$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132669.roa File: AS132669.roa (raw, json) Hash identifier: rE+BTUUL5ZfQLhmCs3mnswSKCb/Q9LBtHuz+XA6Yqj4= Subject key identifier: 09:24:25:E5:F8:88:5E:53:97:5A:9D:B0:B7:08:0B:49:86:CA:8B:46 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7B3D41F02AB23EC9F941EE7CB53C8690F986DAC4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132669.roa Signing time: Wed 28 Feb 2024 04:00:00 +0000 ROA not before: Wed 28 Feb 2024 03:55:00 +0000 ROA not after: Wed 26 Feb 2025 04:00:00 +0000 asID: 132669 IP address blocks: 103.248.248.0/24 maxlen: 24 2400:b8a0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:3d:41:f0:2a:b2:3e:c9:f9:41:ee:7c:b5:3c:86:90:f9:86:da:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 28 03:55:00 2024 GMT Not After : Feb 26 04:00:00 2025 GMT Subject: CN=092425E5F8885E53975A9DB0B7080B4986CA8B46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:20:be:69:1a:58:e8:df:ad:2a:33:45:77:67: ef:fa:ca:ca:75:7c:ed:05:0e:1a:1f:15:2f:ef:52: c3:f6:7e:c3:ed:36:bb:d8:1c:f7:c9:b9:b9:ba:78: aa:cd:ad:0b:4e:cc:97:db:e3:d9:52:af:16:5f:3a: 5a:4d:a9:7e:26:18:13:bf:c2:02:74:3a:63:39:21: b7:38:72:3a:35:5c:a1:6a:d9:34:1b:ab:28:0b:4e: 9d:9a:fa:4a:5d:2c:b6:c7:21:d1:74:22:ba:a9:6e: 85:61:78:58:cd:0f:b9:f5:a7:0a:3e:64:db:58:96: 21:01:3e:f7:33:da:5c:dd:21:07:7a:b9:38:d5:7c: 3b:77:ab:6e:21:24:c8:be:38:51:c5:c6:ad:fe:d6: d9:91:eb:01:9d:58:c0:cb:f6:0f:56:07:b4:ab:c4: fe:60:09:44:77:0c:d7:07:e3:9e:8d:ae:0a:e7:21: 1f:0d:94:16:75:5a:df:37:3f:b3:b7:95:8d:00:ce: f9:f7:57:07:13:c7:39:8b:af:c8:58:e6:53:fb:b0: dd:f4:e6:98:b7:44:8b:71:0c:b5:1d:7d:f1:23:5c: 32:e9:43:94:83:bc:02:8d:1b:28:dd:c9:51:31:05: 3f:f8:83:a0:fb:51:ab:0f:10:f0:20:4e:79:ff:ef: 04:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:24:25:E5:F8:88:5E:53:97:5A:9D:B0:B7:08:0B:49:86:CA:8B:46 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132669.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.248.248.0/24 IPv6: 2400:b8a0::/32 Signature Algorithm: sha256WithRSAEncryption 4c:45:a6:bf:b6:f5:81:6e:25:18:a3:6f:b6:49:be:04:b6:28: 85:d2:3e:93:fd:77:6d:2d:38:57:23:f8:61:1b:2d:e7:7b:41: fc:68:7c:18:d1:1c:89:a4:bf:2f:ca:b3:84:3b:89:55:31:4a: fd:4a:f2:8b:f3:37:55:c9:0c:85:fc:6b:75:d7:f5:4f:f9:88: 4c:68:c1:81:f5:0e:03:c3:22:73:55:40:14:84:2d:22:db:f1: ee:55:1a:bc:08:8e:3b:6a:e5:31:ae:20:f3:7a:5f:89:28:2f: 69:f2:e1:aa:03:b3:a8:3d:33:3a:6b:50:16:0d:0a:26:80:2b: bc:f3:41:1c:96:05:0b:30:5b:b1:1e:de:4e:43:f5:a9:23:f8: b3:59:a1:31:b4:df:de:85:72:77:e8:1d:29:d5:10:5e:1a:3a: d1:f7:5a:dd:3d:49:73:b9:98:43:d6:96:71:0a:0b:5b:9d:84: 47:3b:ad:e6:b6:f5:f9:f3:82:55:15:82:36:b2:ef:b5:92:3c: 71:44:c1:39:c2:36:53:ca:f3:e4:33:2e:8b:09:fb:c5:00:9a: bb:29:98:c2:d0:eb:14:44:1c:a6:f4:ea:3a:5d:36:e0:4f:11: b7:ae:f0:92:42:bd:69:03:9a:b1:4a:65:9d:84:fe:88:41:0a: 34:ae:0a:a6 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUez1B8CqyPsn5Qe58tTyGkPmG2sQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIyODAzNTUwMFoX DTI1MDIyNjA0MDAwMFowMzExMC8GA1UEAxMoMDkyNDI1RTVGODg4NUU1Mzk3NUE5 REIwQjcwODBCNDk4NkNBOEI0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPYgvmkaWOjfrSozRXdn7/rKynV87QUOGh8VL+9Sw/Z+w+02u9gc98m5ubp4 qs2tC07Ml9vj2VKvFl86Wk2pfiYYE7/CAnQ6YzkhtzhyOjVcoWrZNBurKAtOnZr6 Sl0stsch0XQiuqluhWF4WM0PufWnCj5k21iWIQE+9zPaXN0hB3q5ONV8O3erbiEk yL44UcXGrf7W2ZHrAZ1YwMv2D1YHtKvE/mAJRHcM1wfjno2uCuchHw2UFnVa3zc/ s7eVjQDO+fdXBxPHOYuvyFjmU/uw3fTmmLdEi3EMtR198SNcMulDlIO8Ao0bKN3J UTEFP/iDoPtRqw8Q8CBOef/vBHECAwEAAaOCAd8wggHbMB0GA1UdDgQWBBQJJCXl +IheU5danbC3CAtJhsqLRjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMjY2OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAGf4+DANBAIAAjAHAwUAJAC4oDANBgkqhkiG9w0BAQsFAAOCAQEA TEWmv7b1gW4lGKNvtkm+BLYohdI+k/13bS04VyP4YRst53tB/Gh8GNEciaS/L8qz hDuJVTFK/Uryi/M3VckMhfxrddf1T/mITGjBgfUOA8Mic1VAFIQtItvx7lUavAiO O2rlMa4g83pfiSgvafLhqgOzqD0zOmtQFg0KJoArvPNBHJYFCzBbsR7eTkP1qSP4 s1mhMbTf3oVyd+gdKdUQXho60fda3T1Jc7mYQ9aWcQoLW52ERzut5rb1+fOCVRWC NrLvtZI8cUTBOcI2U8rz5DMuiwn7xQCauymYwtDrFEQcpvTqOl024E8Rt67wkkK9 aQOasUplnYT+iEEKNK4Kpg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:23 2024 by rpki-client on console-fra.rpki-client.org