$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133337.roa File: AS133337.roa (raw, json) Hash identifier: 8Kse6q9WRFVCkIfK18WuX8OcbFmL4pS3HJA5d/37QEc= Subject key identifier: 8F:AB:AA:55:E0:43:56:9C:E8:4A:E6:67:88:07:FE:0E:1C:80:10:8D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0EF589FDB6877ADC672B1945B9ED16E690A64E0C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133337.roa Signing time: Tue 09 Jan 2024 04:00:08 +0000 ROA not before: Tue 09 Jan 2024 03:55:08 +0000 ROA not after: Tue 07 Jan 2025 04:00:08 +0000 asID: 133337 IP address blocks: 103.174.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:f5:89:fd:b6:87:7a:dc:67:2b:19:45:b9:ed:16:e6:90:a6:4e:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:08 2024 GMT Not After : Jan 7 04:00:08 2025 GMT Subject: CN=8FABAA55E043569CE84AE6678807FE0E1C80108D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:62:ce:ae:5e:45:de:62:a4:22:af:12:4a:28: 61:25:c8:65:19:c7:02:ae:fb:1d:dc:fc:bd:3d:ec: 59:48:2f:59:3b:e8:6b:10:e0:e5:6c:60:6e:d1:e5: a5:91:d5:1f:43:81:42:dc:68:81:49:3d:c2:cc:0d: ce:5d:75:e2:64:c3:55:de:60:96:c5:7e:73:5d:01: ab:29:7d:0a:cd:32:96:10:71:c8:7d:77:75:6c:d5: 20:7e:d5:8f:05:da:55:52:7c:17:35:d3:27:a3:70: 83:49:67:2e:f6:c6:7f:7d:18:17:2d:1d:c0:05:1a: 5d:17:60:55:93:e5:37:9c:29:0a:e2:4b:cb:ac:5c: 0c:36:7c:db:8c:df:13:d8:b2:dd:14:6f:08:b7:7e: 87:ab:41:d3:5a:0b:99:d4:b2:87:c2:22:4b:6a:fd: e2:91:d3:e3:94:03:7b:0e:ff:04:6b:37:7e:7b:f5: a4:97:f3:8c:a5:3d:e4:dd:ed:7d:a7:2c:f8:ac:f4: 8e:2b:db:cb:ec:bc:8a:cf:c4:af:a1:c8:ad:e3:64: ee:53:8b:ba:52:af:d6:f3:8c:fd:4b:56:a1:13:17: fa:f7:d5:d9:88:e8:f1:d9:3b:13:be:77:2d:06:27: 33:60:db:04:60:af:d8:b5:cd:ce:b0:42:a6:9e:a1: f6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:AB:AA:55:E0:43:56:9C:E8:4A:E6:67:88:07:FE:0E:1C:80:10:8D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.67.0/24 Signature Algorithm: sha256WithRSAEncryption 35:e2:d2:e9:32:31:f2:0b:d3:85:1c:2c:15:fc:91:0c:04:bd: 57:c4:3e:df:e9:0b:dd:17:76:fc:5a:4b:a3:ee:f2:ab:68:98: 95:d9:c5:c6:b5:c5:55:85:1b:06:78:0a:5a:29:1b:6d:56:cd: 17:eb:c6:21:a7:4b:3e:c6:b0:ff:40:af:5c:fe:9d:3c:c1:4c: 1a:fb:a1:a4:86:a5:96:34:30:51:76:79:fc:89:30:8c:62:78: b9:85:ab:75:a4:08:d8:9c:40:3f:77:f9:db:14:fa:77:5d:9e: 5d:f3:58:64:08:da:78:8d:42:99:63:f5:ba:2b:3e:bc:0d:fa: 27:f5:51:6b:cb:5d:76:4f:b7:2b:fa:35:54:be:0c:a6:57:b4: c4:51:25:63:e5:20:5f:65:40:79:81:99:0f:7f:54:22:a7:ac: 00:2e:bf:d6:a0:37:98:03:2b:71:fb:62:4f:36:18:a3:48:ad: 94:70:6e:1e:c4:bb:92:ff:d7:25:e3:19:bb:ef:cf:4e:e9:79: e2:0e:8a:f9:1a:2a:9d:f6:38:fc:b2:9b:f7:67:a2:e9:f3:a3: 24:a8:69:f4:f6:19:98:20:98:e8:0d:41:8f:41:d9:f7:74:3d: ae:1c:d3:b4:a8:2c:1a:2d:c6:c4:2b:f2:15:df:b9:93:79:15: 8f:68:f7:e7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDvWJ/baHetxnKxlFue0W5pCmTgwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwOFoX DTI1MDEwNzA0MDAwOFowMzExMC8GA1UEAxMoOEZBQkFBNTVFMDQzNTY5Q0U4NEFF NjY3ODgwN0ZFMEUxQzgwMTA4RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK1izq5eRd5ipCKvEkooYSXIZRnHAq77Hdz8vT3sWUgvWTvoaxDg5WxgbtHl pZHVH0OBQtxogUk9wswNzl114mTDVd5glsV+c10Bqyl9Cs0ylhBxyH13dWzVIH7V jwXaVVJ8FzXTJ6Nwg0lnLvbGf30YFy0dwAUaXRdgVZPlN5wpCuJLy6xcDDZ824zf E9iy3RRvCLd+h6tB01oLmdSyh8IiS2r94pHT45QDew7/BGs3fnv1pJfzjKU95N3t facs+Kz0jivby+y8is/Er6HIreNk7lOLulKv1vOM/UtWoRMX+vfV2Yjo8dk7E753 LQYnM2DbBGCv2LXNzrBCpp6h9hkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSPq6pV 4ENWnOhK5meIB/4OHIAQjTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMzMzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeuQzANBgkqhkiG9w0BAQsFAAOCAQEANeLS6TIx8gvThRwsFfyR DAS9V8Q+3+kL3Rd2/FpLo+7yq2iYldnFxrXFVYUbBngKWikbbVbNF+vGIadLPsaw /0CvXP6dPMFMGvuhpIalljQwUXZ5/IkwjGJ4uYWrdaQI2JxAP3f52xT6d12eXfNY ZAjaeI1CmWP1uis+vA36J/VRa8tddk+3K/o1VL4Mple0xFElY+UgX2VAeYGZD39U IqesAC6/1qA3mAMrcftiTzYYo0itlHBuHsS7kv/XJeMZu+/PTul54g6K+RoqnfY4 /LKb92ei6fOjJKhp9PYZmCCY6A1Bj0HZ93Q9rhzTtKgsGi3GxCvyFd+5k3kVj2j3 5w== -----END CERTIFICATE-----Generated at Wed May 8 10:06:51 2024 by rpki-client on console-ams.rpki-client.org