$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131745.roa File: AS131745.roa (raw, json) Hash identifier: z1NeP/s42IKJcBI/xKaJq62lLuqKBEpdkmRiFBj4w+0= Subject key identifier: 93:24:73:8A:4A:50:66:D7:96:82:59:9E:F6:FB:2C:74:99:FB:B8:02 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7D60C31B0564C21AEB8CE2F911DECD915CCB825B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131745.roa Signing time: Wed 04 Sep 2024 07:00:00 +0000 ROA not before: Wed 04 Sep 2024 06:55:00 +0000 ROA not after: Wed 03 Sep 2025 07:00:00 +0000 asID: 131745 IP address blocks: 103.241.192.0/24 maxlen: 24 2400:85e0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:60:c3:1b:05:64:c2:1a:eb:8c:e2:f9:11:de:cd:91:5c:cb:82:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 4 06:55:00 2024 GMT Not After : Sep 3 07:00:00 2025 GMT Subject: CN=9324738A4A5066D79682599EF6FB2C7499FBB802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:fb:b3:16:0d:fc:c8:c1:63:af:f2:6a:91:19: 40:d4:67:18:61:a8:b4:f9:76:85:2c:44:0b:fe:75: 29:7d:0e:7f:9f:53:98:cd:3e:1d:86:1e:de:3d:ab: 29:73:1f:c4:91:4b:df:31:cf:de:8f:03:77:28:5b: 30:2d:ff:26:10:82:39:65:1b:e4:13:4d:99:65:60: 0c:8c:a7:e2:f2:07:88:14:b5:34:18:ed:8d:a0:a1: fe:1a:a5:71:2c:9a:ed:90:ca:94:f7:4f:e8:57:70: e3:38:f3:33:1a:6c:14:5a:42:9b:da:21:81:5d:fe: e7:96:4a:26:30:b5:16:48:a4:39:34:50:9e:f9:bf: 61:d4:ce:a5:dc:e0:1b:05:15:01:ff:87:cc:0a:87: bb:08:b9:ec:ba:04:f1:69:e7:09:a1:89:c8:e0:93: 16:34:d2:4c:a0:e8:a2:69:53:0f:c4:32:ba:4f:12: 1e:70:bf:a4:75:5f:ce:84:95:1b:2f:e3:e3:ef:69: 34:bc:f1:4f:c1:bf:70:e6:84:9f:4f:20:8e:e8:47: a7:1c:ea:13:cf:a6:7d:93:e1:9f:21:e0:fb:97:7c: 37:27:83:23:03:72:c3:a0:8d:61:d6:c3:07:67:77: 1a:7b:f5:fc:59:f8:7d:8c:21:dd:ea:ba:34:f0:e3: cc:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:24:73:8A:4A:50:66:D7:96:82:59:9E:F6:FB:2C:74:99:FB:B8:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131745.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.241.192.0/24 IPv6: 2400:85e0::/32 Signature Algorithm: sha256WithRSAEncryption 84:5e:f1:77:f7:42:67:ee:cb:c2:ae:1c:dd:af:af:8a:8a:aa: 3f:d0:76:86:2b:8c:7a:ad:0a:f3:fe:d7:ec:8a:90:cd:1e:53: 63:3b:b0:34:5e:b6:42:bf:66:91:72:ca:2d:69:3b:ed:12:d9: 59:fc:29:93:38:dd:40:65:ae:86:fa:d4:e6:cc:e0:83:b1:75: df:fe:fb:35:d4:cb:29:f7:15:a3:79:86:70:45:6e:c3:9e:01: f5:5d:2b:09:57:a0:f8:e9:6c:5b:fa:cc:c8:fc:7c:13:9f:4b: 63:b4:8f:db:4a:5e:57:fa:00:8a:1f:c8:99:b1:e6:a3:cc:8b: 09:c5:17:78:87:c3:10:e2:a1:77:9f:da:9c:a9:30:b2:36:cd: 05:7f:33:e0:f9:3e:f6:ec:81:b6:61:b5:fd:38:5e:59:23:ac: a2:35:22:6a:ba:9b:1f:1a:bf:7b:dc:20:08:91:6b:a4:17:e4: 0d:85:08:67:64:8e:f9:27:ce:a7:d1:3d:ce:c2:6c:48:47:b7: 3e:a5:fe:a1:7d:ac:17:9d:60:37:fa:82:4a:24:c5:71:f6:ff: 86:c4:e9:9c:ac:1c:39:c4:2b:eb:4e:a5:86:88:5e:53:8b:22: 21:03:29:f9:59:f6:b5:56:4b:85:d5:5d:cd:39:00:ad:ff:48: e6:77:30:07 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUfWDDGwVkwhrrjOL5Ed7NkVzLglswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkwNDA2NTUwMFoX DTI1MDkwMzA3MDAwMFowMzExMC8GA1UEAxMoOTMyNDczOEE0QTUwNjZENzk2ODI1 OTlFRjZGQjJDNzQ5OUZCQjgwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPf7sxYN/MjBY6/yapEZQNRnGGGotPl2hSxEC/51KX0Of59TmM0+HYYe3j2r KXMfxJFL3zHP3o8DdyhbMC3/JhCCOWUb5BNNmWVgDIyn4vIHiBS1NBjtjaCh/hql cSya7ZDKlPdP6Fdw4zjzMxpsFFpCm9ohgV3+55ZKJjC1FkikOTRQnvm/YdTOpdzg GwUVAf+HzAqHuwi57LoE8WnnCaGJyOCTFjTSTKDoomlTD8Qyuk8SHnC/pHVfzoSV Gy/j4+9pNLzxT8G/cOaEn08gjuhHpxzqE8+mfZPhnyHg+5d8NyeDIwNyw6CNYdbD B2d3Gnv1/Fn4fYwh3eq6NPDjzKcCAwEAAaOCAd8wggHbMB0GA1UdDgQWBBSTJHOK SlBm15aCWZ72+yx0mfu4AjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTc0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAGfxwDANBAIAAjAHAwUAJACF4DANBgkqhkiG9w0BAQsFAAOCAQEA hF7xd/dCZ+7Lwq4c3a+vioqqP9B2hiuMeq0K8/7X7IqQzR5TYzuwNF62Qr9mkXLK LWk77RLZWfwpkzjdQGWuhvrU5szgg7F13/77NdTLKfcVo3mGcEVuw54B9V0rCVeg +OlsW/rMyPx8E59LY7SP20peV/oAih/ImbHmo8yLCcUXeIfDEOKhd5/anKkwsjbN BX8z4Pk+9uyBtmG1/TheWSOsojUiarqbHxq/e9wgCJFrpBfkDYUIZ2SO+SfOp9E9 zsJsSEe3PqX+oX2sF51gN/qCSiTFcfb/hsTpnKwcOcQr606lhoheU4siIQMp+Vn2 tVZLhdVdzTkArf9I5ncwBw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:46 2024 by rpki-client on console-ams.rpki-client.org