$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134658.roa File: AS134658.roa (raw, json) Hash identifier: 85lKaAO1U+sANwYnRmNIixZCZW52hbvaYLA55+morIM= Subject key identifier: CA:37:00:FB:AD:0A:8D:AD:C0:42:22:40:51:39:66:FD:A1:13:3B:22 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5807BC8803DD8870CA92FD2591E3C6D134BFAA81 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134658.roa Signing time: Wed 03 Jul 2024 09:00:00 +0000 ROA not before: Wed 03 Jul 2024 08:55:00 +0000 ROA not after: Wed 02 Jul 2025 09:00:00 +0000 asID: 134658 IP address blocks: 2001:df1:32c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:07:bc:88:03:dd:88:70:ca:92:fd:25:91:e3:c6:d1:34:bf:aa:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 3 08:55:00 2024 GMT Not After : Jul 2 09:00:00 2025 GMT Subject: CN=CA3700FBAD0A8DADC0422240513966FDA1133B22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c0:ef:46:7f:0a:26:2f:2f:b8:b1:80:6f:d9: 15:bd:d4:1e:c9:5c:98:6d:4f:be:5e:04:2b:1e:6d: e6:db:33:5d:a6:6b:4d:98:6f:08:90:02:23:46:b9: c3:1d:a0:b9:3d:2f:4b:b4:aa:2a:e3:ab:40:66:39: 86:bf:f9:e7:f0:6c:b5:43:5b:2e:5c:2d:e2:58:18: 3a:4e:e7:71:36:86:96:d5:32:07:b8:11:b4:81:90: ac:b3:57:a0:49:9f:46:45:a3:82:22:63:b3:5d:4d: 00:24:6d:68:9b:27:4f:12:a7:b6:e8:d1:86:71:b5: b2:4e:5e:75:19:f0:ae:7c:47:36:44:2b:b3:a3:41: 2b:17:8c:78:62:4f:04:15:59:58:a9:01:c3:2a:41: d4:73:b9:c3:d4:b4:ee:b7:af:67:f0:1d:40:21:4d: 21:50:52:f3:05:dd:04:4b:43:41:17:78:06:c5:f9: e3:65:0a:d9:9c:9b:6a:bb:2e:b2:66:8c:17:03:c9: 1a:83:fc:4c:ba:25:bd:30:d4:3a:89:f0:36:96:10: c1:42:0b:12:ac:59:0c:4b:e8:d3:c8:ce:f9:da:6c: b7:17:67:ce:cb:c4:75:a6:e2:79:c6:9f:a0:55:72: 6c:ef:29:f3:ac:6a:3a:24:e9:14:49:e2:76:7c:a3: c2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:37:00:FB:AD:0A:8D:AD:C0:42:22:40:51:39:66:FD:A1:13:3B:22 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134658.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:32c0::/48 Signature Algorithm: sha256WithRSAEncryption 8f:e4:a2:dd:dd:44:29:ba:fd:fc:22:40:52:42:ae:aa:5c:92: fa:84:27:f6:46:3f:e6:6e:12:34:60:94:c6:ba:fc:d5:99:9a: f2:6f:da:b0:fe:80:d4:ab:a3:99:2f:f1:4f:1b:9c:b6:3c:77: 63:a3:37:31:e1:24:e4:a1:c3:24:c1:e5:3d:17:40:fe:6d:09: e0:43:1b:85:62:32:ad:bc:02:a3:94:1a:24:a6:7e:b6:a8:17: 1a:55:1e:01:a5:c3:ad:7e:4f:23:ed:bd:39:c0:6b:12:72:bc: bc:8f:5a:2c:44:84:1f:0a:c1:ed:e5:88:56:0d:46:fb:6a:99: 0c:fc:8a:99:5a:98:53:95:87:16:86:ce:62:c4:77:3d:b3:18: 15:c7:e1:02:22:48:cb:e2:d8:9e:c1:d3:21:e4:a0:d9:10:7a: c9:32:7e:e8:b8:69:d6:41:1e:e6:04:4e:9c:b2:2a:54:ce:e1: 33:ed:16:af:ae:4f:23:6f:a5:53:89:70:9e:41:d9:bd:c0:55: f0:bc:20:39:a2:d4:df:f0:53:24:ec:cb:69:af:7c:57:8f:45: bb:ff:f6:e5:6b:66:2b:21:86:85:61:71:d8:aa:7e:97:85:13: e3:92:bd:b3:62:57:90:de:0d:43:02:40:97:88:8b:45:b4:f1: 0f:ba:ef:d9 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUWAe8iAPdiHDKkv0lkePG0TS/qoEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMzA4NTUwMFoX DTI1MDcwMjA5MDAwMFowMzExMC8GA1UEAxMoQ0EzNzAwRkJBRDBBOERBREMwNDIy MjQwNTEzOTY2RkRBMTEzM0IyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMHA70Z/CiYvL7ixgG/ZFb3UHslcmG1Pvl4EKx5t5tszXaZrTZhvCJACI0a5 wx2guT0vS7SqKuOrQGY5hr/55/BstUNbLlwt4lgYOk7ncTaGltUyB7gRtIGQrLNX oEmfRkWjgiJjs11NACRtaJsnTxKntujRhnG1sk5edRnwrnxHNkQrs6NBKxeMeGJP BBVZWKkBwypB1HO5w9S07revZ/AdQCFNIVBS8wXdBEtDQRd4BsX542UK2Zybarsu smaMFwPJGoP8TLolvTDUOonwNpYQwUILEqxZDEvo08jO+dpstxdnzsvEdabiecaf oFVybO8p86xqOiTpFEnidnyjwuECAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTKNwD7 rQqNrcBCIkBROWb9oRM7IjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNDY1OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfEywDANBgkqhkiG9w0BAQsFAAOCAQEAj+Si3d1EKbr9/CJA UkKuqlyS+oQn9kY/5m4SNGCUxrr81Zma8m/asP6A1KujmS/xTxuctjx3Y6M3MeEk 5KHDJMHlPRdA/m0J4EMbhWIyrbwCo5QaJKZ+tqgXGlUeAaXDrX5PI+29OcBrEnK8 vI9aLESEHwrB7eWIVg1G+2qZDPyKmVqYU5WHFobOYsR3PbMYFcfhAiJIy+LYnsHT IeSg2RB6yTJ+6Lhp1kEe5gROnLIqVM7hM+0Wr65PI2+lU4lwnkHZvcBV8LwgOaLU 3/BTJOzLaa98V49Fu//25WtmKyGGhWFx2Kp+l4UT45K9s2JXkN4NQwJAl4iLRbTx D7rv2Q== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:46 2024 by rpki-client on console-ams.rpki-client.org