$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131775.roa File: AS131775.roa (raw, json) Hash identifier: 2QpC8WEkupbv9NsBGeLifczxBVoa/JzZu5C14gi7JzY= Subject key identifier: 6B:BB:8B:E2:38:88:E4:5B:37:2C:5B:9C:71:D6:5D:E1:14:5E:B2:4B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 353DF33A2E775C323852ABDFC67235A4F72DE02B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131775.roa Signing time: Tue 10 Dec 2024 05:00:24 +0000 ROA not before: Tue 10 Dec 2024 04:55:24 +0000 ROA not after: Tue 09 Dec 2025 05:00:24 +0000 asID: 131775 IP address blocks: 2406:f040::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:3d:f3:3a:2e:77:5c:32:38:52:ab:df:c6:72:35:a4:f7:2d:e0:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:24 2024 GMT Not After : Dec 9 05:00:24 2025 GMT Subject: CN=6BBB8BE23888E45B372C5B9C71D65DE1145EB24B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c0:d4:24:89:1c:f0:e5:86:e2:0d:cd:e1:0c: 6c:7b:4b:11:7e:81:8b:3b:bc:e6:2e:7f:bc:20:09: b1:00:af:9a:67:c0:c3:09:26:02:68:81:93:94:48: d8:2a:53:3f:73:cc:1a:b1:8b:ad:19:7b:45:67:9c: dd:4d:c2:b9:97:8e:f4:64:4d:bb:38:c2:1e:98:d4: af:db:6a:d9:aa:61:69:71:78:a9:69:72:0c:e3:17: a6:52:26:24:06:81:ae:bc:09:e6:50:80:98:1f:8d: 18:2d:51:35:8c:c5:a8:2b:90:b0:4d:c4:09:71:ec: 5c:fc:c4:66:43:51:02:4f:c6:5c:cc:2b:52:28:69: a0:ec:55:25:cc:57:35:b2:c5:10:a4:e7:d3:0f:0e: 23:d7:65:42:08:8d:f0:91:34:1d:2c:02:eb:94:93: ed:6d:5c:1c:b7:2d:2a:d2:09:63:62:16:4d:8e:58: b0:19:aa:50:54:92:55:82:b4:87:33:b2:24:c0:5b: 35:94:6a:5e:50:dd:cf:a9:ee:3e:e9:57:1a:3f:1d: 34:c4:08:73:d7:2f:0b:7d:13:20:93:41:94:66:37: c0:da:a7:26:b4:49:6c:f9:9c:d6:2d:57:b8:15:0f: 8c:bc:fe:d9:ca:7d:5a:5b:00:4a:c4:e5:c4:90:7c: c9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:BB:8B:E2:38:88:E4:5B:37:2C:5B:9C:71:D6:5D:E1:14:5E:B2:4B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131775.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:f040::/32 Signature Algorithm: sha256WithRSAEncryption 05:f0:37:cd:30:50:71:f2:28:f4:cf:15:17:af:97:37:26:a8: 49:e7:b3:de:c2:38:56:52:22:2f:9a:41:5b:56:96:b0:d4:d9: 28:a8:9c:36:6a:b1:8d:a8:1a:cd:e3:6d:57:ee:6e:14:cf:1f: 65:12:b8:d3:df:81:2c:25:bc:19:a1:00:83:61:52:d9:d2:f9: 21:c1:cf:42:db:40:bd:0d:d1:44:74:0d:1f:b9:3b:f5:bf:8d: 3f:c6:86:a3:95:2e:80:0c:f5:7c:c3:d7:a7:ca:57:4b:c1:c6: 34:84:28:ba:94:31:bd:ba:74:94:be:6f:4e:e0:a2:ac:d9:be: 4a:cc:83:b2:9b:9a:6e:2a:33:d6:7d:05:71:91:b0:db:69:55: 58:8b:71:99:2d:7a:32:85:f5:e4:61:1a:f4:69:cb:14:a0:20: a9:6a:b6:2d:13:59:69:7b:d6:ce:26:bf:64:f0:3d:21:b9:e2: bd:05:de:04:22:9b:5a:d3:0c:de:49:21:34:fe:c8:14:00:1e: 84:43:22:59:bf:f0:14:10:9b:a4:c7:be:f3:14:45:1f:98:09: 94:9a:03:11:5f:39:0d:fc:f6:31:ba:f8:15:f2:db:de:0d:49: 1f:c5:21:42:02:91:3e:3b:b0:88:81:43:67:61:33:82:bc:10: e0:89:99:2e -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUNT3zOi53XDI4UqvfxnI1pPct4CswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyNFoX DTI1MTIwOTA1MDAyNFowMzExMC8GA1UEAxMoNkJCQjhCRTIzODg4RTQ1QjM3MkM1 QjlDNzFENjVERTExNDVFQjI0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAObA1CSJHPDlhuINzeEMbHtLEX6Bizu85i5/vCAJsQCvmmfAwwkmAmiBk5RI 2CpTP3PMGrGLrRl7RWec3U3CuZeO9GRNuzjCHpjUr9tq2aphaXF4qWlyDOMXplIm JAaBrrwJ5lCAmB+NGC1RNYzFqCuQsE3ECXHsXPzEZkNRAk/GXMwrUihpoOxVJcxX NbLFEKTn0w8OI9dlQgiN8JE0HSwC65ST7W1cHLctKtIJY2IWTY5YsBmqUFSSVYK0 hzOyJMBbNZRqXlDdz6nuPulXGj8dNMQIc9cvC30TIJNBlGY3wNqnJrRJbPmc1i1X uBUPjLz+2cp9WlsASsTlxJB8yecCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBRru4vi OIjkWzcsW5xx1l3hFF6ySzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTc3NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQG8EAwDQYJKoZIhvcNAQELBQADggEBAAXwN80wUHHyKPTPFRev lzcmqEnns97COFZSIi+aQVtWlrDU2SionDZqsY2oGs3jbVfubhTPH2USuNPfgSwl vBmhAINhUtnS+SHBz0LbQL0N0UR0DR+5O/W/jT/GhqOVLoAM9XzD16fKV0vBxjSE KLqUMb26dJS+b07goqzZvkrMg7Kbmm4qM9Z9BXGRsNtpVViLcZktejKF9eRhGvRp yxSgIKlqti0TWWl71s4mv2TwPSG54r0F3gQim1rTDN5JITT+yBQAHoRDIlm/8BQQ m6THvvMURR+YCZSaAxFfOQ389jG6+BXy294NSR/FIUICkT47sIiBQ2dhM4K8EOCJ mS4= -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:31 2025 by rpki-client