$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134645.roa File: AS134645.roa (raw, json) Hash identifier: /8AiKhr349676PUOjK9lvdT4qKhgcMmbE0F6CqsTJA0= Subject key identifier: 92:24:3F:F0:BC:83:77:77:07:49:41:AA:02:9F:91:AF:AA:1D:6C:2F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4175E496F9D6FC7C64839B58C7D7DE1E55932619 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134645.roa Signing time: Tue 10 Dec 2024 05:00:12 +0000 ROA not before: Tue 10 Dec 2024 04:55:12 +0000 ROA not after: Tue 09 Dec 2025 05:00:12 +0000 asID: 134645 IP address blocks: 103.127.16.0/23 maxlen: 24 103.133.3.0/24 maxlen: 24 103.208.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:75:e4:96:f9:d6:fc:7c:64:83:9b:58:c7:d7:de:1e:55:93:26:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:12 2024 GMT Not After : Dec 9 05:00:12 2025 GMT Subject: CN=92243FF0BC837777074941AA029F91AFAA1D6C2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d7:1b:fb:be:af:63:c1:2d:ee:ef:48:7e:0a: ba:a6:85:47:2f:c2:13:cc:b2:2d:c6:82:c3:4f:b1: b8:14:7a:2c:84:c8:3c:a0:4c:78:0a:8e:71:21:a4: 7a:0e:d4:35:d9:13:b7:fd:e8:17:ce:a3:15:e4:67: 98:21:f9:b6:88:d2:8c:cc:36:b9:54:34:c4:a5:f9: b9:0e:79:1e:5b:60:db:6e:95:3f:0d:3e:98:d1:dc: f3:81:2e:03:84:db:0c:57:5f:a2:28:e4:8a:15:44: b7:88:2d:ac:76:05:6e:48:36:a6:ed:6a:93:29:f3: 69:18:5b:d4:0e:be:0f:d7:e3:53:0d:c0:0b:84:77: 2b:f5:12:27:f8:10:97:ad:8f:bd:e1:54:97:da:7c: d6:7a:fc:d1:34:75:65:6e:1a:60:0e:ad:c4:25:b1: 6b:fd:3f:01:ca:e1:5c:07:b7:a6:49:22:9a:25:9a: 41:15:5c:69:d7:61:3c:5a:6f:9d:3e:3a:ce:32:13: f2:60:d7:e6:b5:7e:8d:64:0f:b1:0f:5c:8d:e0:2f: 09:e3:64:65:16:e5:8c:26:10:0e:d9:ef:cd:70:11: d3:29:5f:72:64:c4:d1:4d:67:d6:bb:c2:8b:4d:4a: 21:d0:e6:08:73:cb:29:04:55:12:c9:df:f7:45:7b: 3b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:24:3F:F0:BC:83:77:77:07:49:41:AA:02:9F:91:AF:AA:1D:6C:2F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134645.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.16.0/23 103.133.3.0/24 103.208.23.0/24 Signature Algorithm: sha256WithRSAEncryption 09:7d:b5:42:a9:94:e8:2d:21:2f:00:90:f7:1d:10:de:ce:ad: 11:66:49:d0:da:59:9f:4a:82:ca:e1:ac:56:fa:0d:1b:ec:05: 30:94:3d:db:1d:c2:bd:50:5b:90:60:75:04:85:ba:84:2b:ef: 85:c4:62:01:c5:b0:2f:f8:97:f7:8e:4d:71:e7:80:a3:ab:ff: 55:2b:9c:a7:04:d3:14:90:87:de:7d:8d:7f:20:31:ec:b0:63: 23:52:ee:96:da:17:f5:b5:61:97:c1:fa:3b:c5:19:f0:f4:dc: 90:2d:76:99:61:45:cd:6c:0a:ed:60:ab:a1:5c:d1:99:80:9d: 59:8a:06:e1:cb:0d:27:12:af:16:ab:5b:6b:9f:e3:1b:19:45: 7e:e3:7a:c0:90:7d:c2:d4:dd:f9:88:88:35:3b:13:bc:29:da: ec:9f:46:48:b1:3b:12:f3:7f:f2:df:2d:2d:db:76:fb:7f:63: 9e:f8:5f:ab:38:40:52:87:8c:5f:69:04:72:7a:83:0f:30:77: d5:be:e9:ae:51:c6:fa:86:3e:e6:86:c0:96:86:f5:26:44:f0: 40:ab:64:95:cb:29:fb:f5:e7:90:df:51:ee:f0:af:ec:24:ca: 6c:59:9c:36:a0:af:e8:89:0c:28:8b:69:3c:0f:89:42:50:40: b5:f9:ce:30 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUQXXklvnW/Hxkg5tYx9feHlWTJhkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxMloX DTI1MTIwOTA1MDAxMlowMzExMC8GA1UEAxMoOTIyNDNGRjBCQzgzNzc3NzA3NDk0 MUFBMDI5RjkxQUZBQTFENkMyRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALnXG/u+r2PBLe7vSH4KuqaFRy/CE8yyLcaCw0+xuBR6LITIPKBMeAqOcSGk eg7UNdkTt/3oF86jFeRnmCH5tojSjMw2uVQ0xKX5uQ55Hltg226VPw0+mNHc84Eu A4TbDFdfoijkihVEt4gtrHYFbkg2pu1qkynzaRhb1A6+D9fjUw3AC4R3K/USJ/gQ l62PveFUl9p81nr80TR1ZW4aYA6txCWxa/0/AcrhXAe3pkkimiWaQRVcaddhPFpv nT46zjIT8mDX5rV+jWQPsQ9cjeAvCeNkZRbljCYQDtnvzXAR0ylfcmTE0U1n1rvC i01KIdDmCHPLKQRVEsnf90V7O/cCAwEAAaOCAdwwggHYMB0GA1UdDgQWBBSSJD/w vIN3dwdJQaoCn5Gvqh1sLzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNDY0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEAWd/EAMEAGeFAwMEAGfQFzANBgkqhkiG9w0BAQsFAAOCAQEACX21 QqmU6C0hLwCQ9x0Q3s6tEWZJ0NpZn0qCyuGsVvoNG+wFMJQ92x3CvVBbkGB1BIW6 hCvvhcRiAcWwL/iX945NceeAo6v/VSucpwTTFJCH3n2NfyAx7LBjI1LultoX9bVh l8H6O8UZ8PTckC12mWFFzWwK7WCroVzRmYCdWYoG4csNJxKvFqtba5/jGxlFfuN6 wJB9wtTd+YiINTsTvCna7J9GSLE7EvN/8t8tLdt2+39jnvhfqzhAUoeMX2kEcnqD DzB31b7prlHG+oY+5obAlob1JkTwQKtklcsp+/XnkN9R7vCv7CTKbFmcNqCv6IkM KItpPA+JQlBAtfnOMA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:38 2025 by rpki-client