$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131736.roa File: AS131736.roa (raw, json) Hash identifier: 7m5XJLPcm/s4VwHif+eEUv/hI4Xo8JL2IXPcDDxG8KE= Subject key identifier: 95:47:BA:02:49:7D:17:8D:CA:F6:EE:71:E0:6C:67:53:04:82:BB:70 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 152470A679153A0ACA088D037F86DDE944FF4F65 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131736.roa Signing time: Tue 09 Jan 2024 04:00:28 +0000 ROA not before: Tue 09 Jan 2024 03:55:28 +0000 ROA not after: Tue 07 Jan 2025 04:00:28 +0000 asID: 131736 IP address blocks: 103.132.12.0/22 maxlen: 24 202.183.0.0/20 maxlen: 24 202.183.16.0/20 maxlen: 24 2404:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:24:70:a6:79:15:3a:0a:ca:08:8d:03:7f:86:dd:e9:44:ff:4f:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:28 2024 GMT Not After : Jan 7 04:00:28 2025 GMT Subject: CN=9547BA02497D178DCAF6EE71E06C67530482BB70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:71:c9:f3:a9:11:1d:0a:8b:ed:47:8a:72:e4: 8b:dd:86:02:f7:fa:54:77:dc:d4:3f:26:57:55:20: 81:d6:fb:ef:57:e9:2c:78:53:ce:11:c0:7a:ab:1f: 2d:86:43:34:5c:bf:7b:be:e7:3c:9b:39:21:14:72: ba:5a:74:2d:f3:f8:95:13:85:c8:4f:f4:e4:e7:78: fc:68:f6:73:2b:89:82:b4:f9:28:70:c5:e3:05:16: 0d:ec:64:43:53:58:ba:09:a4:0e:3d:25:2a:ca:8e: f9:99:c0:f6:5f:0c:a9:bf:59:53:cc:56:b3:0d:83: cb:45:cb:67:08:93:46:2f:80:0d:83:06:57:1f:38: f7:23:d4:6d:69:dc:52:f5:64:3a:b8:5d:d9:4c:e9: cd:8e:b2:d5:87:50:d6:66:26:a5:08:11:1c:22:d8: 75:bf:05:cc:bb:1a:79:ea:11:a5:71:ee:6b:bb:8e: 9d:e9:cb:d1:be:56:aa:18:86:10:e8:9d:8e:c2:95: c8:1a:0c:6f:27:bc:b3:c8:84:a0:ac:42:2c:b0:cc: 01:03:52:43:6e:1c:93:d7:b2:20:ba:c7:1d:7a:4d: 08:c7:e7:60:3d:9c:80:cc:18:c4:cd:22:a0:8d:80: 1b:55:91:da:5b:3e:dc:d6:5e:de:7d:27:94:28:33: 48:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:47:BA:02:49:7D:17:8D:CA:F6:EE:71:E0:6C:67:53:04:82:BB:70 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.12.0/22 202.183.0.0/19 IPv6: 2404:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 51:56:f8:7b:6e:f8:fa:db:43:c4:5a:33:03:ed:da:6c:08:2f: aa:25:69:0c:d1:9c:dd:7a:8d:d5:c8:33:cb:61:48:92:a9:ed: 90:83:13:55:7a:0b:37:04:64:07:9b:05:bc:05:6c:df:ed:43: 39:4c:a2:02:0a:ee:67:e0:46:a6:31:51:87:1a:16:83:8d:10: 13:5f:62:9e:42:69:81:dc:42:ba:95:1d:dd:54:41:77:b4:09: e4:0a:b2:d7:14:c2:e2:43:df:ab:d3:2c:6a:32:ea:0f:e7:c1: 07:de:36:9e:39:58:5f:0b:6c:86:8a:9c:77:9b:40:a8:0d:89: c2:a1:8e:d2:65:79:97:0e:b2:9e:39:85:d3:df:ff:0b:41:ff: 68:d5:9d:01:25:1b:54:26:43:ce:16:b5:d7:2c:c4:10:61:21: 50:7a:50:b4:0b:7f:e2:14:35:1b:28:f1:05:c7:4e:55:87:40: eb:d4:5b:ee:37:5e:15:a5:e8:9c:4c:0d:ef:3e:51:d5:00:61: 23:df:82:ce:b1:c7:fa:0e:6a:f4:50:32:89:5b:d1:0e:db:99: ed:8c:f4:78:36:c5:66:6b:79:64:6e:8a:83:ef:69:6e:25:e7: 46:93:c0:e1:1f:af:cf:45:ce:84:a7:71:16:d7:a5:d4:46:82: e8:13:e3:6c -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUFSRwpnkVOgrKCI0Df4bd6UT/T2UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyOFoX DTI1MDEwNzA0MDAyOFowMzExMC8GA1UEAxMoOTU0N0JBMDI0OTdEMTc4RENBRjZF RTcxRTA2QzY3NTMwNDgyQkI3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOxxyfOpER0Ki+1HinLki92GAvf6VHfc1D8mV1Uggdb771fpLHhTzhHAeqsf LYZDNFy/e77nPJs5IRRyulp0LfP4lROFyE/05Od4/Gj2cyuJgrT5KHDF4wUWDexk Q1NYugmkDj0lKsqO+ZnA9l8Mqb9ZU8xWsw2Dy0XLZwiTRi+ADYMGVx849yPUbWnc UvVkOrhd2UzpzY6y1YdQ1mYmpQgRHCLYdb8FzLsaeeoRpXHua7uOnenL0b5WqhiG EOidjsKVyBoMbye8s8iEoKxCLLDMAQNSQ24ck9eyILrHHXpNCMfnYD2cgMwYxM0i oI2AG1WR2ls+3NZe3n0nlCgzSBsCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBSVR7oC SX0Xjcr27nHgbGdTBIK7cDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTczNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAmeEDAMEBcq3ADANBAIAAjAHAwUAJAQswDANBgkqhkiG9w0BAQsF AAOCAQEAUVb4e274+ttDxFozA+3abAgvqiVpDNGc3XqN1cgzy2FIkqntkIMTVXoL NwRkB5sFvAVs3+1DOUyiAgruZ+BGpjFRhxoWg40QE19inkJpgdxCupUd3VRBd7QJ 5Aqy1xTC4kPfq9MsajLqD+fBB942njlYXwtshoqcd5tAqA2JwqGO0mV5lw6ynjmF 09//C0H/aNWdASUbVCZDzha11yzEEGEhUHpQtAt/4hQ1GyjxBcdOVYdA69Rb7jde FaXonEwN7z5R1QBhI9+CzrHH+g5q9FAyiVvRDtuZ7Yz0eDbFZmt5ZG6Kg+9pbiXn RpPA4R+vz0XOhKdxFtel1EaC6BPjbA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:53 2024 by rpki-client on console-fra.rpki-client.org