$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133355.roa File: AS133355.roa (raw, json) Hash identifier: WjlKACt4MKmXocVhlcWXu9ApDzWoRVu/S2t+NNeC4do= Subject key identifier: EA:39:FC:9C:BF:D7:B8:BA:38:A0:46:17:A0:15:68:80:3C:D4:08:8F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6E0FFD264E5E3CCF88CF0164A2CED33424CB266F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133355.roa Signing time: Tue 10 Dec 2024 05:00:21 +0000 ROA not before: Tue 10 Dec 2024 04:55:21 +0000 ROA not after: Tue 09 Dec 2025 05:00:21 +0000 asID: 133355 IP address blocks: 103.209.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:0f:fd:26:4e:5e:3c:cf:88:cf:01:64:a2:ce:d3:34:24:cb:26:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:21 2024 GMT Not After : Dec 9 05:00:21 2025 GMT Subject: CN=EA39FC9CBFD7B8BA38A04617A01568803CD4088F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:64:f4:c2:ed:d1:31:25:31:22:2b:fb:20:92: 3b:2d:77:9d:32:f8:b2:96:f9:9f:57:af:1f:f8:16: 05:d8:28:00:6f:52:04:66:ed:34:ac:04:de:2f:c6: aa:6e:2b:f9:25:1e:a9:19:e9:03:fa:13:00:7e:cc: 23:73:30:65:33:0f:6d:66:9b:f2:81:17:d1:2e:a2: 1a:0a:39:24:36:c5:e8:6e:af:56:c5:be:d9:dd:61: 07:c8:70:17:d1:8f:fa:b7:1a:78:ec:a1:59:2d:9e: 3d:b0:87:44:5f:5d:de:c5:60:5d:2a:94:81:52:16: 86:6f:ce:3e:3d:50:c9:d7:30:a5:57:1c:60:c4:f6: f9:9b:c7:c6:4c:6f:bc:05:9c:6b:5e:ff:f3:65:99: 57:e5:b0:09:cd:df:8e:1d:a3:4b:c3:06:f2:19:c8: 93:03:a9:64:a5:ea:9a:2b:53:6b:75:93:45:cd:3a: ee:68:8b:b8:22:9b:f6:dd:d0:9d:2a:f9:4d:4f:df: a7:51:06:d5:f8:ea:ed:f1:d4:00:85:48:a9:d1:f0: df:56:75:4c:5e:26:2c:89:ae:bf:95:16:d1:58:83: 18:aa:c5:99:e2:3a:80:27:05:75:98:44:8a:f7:e9: bd:bd:c3:c1:d7:ca:13:e3:c6:57:06:e1:aa:62:64: 92:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:39:FC:9C:BF:D7:B8:BA:38:A0:46:17:A0:15:68:80:3C:D4:08:8F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133355.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.131.0/24 Signature Algorithm: sha256WithRSAEncryption 29:46:91:ef:a7:81:d9:9a:62:1e:a8:1b:16:e9:59:90:65:b3: 60:1a:d8:25:c7:6e:d3:6a:ab:74:d3:8a:c5:f8:34:22:2e:29: 87:69:94:a0:ba:5e:a9:b3:48:01:da:83:e4:49:a9:72:ed:41: 1b:3f:ab:29:fb:f4:36:6c:7e:71:d3:ba:76:15:b7:45:05:60: eb:46:7d:b8:1e:d0:20:e2:fa:8c:8a:6e:35:ad:62:ca:72:df: 2a:cf:55:4f:77:19:02:d6:13:07:7d:3b:7f:60:96:8f:97:55: b0:70:c5:a0:f4:e3:a7:16:95:b2:e6:f0:86:c3:8e:4c:f9:de: 33:05:71:23:02:19:0c:11:9a:4f:97:36:35:67:e4:29:c2:59: 43:f1:cc:8d:f4:d5:2f:62:8c:d3:24:e3:60:f4:f0:ec:2f:1b: 08:49:1e:6d:b2:e3:ff:86:57:b7:af:4f:1f:5b:6c:fe:1a:57: 90:56:c2:74:f0:e0:e7:bd:7c:78:e9:fa:78:af:5c:32:6a:1f: c7:70:14:f8:66:5d:d9:4f:c6:e6:17:5c:df:46:ae:57:34:33: 88:5f:d0:5f:00:7d:f6:e0:9f:f3:7a:f7:fc:0f:a6:62:2b:67: 74:50:97:5d:ae:1f:49:e4:a4:3d:01:82:42:17:b9:c6:5d:68: 18:01:7c:a3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUbg/9Jk5ePM+IzwFkos7TNCTLJm8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyMVoX DTI1MTIwOTA1MDAyMVowMzExMC8GA1UEAxMoRUEzOUZDOUNCRkQ3QjhCQTM4QTA0 NjE3QTAxNTY4ODAzQ0Q0MDg4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANdk9MLt0TElMSIr+yCSOy13nTL4spb5n1evH/gWBdgoAG9SBGbtNKwE3i/G qm4r+SUeqRnpA/oTAH7MI3MwZTMPbWab8oEX0S6iGgo5JDbF6G6vVsW+2d1hB8hw F9GP+rcaeOyhWS2ePbCHRF9d3sVgXSqUgVIWhm/OPj1QydcwpVccYMT2+ZvHxkxv vAWca17/82WZV+WwCc3fjh2jS8MG8hnIkwOpZKXqmitTa3WTRc067miLuCKb9t3Q nSr5TU/fp1EG1fjq7fHUAIVIqdHw31Z1TF4mLImuv5UW0ViDGKrFmeI6gCcFdZhE ivfpvb3DwdfKE+PGVwbhqmJkki8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTqOfyc v9e4ujigRhegFWiAPNQIjzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMzM1NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfRgzANBgkqhkiG9w0BAQsFAAOCAQEAKUaR76eB2ZpiHqgbFulZ kGWzYBrYJcdu02qrdNOKxfg0Ii4ph2mUoLpeqbNIAdqD5Empcu1BGz+rKfv0Nmx+ cdO6dhW3RQVg60Z9uB7QIOL6jIpuNa1iynLfKs9VT3cZAtYTB307f2CWj5dVsHDF oPTjpxaVsubwhsOOTPneMwVxIwIZDBGaT5c2NWfkKcJZQ/HMjfTVL2KM0yTjYPTw 7C8bCEkebbLj/4ZXt69PH1ts/hpXkFbCdPDg5718eOn6eK9cMmofx3AU+GZd2U/G 5hdc30auVzQziF/QXwB99uCf83r3/A+mYitndFCXXa4fSeSkPQGCQhe5xl1oGAF8 ow== -----END CERTIFICATE-----Generated at Sun Feb 16 20:57:22 2025 by rpki-client