$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132662.roa File: AS132662.roa (raw, json) Hash identifier: jICW6Stet+69nM9KyWe1P0rNtRCSlJ2XHhppTYF++yo= Subject key identifier: 95:4A:81:EA:88:E0:0C:5D:BB:C2:C3:B4:86:47:E3:27:0C:80:18:2A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 40AFEE229041743CBF8F2AB752946D963BA4CAF6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132662.roa Signing time: Tue 07 Nov 2023 04:03:03 +0000 ROA not before: Tue 07 Nov 2023 03:58:03 +0000 ROA not after: Tue 05 Nov 2024 04:03:03 +0000 asID: 132662 IP address blocks: 103.26.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:af:ee:22:90:41:74:3c:bf:8f:2a:b7:52:94:6d:96:3b:a4:ca:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 7 03:58:03 2023 GMT Not After : Nov 5 04:03:03 2024 GMT Subject: CN=954A81EA88E00C5DBBC2C3B48647E3270C80182A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d6:d4:9b:f5:aa:63:70:54:84:b6:3a:e5:90: 6f:8c:fc:85:8c:4e:1c:89:43:16:01:d5:60:a7:b6: a6:4e:d8:65:6a:89:6a:40:7e:f7:38:3e:c8:4a:13: a5:fb:0a:47:1b:be:b1:88:cf:2a:f4:af:5c:63:54: ac:68:c8:e8:2a:c5:ef:ec:13:4c:67:ee:73:87:61: 8e:f4:e0:0b:ee:da:d0:19:bb:7a:e9:9c:13:e6:a1: a9:39:0f:c2:a8:4e:06:25:7f:00:16:92:25:bf:8b: 41:4f:2e:34:d8:69:75:bc:b2:4f:e2:8f:9c:f7:de: f6:2c:09:90:71:41:ef:19:cd:e4:3e:2b:69:ab:68: 28:b6:e6:d2:fd:bd:90:ce:8a:31:7b:03:d8:73:b9: 3c:de:ea:87:61:78:50:05:39:13:9a:71:13:96:2a: 8a:55:4d:24:b6:ca:71:75:1b:31:e8:00:09:15:2c: 32:b2:66:26:32:53:15:a0:64:51:a3:79:99:27:7a: 52:c2:69:36:40:ca:7a:d5:d1:a5:5f:d9:41:73:db: 70:b9:5b:7c:0e:5e:b4:62:af:af:f9:b7:03:42:e7: d2:39:79:ce:04:09:ee:8a:36:95:33:36:84:c0:ae: e0:eb:2b:cb:24:bb:2a:2f:4f:5f:d3:ca:ac:c8:ca: 20:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:4A:81:EA:88:E0:0C:5D:BB:C2:C3:B4:86:47:E3:27:0C:80:18:2A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132662.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.26.100.0/24 Signature Algorithm: sha256WithRSAEncryption 90:89:b6:21:f6:80:89:fa:e4:54:11:68:c1:37:8d:6e:98:b0: 77:f9:a5:dd:17:7d:8a:c2:47:5d:cb:90:22:fe:d1:f2:5a:bb: 6b:bb:d6:8f:c1:b9:ef:7d:9c:64:a4:29:f9:3f:a4:67:61:08: a3:ca:7f:14:92:ec:d9:bf:97:b0:70:0d:e3:dc:b4:31:ed:43: 66:59:af:1a:31:8e:7e:c3:4a:b7:30:93:4f:40:be:a1:0a:e3: e9:ab:d0:40:94:e2:35:9a:41:a4:0c:b8:73:5e:3e:5a:21:40: d0:05:b3:a4:68:ca:23:74:a1:53:b3:05:94:1e:f3:c5:97:12: 48:73:d0:05:a6:a6:7f:ac:1b:eb:6c:14:f9:f9:a0:ca:92:58: a6:e2:37:3f:88:9d:a3:70:fb:ae:03:68:6a:67:33:4c:0a:b3: ce:cb:16:e7:59:f1:71:fa:66:32:f2:fb:43:ed:47:6a:e5:d9: 9c:3c:53:e5:66:29:d9:41:f2:79:9b:d6:50:e7:0c:36:8e:e8: 68:16:4a:a3:45:f5:4a:2a:dd:21:ce:34:58:7d:78:18:15:b1: 4e:1f:c5:08:e1:2f:58:21:d8:1f:3e:14:ad:58:0d:fa:c4:a0: 5c:ce:3e:da:67:ca:02:92:4b:a0:25:8a:34:5b:b2:0f:56:51: 0d:ad:21:5f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQK/uIpBBdDy/jyq3UpRtljukyvYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwNzAzNTgwM1oX DTI0MTEwNTA0MDMwM1owMzExMC8GA1UEAxMoOTU0QTgxRUE4OEUwMEM1REJCQzJD M0I0ODY0N0UzMjcwQzgwMTgyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPW1Jv1qmNwVIS2OuWQb4z8hYxOHIlDFgHVYKe2pk7YZWqJakB+9zg+yEoT pfsKRxu+sYjPKvSvXGNUrGjI6CrF7+wTTGfuc4dhjvTgC+7a0Bm7eumcE+ahqTkP wqhOBiV/ABaSJb+LQU8uNNhpdbyyT+KPnPfe9iwJkHFB7xnN5D4raatoKLbm0v29 kM6KMXsD2HO5PN7qh2F4UAU5E5pxE5YqilVNJLbKcXUbMegACRUsMrJmJjJTFaBk UaN5mSd6UsJpNkDKetXRpV/ZQXPbcLlbfA5etGKvr/m3A0Ln0jl5zgQJ7oo2lTM2 hMCu4OsryyS7Ki9PX9PKrMjKIFsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSVSoHq iOAMXbvCw7SGR+MnDIAYKjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMjY2Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGcaZDANBgkqhkiG9w0BAQsFAAOCAQEAkIm2IfaAifrkVBFowTeN bpiwd/ml3Rd9isJHXcuQIv7R8lq7a7vWj8G5732cZKQp+T+kZ2EIo8p/FJLs2b+X sHAN49y0Me1DZlmvGjGOfsNKtzCTT0C+oQrj6avQQJTiNZpBpAy4c14+WiFA0AWz pGjKI3ShU7MFlB7zxZcSSHPQBaamf6wb62wU+fmgypJYpuI3P4ido3D7rgNoamcz TAqzzssW51nxcfpmMvL7Q+1HauXZnDxT5WYp2UHyeZvWUOcMNo7oaBZKo0X1Sird Ic40WH14GBWxTh/FCOEvWCHYHz4UrVgN+sSgXM4+2mfKApJLoCWKNFuyD1ZRDa0h Xw== -----END CERTIFICATE-----Generated at Wed May 8 17:45:21 2024 by rpki-client on console-ams.rpki-client.org