$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132662.roa File: AS132662.roa (raw, json) Hash identifier: 76Ggd5A/imv28WK4Z4h7DmVxl1Oj3BY/kroXIYaZOkI= Subject key identifier: DE:43:E5:2C:DD:C2:D8:DB:74:D6:0C:3E:C7:4A:8F:D7:73:8A:FD:A8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 07C10F349D8D71CFB832FBB93DE506BB40728F26 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132662.roa Signing time: Tue 08 Oct 2024 05:00:00 +0000 ROA not before: Tue 08 Oct 2024 04:55:00 +0000 ROA not after: Tue 07 Oct 2025 05:00:00 +0000 asID: 132662 IP address blocks: 103.26.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:c1:0f:34:9d:8d:71:cf:b8:32:fb:b9:3d:e5:06:bb:40:72:8f:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 8 04:55:00 2024 GMT Not After : Oct 7 05:00:00 2025 GMT Subject: CN=DE43E52CDDC2D8DB74D60C3EC74A8FD7738AFDA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5b:b2:7c:cd:93:f7:8c:d1:7a:0f:6b:e0:37: e9:10:ea:10:cf:56:eb:ae:07:7d:90:23:29:46:28: 35:d5:1c:2b:73:9f:28:93:e4:7a:77:db:89:ce:2d: 98:b6:55:91:c5:0b:47:b0:3b:13:1d:94:0c:81:0c: a4:c5:f1:4b:57:94:1f:5c:f1:4b:bb:97:cb:b6:b3: ba:d6:cc:ea:1f:55:dc:74:85:53:da:94:e9:d2:c3: da:ce:52:2f:67:cb:90:8b:1b:4a:8e:46:35:0f:b6: 56:96:61:f0:8f:eb:f8:39:5a:63:ee:d9:e1:e9:e4: 73:e4:96:e9:3b:4c:dd:88:dd:9c:70:45:a9:71:92: 99:b9:6d:64:c8:0a:df:2b:97:c9:54:57:02:fe:06: f6:24:0c:22:e2:bd:b1:84:92:6f:29:d2:6c:b2:ff: ea:16:79:ef:8b:42:41:6e:01:5b:b8:89:13:9b:af: 21:1c:fc:91:e1:a8:f0:07:90:3a:40:db:fa:e3:2f: 2c:98:62:e7:39:f5:b6:03:04:0b:95:9b:f4:87:ae: a5:99:18:05:ee:61:4b:5b:8d:63:9d:07:7c:29:e9: 26:25:9b:11:21:c4:72:88:75:e5:2c:c2:ca:ea:39: 20:86:f5:6a:13:91:25:bf:8d:42:ef:92:cb:6d:ec: fe:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:43:E5:2C:DD:C2:D8:DB:74:D6:0C:3E:C7:4A:8F:D7:73:8A:FD:A8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132662.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.26.100.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:79:46:cf:39:e9:60:b1:67:da:cb:9b:2b:0b:66:65:8d:44: c3:60:00:24:c5:94:57:ab:3a:e7:ef:3d:ac:dc:14:1f:fd:33: 05:a6:34:b5:b1:31:89:35:2c:f4:11:34:f3:8d:d8:4f:94:8f: 9f:46:9d:bd:46:7f:97:fc:48:84:28:81:a0:0d:ca:b5:bf:8e: 06:08:32:82:bc:29:59:ea:0b:19:b8:20:ef:67:fe:4e:68:bd: 1a:c7:38:8b:4b:40:5b:99:18:b2:95:5a:35:bf:76:c2:3e:ad: 9b:0d:d4:fc:0d:d3:35:27:30:b3:9a:fd:10:16:aa:92:b2:cf: 06:c5:e9:34:e7:88:87:47:e0:ad:86:ea:03:ec:5c:22:7a:6b: 4d:a9:18:d6:4a:0f:88:72:1a:12:18:83:f7:7c:e9:75:62:6d: 5b:05:06:73:25:f9:1e:9c:e5:1c:d3:60:85:1b:73:7c:3f:30: 8c:bc:68:10:6f:29:87:73:03:05:6f:b1:2a:65:5b:ec:e2:8b: d7:c1:d2:96:54:6c:5b:b8:bb:83:5e:da:d5:d7:ea:63:2c:89: 0c:c2:90:04:0c:49:ba:73:b0:2c:27:f4:b0:ee:1a:2c:87:9b: d8:9a:7b:62:b3:b7:29:96:0b:c2:92:a2:e2:1c:53:22:4a:72: d6:bc:e2:53 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUB8EPNJ2Ncc+4Mvu5PeUGu0ByjyYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwODA0NTUwMFoX DTI1MTAwNzA1MDAwMFowMzExMC8GA1UEAxMoREU0M0U1MkNEREMyRDhEQjc0RDYw QzNFQzc0QThGRDc3MzhBRkRBODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL5bsnzNk/eM0XoPa+A36RDqEM9W664HfZAjKUYoNdUcK3OfKJPkenfbic4t mLZVkcULR7A7Ex2UDIEMpMXxS1eUH1zxS7uXy7azutbM6h9V3HSFU9qU6dLD2s5S L2fLkIsbSo5GNQ+2VpZh8I/r+DlaY+7Z4enkc+SW6TtM3YjdnHBFqXGSmbltZMgK 3yuXyVRXAv4G9iQMIuK9sYSSbynSbLL/6hZ574tCQW4BW7iJE5uvIRz8keGo8AeQ OkDb+uMvLJhi5zn1tgMEC5Wb9IeupZkYBe5hS1uNY50HfCnpJiWbESHEcoh15SzC yuo5IIb1ahORJb+NQu+Sy23s/rsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTeQ+Us 3cLY23TWDD7HSo/Xc4r9qDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMjY2Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGcaZDANBgkqhkiG9w0BAQsFAAOCAQEAbHlGzznpYLFn2subKwtm ZY1Ew2AAJMWUV6s65+89rNwUH/0zBaY0tbExiTUs9BE0843YT5SPn0advUZ/l/xI hCiBoA3Ktb+OBggygrwpWeoLGbgg72f+Tmi9Gsc4i0tAW5kYspVaNb92wj6tmw3U /A3TNScws5r9EBaqkrLPBsXpNOeIh0fgrYbqA+xcInprTakY1koPiHIaEhiD93zp dWJtWwUGcyX5HpzlHNNghRtzfD8wjLxoEG8ph3MDBW+xKmVb7OKL18HSllRsW7i7 g17a1dfqYyyJDMKQBAxJunOwLCf0sO4aLIeb2Jp7YrO3KZYLwpKi4hxTIkpy1rzi Uw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:46 2024 by rpki-client on console-ams.rpki-client.org