97:ff:0e:0b:30:15:a1:3c:7f:1d:4c:e4:58: dc:a2:67:ff:37:b3:d2:9d:c7:7f:a8:55:37:1a:00: 8e:7d:4b:e0:e7:08:36:15:9e:d3:ce:a5:be:b7:14: 14:70:bc:e5:f3:63:77:da:59:2d:fa:0b:69:34:48: 7b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:BB:D5:BF:C2:65:DE:69:11:43:28:5A:6A:19:FF:92:45:9D:F4:06 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131715.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.8.228.0/24 103.209.130.0/24 Signature Algorithm: sha256WithRSAEncryption 98:a4:f9:bb:ab:e4:f1:69:d0:48:c6:47:40:80:61:b9:70:b4: db:95:25:12:af:f7:0a:7e:39:a7:d7:1c:c9:23:04:5f:e8:fa: 4a:f5:85:7c:7a:5c:10:b0:83:db:7b:2d:dd:75:e9:97:ba:a6: b9:8b:f5:07:a9:3b:60:a7:cb:ef:8f:0e:b0:ee:82:41:63:be: 8a:14:1b:33:22:e3:ab:4b:e3:31:87:4d:28:5d:94:1e:4e:76: 66:8e:fd:da:bf:2a:5c:4c:28:4f:28:08:b1:c7:3d:e6:0f:1e: 67:a5:35:7e:f0:49:ca:db:20:c7:80:19:a3:02:33:f5:3a:64: d8:a3:56:22:ff:8a:1d:cf:01:27:7d:86:da:5e:2a:32:f0:d7: b0:fe:82:b5:7b:a7:2c:3c:77:b2:98:33:cc:c5:29:0c:68:9d: 06:55:90:77:a4:16:38:33:e2:b3:f7:a7:54:af:fe:50:55:1d: 92:b7:9d:bd:95:17:21:18:ce:8c:86:34:ab:1b:21:e0:80:ae: b0:fb:4e:37:0c:3c:fa:78:95:d9:0b:b6:98:aa:c3:2a:cf:62: 9d:5b:77:1a:72:0d:86:b7:c2:c5:c2:10:3c:f3:08:91:fa:7d: cd:23:94:fe:2d:86:b3:f2:68:98:b1:23:ce:95:60:dd:6e:70: 09:71:1b:40 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUFKwL8nqbkLhPHrjmfxSJ6q5IO98wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwODAwNTUwMFoX DTI1MTAwNzAxMDAwMFowMzExMC8GA1UEAxMoMDZCQkQ1QkZDMjY1REU2OTExNDMy ODVBNkExOUZGOTI0NTlERjQwNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO4hnKLFF2ZovBAbHx7B30UAZ0n7seoNn3sPb+6cN838L/DMg9K0z//tpscx 160kUhIwZtZCgbtd/P/d0KyI+NwEJuj18Yk2MZpSiFHIGhIOjtYy0IEfpRdZmhkf PYKNDzGwkSB+xj/ahdGSVeCg67kSHj33iZOXpDQjZZ3Bwsle/PloBl3ikMKqIFGG +RI/zSoZ6HUU5kl8ySDoS4qQRdi91SdI/obxLwW//TzNpCbE+/Tow+YngavXgq2H jiJdxQQB/oqX/w4LMBWhPH8dTORY3KJn/zez0p3Hf6hVNxoAjn1L4OcINhWe086l vrcUFHC85fNjd9pZLfoLaTRIe5kCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQGu9W/ wmXeaRFDKFpqGf+SRZ30BjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTcxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGcI5AMEAGfRgjANBgkqhkiG9w0BAQsFAAOCAQEAmKT5u6vk8WnQ SMZHQIBhuXC025UlEq/3Cn45p9ccySMEX+j6SvWFfHpcELCD23st3XXpl7qmuYv1 B6k7YKfL748OsO6CQWO+ihQbMyLjq0vjMYdNKF2UHk52Zo792r8qXEwoTygIscc9 5g8eZ6U1fvBJytsgx4AZowIz9Tpk2KNWIv+KHc8BJ32G2l4qMvDXsP6CtXunLDx3 spgzzMUpDGidBlWQd6QWODPis/enVK/+UFUdkredvZUXIRjOjIY0qxsh4ICusPtO Nww8+niV2Qu2mKrDKs9inVt3GnINhrfCxcIQPPMIkfp9zSOU/i2Gs/JomLEjzpVg 3W5wCXEbQA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:23 2024 by rpki-client on console-fra.rpki-client.org