$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135444.roa File: AS135444.roa (raw, json) Hash identifier: 0Io7BVJ7hWx/37OReAt/eJXBcD5ci8sIYFa9335kvrM= Subject key identifier: 31:CF:9D:9E:8F:C5:F2:A4:25:F3:84:9D:4B:31:2C:F0:79:A0:C4:E5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 390952A10336228FFA2DF7F424A33F54E4423A1D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135444.roa Signing time: Mon 28 Oct 2024 05:00:00 +0000 ROA not before: Mon 28 Oct 2024 04:55:00 +0000 ROA not after: Mon 27 Oct 2025 05:00:00 +0000 asID: 135444 IP address blocks: 103.74.5.0/24 maxlen: 24 2001:df1:a9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:09:52:a1:03:36:22:8f:fa:2d:f7:f4:24:a3:3f:54:e4:42:3a:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 28 04:55:00 2024 GMT Not After : Oct 27 05:00:00 2025 GMT Subject: CN=31CF9D9E8FC5F2A425F3849D4B312CF079A0C4E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:07:da:91:26:bb:03:fb:76:16:19:c0:e3:b2: 91:89:c4:2f:1a:3b:01:d6:a5:5f:6d:fd:57:19:b6: 96:16:ae:6f:dc:23:fa:c3:97:9b:56:16:b3:1d:57: f4:f8:31:0b:b2:d1:8a:4a:4a:3d:a8:98:c9:2c:a3: fa:6a:2e:0a:f6:b6:b2:fc:e7:0e:58:4b:db:11:0b: ba:ba:94:4c:52:67:0c:d3:8e:e0:10:8a:97:e1:4b: e4:e7:d5:f8:e2:45:1f:ec:23:ee:b2:e8:83:31:bb: 0b:7b:ee:64:ea:24:e8:60:af:e6:e1:dd:27:36:e4: 34:80:a2:c1:ce:c0:34:98:d6:15:2d:14:dc:f8:a9: 95:30:66:b4:30:5a:ac:72:ff:33:b9:e6:29:30:2f: f3:b9:2e:60:ea:02:e6:2f:fd:a0:eb:98:4e:6f:af: 45:a3:69:80:ce:64:75:d2:fd:0c:af:ae:02:77:b8: 87:90:a7:5a:7b:9d:a3:3f:3a:36:b3:df:46:fd:d7: b2:cb:f5:0b:14:a3:b7:8d:82:4f:6a:4f:fa:05:98: 50:86:98:48:05:7b:7d:98:43:25:63:a1:e2:c9:ca: 3e:36:ae:ac:67:76:e0:89:e7:8a:26:ee:35:4a:a4: 41:d2:2f:7a:94:b7:e0:3b:65:88:ec:c2:dc:eb:07: 73:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:CF:9D:9E:8F:C5:F2:A4:25:F3:84:9D:4B:31:2C:F0:79:A0:C4:E5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135444.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.74.5.0/24 IPv6: 2001:df1:a9c0::/48 Signature Algorithm: sha256WithRSAEncryption 0d:6d:45:d1:38:43:ad:5f:3e:de:90:1c:7f:6f:5a:36:de:e3: 4e:d3:c8:67:e1:52:c0:62:fa:33:57:0f:ab:23:d6:7f:ee:37: 1f:16:ca:b1:bc:31:dc:e2:47:9f:39:76:1f:31:e0:81:03:31: 23:58:22:c8:72:63:b5:be:79:20:38:6e:b9:3f:15:99:d8:23: 26:30:5d:7f:89:2c:13:46:f1:ce:22:92:00:96:7a:8c:4f:f0: ae:9e:dc:95:96:27:7a:96:b3:3c:09:40:2e:79:87:10:a2:86: 4d:a2:2d:76:fa:b2:fd:96:ac:a3:c0:18:57:d6:26:f3:75:30: 22:4a:44:16:be:1a:b5:4b:23:ab:53:ce:62:d8:23:40:5d:f2: 2f:0b:45:5f:c3:7e:1b:63:c8:21:1f:89:4b:46:9e:d0:5b:bc: e2:ee:ac:8c:8b:5a:3f:f7:a6:d9:ef:d6:8b:85:7d:c8:23:ae: 36:de:7f:e4:0f:3b:90:cd:b1:67:15:4d:31:8c:7c:f0:04:51: b1:85:60:b3:05:a0:37:3f:45:f4:33:1f:b4:df:09:18:d2:ea: eb:93:b7:08:07:ec:cd:7a:fd:e1:92:ad:b0:9f:98:17:ff:93: 84:da:37:95:e6:7d:e9:6a:23:70:34:39:74:5b:d7:ac:a8:be: ea:16:6d:44 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUOQlSoQM2Io/6Lff0JKM/VORCOh0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyODA0NTUwMFoX DTI1MTAyNzA1MDAwMFowMzExMC8GA1UEAxMoMzFDRjlEOUU4RkM1RjJBNDI1RjM4 NDlENEIzMTJDRjA3OUEwQzRFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPYH2pEmuwP7dhYZwOOykYnELxo7AdalX239Vxm2lhaub9wj+sOXm1YWsx1X 9PgxC7LRikpKPaiYySyj+mouCva2svznDlhL2xELurqUTFJnDNOO4BCKl+FL5OfV +OJFH+wj7rLogzG7C3vuZOok6GCv5uHdJzbkNICiwc7ANJjWFS0U3PiplTBmtDBa rHL/M7nmKTAv87kuYOoC5i/9oOuYTm+vRaNpgM5kddL9DK+uAne4h5CnWnudoz86 NrPfRv3Xssv1CxSjt42CT2pP+gWYUIaYSAV7fZhDJWOh4snKPjaurGd24Inniibu NUqkQdIvepS34DtliOzC3OsHc38CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQxz52e j8XypCXzhJ1LMSzweaDE5TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNTQ0NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGdKBTAPBAIAAjAJAwcAIAEN8anAMA0GCSqGSIb3DQEBCwUAA4IB AQANbUXROEOtXz7ekBx/b1o23uNO08hn4VLAYvozVw+rI9Z/7jcfFsqxvDHc4kef OXYfMeCBAzEjWCLIcmO1vnkgOG65PxWZ2CMmMF1/iSwTRvHOIpIAlnqMT/CuntyV lid6lrM8CUAueYcQooZNoi12+rL9lqyjwBhX1ibzdTAiSkQWvhq1SyOrU85i2CNA XfIvC0Vfw34bY8ghH4lLRp7QW7zi7qyMi1o/96bZ79aLhX3II6423n/kDzuQzbFn FU0xjHzwBFGxhWCzBaA3P0X0Mx+03wkY0urrk7cIB+zNev3hkq2wn5gX/5OE2jeV 5n3paiNwNDl0W9esqL7qFm1E -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:23 2024 by rpki-client on console-fra.rpki-client.org