$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131745.roa File: AS131745.roa (raw, json) Hash identifier: U8clOgTwZItvUVeYJo4MC7eDaRsFFk4Txh5rCmK198w= Subject key identifier: BF:82:F0:5E:E9:41:22:F6:9E:9F:1D:1B:70:E6:54:A0:70:DE:24:FB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 693F702FCABF190F27376A1849FB8ABE60BFDE36 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131745.roa Signing time: Wed 04 Oct 2023 06:30:26 +0000 ROA not before: Wed 04 Oct 2023 06:25:26 +0000 ROA not after: Wed 02 Oct 2024 06:30:26 +0000 asID: 131745 IP address blocks: 103.241.192.0/24 maxlen: 24 2400:85e0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:3f:70:2f:ca:bf:19:0f:27:37:6a:18:49:fb:8a:be:60:bf:de:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 4 06:25:26 2023 GMT Not After : Oct 2 06:30:26 2024 GMT Subject: CN=BF82F05EE94122F69E9F1D1B70E654A070DE24FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fb:8c:14:5e:a6:6c:4b:09:9b:ae:36:15:f1: 9d:78:89:13:fa:eb:4e:af:34:f4:26:d9:f8:f0:7c: 1a:14:2a:61:f7:9c:1b:bc:e8:84:69:88:7b:c4:8d: f5:a1:a6:80:05:65:bf:dd:45:1e:62:55:d5:5f:13: 76:8b:b2:5c:7a:82:72:3c:5a:81:b7:5a:8f:16:cc: ff:f3:52:24:c7:2a:ee:55:13:3e:8e:05:9d:35:71: c3:d2:98:bc:f7:e9:7c:7e:41:e0:55:fb:15:69:e0: d8:b7:83:e8:59:52:b7:54:32:da:f2:65:31:b2:d2: 7c:a0:2c:b7:7b:b2:d1:eb:6d:81:f1:47:3d:e4:14: 8f:06:b1:9c:67:d2:7b:f6:78:5c:bd:50:58:a1:50: a9:4b:ed:f1:b5:2a:22:d6:77:bd:a8:aa:5e:79:a8: 1f:db:ec:09:da:e2:96:d0:41:cc:16:39:f2:12:96: 76:7b:66:c5:e4:a2:9d:f4:8f:d9:6e:45:2a:b6:9e: 44:1f:c9:f9:86:f4:bd:f0:5c:69:0b:5e:70:e0:be: b1:4e:34:f6:bb:bc:7b:98:3a:6e:b1:ed:8b:b1:fd: 20:24:33:d1:77:80:aa:50:87:4d:fb:2a:3c:22:8e: 8f:64:eb:27:5c:dc:ba:a4:39:22:7b:0a:80:7b:b9: 3f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:82:F0:5E:E9:41:22:F6:9E:9F:1D:1B:70:E6:54:A0:70:DE:24:FB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131745.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.241.192.0/24 IPv6: 2400:85e0::/32 Signature Algorithm: sha256WithRSAEncryption 25:6f:e1:ad:22:91:c6:c7:09:95:ab:bf:1f:f0:0c:43:32:1c: 5a:ad:71:b0:fd:e7:be:8a:1e:37:f3:a8:ff:39:56:76:d1:84: 95:d6:55:06:6b:d3:ac:1d:5d:d6:8b:6c:48:1b:fb:94:f0:d2: 11:b8:e2:42:d2:e7:7d:6b:22:ac:f8:fb:8c:c7:18:89:41:3f: 5e:75:48:35:b2:a8:97:ab:f4:37:d9:a9:83:05:62:4b:cf:b1: 96:5f:10:d6:61:cf:9a:f5:fe:01:a2:e5:61:bb:ef:30:2d:9b: c5:96:82:6a:05:e9:a5:3c:49:bd:46:4a:e8:49:1b:0a:1c:04: 0a:f9:b1:fc:a2:05:42:32:09:b9:9f:be:37:33:77:8a:60:73: 3a:23:eb:bf:ed:07:cc:0c:8b:66:ea:dc:08:8d:0a:e9:ae:6c: 6f:ab:3f:ce:3a:64:52:f6:ff:80:0b:6a:19:88:c7:2b:99:01: f6:1e:c6:7d:5d:82:ec:bc:1c:2f:f4:ae:93:71:c9:db:6b:de: 84:43:5d:fc:d2:84:d5:6c:b8:fa:4e:25:db:2c:6f:81:f4:d1: f3:c2:ce:1e:ec:6a:94:53:65:e1:5b:0b:23:24:6e:04:cf:22: 9a:6c:b3:f1:7d:2a:6d:9a:42:ac:d1:e3:41:ae:37:54:0a:96: e9:17:35:be -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUaT9wL8q/GQ8nN2oYSfuKvmC/3jYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwNDA2MjUyNloX DTI0MTAwMjA2MzAyNlowMzExMC8GA1UEAxMoQkY4MkYwNUVFOTQxMjJGNjlFOUYx RDFCNzBFNjU0QTA3MERFMjRGQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAND7jBRepmxLCZuuNhXxnXiJE/rrTq809CbZ+PB8GhQqYfecG7zohGmIe8SN 9aGmgAVlv91FHmJV1V8TdouyXHqCcjxagbdajxbM//NSJMcq7lUTPo4FnTVxw9KY vPfpfH5B4FX7FWng2LeD6FlSt1Qy2vJlMbLSfKAst3uy0ettgfFHPeQUjwaxnGfS e/Z4XL1QWKFQqUvt8bUqItZ3vaiqXnmoH9vsCdriltBBzBY58hKWdntmxeSinfSP 2W5FKraeRB/J+Yb0vfBcaQtecOC+sU409ru8e5g6brHti7H9ICQz0XeAqlCHTfsq PCKOj2TrJ1zcuqQ5InsKgHu5P0UCAwEAAaOCAd8wggHbMB0GA1UdDgQWBBS/gvBe 6UEi9p6fHRtw5lSgcN4k+zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTc0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAGfxwDANBAIAAjAHAwUAJACF4DANBgkqhkiG9w0BAQsFAAOCAQEA JW/hrSKRxscJlau/H/AMQzIcWq1xsP3nvooeN/Oo/zlWdtGEldZVBmvTrB1d1ots SBv7lPDSEbjiQtLnfWsirPj7jMcYiUE/XnVINbKol6v0N9mpgwViS8+xll8Q1mHP mvX+AaLlYbvvMC2bxZaCagXppTxJvUZK6EkbChwECvmx/KIFQjIJuZ++NzN3imBz OiPrv+0HzAyLZurcCI0K6a5sb6s/zjpkUvb/gAtqGYjHK5kB9h7GfV2C7LwcL/Su k3HJ22vehENd/NKE1Wy4+k4l2yxvgfTR88LOHuxqlFNl4VsLIyRuBM8immyz8X0q bZpCrNHjQa43VAqW6Rc1vg== -----END CERTIFICATE-----Generated at Thu May 9 00:37:04 2024 by rpki-client on console-fra.rpki-client.org