$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133841.roa File: AS133841.roa (raw, json) Hash identifier: +mMIQ3yuBK4ceX3O2U0BxH5bqsQsEw+/9w9TOp7Xq4I= Subject key identifier: 4B:9F:DB:50:F4:81:8F:55:1A:9D:11:9D:6D:CF:81:0F:F6:FA:D2:C2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6A49202D2C4B8D40E89DE1248E42187DDACC5C9B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133841.roa Signing time: Sun 19 May 2024 02:59:54 +0000 ROA not before: Sun 19 May 2024 02:54:54 +0000 ROA not after: Sun 18 May 2025 02:59:54 +0000 asID: 133841 IP address blocks: 210.79.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:49:20:2d:2c:4b:8d:40:e8:9d:e1:24:8e:42:18:7d:da:cc:5c:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 19 02:54:54 2024 GMT Not After : May 18 02:59:54 2025 GMT Subject: CN=4B9FDB50F4818F551A9D119D6DCF810FF6FAD2C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:90:22:3e:45:cf:75:8a:f3:b2:75:76:b8:e5: a0:59:5e:d4:e2:9c:35:6f:58:33:85:66:b4:ca:31: e6:4e:51:63:3b:ef:16:c8:86:98:a6:56:26:f4:da: 42:fd:34:4e:71:73:da:ea:7f:f1:d2:ae:c3:d0:0a: 2a:7c:fc:85:16:4b:ba:a6:55:bb:6a:86:0a:e4:9b: 1f:e4:2c:56:25:71:14:a0:86:4a:3a:a7:e8:83:7b: 56:0c:0d:3f:bb:00:99:1d:ec:50:de:7b:99:0e:ca: 0d:05:32:a5:0f:d3:58:e9:f9:9a:78:5b:df:da:bd: bf:e2:3a:3b:46:6a:63:31:5b:d4:01:f6:e5:6e:65: d5:02:aa:b2:71:67:e4:fc:75:36:5d:3b:88:91:32: 72:ee:b4:e2:3a:d1:90:f1:d6:84:a7:87:be:cb:1b: c7:ec:00:c0:0c:7a:df:cd:06:82:08:a8:8b:ad:fa: 58:27:c0:c4:46:eb:35:91:32:69:4c:1b:7d:67:57: c0:5d:13:aa:ab:15:2f:4d:58:da:c3:ae:84:7f:94: f4:81:c2:f7:61:b5:2e:b9:25:5d:14:ac:27:f0:8a: b5:20:b0:92:b1:eb:f4:6a:f3:42:ad:98:fa:5b:d1: 98:bb:f5:83:98:6e:89:ff:08:0c:28:c1:94:fc:ee: 1b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:9F:DB:50:F4:81:8F:55:1A:9D:11:9D:6D:CF:81:0F:F6:FA:D2:C2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133841.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.158.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:26:7f:c2:3d:44:d6:10:94:72:24:1d:79:9e:6a:ce:ed:65: 24:c9:d2:29:4e:ff:e2:c5:00:fc:c1:d6:4a:1c:a9:c6:8b:e8: 6e:8b:03:15:06:cd:d7:79:64:19:cf:88:f9:82:3c:ac:37:45: 4a:c3:83:44:4d:6a:83:a8:fc:2e:c2:d8:1a:24:57:04:7c:ef: dc:63:a1:59:25:47:d6:9b:b4:78:72:52:f8:fd:cf:ca:8a:dc: 69:2d:d0:bc:de:d4:4c:1a:6e:f2:78:0c:15:ac:6c:e1:e2:22: 96:50:5e:1d:37:84:e4:24:94:ec:9c:87:2d:4c:5f:b9:7a:7f: a9:68:e4:b3:b5:b1:67:7e:50:a8:81:04:d8:e9:69:37:db:f1: b4:e7:c9:c6:ac:cb:aa:df:dd:a3:65:f1:90:5c:3a:14:0d:76: db:ca:a0:28:a8:71:99:01:04:56:03:f8:b5:e3:b0:3a:79:ba: c1:ae:69:35:2b:fa:37:3e:7f:68:24:c0:e5:0c:36:27:f5:69: 42:48:3a:ed:eb:0e:13:93:16:9d:d6:8a:d5:f0:26:76:8c:7c: 34:45:d0:e5:d8:5b:c3:e5:9a:45:bc:27:e0:98:06:ed:4d:71: 50:31:3c:0b:1a:97:ec:50:53:be:9e:e7:79:da:67:e4:6d:2c: 22:aa:67:f9 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUakkgLSxLjUDoneEkjkIYfdrMXJswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUxOTAyNTQ1NFoX DTI1MDUxODAyNTk1NFowMzExMC8GA1UEAxMoNEI5RkRCNTBGNDgxOEY1NTFBOUQx MTlENkRDRjgxMEZGNkZBRDJDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANiQIj5Fz3WK87J1drjloFle1OKcNW9YM4VmtMox5k5RYzvvFsiGmKZWJvTa Qv00TnFz2up/8dKuw9AKKnz8hRZLuqZVu2qGCuSbH+QsViVxFKCGSjqn6IN7VgwN P7sAmR3sUN57mQ7KDQUypQ/TWOn5mnhb39q9v+I6O0ZqYzFb1AH25W5l1QKqsnFn 5Px1Nl07iJEycu604jrRkPHWhKeHvssbx+wAwAx6380Gggioi636WCfAxEbrNZEy aUwbfWdXwF0TqqsVL01Y2sOuhH+U9IHC92G1LrklXRSsJ/CKtSCwkrHr9GrzQq2Y +lvRmLv1g5huif8IDCjBlPzuGyMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRLn9tQ 9IGPVRqdEZ1tz4EP9vrSwjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMzg0MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAdJPnjANBgkqhkiG9w0BAQsFAAOCAQEAOyZ/wj1E1hCUciQdeZ5q zu1lJMnSKU7/4sUA/MHWShypxovobosDFQbN13lkGc+I+YI8rDdFSsODRE1qg6j8 LsLYGiRXBHzv3GOhWSVH1pu0eHJS+P3PyorcaS3QvN7UTBpu8ngMFaxs4eIillBe HTeE5CSU7JyHLUxfuXp/qWjks7WxZ35QqIEE2OlpN9vxtOfJxqzLqt/do2XxkFw6 FA1228qgKKhxmQEEVgP4teOwOnm6wa5pNSv6Nz5/aCTA5Qw2J/VpQkg67esOE5MW ndaK1fAmdox8NEXQ5dhbw+WaRbwn4JgG7U1xUDE8CxqX7FBTvp7nedpn5G0sIqpn +Q== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:46 2024 by rpki-client on console-ams.rpki-client.org