$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134645.roa File: AS134645.roa (raw, json) Hash identifier: d8y4IimY4QkBfGE8w7lVaaywxd6wuCd5taKLyfbXghQ= Subject key identifier: 47:62:2C:01:59:A9:FF:B0:C1:5D:57:6C:D2:6C:1A:06:16:2D:1E:FD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7C553883FBCEB2C8E1FFE9D0B0062F1C8970BCA1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134645.roa Signing time: Tue 09 Jan 2024 04:00:16 +0000 ROA not before: Tue 09 Jan 2024 03:55:16 +0000 ROA not after: Tue 07 Jan 2025 04:00:16 +0000 asID: 134645 IP address blocks: 103.127.16.0/23 maxlen: 24 103.133.3.0/24 maxlen: 24 103.208.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:55:38:83:fb:ce:b2:c8:e1:ff:e9:d0:b0:06:2f:1c:89:70:bc:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:16 2024 GMT Not After : Jan 7 04:00:16 2025 GMT Subject: CN=47622C0159A9FFB0C15D576CD26C1A06162D1EFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6e:39:25:2c:42:fc:c9:22:7c:17:b5:43:a5: c4:e3:7c:ae:82:b8:66:44:e6:6b:66:20:22:16:97: ce:93:3f:b6:47:ac:8f:bf:70:3c:77:7e:e5:0e:2c: f5:30:ac:b9:95:eb:bb:a4:4e:e5:99:9a:1d:dd:35: 0e:f3:59:a1:34:5b:f7:2c:d6:bf:cb:e4:8f:d6:b5: 18:c2:e9:9c:94:cd:2f:44:b9:c1:df:fa:6f:08:65: b3:e2:fe:72:07:45:e7:41:36:78:bb:c7:ef:f1:4b: d7:3f:30:89:4b:a4:17:2d:44:08:2e:ec:23:20:57: d0:61:80:b2:09:89:dc:65:d4:69:c8:06:e5:da:8c: bb:d6:67:c3:92:f1:aa:ff:68:90:49:66:c4:64:c0: 18:24:af:6b:32:16:f7:6e:a5:1a:eb:77:d0:8c:57: 11:3a:16:bc:db:e9:b7:56:fd:d1:c0:99:a7:ac:58: 87:31:dc:7a:1b:ce:c8:a6:ff:d5:d5:a4:4f:6f:bd: 63:06:8a:1f:cd:5e:5b:d4:90:7f:a9:c5:7d:b3:db: 10:b4:bc:53:7b:1e:00:d6:97:cc:87:91:06:da:c2: 13:24:72:39:3a:5f:ff:fc:57:be:b6:d6:14:b2:f7: 36:70:0e:ee:56:e4:bc:6f:06:49:10:56:ca:76:71: 51:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:62:2C:01:59:A9:FF:B0:C1:5D:57:6C:D2:6C:1A:06:16:2D:1E:FD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134645.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.16.0/23 103.133.3.0/24 103.208.23.0/24 Signature Algorithm: sha256WithRSAEncryption 28:81:87:91:ee:f2:a3:aa:c5:4f:0d:70:b1:d2:c9:ea:79:61: 57:1d:86:2a:71:9c:be:51:6a:51:8b:a3:9c:ab:88:11:55:13: 5d:89:22:e4:f0:63:d9:29:71:34:35:b2:33:41:37:38:98:a6: cf:a1:59:07:a7:81:a4:f7:1e:c2:1e:10:cf:aa:f9:47:dd:2e: c2:87:50:8e:4a:61:c7:9b:56:16:32:47:e5:a5:e4:e0:ee:04: d7:ae:b2:0d:08:a2:3a:bb:bc:79:88:79:df:36:03:81:e1:86: e5:26:5d:11:65:3b:f2:a7:7e:9d:4f:52:d6:ab:fa:4d:a4:02: 12:fe:d4:a8:0c:76:9c:56:25:db:e2:75:d5:a8:99:f0:bd:0c: b1:9f:6d:a8:f1:ea:d7:db:6f:13:17:36:44:1c:96:7c:ed:4b: 75:ff:98:eb:1b:b5:e9:88:2c:ad:68:01:86:27:d2:ed:bf:4f: d4:61:8d:6c:a8:2a:0f:9a:75:bb:c9:e0:02:96:bc:19:bd:08: d7:cb:87:07:0c:23:e5:9e:b2:f0:fd:d4:aa:c6:d4:74:40:97: 5f:bb:d2:ec:3d:84:d9:75:f7:49:8f:26:60:e1:7e:77:3e:20: f4:3d:ba:d7:b7:97:04:48:cb:91:cc:ca:8f:3b:79:b4:a7:bc: 38:d4:30:aa -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUfFU4g/vOssjh/+nQsAYvHIlwvKEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxNloX DTI1MDEwNzA0MDAxNlowMzExMC8GA1UEAxMoNDc2MjJDMDE1OUE5RkZCMEMxNUQ1 NzZDRDI2QzFBMDYxNjJEMUVGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKFuOSUsQvzJInwXtUOlxON8roK4ZkTma2YgIhaXzpM/tkesj79wPHd+5Q4s 9TCsuZXru6RO5ZmaHd01DvNZoTRb9yzWv8vkj9a1GMLpnJTNL0S5wd/6bwhls+L+ cgdF50E2eLvH7/FL1z8wiUukFy1ECC7sIyBX0GGAsgmJ3GXUacgG5dqMu9Znw5Lx qv9okElmxGTAGCSvazIW926lGut30IxXEToWvNvpt1b90cCZp6xYhzHcehvOyKb/ 1dWkT2+9YwaKH81eW9SQf6nFfbPbELS8U3seANaXzIeRBtrCEyRyOTpf//xXvrbW FLL3NnAO7lbkvG8GSRBWynZxUQ8CAwEAAaOCAdwwggHYMB0GA1UdDgQWBBRHYiwB Wan/sMFdV2zSbBoGFi0e/TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNDY0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEAWd/EAMEAGeFAwMEAGfQFzANBgkqhkiG9w0BAQsFAAOCAQEAKIGH ke7yo6rFTw1wsdLJ6nlhVx2GKnGcvlFqUYujnKuIEVUTXYki5PBj2SlxNDWyM0E3 OJimz6FZB6eBpPcewh4Qz6r5R90uwodQjkphx5tWFjJH5aXk4O4E166yDQiiOru8 eYh53zYDgeGG5SZdEWU78qd+nU9S1qv6TaQCEv7UqAx2nFYl2+J11aiZ8L0MsZ9t qPHq19tvExc2RByWfO1Ldf+Y6xu16YgsrWgBhifS7b9P1GGNbKgqD5p1u8ngApa8 Gb0I18uHBwwj5Z6y8P3UqsbUdECXX7vS7D2E2XX3SY8mYOF+dz4g9D2617eXBEjL kczKjzt5tKe8ONQwqg== -----END CERTIFICATE-----Generated at Wed May 8 10:06:51 2024 by rpki-client on console-ams.rpki-client.org