$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134630.roa File: AS134630.roa (raw, json) Hash identifier: yW1fWPOf4Wpgt2naxMqnEVRIOWKBaUnD3/ESMp3kGR4= Subject key identifier: 22:E9:5F:EF:64:E2:AF:B3:45:B5:EE:9E:D2:1B:BC:71:86:53:BB:01 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7D11CB8DD1A0B6E58A760F6F06BED734E635B6F8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134630.roa Signing time: Thu 05 Sep 2024 03:00:00 +0000 ROA not before: Thu 05 Sep 2024 02:55:00 +0000 ROA not after: Thu 04 Sep 2025 03:00:00 +0000 asID: 134630 IP address blocks: 49.156.20.0/23 maxlen: 24 49.156.22.0/23 maxlen: 24 103.200.16.0/23 maxlen: 24 103.200.18.0/23 maxlen: 24 2403:8680::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:11:cb:8d:d1:a0:b6:e5:8a:76:0f:6f:06:be:d7:34:e6:35:b6:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 5 02:55:00 2024 GMT Not After : Sep 4 03:00:00 2025 GMT Subject: CN=22E95FEF64E2AFB345B5EE9ED21BBC718653BB01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:23:07:40:13:06:93:c2:c3:7c:c4:f5:6f:31: f6:7e:1e:8d:9f:49:44:01:bd:15:5c:c0:64:28:41: 9e:61:5e:22:aa:75:67:fa:90:c4:48:3a:7d:39:14: b6:63:09:4b:10:fe:6a:c9:91:ce:11:12:da:e0:90: 9e:69:26:df:d6:d7:64:24:1d:ac:d9:d1:48:a0:cc: 5c:24:c5:1f:53:c3:47:fa:87:52:ba:28:75:c8:2f: ec:db:64:44:09:86:eb:0a:6d:e3:18:bc:70:b3:bd: 80:b4:fb:6b:11:16:e4:73:98:b5:be:4b:37:4d:ad: a5:4a:0f:66:cb:91:44:b5:6f:33:c8:ea:38:6b:94: 15:d4:41:4b:11:9a:45:5b:17:b6:e6:9e:9b:62:6a: 9c:ad:7e:ad:0f:18:b7:e8:1e:78:04:d1:08:63:64: ad:9c:e9:55:5b:56:cc:c4:a3:80:bc:0c:3e:4b:5f: f6:29:06:4f:73:3c:fa:4a:41:6f:60:98:44:a6:91: c4:8a:bb:3e:8e:9f:61:be:f2:11:30:18:d5:53:b6: 87:be:13:c9:ec:77:24:ae:69:25:ac:a2:2a:bd:39: 5f:64:d9:4b:9c:a2:b4:7d:4d:10:69:d1:4e:31:62: 3e:e6:cb:10:06:ef:ad:56:8b:de:79:bc:d6:85:34: 23:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E9:5F:EF:64:E2:AF:B3:45:B5:EE:9E:D2:1B:BC:71:86:53:BB:01 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.156.20.0/22 103.200.16.0/22 IPv6: 2403:8680::/32 Signature Algorithm: sha256WithRSAEncryption 66:a3:7b:89:8a:ad:56:93:70:4c:8c:74:13:5a:d3:f3:60:2a: 89:73:9b:b9:a4:72:92:0c:65:a8:63:87:f9:58:5a:69:8b:7f: 57:43:b1:7a:85:40:2b:cc:b6:48:64:1b:df:3b:05:97:09:93: 67:66:eb:15:94:ea:b1:92:ba:16:53:9f:3b:64:42:0f:dd:76: 5b:35:fd:c8:13:37:48:0a:48:65:d0:7e:65:2d:00:f5:90:11: 31:6e:63:41:0a:85:b4:60:9c:21:4c:59:3c:4d:63:d7:0a:1b: d7:e9:c8:63:f4:5c:0e:d9:f5:32:40:a5:7b:21:6d:b4:2a:a2: 40:a7:b3:57:ad:cc:19:d8:4d:5d:07:94:0d:dd:60:e1:26:d1: 01:b6:39:35:df:23:76:30:7e:4f:be:79:d5:9f:65:73:61:9d: e2:43:98:94:3e:7f:26:b4:b3:45:52:63:13:f3:74:66:c9:ac: 3b:0e:11:51:91:0b:f0:e5:57:d0:cf:a5:b6:62:34:e8:aa:71: eb:8c:b0:f2:6a:67:c4:54:17:3d:a8:90:5c:77:03:a8:99:46: c4:9b:d6:93:0d:ed:b9:ad:5b:2e:4c:81:f8:70:23:eb:53:7c: 9d:c3:96:00:7f:6d:a9:15:81:19:d4:0a:37:0d:93:dd:78:da: 1b:4c:87:a3 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUfRHLjdGgtuWKdg9vBr7XNOY1tvgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkwNTAyNTUwMFoX DTI1MDkwNDAzMDAwMFowMzExMC8GA1UEAxMoMjJFOTVGRUY2NEUyQUZCMzQ1QjVF RTlFRDIxQkJDNzE4NjUzQkIwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALMjB0ATBpPCw3zE9W8x9n4ejZ9JRAG9FVzAZChBnmFeIqp1Z/qQxEg6fTkU tmMJSxD+asmRzhES2uCQnmkm39bXZCQdrNnRSKDMXCTFH1PDR/qHUroodcgv7Ntk RAmG6wpt4xi8cLO9gLT7axEW5HOYtb5LN02tpUoPZsuRRLVvM8jqOGuUFdRBSxGa RVsXtuaem2JqnK1+rQ8Yt+geeATRCGNkrZzpVVtWzMSjgLwMPktf9ikGT3M8+kpB b2CYRKaRxIq7Po6fYb7yETAY1VO2h74Tyex3JK5pJayiKr05X2TZS5yitH1NEGnR TjFiPubLEAbvrVaL3nm81oU0I/cCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBQi6V/v ZOKvs0W17p7SG7xxhlO7ATAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNDYzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAjGcFAMEAmfIEDANBAIAAjAHAwUAJAOGgDANBgkqhkiG9w0BAQsF AAOCAQEAZqN7iYqtVpNwTIx0E1rT82AqiXObuaRykgxlqGOH+VhaaYt/V0OxeoVA K8y2SGQb3zsFlwmTZ2brFZTqsZK6FlOfO2RCD912WzX9yBM3SApIZdB+ZS0A9ZAR MW5jQQqFtGCcIUxZPE1j1wob1+nIY/RcDtn1MkCleyFttCqiQKezV63MGdhNXQeU Dd1g4SbRAbY5Nd8jdjB+T7551Z9lc2Gd4kOYlD5/JrSzRVJjE/N0ZsmsOw4RUZEL 8OVX0M+ltmI06Kpx64yw8mpnxFQXPaiQXHcDqJlGxJvWkw3tua1bLkyB+HAj61N8 ncOWAH9tqRWBGdQKNw2T3XjaG0yHow== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:23 2024 by rpki-client on console-fra.rpki-client.org