$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131775.roa File: AS131775.roa (raw, json) Hash identifier: iaKR9j/LkhpRPtomoihOuDYWeHdqPoqxhszwcSi3a9Q= Subject key identifier: DD:97:A6:E4:15:ED:A6:8C:7F:EC:98:41:CA:BA:4F:D5:6A:57:4D:AB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3048701BD89D77DFFE2706DF02FD017D217EB10E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131775.roa Signing time: Tue 09 Jan 2024 04:00:28 +0000 ROA not before: Tue 09 Jan 2024 03:55:28 +0000 ROA not after: Tue 07 Jan 2025 04:00:28 +0000 asID: 131775 IP address blocks: 2406:f040::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:48:70:1b:d8:9d:77:df:fe:27:06:df:02:fd:01:7d:21:7e:b1:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:28 2024 GMT Not After : Jan 7 04:00:28 2025 GMT Subject: CN=DD97A6E415EDA68C7FEC9841CABA4FD56A574DAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4b:85:08:8a:dd:94:b2:49:74:7b:3d:ff:32: 21:e3:38:0b:31:d4:25:2d:60:fa:5e:64:2f:91:d5: d6:61:f8:ae:f1:6f:6f:06:66:e7:e2:49:c5:9f:57: c5:aa:ff:cf:ae:81:37:a7:5f:89:2a:4b:92:c6:3f: 1c:eb:c1:e1:ae:33:20:1f:4c:2b:16:41:40:97:4b: db:1d:2e:d8:4c:6a:6c:68:15:a5:59:ba:f6:24:3c: e9:fe:46:c5:3c:1e:bd:03:2a:71:50:4c:21:a4:8e: ca:e5:eb:2b:2d:7b:fb:87:59:18:1a:61:94:60:6b: 6c:65:2a:09:5d:c6:5b:e9:e6:7d:fe:41:91:b0:45: bc:c2:a6:d8:32:c0:eb:55:6f:ce:54:2b:d0:12:72: 67:da:1c:93:0c:39:29:5d:76:d9:ec:2b:72:15:6e: 9d:77:2a:5c:25:7f:f4:85:0b:37:48:c9:09:b2:43: bc:be:1f:3d:e0:2a:5b:4b:68:99:d8:9d:92:a7:13: 2f:1a:09:73:71:b6:00:d4:99:0e:4e:39:d4:f8:84: f5:d9:f4:bd:8b:6b:17:24:6d:4d:fe:54:fe:83:21: 13:38:8e:25:3b:31:9c:35:fa:9d:87:22:99:fd:f0: 42:e4:fe:1d:6a:46:fe:cd:bd:3c:6e:c1:75:21:ed: b1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:97:A6:E4:15:ED:A6:8C:7F:EC:98:41:CA:BA:4F:D5:6A:57:4D:AB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131775.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:f040::/32 Signature Algorithm: sha256WithRSAEncryption 77:2f:c8:ed:eb:9b:1f:b9:3d:fa:ae:37:a3:88:61:88:fe:18: 06:43:89:83:4c:9f:29:d9:fc:00:cb:f9:39:89:01:eb:4b:65: 31:e1:20:6f:5e:6c:b0:f7:cc:88:50:dc:06:24:a7:24:6c:04: 7b:21:eb:00:ea:98:a0:b1:01:5c:2a:20:1e:07:aa:23:7e:9b: 38:04:7c:5c:a4:f0:60:17:83:78:ae:ee:3a:de:45:0b:a5:93: 22:0e:04:c9:40:8a:49:5a:62:28:6a:cc:96:8d:95:86:cb:b5: 4a:7b:c3:bc:2f:08:61:ce:d7:fa:15:f0:09:0c:09:13:93:bb: 5c:b6:49:b9:88:10:f5:2c:16:cc:16:0a:3b:61:0a:d4:8d:4e: 09:63:c4:80:27:33:a7:09:41:e8:09:e7:5a:c1:16:c1:b4:17: 34:f4:e0:97:14:3c:9f:ac:1f:6d:66:62:fd:97:2b:2a:93:87: 77:93:1b:ac:8d:1a:90:a4:b5:04:d8:9f:30:b4:78:09:ee:9a: 62:83:3b:8c:e4:57:27:e8:7e:ae:00:28:ef:27:fc:c6:ef:7d: 0e:fb:f1:21:01:04:d4:67:1b:24:75:3e:6c:25:de:e5:39:c6: b6:3b:6f:36:a7:4c:b2:71:c8:e8:27:0b:c1:db:94:27:bd:d5: 3d:d6:77:d9 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUMEhwG9idd9/+JwbfAv0BfSF+sQ4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyOFoX DTI1MDEwNzA0MDAyOFowMzExMC8GA1UEAxMoREQ5N0E2RTQxNUVEQTY4QzdGRUM5 ODQxQ0FCQTRGRDU2QTU3NERBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMlLhQiK3ZSySXR7Pf8yIeM4CzHUJS1g+l5kL5HV1mH4rvFvbwZm5+JJxZ9X xar/z66BN6dfiSpLksY/HOvB4a4zIB9MKxZBQJdL2x0u2ExqbGgVpVm69iQ86f5G xTwevQMqcVBMIaSOyuXrKy17+4dZGBphlGBrbGUqCV3GW+nmff5BkbBFvMKm2DLA 61VvzlQr0BJyZ9ockww5KV122ewrchVunXcqXCV/9IULN0jJCbJDvL4fPeAqW0to mdidkqcTLxoJc3G2ANSZDk451PiE9dn0vYtrFyRtTf5U/oMhEziOJTsxnDX6nYci mf3wQuT+HWpG/s29PG7BdSHtsUsCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBTdl6bk Fe2mjH/smEHKuk/ValdNqzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTc3NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQG8EAwDQYJKoZIhvcNAQELBQADggEBAHcvyO3rmx+5PfquN6OI YYj+GAZDiYNMnynZ/ADL+TmJAetLZTHhIG9ebLD3zIhQ3AYkpyRsBHsh6wDqmKCx AVwqIB4HqiN+mzgEfFyk8GAXg3iu7jreRQulkyIOBMlAiklaYihqzJaNlYbLtUp7 w7wvCGHO1/oV8AkMCROTu1y2SbmIEPUsFswWCjthCtSNTgljxIAnM6cJQegJ51rB FsG0FzT04JcUPJ+sH21mYv2XKyqTh3eTG6yNGpCktQTYnzC0eAnummKDO4zkVyfo fq4AKO8n/MbvfQ778SEBBNRnGyR1Pmwl3uU5xrY7bzanTLJxyOgnC8HblCe91T3W d9k= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:46 2024 by rpki-client on console-ams.rpki-client.org