$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131736.roa File: AS131736.roa (raw, json) Hash identifier: U/OpL0G7mUucbiOwxT7ptsiwFEqOPG6Fs7iuTKpFeaM= Subject key identifier: C9:88:C0:75:1C:C8:A5:7F:2A:8C:C3:E5:C4:9D:0F:50:F7:89:29:FE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 63A94D678ED3DAE3FFC41648A4AE5923BD7FAE41 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131736.roa Signing time: Tue 10 Dec 2024 05:00:24 +0000 ROA not before: Tue 10 Dec 2024 04:55:24 +0000 ROA not after: Tue 09 Dec 2025 05:00:24 +0000 asID: 131736 IP address blocks: 103.132.12.0/22 maxlen: 24 202.183.0.0/20 maxlen: 24 202.183.16.0/20 maxlen: 24 2404:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:a9:4d:67:8e:d3:da:e3:ff:c4:16:48:a4:ae:59:23:bd:7f:ae:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:24 2024 GMT Not After : Dec 9 05:00:24 2025 GMT Subject: CN=C988C0751CC8A57F2A8CC3E5C49D0F50F78929FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:15:8c:00:65:d8:3f:43:84:87:35:20:e6:db: 7b:60:37:b6:71:83:4b:96:84:e6:33:57:f4:1e:84: a7:8b:ed:ad:d5:7e:45:42:c8:2b:f5:e3:7d:25:05: de:9b:64:eb:f1:fc:08:94:64:2f:66:2f:d3:18:a4: d3:fa:d9:c6:2e:b2:45:58:95:19:e7:75:cb:92:48: a7:e5:ff:15:17:b8:98:ba:10:e9:f4:90:ab:b9:d0: f0:41:e4:b7:eb:4d:aa:b1:49:ef:37:8d:e6:85:f3: 46:f3:ad:63:e4:04:29:2b:13:5a:d5:fb:be:d1:c1: 3d:04:a7:ef:eb:e9:76:2d:2a:29:20:6c:b0:41:e4: e3:dc:71:f2:99:df:7c:c1:fa:aa:53:50:f9:34:5a: 26:42:a7:4d:18:4a:47:9b:99:21:c7:e6:e2:06:13: f3:f0:ac:ea:63:87:d1:29:ee:f9:3d:48:ab:7e:5b: c0:64:cd:8c:df:33:dc:0f:2b:e1:24:8d:03:75:60: 46:01:86:7e:2b:03:f4:31:9c:e5:cb:00:c1:c5:74: f5:9c:f8:a9:79:43:d4:53:ce:a3:48:36:dd:c1:e6: b7:66:a2:8f:c3:3b:a0:98:a3:be:ec:d0:2b:c5:80: da:91:dd:99:64:70:4b:80:9f:ec:b7:f7:8b:56:18: 87:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:88:C0:75:1C:C8:A5:7F:2A:8C:C3:E5:C4:9D:0F:50:F7:89:29:FE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.12.0/22 202.183.0.0/19 IPv6: 2404:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 7e:67:8f:e4:4d:8d:bd:bf:33:58:3b:cb:a3:96:39:49:96:ca: 3d:f0:68:15:f4:fb:7d:c6:ac:0b:d3:2d:77:63:df:1d:f6:78: a5:ad:3a:33:1f:02:52:05:78:17:1a:21:41:13:36:19:15:69: 47:b6:41:f9:51:dc:61:0d:3b:88:dd:91:b5:a0:47:94:40:bc: 9b:b5:8e:fa:9b:03:02:d8:72:96:ce:b5:08:40:f6:52:53:87: af:93:55:df:60:4b:08:b4:27:26:7e:14:a1:d7:7f:69:df:46: 6f:5f:8d:b0:c8:7d:21:95:99:43:17:6f:de:f0:fb:08:b8:d2: dd:c0:4a:cb:28:7f:e9:c2:88:67:50:04:30:5a:9f:f6:0f:a1: d5:41:31:cc:25:6c:91:f8:87:af:40:48:db:01:75:30:a7:7a: 97:81:2b:d0:c9:8d:de:72:45:ee:dd:5e:70:da:94:76:5a:15: 53:64:44:9b:2b:75:07:e1:6c:5e:00:81:e6:36:ac:c8:a3:df: 73:4f:5c:4d:ef:92:0c:43:53:d6:f1:21:75:0f:57:61:cc:cf: 80:5d:92:46:01:7a:05:9e:82:51:bd:ca:34:a5:c8:11:81:16: 57:09:3e:4f:f4:38:3f:e5:8b:6b:b1:87:68:5e:01:b5:0c:a6: d7:8e:2e:93 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUY6lNZ47T2uP/xBZIpK5ZI71/rkEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyNFoX DTI1MTIwOTA1MDAyNFowMzExMC8GA1UEAxMoQzk4OEMwNzUxQ0M4QTU3RjJBOEND M0U1QzQ5RDBGNTBGNzg5MjlGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALUVjABl2D9DhIc1IObbe2A3tnGDS5aE5jNX9B6Ep4vtrdV+RULIK/XjfSUF 3ptk6/H8CJRkL2Yv0xik0/rZxi6yRViVGed1y5JIp+X/FRe4mLoQ6fSQq7nQ8EHk t+tNqrFJ7zeN5oXzRvOtY+QEKSsTWtX7vtHBPQSn7+vpdi0qKSBssEHk49xx8pnf fMH6qlNQ+TRaJkKnTRhKR5uZIcfm4gYT8/Cs6mOH0Snu+T1Iq35bwGTNjN8z3A8r 4SSNA3VgRgGGfisD9DGc5csAwcV09Zz4qXlD1FPOo0g23cHmt2aij8M7oJijvuzQ K8WA2pHdmWRwS4Cf7Lf3i1YYh/sCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBTJiMB1 HMilfyqMw+XEnQ9Q94kp/jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTczNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAmeEDAMEBcq3ADANBAIAAjAHAwUAJAQswDANBgkqhkiG9w0BAQsF AAOCAQEAfmeP5E2Nvb8zWDvLo5Y5SZbKPfBoFfT7fcasC9Mtd2PfHfZ4pa06Mx8C UgV4FxohQRM2GRVpR7ZB+VHcYQ07iN2RtaBHlEC8m7WO+psDAthyls61CED2UlOH r5NV32BLCLQnJn4Uodd/ad9Gb1+NsMh9IZWZQxdv3vD7CLjS3cBKyyh/6cKIZ1AE MFqf9g+h1UExzCVskfiHr0BI2wF1MKd6l4Er0MmN3nJF7t1ecNqUdloVU2REmyt1 B+FsXgCB5jasyKPfc09cTe+SDENT1vEhdQ9XYczPgF2SRgF6BZ6CUb3KNKXIEYEW Vwk+T/Q4P+WLa7GHaF4BtQym144ukw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:18:14 2025 by rpki-client