$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133805.roa File: AS133805.roa (raw, json) Hash identifier: vQTRbygIl/EcGpCJ5J84Hy4v+dPMedDBf7WEaGk7oTU= Subject key identifier: 9A:C5:6E:E1:98:F0:B4:B3:EB:33:A2:7C:C9:AD:EB:3F:6A:6D:03:91 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2DF017B0E8107C029F2EDB5F2CBD5F1607A6F4FB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133805.roa Signing time: Tue 16 Jan 2024 09:00:00 +0000 ROA not before: Tue 16 Jan 2024 08:55:00 +0000 ROA not after: Tue 14 Jan 2025 09:00:00 +0000 asID: 133805 IP address blocks: 103.48.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:f0:17:b0:e8:10:7c:02:9f:2e:db:5f:2c:bd:5f:16:07:a6:f4:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 16 08:55:00 2024 GMT Not After : Jan 14 09:00:00 2025 GMT Subject: CN=9AC56EE198F0B4B3EB33A27CC9ADEB3F6A6D0391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:b1:9e:99:97:34:97:67:0b:28:ab:13:03:4d: 8a:f9:5c:35:a6:d8:84:b1:cc:b4:f8:21:ee:50:a0: 83:0b:f2:20:67:bd:d4:0f:a6:6f:e0:06:fd:3b:77: cc:93:0d:e3:a9:a8:a5:f4:13:a7:5e:03:94:d5:c0: a8:6c:15:30:25:94:c4:3d:9d:f5:98:db:b4:d2:10: 5a:5e:cc:94:6f:ed:65:2b:22:f8:f9:de:37:39:82: f5:8c:f2:5d:a9:bc:b8:35:20:61:f3:c9:16:9c:3f: 05:e6:8e:9a:8f:05:97:9c:d9:97:46:3c:2f:0f:29: d0:bf:79:b7:35:10:b0:93:f2:6b:f0:5f:41:90:f7: 06:8c:4b:01:61:23:9e:cf:c3:50:7f:39:27:36:28: 8a:1d:c8:d2:bb:56:11:a0:c8:e1:a3:6f:34:42:4f: 40:b6:b2:57:6e:8e:a4:89:d1:6d:63:01:b1:a9:41: 54:61:b2:d2:cf:c8:0c:ac:f0:a9:d5:ab:41:6d:d6: f8:5f:4a:04:49:dc:68:f1:2b:25:5e:31:2b:82:a8: 06:70:01:4c:43:81:83:37:4b:38:47:c4:0d:46:27: df:29:1f:ca:bc:5d:7c:73:01:ef:bc:23:0f:a8:ef: 48:4a:fe:c4:93:34:8c:03:90:7f:ab:ab:9a:41:90: 04:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C5:6E:E1:98:F0:B4:B3:EB:33:A2:7C:C9:AD:EB:3F:6A:6D:03:91 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133805.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.48.27.0/24 Signature Algorithm: sha256WithRSAEncryption 19:d0:49:40:25:f2:e1:43:f5:78:07:e6:37:f1:41:4f:5a:92: 0b:06:2b:f0:15:8c:ca:bf:51:59:a6:c9:36:4f:b9:f7:d4:8e: 61:49:2d:e0:df:8f:ab:75:9c:e7:e2:ac:83:58:b6:3c:2d:d4: 4d:b2:51:8d:cc:21:13:dc:b1:24:38:a9:8d:93:ac:5a:c0:c0: af:eb:89:1e:27:e8:01:3c:d5:bc:f2:26:a4:82:f1:f1:6f:96: f7:c9:72:43:37:a2:36:ed:ff:e0:62:aa:4d:f5:9b:57:0b:c1: 6f:7e:16:ab:53:2b:56:a2:ac:f1:e7:ea:3c:2c:41:ae:3a:6b: 0d:07:bf:45:4d:63:94:2e:da:58:a7:b4:51:f1:26:a8:12:12: 42:7a:79:88:25:93:4a:e4:ac:23:2f:2e:07:01:bf:33:51:cf: c8:7e:f3:c2:97:85:21:25:38:fe:c0:ad:2a:0d:6f:fc:68:00: 42:b5:98:f3:5f:6c:39:ca:5b:cf:93:f8:38:87:9f:12:4a:de: 20:e7:16:8e:6f:81:ad:4d:e8:92:62:2c:72:2b:65:8e:14:19: 76:56:76:17:f4:5a:2e:64:dd:c6:1d:df:f3:bf:a0:0e:ff:d1: 00:7f:1a:11:e0:ff:87:22:9c:11:13:3f:02:9d:2c:81:48:db: 51:1d:15:8f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULfAXsOgQfAKfLttfLL1fFgem9PswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExNjA4NTUwMFoX DTI1MDExNDA5MDAwMFowMzExMC8GA1UEAxMoOUFDNTZFRTE5OEYwQjRCM0VCMzNB MjdDQzlBREVCM0Y2QTZEMDM5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOyxnpmXNJdnCyirEwNNivlcNabYhLHMtPgh7lCggwvyIGe91A+mb+AG/Tt3 zJMN46mopfQTp14DlNXAqGwVMCWUxD2d9ZjbtNIQWl7MlG/tZSsi+PneNzmC9Yzy Xam8uDUgYfPJFpw/BeaOmo8Fl5zZl0Y8Lw8p0L95tzUQsJPya/BfQZD3BoxLAWEj ns/DUH85JzYoih3I0rtWEaDI4aNvNEJPQLayV26OpInRbWMBsalBVGGy0s/IDKzw qdWrQW3W+F9KBEncaPErJV4xK4KoBnABTEOBgzdLOEfEDUYn3ykfyrxdfHMB77wj D6jvSEr+xJM0jAOQf6urmkGQBA8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSaxW7h mPC0s+szonzJres/am0DkTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMzgwNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGcwGzANBgkqhkiG9w0BAQsFAAOCAQEAGdBJQCXy4UP1eAfmN/FB T1qSCwYr8BWMyr9RWabJNk+599SOYUkt4N+Pq3Wc5+Ksg1i2PC3UTbJRjcwhE9yx JDipjZOsWsDAr+uJHifoATzVvPImpILx8W+W98lyQzeiNu3/4GKqTfWbVwvBb34W q1MrVqKs8efqPCxBrjprDQe/RU1jlC7aWKe0UfEmqBISQnp5iCWTSuSsIy8uBwG/ M1HPyH7zwpeFISU4/sCtKg1v/GgAQrWY819sOcpbz5P4OIefEkreIOcWjm+BrU3o kmIscitljhQZdlZ2F/RaLmTdxh3f87+gDv/RAH8aEeD/hyKcERM/Ap0sgUjbUR0V jw== -----END CERTIFICATE-----Generated at Thu May 9 00:37:04 2024 by rpki-client on console-fra.rpki-client.org