$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131719.roa File: AS131719.roa (raw, json) Hash identifier: mXPyAC+p9oAX114DlpIVCrwJXNOjBFRtgHR7j475tnk= Subject key identifier: EE:AB:F7:DA:AB:39:BC:FF:03:89:F7:D6:6E:08:76:E5:AC:B6:72:88 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 145169F6473DB9DBEF195DFBA72263C109702B26 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131719.roa Signing time: Tue 09 Jan 2024 04:00:29 +0000 ROA not before: Tue 09 Jan 2024 03:55:29 +0000 ROA not after: Tue 07 Jan 2025 04:00:29 +0000 asID: 131719 IP address blocks: 103.239.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:51:69:f6:47:3d:b9:db:ef:19:5d:fb:a7:22:63:c1:09:70:2b:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:29 2024 GMT Not After : Jan 7 04:00:29 2025 GMT Subject: CN=EEABF7DAAB39BCFF0389F7D66E0876E5ACB67288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e4:43:6b:bd:41:8e:ed:a2:57:67:82:90:43: 82:e9:73:10:c4:d6:50:d6:04:fb:30:4d:69:da:bb: 92:d7:57:d5:ac:82:06:54:cb:c3:a8:bc:39:86:39: fc:db:60:6e:65:ef:85:5f:02:d7:b7:df:4f:a2:87: e8:e8:f4:47:d2:c5:4b:9b:44:02:d9:0f:4f:5e:77: 11:5f:f2:0a:1a:26:c5:a2:39:b4:e9:b5:1d:ea:b6: ef:da:97:93:a8:c2:fa:77:bc:ce:48:a8:a1:05:27: b7:70:3b:72:cf:6e:63:1a:43:6f:a4:55:43:69:65: 54:58:d9:50:18:94:e1:af:55:3d:37:52:29:4b:d3: 1f:f6:9c:61:c7:0b:6a:05:86:5a:e5:8d:fd:4f:8d: 76:7b:61:3a:57:57:18:30:05:f8:af:6d:60:1d:b2: 9b:59:0c:bf:ca:4d:8d:ce:63:5e:50:b1:12:e7:ca: a6:6c:13:b6:1d:b7:31:cc:51:93:5c:fb:96:a0:17: 5b:72:b1:79:9e:02:88:39:7b:e0:55:17:a7:8f:05: 6c:8f:31:fe:dc:6d:0d:44:cc:e5:26:d2:da:ac:1d: ca:69:e3:53:8b:1a:a0:1b:7c:33:3a:7c:1b:27:3b: e9:bd:a5:9c:c8:13:05:56:15:74:8d:36:bf:4e:61: 1c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:AB:F7:DA:AB:39:BC:FF:03:89:F7:D6:6E:08:76:E5:AC:B6:72:88 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131719.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.165.0/24 Signature Algorithm: sha256WithRSAEncryption 97:79:46:c2:f0:62:15:a5:26:fd:33:c2:cd:94:f2:53:79:da: ce:98:19:db:cc:48:5a:66:b9:e7:6a:19:c9:c7:67:db:57:aa: 02:ff:aa:fa:b4:01:80:56:9d:26:6f:00:17:b5:bf:5d:dc:dd: 94:15:21:df:c6:60:39:36:36:2c:62:12:a9:e7:c1:2f:c2:d3: 4a:e1:a5:8d:ee:aa:ab:a6:2e:6f:21:14:23:2f:03:d6:7a:5f: 78:0d:b6:08:7e:5e:9a:56:f7:12:46:06:f4:35:46:5d:75:ee: c7:0b:a9:b1:58:a3:0e:d3:d3:aa:59:7c:d9:d8:19:e6:78:36: 0a:de:63:9c:97:42:a6:ae:59:b7:ac:74:a5:51:36:d0:ff:7e: 34:fe:e0:5c:35:8d:49:07:eb:a0:5e:f3:5b:c8:a5:95:32:50: 9f:fa:4a:71:e9:e6:66:00:b9:cc:28:7a:d7:65:ad:10:09:15: 68:16:b6:b8:e9:51:fc:b7:2e:e3:84:ba:d5:73:82:23:3d:bf: d4:14:83:d1:7a:d9:ac:16:8d:3c:8d:b6:80:1d:59:e3:7c:0c: 5e:d1:a3:3c:d8:b5:e2:ae:b9:23:18:6a:f6:f6:dc:2f:29:43: 05:2f:f3:49:59:f9:34:e9:c6:7e:ad:ed:2d:b9:dc:a8:c6:95: 63:80:bb:8f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFFFp9kc9udvvGV37pyJjwQlwKyYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyOVoX DTI1MDEwNzA0MDAyOVowMzExMC8GA1UEAxMoRUVBQkY3REFBQjM5QkNGRjAzODlG N0Q2NkUwODc2RTVBQ0I2NzI4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKXkQ2u9QY7toldngpBDgulzEMTWUNYE+zBNadq7ktdX1ayCBlTLw6i8OYY5 /NtgbmXvhV8C17ffT6KH6Oj0R9LFS5tEAtkPT153EV/yChomxaI5tOm1Heq279qX k6jC+ne8zkiooQUnt3A7cs9uYxpDb6RVQ2llVFjZUBiU4a9VPTdSKUvTH/acYccL agWGWuWN/U+NdnthOldXGDAF+K9tYB2ym1kMv8pNjc5jXlCxEufKpmwTth23McxR k1z7lqAXW3KxeZ4CiDl74FUXp48FbI8x/txtDUTM5SbS2qwdymnjU4saoBt8Mzp8 Gyc76b2lnMgTBVYVdI02v05hHL0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTuq/fa qzm8/wOJ99ZuCHblrLZyiDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTcxOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfvpTANBgkqhkiG9w0BAQsFAAOCAQEAl3lGwvBiFaUm/TPCzZTy U3nazpgZ28xIWma552oZycdn21eqAv+q+rQBgFadJm8AF7W/XdzdlBUh38ZgOTY2 LGISqefBL8LTSuGlje6qq6YubyEUIy8D1npfeA22CH5emlb3EkYG9DVGXXXuxwup sVijDtPTqll82dgZ5ng2Ct5jnJdCpq5Zt6x0pVE20P9+NP7gXDWNSQfroF7zW8il lTJQn/pKcenmZgC5zCh612WtEAkVaBa2uOlR/Lcu44S61XOCIz2/1BSD0XrZrBaN PI22gB1Z43wMXtGjPNi14q65Ixhq9vbcLylDBS/zSVn5NOnGfq3tLbncqMaVY4C7 jw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:46 2024 by rpki-client on console-ams.rpki-client.org