$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131769.roa File: AS131769.roa (raw, json) Hash identifier: wgfAxU4A9FUMqqVW9oCh0ljG9bA5Lwotwsn2Kr7lPOM= Subject key identifier: 2D:1D:E2:7C:28:2D:78:55:5B:51:F8:77:96:C2:99:0B:41:A0:29:FF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4A6FC6CD6070F3F6D535C5473CEA03BDD095E90C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131769.roa Signing time: Mon 22 Apr 2024 07:51:18 +0000 ROA not before: Mon 22 Apr 2024 07:46:18 +0000 ROA not after: Mon 21 Apr 2025 07:51:18 +0000 asID: 131769 IP address blocks: 103.16.132.0/23 maxlen: 24 103.211.160.0/24 maxlen: 24 103.227.148.0/23 maxlen: 24 203.18.39.0/24 maxlen: 24 203.153.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:6f:c6:cd:60:70:f3:f6:d5:35:c5:47:3c:ea:03:bd:d0:95:e9:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 22 07:46:18 2024 GMT Not After : Apr 21 07:51:18 2025 GMT Subject: CN=2D1DE27C282D78555B51F87796C2990B41A029FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7a:ec:bd:6b:ab:ca:a7:47:d0:50:7d:6f:d5: 6a:1a:aa:67:bf:e1:da:4b:1e:77:2b:4e:30:cb:77: 3b:2c:5f:55:2f:ff:1d:11:1a:28:d8:d3:8b:57:ee: 33:51:cb:0f:aa:f0:12:c9:a5:64:c0:c1:f0:7d:bf: ba:15:b1:b0:2a:4e:6f:27:21:0e:03:eb:13:95:28: 34:ff:6d:f4:f8:d7:14:ff:a2:2f:92:55:31:5a:b1: f7:63:7a:e4:55:f0:7a:d5:dd:79:66:70:8e:d6:24: 24:a0:26:cc:fc:ac:1b:70:5d:33:ee:a1:02:d4:32: c1:04:a8:b4:4b:d5:53:f5:13:2d:6d:05:93:a5:d8: 3e:2d:d2:4a:34:5b:b0:5b:6c:4f:7e:24:25:a9:a0: c1:59:70:b6:97:62:88:4b:ac:41:5d:06:1d:e6:db: c1:ee:1a:90:6e:6a:6d:ea:06:02:79:54:66:2d:33: e8:03:76:54:a9:50:69:3f:b8:74:bd:67:8f:b3:17: 54:ad:73:2b:f3:9f:92:b9:22:0b:8b:d0:f1:26:3e: 7b:ea:e3:21:1e:2f:07:0b:b6:b3:7a:48:8e:3e:7f: ed:1b:99:22:ab:e1:c2:ea:6d:f5:86:c7:35:b2:3e: 1b:f6:66:bb:f6:94:ef:37:2c:51:6a:a8:b4:1a:3c: d7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:1D:E2:7C:28:2D:78:55:5B:51:F8:77:96:C2:99:0B:41:A0:29:FF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131769.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.132.0/23 103.211.160.0/24 103.227.148.0/23 203.18.39.0/24 203.153.20.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:fc:67:f2:bb:12:52:11:49:d9:a1:24:d1:3d:3e:7f:d6:2b: 00:0d:fa:2c:f4:87:c7:a9:ac:cc:0e:0a:8b:4f:da:da:fd:4b: 23:35:74:8c:2d:78:f3:6c:99:ff:93:ca:96:83:6c:dd:77:49: b8:de:ae:11:cd:e0:ba:06:0c:c0:38:c4:73:fd:a0:06:fd:a1: 6b:71:f6:0d:f9:86:5b:ee:a7:f7:fd:b3:fc:23:9d:9e:5c:52: af:97:a7:82:9f:99:08:b2:04:1b:34:6d:69:a6:df:81:eb:9a: 1a:c2:67:ec:84:c0:0f:5e:a6:ca:08:ed:f5:c9:6d:2d:a4:38: a9:e4:5f:54:ef:e4:4b:e3:13:6c:67:bf:37:fa:90:59:2d:4a: b2:38:b2:01:26:d6:40:4d:f4:73:7d:42:a0:6f:cd:64:ee:18: 24:48:8b:40:6f:04:b3:c9:15:b5:39:7d:3f:01:42:38:b7:bd: 8c:76:60:a5:23:c8:5c:18:f0:48:05:d9:95:5b:21:46:19:c9: c9:91:d2:5b:a8:0f:ed:59:b5:97:1d:69:dd:92:5e:10:64:30: d0:88:af:d0:8d:60:62:a0:c8:05:e2:63:35:c0:d6:34:2f:bc: 54:d8:bd:e2:18:71:56:c4:77:24:c7:73:b6:06:59:0d:f5:7d: 9a:06:ba:89 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUSm/GzWBw8/bVNcVHPOoDvdCV6QwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyMjA3NDYxOFoX DTI1MDQyMTA3NTExOFowMzExMC8GA1UEAxMoMkQxREUyN0MyODJENzg1NTVCNTFG ODc3OTZDMjk5MEI0MUEwMjlGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOF67L1rq8qnR9BQfW/VahqqZ7/h2ksedytOMMt3OyxfVS//HREaKNjTi1fu M1HLD6rwEsmlZMDB8H2/uhWxsCpObychDgPrE5UoNP9t9PjXFP+iL5JVMVqx92N6 5FXwetXdeWZwjtYkJKAmzPysG3BdM+6hAtQywQSotEvVU/UTLW0Fk6XYPi3SSjRb sFtsT34kJamgwVlwtpdiiEusQV0GHebbwe4akG5qbeoGAnlUZi0z6AN2VKlQaT+4 dL1nj7MXVK1zK/OfkrkiC4vQ8SY+e+rjIR4vBwu2s3pIjj5/7RuZIqvhwupt9YbH NbI+G/Zmu/aU7zcsUWqotBo8178CAwEAAaOCAegwggHkMB0GA1UdDgQWBBQtHeJ8 KC14VVtR+HeWwpkLQaAp/zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTc2OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3BggrBgEFBQcBBwEB/wQoMCYw JAQCAAEwHgMEAWcQhAMEAGfToAMEAWfjlAMEAMsSJwMEAsuZFDANBgkqhkiG9w0B AQsFAAOCAQEAbPxn8rsSUhFJ2aEk0T0+f9YrAA36LPSHx6mszA4Ki0/a2v1LIzV0 jC1482yZ/5PKloNs3XdJuN6uEc3gugYMwDjEc/2gBv2ha3H2DfmGW+6n9/2z/COd nlxSr5engp+ZCLIEGzRtaabfgeuaGsJn7ITAD16mygjt9cltLaQ4qeRfVO/kS+MT bGe/N/qQWS1KsjiyASbWQE30c31CoG/NZO4YJEiLQG8Es8kVtTl9PwFCOLe9jHZg pSPIXBjwSAXZlVshRhnJyZHSW6gP7Vm1lx1p3ZJeEGQw0Iiv0I1gYqDIBeJjNcDW NC+8VNi94hhxVsR3JMdztgZZDfV9mga6iQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:46 2024 by rpki-client on console-ams.rpki-client.org