$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134630.roa File: AS134630.roa (raw, json) Hash identifier: rwKt3PG2vuphlwiztt6aaexgWHe0fFlkDUknSJmz+WE= Subject key identifier: 4E:3F:90:D1:68:58:D7:50:11:80:4B:C6:D3:B4:F9:26:1C:7D:35:7E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 30FA06BDF0723D56B9A67E21103207E8AC8E1699 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134630.roa Signing time: Thu 05 Oct 2023 03:00:00 +0000 ROA not before: Thu 05 Oct 2023 02:55:00 +0000 ROA not after: Thu 03 Oct 2024 03:00:00 +0000 asID: 134630 IP address blocks: 49.156.20.0/23 maxlen: 24 49.156.22.0/23 maxlen: 24 103.200.16.0/23 maxlen: 24 103.200.18.0/23 maxlen: 24 2403:8680::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 20:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:fa:06:bd:f0:72:3d:56:b9:a6:7e:21:10:32:07:e8:ac:8e:16:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 5 02:55:00 2023 GMT Not After : Oct 3 03:00:00 2024 GMT Subject: CN=4E3F90D16858D75011804BC6D3B4F9261C7D357E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:16:53:1c:ac:08:c6:52:8f:a4:45:76:d0:06: 78:d9:0e:7b:b1:f7:04:45:b0:79:77:9b:bc:3d:d2: 29:d8:cd:62:88:e0:aa:2c:26:d4:84:23:ec:d1:7e: 4f:44:b4:90:73:60:87:56:ce:75:2b:d5:bd:ac:d5: 75:24:9c:ed:0c:e6:ec:a8:fd:5a:e0:77:5e:79:9f: 96:5d:85:5f:61:41:30:e7:f4:24:9c:76:27:c7:90: b6:ea:e6:23:71:23:cb:c1:c7:c1:07:ca:26:68:02: 19:e8:e0:37:c6:c1:25:a2:e3:c1:4c:0b:e9:8c:67: a3:78:87:40:3e:04:81:57:c9:08:f8:22:ef:64:58: 49:34:f4:f4:86:15:71:6a:6e:03:16:bf:e1:cf:0c: aa:0c:73:5f:2c:d7:37:7b:d9:b0:e1:39:84:29:cb: 53:b5:ec:de:82:7e:f5:7d:ab:5b:17:8e:da:c9:c6: 51:53:d8:6d:10:2d:9d:c9:b2:97:f8:46:51:e8:56: 4b:3b:1c:47:22:4c:bf:38:5f:39:03:94:0d:02:93: 0c:38:04:c1:2e:3d:79:4f:be:0f:56:2e:f8:08:2c: 36:07:bc:cc:67:6c:85:72:2a:68:2e:36:8b:04:4f: 09:b3:fc:63:53:18:ac:f9:ca:e7:01:d7:d0:29:4e: 40:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:3F:90:D1:68:58:D7:50:11:80:4B:C6:D3:B4:F9:26:1C:7D:35:7E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.156.20.0/22 103.200.16.0/22 IPv6: 2403:8680::/32 Signature Algorithm: sha256WithRSAEncryption 41:2f:52:6f:f0:a4:13:a1:e3:0c:c9:b3:f0:88:c8:22:b1:4a: 39:b0:14:91:1b:3f:c2:34:d6:84:20:c2:51:96:25:c2:87:d7: 40:a6:49:0b:59:1c:d4:c3:27:a6:59:7c:c2:07:90:f6:75:06: 1e:cf:e7:98:4f:97:05:08:d2:03:69:8a:f8:73:6a:e2:16:f4: ed:35:ea:0e:b8:f5:b5:e5:04:26:83:4c:d1:69:10:4e:61:04: 7d:de:5c:92:b5:b5:71:cf:ee:e5:6a:17:25:21:5e:d7:95:94: ad:c8:33:ef:97:ba:3b:b8:0d:81:20:24:38:68:98:e1:d3:20: ae:f2:65:54:ed:7f:ee:a9:8c:0a:e3:e8:0e:6d:e4:63:e6:f1: 30:b8:4f:7d:30:00:04:c1:3e:94:5a:4e:8a:57:d8:b0:01:26: 68:90:e7:72:01:db:b2:c8:bb:ef:80:7c:a4:01:91:4e:b7:db: 6a:3c:1e:e9:a1:3c:30:fa:98:24:8e:b7:d7:fc:ef:cb:0a:09: 71:19:19:92:cd:a7:24:e0:2f:f8:e1:a7:dc:96:3d:10:d7:73: 83:67:29:43:52:6a:50:1b:16:44:d7:bd:90:50:65:af:6f:48: 2e:69:bf:a6:ee:46:0c:d7:49:ef:2d:40:84:41:13:0f:c9:7b: 7f:e2:ba:3f -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUMPoGvfByPVa5pn4hEDIH6KyOFpkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwNTAyNTUwMFoX DTI0MTAwMzAzMDAwMFowMzExMC8GA1UEAxMoNEUzRjkwRDE2ODU4RDc1MDExODA0 QkM2RDNCNEY5MjYxQzdEMzU3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOcWUxysCMZSj6RFdtAGeNkOe7H3BEWweXebvD3SKdjNYojgqiwm1IQj7NF+ T0S0kHNgh1bOdSvVvazVdSSc7Qzm7Kj9WuB3Xnmfll2FX2FBMOf0JJx2J8eQturm I3Ejy8HHwQfKJmgCGejgN8bBJaLjwUwL6Yxno3iHQD4EgVfJCPgi72RYSTT09IYV cWpuAxa/4c8MqgxzXyzXN3vZsOE5hCnLU7Xs3oJ+9X2rWxeO2snGUVPYbRAtncmy l/hGUehWSzscRyJMvzhfOQOUDQKTDDgEwS49eU++D1Yu+AgsNge8zGdshXIqaC42 iwRPCbP8Y1MYrPnK5wHX0ClOQGECAwEAAaOCAeUwggHhMB0GA1UdDgQWBBROP5DR aFjXUBGAS8bTtPkmHH01fjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNDYzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAjGcFAMEAmfIEDANBAIAAjAHAwUAJAOGgDANBgkqhkiG9w0BAQsF AAOCAQEAQS9Sb/CkE6HjDMmz8IjIIrFKObAUkRs/wjTWhCDCUZYlwofXQKZJC1kc 1MMnpll8wgeQ9nUGHs/nmE+XBQjSA2mK+HNq4hb07TXqDrj1teUEJoNM0WkQTmEE fd5ckrW1cc/u5WoXJSFe15WUrcgz75e6O7gNgSAkOGiY4dMgrvJlVO1/7qmMCuPo Dm3kY+bxMLhPfTAABME+lFpOilfYsAEmaJDncgHbssi774B8pAGRTrfbajwe6aE8 MPqYJI631/zvywoJcRkZks2nJOAv+OGn3JY9ENdzg2cpQ1JqUBsWRNe9kFBlr29I Lmm/pu5GDNdJ7y1AhEETD8l7f+K6Pw== -----END CERTIFICATE-----Generated at Sat Apr 27 13:32:30 2024 by rpki-client on console-ams.rpki-client.org