$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131784.roa File: AS131784.roa (raw, json) Hash identifier: PQkkK2DFClwQdxCc9MDPQzQedyqCxmBIoH9bLAuN6PA= Subject key identifier: 53:B7:78:91:98:07:C1:E0:46:DC:3A:61:C3:A3:D3:E6:A5:81:F4:F8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0D03B28D73A7E6F2B1E9ECF306D89E19926119CD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131784.roa Signing time: Tue 09 Jan 2024 04:00:24 +0000 ROA not before: Tue 09 Jan 2024 03:55:24 +0000 ROA not after: Tue 07 Jan 2025 04:00:24 +0000 asID: 131784 IP address blocks: 103.17.164.0/24 maxlen: 24 2001:df4:7100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 07:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:03:b2:8d:73:a7:e6:f2:b1:e9:ec:f3:06:d8:9e:19:92:61:19:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:24 2024 GMT Not After : Jan 7 04:00:24 2025 GMT Subject: CN=53B778919807C1E046DC3A61C3A3D3E6A581F4F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:14:38:6f:3f:cf:81:a2:9d:6d:50:1c:c7:17: 63:e7:d8:cc:76:4a:af:7e:28:d3:5d:b6:46:52:7f: 61:82:cf:65:e3:96:06:28:b3:3f:78:85:87:a3:5e: f8:8f:4f:80:df:e3:e8:54:2c:fb:0c:7a:c4:ac:09: ce:9a:98:1f:98:5d:46:48:bc:10:63:c8:b3:fe:8b: 97:6a:06:a8:ac:c9:f3:87:c4:44:b0:f0:34:ba:77: 9d:df:26:ba:39:b3:8e:a8:32:30:6a:7a:c8:ca:75: ba:8c:28:ea:d1:a1:0b:34:4a:40:5b:0d:95:0f:fa: ca:9f:0b:7e:69:e3:24:58:cb:67:0a:09:06:a3:3e: af:ee:e7:03:a3:f4:d4:de:90:e9:16:a7:7a:50:ac: 72:c6:0f:a6:b1:ae:13:98:e1:f5:ec:e2:ca:e9:4f: 78:a9:5a:dc:b0:b5:69:ee:19:bb:82:39:68:33:dc: 45:63:fd:03:b5:0e:6c:cc:bb:b7:da:09:f7:c5:f8: 80:37:0d:9b:f2:bb:a4:f3:f1:61:7c:36:0a:ea:69: 9e:f3:e5:78:a6:a1:ee:8e:01:20:b6:3e:32:c2:7a: f4:63:ed:7c:9e:46:f1:89:31:27:64:f6:7f:bf:f1: 4e:66:69:fb:21:ed:a8:ca:59:2f:c8:03:fc:4c:6c: 37:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:B7:78:91:98:07:C1:E0:46:DC:3A:61:C3:A3:D3:E6:A5:81:F4:F8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131784.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.164.0/24 IPv6: 2001:df4:7100::/48 Signature Algorithm: sha256WithRSAEncryption 2e:4f:c5:bd:04:6b:f8:a0:af:d3:dd:43:f6:f9:0a:da:63:61: c3:ed:0c:93:bd:15:45:8f:c2:fa:a5:5c:63:68:3f:0e:0d:4e: 56:c3:3e:4d:73:2b:b1:10:58:85:f7:2e:2e:28:a4:2a:5f:e3: 99:fc:a1:3e:8e:cc:93:ec:f8:f0:93:28:b3:07:3f:a2:3e:1b: be:1b:69:09:b1:d0:c0:aa:7a:5d:1d:a7:c0:3a:d2:31:33:8e: f2:8d:f9:e5:3f:72:31:d6:21:b7:7f:3a:6f:02:18:9b:69:db: 60:e7:fd:ee:ce:23:d1:6c:e7:61:16:0b:c4:78:84:b8:ac:f2: e7:8b:c7:fe:93:61:fb:f5:44:5e:73:24:bf:49:37:d1:df:86: 4e:d6:f7:ed:85:f9:7d:9b:ce:f6:2c:e5:2b:03:8c:97:b4:22: e0:23:7c:cd:3d:06:a6:96:d7:6e:27:27:04:85:2d:79:85:d4: 93:6b:01:c2:a5:91:ca:9b:62:c6:eb:21:50:98:d9:ff:59:9a: de:cd:1d:34:05:80:b1:32:b0:e5:48:a5:fe:68:d2:26:d8:63: 68:91:bd:aa:6a:19:09:20:31:48:cf:8d:93:4e:94:5b:00:19: 16:57:02:9d:14:6f:b4:cc:9e:19:56:66:ed:02:6e:01:ac:93: 40:2a:71:31 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUDQOyjXOn5vKx6ezzBtieGZJhGc0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyNFoX DTI1MDEwNzA0MDAyNFowMzExMC8GA1UEAxMoNTNCNzc4OTE5ODA3QzFFMDQ2REMz QTYxQzNBM0QzRTZBNTgxRjRGODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKQUOG8/z4GinW1QHMcXY+fYzHZKr34o0122RlJ/YYLPZeOWBiizP3iFh6Ne +I9PgN/j6FQs+wx6xKwJzpqYH5hdRki8EGPIs/6Ll2oGqKzJ84fERLDwNLp3nd8m ujmzjqgyMGp6yMp1uowo6tGhCzRKQFsNlQ/6yp8LfmnjJFjLZwoJBqM+r+7nA6P0 1N6Q6RanelCscsYPprGuE5jh9eziyulPeKla3LC1ae4Zu4I5aDPcRWP9A7UObMy7 t9oJ98X4gDcNm/K7pPPxYXw2CuppnvPleKah7o4BILY+MsJ69GPtfJ5G8YkxJ2T2 f7/xTmZp+yHtqMpZL8gD/ExsN3MCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRTt3iR mAfB4EbcOmHDo9PmpYH0+DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTc4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGcRpDAPBAIAAjAJAwcAIAEN9HEAMA0GCSqGSIb3DQEBCwUAA4IB AQAuT8W9BGv4oK/T3UP2+QraY2HD7QyTvRVFj8L6pVxjaD8ODU5Wwz5NcyuxEFiF 9y4uKKQqX+OZ/KE+jsyT7PjwkyizBz+iPhu+G2kJsdDAqnpdHafAOtIxM47yjfnl P3Ix1iG3fzpvAhibadtg5/3uziPRbOdhFgvEeIS4rPLni8f+k2H79URecyS/STfR 34ZO1vfthfl9m872LOUrA4yXtCLgI3zNPQamltduJycEhS15hdSTawHCpZHKm2LG 6yFQmNn/WZrezR00BYCxMrDlSKX+aNIm2GNokb2qahkJIDFIz42TTpRbABkWVwKd FG+0zJ4ZVmbtAm4BrJNAKnEx -----END CERTIFICATE-----Generated at Wed May 1 20:46:57 2024 by rpki-client on console-ams.rpki-client.org