$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135477.roa File: AS135477.roa (raw, json) Hash identifier: 2DUKeviBsRXv+uhLJgDClz8LPsV1eSUvfEo+fr6aUxo= Subject key identifier: A8:B2:2D:15:43:CB:9D:79:92:4B:51:4C:E1:D3:6C:44:3E:57:58:DC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6EFC533B0603489E59670195E57A941950289D12 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135477.roa Signing time: Thu 23 Nov 2023 07:20:32 +0000 ROA not before: Thu 23 Nov 2023 07:15:32 +0000 ROA not after: Thu 21 Nov 2024 07:20:32 +0000 asID: 135477 IP address blocks: 202.47.88.0/24 maxlen: 24 203.29.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:fc:53:3b:06:03:48:9e:59:67:01:95:e5:7a:94:19:50:28:9d:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 23 07:15:32 2023 GMT Not After : Nov 21 07:20:32 2024 GMT Subject: CN=A8B22D1543CB9D79924B514CE1D36C443E5758DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:40:ce:3d:f2:36:d9:0d:f5:ac:8b:c3:cc:c6: ab:46:bf:da:57:6d:92:7c:4b:f1:b4:b6:1b:e0:77: 05:b1:01:d7:b0:aa:61:4a:19:ac:a6:4e:d9:b2:1e: 3d:26:14:59:ca:e5:2d:03:3f:50:f6:84:67:fd:fd: 03:a6:48:52:ed:2f:ac:38:b9:4c:dd:37:d0:e9:59: 93:7b:2f:f7:b5:f1:08:b5:57:60:66:5c:ed:ed:2c: 29:15:9e:ca:67:8b:29:0a:b1:90:b0:62:24:cf:42: a3:f5:40:fb:e2:01:5b:c6:69:3c:48:8b:15:81:b0: 93:5d:c5:b3:f6:1a:84:e1:2f:ea:d0:74:c0:83:f8: f8:76:0d:b6:5a:aa:01:48:c3:b5:ea:7e:55:21:71: 31:88:ee:2d:4d:1b:ae:11:bc:8c:37:01:09:86:4f: 6e:a5:f5:2a:7b:a2:78:2e:1a:39:bd:67:f1:19:22: dd:b5:bf:7c:84:36:66:05:31:3c:53:c8:32:1b:d9: 38:a9:5c:56:b3:4b:d8:bb:1c:6a:f9:1e:44:61:37: 10:21:77:66:3f:b6:28:6e:bc:da:2b:a0:92:8c:a8: dd:5c:2b:a7:1c:b2:bf:16:a8:e5:98:70:b9:17:0c: 8b:e0:f0:ef:18:9b:46:f1:34:db:a8:46:9a:38:7c: 08:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:B2:2D:15:43:CB:9D:79:92:4B:51:4C:E1:D3:6C:44:3E:57:58:DC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135477.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.88.0/24 203.29.27.0/24 Signature Algorithm: sha256WithRSAEncryption 60:30:6b:4a:3c:f8:5c:5c:3f:15:1e:76:96:88:80:c2:c1:43: 97:17:04:1c:85:3b:e2:a2:fa:7c:de:7f:e0:d9:02:29:84:54: 38:1d:d9:23:fd:72:b8:16:f0:a7:ac:48:28:d0:aa:d3:8c:69: b8:fd:34:11:64:ff:37:7c:08:04:00:ed:5d:e4:0c:b0:76:95: cf:24:82:78:70:b6:e4:96:2b:1a:98:a8:2d:9a:48:eb:06:a1: 34:66:46:6c:c9:5e:c7:17:d0:75:35:f4:32:bf:8d:c7:24:a1: 74:76:ed:8f:d3:4f:cc:3c:91:32:98:17:d7:77:2b:7a:49:6d: 5c:b0:45:db:0c:2d:90:eb:ba:63:93:bc:7c:4e:cd:29:8d:45: 72:25:26:94:bb:ba:1b:98:5b:11:9c:fc:86:42:45:d5:66:56: c9:2e:6b:e4:de:68:38:43:00:64:6d:07:e1:89:a3:ed:40:dd: ae:7c:af:17:c5:cc:86:c3:e0:bb:cc:49:b9:5c:11:85:0d:d7: 35:52:a9:c9:51:44:7b:c1:7a:f4:e8:fc:5c:95:f9:2d:54:0e: a1:d3:ea:59:fd:c0:41:9d:ca:75:08:6e:3a:83:3c:1a:67:40: fb:8c:d2:f6:9b:07:1a:41:1f:93:27:50:09:35:05:5b:8d:2d: 21:a1:eb:aa -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUbvxTOwYDSJ5ZZwGV5XqUGVAonRIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyMzA3MTUzMloX DTI0MTEyMTA3MjAzMlowMzExMC8GA1UEAxMoQThCMjJEMTU0M0NCOUQ3OTkyNEI1 MTRDRTFEMzZDNDQzRTU3NThEQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOxAzj3yNtkN9ayLw8zGq0a/2ldtknxL8bS2G+B3BbEB17CqYUoZrKZO2bIe PSYUWcrlLQM/UPaEZ/39A6ZIUu0vrDi5TN030OlZk3sv97XxCLVXYGZc7e0sKRWe ymeLKQqxkLBiJM9Co/VA++IBW8ZpPEiLFYGwk13Fs/YahOEv6tB0wIP4+HYNtlqq AUjDtep+VSFxMYjuLU0brhG8jDcBCYZPbqX1KnuieC4aOb1n8Rki3bW/fIQ2ZgUx PFPIMhvZOKlcVrNL2LscavkeRGE3ECF3Zj+2KG682iugkoyo3Vwrpxyyvxao5Zhw uRcMi+Dw7xibRvE026hGmjh8COcCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBSosi0V Q8udeZJLUUzh02xEPldY3DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNTQ3Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAMovWAMEAMsdGzANBgkqhkiG9w0BAQsFAAOCAQEAYDBrSjz4XFw/ FR52loiAwsFDlxcEHIU74qL6fN5/4NkCKYRUOB3ZI/1yuBbwp6xIKNCq04xpuP00 EWT/N3wIBADtXeQMsHaVzySCeHC25JYrGpioLZpI6wahNGZGbMlexxfQdTX0Mr+N xyShdHbtj9NPzDyRMpgX13crekltXLBF2wwtkOu6Y5O8fE7NKY1FciUmlLu6G5hb EZz8hkJF1WZWyS5r5N5oOEMAZG0H4Ymj7UDdrnyvF8XMhsPgu8xJuVwRhQ3XNVKp yVFEe8F69Oj8XJX5LVQOodPqWf3AQZ3KdQhuOoM8GmdA+4zS9psHGkEfkydQCTUF W40tIaHrqg== -----END CERTIFICATE-----Generated at Wed May 8 09:50:36 2024 by rpki-client on console-fra.rpki-client.org