$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133805.roa File: AS133805.roa (raw, json) Hash identifier: VXobJTNv76PXPgPjdd1PN08HnK+dDK8YTsIt+2knjQA= Subject key identifier: B8:EC:8B:64:45:0D:25:47:F5:3B:B0:40:6D:A0:91:C8:35:5B:98:BD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 556399F4AE6080971FDEC0E7DB5E3DACCCF17367 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133805.roa Signing time: Tue 17 Dec 2024 10:00:00 +0000 ROA not before: Tue 17 Dec 2024 09:55:00 +0000 ROA not after: Tue 16 Dec 2025 10:00:00 +0000 asID: 133805 IP address blocks: 103.48.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:63:99:f4:ae:60:80:97:1f:de:c0:e7:db:5e:3d:ac:cc:f1:73:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 17 09:55:00 2024 GMT Not After : Dec 16 10:00:00 2025 GMT Subject: CN=B8EC8B64450D2547F53BB0406DA091C8355B98BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:30:58:48:e4:4f:22:f2:11:e8:df:87:b1:68: 6e:7e:ff:2a:3f:b0:40:6e:09:fc:f3:d9:54:48:7f: 30:57:d8:22:16:b5:9d:f3:e0:15:d8:c2:67:15:2e: b3:3b:18:b8:3f:47:03:d6:81:23:dd:f8:91:af:53: ae:9a:77:93:8d:73:25:d2:d1:20:30:36:89:7d:73: 07:9e:b4:a0:2f:f8:0f:c7:f9:31:8b:10:5b:8b:de: 41:c8:31:5f:84:58:3f:b8:ef:33:38:62:17:42:84: 88:84:7f:0f:c9:62:27:b6:2a:3b:7a:27:fb:17:a3: b9:22:57:f1:b0:20:b0:7a:19:ef:43:cf:0a:70:9a: a3:b1:0f:34:b7:e1:34:3f:38:ab:ee:5f:4d:af:ff: 42:c9:c6:00:7d:86:f0:00:57:ac:e1:a3:24:87:9e: 61:e5:81:df:71:6f:5e:84:5c:6d:a3:37:a6:31:61: dc:b0:5f:0f:90:3b:e3:ec:24:0f:bc:26:51:cb:0b: 16:2e:00:35:c6:b5:46:3c:29:85:3e:b1:7c:52:d4: 18:17:45:6a:a5:80:70:8c:86:03:a3:f5:2a:cc:9b: 2f:7c:2a:07:97:a0:fb:83:47:a3:af:7f:1a:8b:9a: 9c:a2:a9:b5:11:08:7c:21:05:19:1f:9d:8d:50:f6: 05:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:EC:8B:64:45:0D:25:47:F5:3B:B0:40:6D:A0:91:C8:35:5B:98:BD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133805.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.48.27.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:51:91:e1:4d:7a:96:3a:c5:f8:18:f9:60:d1:69:9c:6f:e9: 47:97:68:6c:ff:73:5a:9e:37:8c:fc:c6:34:41:80:10:60:e4: 65:3e:a9:72:c5:66:03:71:c3:05:d6:89:1d:3c:b2:ae:85:00: 91:15:44:55:1e:86:00:e6:26:2c:27:86:78:06:73:36:2e:1b: 05:40:b5:29:ac:12:f6:00:d9:51:b1:24:29:31:65:a2:bd:fb: 6f:57:fa:18:ca:19:14:29:08:d3:fd:47:86:ff:71:06:42:44: a7:f1:1c:e7:d8:f4:b7:3e:15:72:4e:23:a2:45:6c:3f:96:99: 92:56:01:48:89:69:0b:03:9d:b6:bf:05:da:3f:64:18:f2:4d: 1b:b4:c6:1a:c6:5d:21:90:cf:4f:06:a4:cd:a8:d4:43:c5:50: 5e:a9:0b:5a:33:2d:fe:a2:b9:65:bd:95:27:a4:4a:f7:27:c5: b7:18:24:5e:f5:67:71:31:a3:0f:1e:6e:4a:d6:a4:92:52:ea: d9:62:18:f3:54:49:fd:c9:f4:20:84:7d:70:f4:ee:de:62:c2: 94:2e:44:61:c2:0f:b9:9d:2c:08:58:48:b1:8b:7e:13:ff:36: bc:b1:35:4c:c1:63:a9:14:0d:aa:6d:e4:8e:6b:b2:a8:db:1b: a0:30:86:89 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVWOZ9K5ggJcf3sDn2149rMzxc2cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxNzA5NTUwMFoX DTI1MTIxNjEwMDAwMFowMzExMC8GA1UEAxMoQjhFQzhCNjQ0NTBEMjU0N0Y1M0JC MDQwNkRBMDkxQzgzNTVCOThCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALowWEjkTyLyEejfh7Fobn7/Kj+wQG4J/PPZVEh/MFfYIha1nfPgFdjCZxUu szsYuD9HA9aBI934ka9Trpp3k41zJdLRIDA2iX1zB560oC/4D8f5MYsQW4veQcgx X4RYP7jvMzhiF0KEiIR/D8liJ7YqO3on+xejuSJX8bAgsHoZ70PPCnCao7EPNLfh ND84q+5fTa//QsnGAH2G8ABXrOGjJIeeYeWB33FvXoRcbaM3pjFh3LBfD5A74+wk D7wmUcsLFi4ANca1RjwphT6xfFLUGBdFaqWAcIyGA6P1KsybL3wqB5eg+4NHo69/ GouanKKptREIfCEFGR+djVD2BUsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS47Itk RQ0lR/U7sEBtoJHINVuYvTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMzgwNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGcwGzANBgkqhkiG9w0BAQsFAAOCAQEAXlGR4U16ljrF+Bj5YNFp nG/pR5dobP9zWp43jPzGNEGAEGDkZT6pcsVmA3HDBdaJHTyyroUAkRVEVR6GAOYm LCeGeAZzNi4bBUC1KawS9gDZUbEkKTFlor37b1f6GMoZFCkI0/1Hhv9xBkJEp/Ec 59j0tz4Vck4jokVsP5aZklYBSIlpCwOdtr8F2j9kGPJNG7TGGsZdIZDPTwakzajU Q8VQXqkLWjMt/qK5Zb2VJ6RK9yfFtxgkXvVncTGjDx5uStakklLq2WIY81RJ/cn0 IIR9cPTu3mLClC5EYcIPuZ0sCFhIsYt+E/82vLE1TMFjqRQNqm3kjmuyqNsboDCG iQ== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:35 2025 by rpki-client