$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131717.roa File: AS131717.roa (raw, json) Hash identifier: HYYraAHrc+R7HFk+CpwrOeujgQhoRPrpXq5ACiB1sUE= Subject key identifier: A4:9A:BC:A6:32:E3:9F:9D:40:49:AD:24:C6:8B:EA:A5:A0:99:71:55 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6B097401A7665FD9359784E0D1C6AE290AEAE325 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131717.roa Signing time: Tue 17 Sep 2024 10:00:00 +0000 ROA not before: Tue 17 Sep 2024 09:55:00 +0000 ROA not after: Tue 16 Sep 2025 10:00:00 +0000 asID: 131717 IP address blocks: 103.184.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:09:74:01:a7:66:5f:d9:35:97:84:e0:d1:c6:ae:29:0a:ea:e3:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 17 09:55:00 2024 GMT Not After : Sep 16 10:00:00 2025 GMT Subject: CN=A49ABCA632E39F9D4049AD24C68BEAA5A0997155 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:55:f2:aa:3f:63:c6:f7:01:80:37:a5:e7:9a: dd:6e:b2:08:b3:55:4c:e7:e8:9a:1f:9e:6c:77:52: 8a:76:ec:ab:e3:f5:95:4b:36:1c:a3:c5:b2:30:fa: a9:a4:0f:3a:da:bc:73:69:3c:1f:09:93:5d:7a:65: cf:82:f2:32:6a:05:9b:04:7f:90:be:b3:29:4f:00: f1:77:fc:69:b9:90:77:d9:2b:dd:7c:25:33:ed:30: b8:a2:20:e1:49:3d:99:eb:53:72:87:ea:b5:49:27: 73:64:50:f9:59:53:5a:00:eb:19:70:4c:e8:d7:89: 52:d8:48:e0:a5:f3:e2:b1:ef:3b:d4:30:ab:0a:68: 49:c0:1a:77:d8:09:c2:30:c1:1e:8a:a6:d8:8d:e4: 46:25:28:82:28:f3:19:52:da:b9:62:77:0e:2f:01: 9f:76:48:b4:a4:28:9e:e9:9d:d2:b4:cc:3d:4e:b9: b4:94:a7:38:33:32:fe:6d:2f:72:b4:45:df:d8:a4: 8e:6a:6c:78:66:fa:8b:e8:3c:20:e8:ac:45:52:e1: 2d:ec:d6:19:6e:91:24:f9:88:dc:ce:ae:56:9e:9e: 1f:54:f3:e7:34:c8:09:08:4c:26:4b:b7:5b:92:58: 8e:ab:a8:50:8e:4c:8b:70:13:e1:3a:b7:50:0e:43: f8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:9A:BC:A6:32:E3:9F:9D:40:49:AD:24:C6:8B:EA:A5:A0:99:71:55 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131717.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.98.0/23 Signature Algorithm: sha256WithRSAEncryption 30:12:9d:26:4a:aa:96:50:a2:90:6c:0a:5b:2c:2f:fa:24:a1: cd:7f:b7:85:ca:36:06:b8:fd:f1:94:18:de:80:2c:b5:4c:c0: c7:15:87:0e:7a:82:f2:c5:fc:53:dc:88:1c:3b:6c:fd:97:2f: c3:2c:d6:0e:7d:5f:70:06:97:87:7a:b8:0b:b6:e0:69:bd:ab: af:85:88:8f:e0:3e:24:77:85:81:87:56:4e:d7:b3:11:04:ea: 47:a5:2e:4c:e9:80:41:7a:d6:4b:68:91:14:49:0b:d1:0c:5b: 28:be:22:34:f8:e6:b2:48:5a:1c:a8:34:a4:2e:db:98:dc:f1: fe:18:43:42:b8:77:08:5d:21:dc:97:5e:26:40:db:35:9e:91: 85:93:a2:87:8b:c9:84:55:91:21:09:6e:ae:ae:cd:d2:7f:0f: 6c:5b:5e:44:06:df:c1:f5:32:17:15:6e:96:c8:0f:37:bd:65: 30:77:4d:9f:6e:fa:0a:58:4d:71:7a:9b:68:51:f2:96:44:d1: 55:c7:d5:6b:c7:33:e7:de:9b:ba:e8:91:cc:f9:f3:a9:ce:04: e7:5e:ad:59:fd:40:aa:f7:91:6c:5c:62:02:0a:41:bd:9d:42: 8d:25:91:94:df:db:69:5b:7a:5b:65:d8:17:71:1c:31:2d:8f: ec:d6:e8:13 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUawl0AadmX9k1l4Tg0cauKQrq4yUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxNzA5NTUwMFoX DTI1MDkxNjEwMDAwMFowMzExMC8GA1UEAxMoQTQ5QUJDQTYzMkUzOUY5RDQwNDlB RDI0QzY4QkVBQTVBMDk5NzE1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOFV8qo/Y8b3AYA3peea3W6yCLNVTOfomh+ebHdSinbsq+P1lUs2HKPFsjD6 qaQPOtq8c2k8HwmTXXplz4LyMmoFmwR/kL6zKU8A8Xf8abmQd9kr3XwlM+0wuKIg 4Uk9metTcofqtUknc2RQ+VlTWgDrGXBM6NeJUthI4KXz4rHvO9QwqwpoScAad9gJ wjDBHoqm2I3kRiUogijzGVLauWJ3Di8Bn3ZItKQonumd0rTMPU65tJSnODMy/m0v crRF39ikjmpseGb6i+g8IOisRVLhLezWGW6RJPmI3M6uVp6eH1Tz5zTICQhMJku3 W5JYjquoUI5Mi3AT4Tq3UA5D+DsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSkmrym MuOfnUBJrSTGi+qloJlxVTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTcxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe4YjANBgkqhkiG9w0BAQsFAAOCAQEAMBKdJkqqllCikGwKWywv +iShzX+3hco2Brj98ZQY3oAstUzAxxWHDnqC8sX8U9yIHDts/ZcvwyzWDn1fcAaX h3q4C7bgab2rr4WIj+A+JHeFgYdWTtezEQTqR6UuTOmAQXrWS2iRFEkL0QxbKL4i NPjmskhaHKg0pC7bmNzx/hhDQrh3CF0h3JdeJkDbNZ6RhZOih4vJhFWRIQlurq7N 0n8PbFteRAbfwfUyFxVulsgPN71lMHdNn276ClhNcXqbaFHylkTRVcfVa8cz596b uuiRzPnzqc4E516tWf1AqveRbFxiAgpBvZ1CjSWRlN/baVt6W2XYF3EcMS2P7Nbo Ew== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:46 2024 by rpki-client on console-ams.rpki-client.org