$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135444.roa File: AS135444.roa (raw, json) Hash identifier: g8CHaJOhzlE0LL3RDe3/eHvoLx5sZaSZN2Jvki74JNI= Subject key identifier: AC:40:02:31:20:37:93:A1:CA:3B:CD:3C:DB:16:AB:86:6B:38:15:E2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3A0CEFAA2EA29AC2744F9DE1126CC8EF23E0D2AD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135444.roa Signing time: Mon 27 Nov 2023 04:48:23 +0000 ROA not before: Mon 27 Nov 2023 04:43:23 +0000 ROA not after: Mon 25 Nov 2024 04:48:23 +0000 asID: 135444 IP address blocks: 103.74.5.0/24 maxlen: 24 2001:df1:a9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:0c:ef:aa:2e:a2:9a:c2:74:4f:9d:e1:12:6c:c8:ef:23:e0:d2:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 27 04:43:23 2023 GMT Not After : Nov 25 04:48:23 2024 GMT Subject: CN=AC400231203793A1CA3BCD3CDB16AB866B3815E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1b:cc:f3:73:93:ed:0f:f2:b2:cc:83:f4:25: 0c:12:4f:c8:38:80:d4:89:73:9f:fb:be:d0:28:17: 51:50:42:aa:72:d8:44:dd:86:89:24:71:e5:cb:30: 06:65:ec:15:f2:34:d2:21:88:d7:84:89:ce:67:c6: 45:51:6c:7a:56:c8:21:c3:4d:0c:9f:75:a4:02:08: aa:ae:b7:47:27:33:e7:5d:57:27:dc:3d:b4:b0:ae: 24:6b:25:e2:63:b4:fb:6d:40:fb:ab:bf:26:ad:ed: 1a:38:6c:c9:e4:42:af:12:f8:83:93:2c:9b:b4:30: d5:cf:7c:b4:36:0f:a5:33:45:09:60:85:a5:06:46: 0a:2c:e1:ea:f5:f9:33:48:f4:70:92:58:0d:a9:dd: 47:5c:bc:c7:7c:11:84:fc:70:e9:ad:fc:25:ad:94: b1:41:38:cc:b1:e7:f2:30:6d:45:2e:f1:b4:96:8d: 77:8d:1f:0e:b5:ec:72:6b:b4:de:4f:94:c0:3f:be: 1b:cd:ad:3e:ea:11:68:09:09:b5:b7:a8:44:4b:5d: 5c:27:69:97:2d:3f:15:f5:f9:18:aa:68:c6:f1:ae: a5:34:7d:38:12:ea:25:09:45:be:38:9c:76:64:79: 97:62:0e:0a:86:1e:47:93:3d:9d:ea:a1:92:1a:74: 28:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:40:02:31:20:37:93:A1:CA:3B:CD:3C:DB:16:AB:86:6B:38:15:E2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135444.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.74.5.0/24 IPv6: 2001:df1:a9c0::/48 Signature Algorithm: sha256WithRSAEncryption 78:65:9c:99:d9:51:01:aa:f0:0d:ca:89:0e:aa:63:0b:a2:67: e3:ec:ff:1f:72:42:4a:de:f9:db:fa:e1:11:c3:98:53:1d:22: b4:cf:2a:da:ff:67:7d:e1:02:b8:47:dc:62:50:de:f6:95:04: 11:a7:38:24:e6:46:50:21:82:bf:1f:da:f5:67:fd:85:b9:f5: 6a:33:24:77:20:dd:8e:e7:3c:55:04:28:21:d5:ba:cc:65:45: 13:78:e6:5c:e4:1b:e6:67:b1:34:43:e0:bf:e4:c3:d3:14:02: 58:dd:e1:74:ca:3f:2c:55:42:99:02:da:07:a7:79:ed:ae:cf: 3c:1f:ba:0f:e8:ad:f6:5e:1e:a1:3d:64:a9:b7:9b:59:48:18: 70:96:bb:0c:89:3c:c1:53:78:eb:7d:20:74:fb:77:d2:20:a5: a4:4b:f5:cd:36:84:0a:0e:af:4e:76:b1:8a:35:e3:36:d3:32: f1:79:d6:d5:4d:06:65:aa:ad:77:bb:68:46:1f:c4:be:9f:3e: 14:23:9d:48:11:33:3a:72:f6:91:47:46:5c:30:d9:5e:24:a2: 9c:77:fe:54:d1:a4:61:40:1b:8b:73:9c:08:df:51:f3:66:80: 99:72:2b:08:6a:9f:74:08:f2:ca:68:ac:22:d9:bd:26:5a:6e: 1e:62:f6:82 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUOgzvqi6imsJ0T53hEmzI7yPg0q0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyNzA0NDMyM1oX DTI0MTEyNTA0NDgyM1owMzExMC8GA1UEAxMoQUM0MDAyMzEyMDM3OTNBMUNBM0JD RDNDREIxNkFCODY2QjM4MTVFMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALkbzPNzk+0P8rLMg/QlDBJPyDiA1Ilzn/u+0CgXUVBCqnLYRN2GiSRx5csw BmXsFfI00iGI14SJzmfGRVFselbIIcNNDJ91pAIIqq63Rycz511XJ9w9tLCuJGsl 4mO0+21A+6u/Jq3tGjhsyeRCrxL4g5Msm7Qw1c98tDYPpTNFCWCFpQZGCizh6vX5 M0j0cJJYDandR1y8x3wRhPxw6a38Ja2UsUE4zLHn8jBtRS7xtJaNd40fDrXscmu0 3k+UwD++G82tPuoRaAkJtbeoREtdXCdply0/FfX5GKpoxvGupTR9OBLqJQlFvjic dmR5l2IOCoYeR5M9neqhkhp0KAcCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSsQAIx IDeToco7zTzbFquGazgV4jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNTQ0NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGdKBTAPBAIAAjAJAwcAIAEN8anAMA0GCSqGSIb3DQEBCwUAA4IB AQB4ZZyZ2VEBqvANyokOqmMLomfj7P8fckJK3vnb+uERw5hTHSK0zyra/2d94QK4 R9xiUN72lQQRpzgk5kZQIYK/H9r1Z/2FufVqMyR3IN2O5zxVBCgh1brMZUUTeOZc 5BvmZ7E0Q+C/5MPTFAJY3eF0yj8sVUKZAtoHp3ntrs88H7oP6K32Xh6hPWSpt5tZ SBhwlrsMiTzBU3jrfSB0+3fSIKWkS/XNNoQKDq9OdrGKNeM20zLxedbVTQZlqq13 u2hGH8S+nz4UI51IETM6cvaRR0ZcMNleJKKcd/5U0aRhQBuLc5wI31HzZoCZcisI ap90CPLKaKwi2b0mWm4eYvaC -----END CERTIFICATE-----Generated at Thu May 9 00:29:14 2024 by rpki-client on console-ams.rpki-client.org