$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135445.roa File: AS135445.roa (raw, json) Hash identifier: /KSPXVsRpkXUh8ljieOFH+T229Pu9Xo8vwVjkQPRfyI= Subject key identifier: 8F:71:45:B8:C7:4A:FC:4F:46:44:BA:AD:83:06:EB:03:66:BB:6F:BE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 176E03AAA087E47C9B5EA138B069365CD3A63A90 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135445.roa Signing time: Fri 26 Apr 2024 04:00:00 +0000 ROA not before: Fri 26 Apr 2024 03:55:00 +0000 ROA not after: Fri 25 Apr 2025 04:00:00 +0000 asID: 135445 IP address blocks: 124.158.128.0/24 maxlen: 24 124.158.129.0/24 maxlen: 24 124.158.130.0/24 maxlen: 24 124.158.131.0/24 maxlen: 24 124.158.132.0/24 maxlen: 24 124.158.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:6e:03:aa:a0:87:e4:7c:9b:5e:a1:38:b0:69:36:5c:d3:a6:3a:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 26 03:55:00 2024 GMT Not After : Apr 25 04:00:00 2025 GMT Subject: CN=8F7145B8C74AFC4F4644BAAD8306EB0366BB6FBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3f:bd:cd:2e:86:85:d3:92:5e:29:76:aa:80: 5b:5f:26:39:25:a0:5c:64:8c:39:2f:84:f3:9c:81: d2:60:04:b6:37:a9:51:80:08:5e:95:48:36:cd:15: d0:c6:5c:0e:66:62:81:8c:e8:04:d2:7f:5f:4e:48: 26:0f:1c:01:c4:96:5b:3b:23:e0:cb:5d:69:c3:c5: 71:96:1e:4d:84:73:4b:ae:42:87:da:c2:1a:23:44: 4c:8c:5a:c5:d3:07:15:0f:49:cd:9c:d5:e9:c4:ca: 3d:ae:d3:2f:7c:90:08:f0:07:e9:c7:ae:f2:18:b2: 9b:2f:58:6a:e6:b1:43:4d:50:74:2b:ef:43:7f:1f: 91:5b:04:7f:9b:ad:49:ee:92:59:f5:69:9e:62:13: 36:88:80:6c:79:f0:1c:11:80:13:7d:58:8e:9b:6b: b5:c0:9a:e7:14:a7:90:bf:50:97:42:0e:fe:be:68: 60:bd:ff:82:6e:79:07:a4:10:eb:b1:d1:85:90:07: e4:a8:2b:b4:f8:4c:2c:99:bf:80:15:ec:b9:8f:f3: 5a:ff:a6:45:aa:26:3b:c8:87:c6:aa:9a:d0:62:0b: 10:b2:9e:54:50:af:e1:39:d5:88:08:c2:b4:37:82: 7b:f1:7a:bd:69:33:49:a8:e9:13:ae:20:26:09:b9: bc:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:71:45:B8:C7:4A:FC:4F:46:44:BA:AD:83:06:EB:03:66:BB:6F:BE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135445.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.158.128.0-124.158.132.255 124.158.140.0/23 Signature Algorithm: sha256WithRSAEncryption 94:a2:92:47:67:1f:59:dd:8d:a9:6d:c7:f5:a5:b9:8d:7a:01: a2:7f:ab:12:ad:8b:f4:de:93:fb:fc:05:f8:9d:74:e2:0f:2f: 2d:b7:e4:c8:f8:f1:49:49:5c:d0:dc:e0:d3:05:4f:29:27:2a: 38:9b:15:cb:16:2c:45:57:a7:34:aa:d1:a1:0e:e5:7f:2b:f1: c6:0e:52:aa:60:14:4f:b4:59:70:83:65:b8:f3:d3:ce:4e:77: b5:31:e7:eb:64:02:bf:cb:10:be:7f:16:b7:75:4f:46:34:d5: a6:5d:69:38:a9:fc:18:14:f9:fa:5b:49:41:65:54:4a:47:eb: 4f:d8:5e:18:a2:5a:5b:37:c4:e8:a7:c9:d9:32:19:9e:18:70: 36:16:09:b3:79:82:12:f5:8d:6c:a8:60:68:ce:0d:36:5c:e1: 8e:f3:47:65:cb:d9:4b:23:cc:22:2b:df:5c:9c:bd:19:5e:b2: 7e:b1:f1:a5:04:f6:99:23:64:34:d0:0f:32:b1:a3:fe:cb:72: ed:0e:19:70:33:ba:84:03:f2:45:2f:43:51:8b:ef:e5:00:71: 83:1e:9c:cb:51:46:ab:fc:b9:41:ee:3f:dd:be:55:25:a1:b1: 59:a3:87:da:31:4a:78:72:07:88:3e:ee:4a:9f:69:8d:de:5a: ac:52:ec:68 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIUF24DqqCH5HybXqE4sGk2XNOmOpAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyNjAzNTUwMFoX DTI1MDQyNTA0MDAwMFowMzExMC8GA1UEAxMoOEY3MTQ1QjhDNzRBRkM0RjQ2NDRC QUFEODMwNkVCMDM2NkJCNkZCRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMU/vc0uhoXTkl4pdqqAW18mOSWgXGSMOS+E85yB0mAEtjepUYAIXpVINs0V 0MZcDmZigYzoBNJ/X05IJg8cAcSWWzsj4MtdacPFcZYeTYRzS65Ch9rCGiNETIxa xdMHFQ9JzZzV6cTKPa7TL3yQCPAH6ceu8hiymy9YauaxQ01QdCvvQ38fkVsEf5ut Se6SWfVpnmITNoiAbHnwHBGAE31YjptrtcCa5xSnkL9Ql0IO/r5oYL3/gm55B6QQ 67HRhZAH5KgrtPhMLJm/gBXsuY/zWv+mRaomO8iHxqqa0GILELKeVFCv4TnViAjC tDeCe/F6vWkzSajpE64gJgm5vKMCAwEAAaOCAd4wggHaMB0GA1UdDgQWBBSPcUW4 x0r8T0ZEuq2DBusDZrtvvjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNTQ0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAtBggrBgEFBQcBBwEB/wQeMBww GgQCAAEwFDAMAwQHfJ6AAwQAfJ6EAwQBfJ6MMA0GCSqGSIb3DQEBCwUAA4IBAQCU opJHZx9Z3Y2pbcf1pbmNegGif6sSrYv03pP7/AX4nXTiDy8tt+TI+PFJSVzQ3ODT BU8pJyo4mxXLFixFV6c0qtGhDuV/K/HGDlKqYBRPtFlwg2W489POTne1MefrZAK/ yxC+fxa3dU9GNNWmXWk4qfwYFPn6W0lBZVRKR+tP2F4YolpbN8Top8nZMhmeGHA2 FgmzeYIS9Y1sqGBozg02XOGO80dly9lLI8wiK99cnL0ZXrJ+sfGlBPaZI2Q00A8y saP+y3LtDhlwM7qEA/JFL0NRi+/lAHGDHpzLUUar/LlB7j/dvlUlobFZo4faMUp4 cgeIPu5Kn2mN3lqsUuxo -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:23 2024 by rpki-client on console-fra.rpki-client.org