$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135479.roa File: AS135479.roa (raw, json) Hash identifier: +8gAjXDCZ9vvDG0DSYcMXzdLtvJJy/0K8T/exoVjS1o= Subject key identifier: 3B:F0:FF:10:64:3A:BF:DB:EB:2F:5D:23:9E:2D:A9:98:D4:0B:26:F2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3C84E19EF82969A46548736BB9A68B6518A2332C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135479.roa Signing time: Tue 09 Jan 2024 04:00:23 +0000 ROA not before: Tue 09 Jan 2024 03:55:23 +0000 ROA not after: Tue 07 Jan 2025 04:00:23 +0000 asID: 135479 IP address blocks: 103.75.232.0/24 maxlen: 24 103.75.233.0/24 maxlen: 24 103.75.234.0/24 maxlen: 24 103.75.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:84:e1:9e:f8:29:69:a4:65:48:73:6b:b9:a6:8b:65:18:a2:33:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:23 2024 GMT Not After : Jan 7 04:00:23 2025 GMT Subject: CN=3BF0FF10643ABFDBEB2F5D239E2DA998D40B26F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ea:de:11:2f:cb:be:ab:0e:20:90:29:e6:3d: be:f4:e9:7b:60:15:39:10:4e:e1:e0:97:06:73:55: 0e:a7:14:53:5e:08:62:53:e1:40:f6:da:5e:a5:ad: a7:83:ba:de:6e:42:0a:47:b0:3e:d8:8f:26:16:8d: d9:78:11:c6:99:95:92:60:d4:08:f2:57:8e:42:77: dc:99:0f:99:6c:4c:78:88:b2:45:63:cd:eb:3f:93: 14:e9:02:56:9a:56:f7:63:9c:c8:aa:ea:2e:22:1c: ad:ea:e7:16:c0:db:b6:8e:02:47:8d:19:05:99:7b: 05:4d:9f:05:f3:d8:00:38:d6:d5:ab:51:6b:83:b1: a1:5e:16:46:05:16:03:55:a0:6c:3f:c9:5b:84:75: fe:89:0e:52:59:66:f3:71:29:4e:95:34:23:ff:16: 79:54:26:e1:45:4c:c0:2f:68:42:02:54:42:f6:91: b7:7a:50:39:35:78:be:18:91:85:3e:60:63:5b:bf: eb:6b:00:09:7c:35:6d:6a:0f:97:65:d2:61:37:26: a3:3a:0c:d3:f2:65:c7:16:0a:7e:f6:cd:86:1d:f2: c5:57:1c:62:47:11:58:f9:f1:d0:12:96:e5:9b:07: 7d:78:e5:b1:bb:d1:7f:f7:56:ab:e1:7a:71:33:02: 8f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F0:FF:10:64:3A:BF:DB:EB:2F:5D:23:9E:2D:A9:98:D4:0B:26:F2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135479.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.75.232.0/22 Signature Algorithm: sha256WithRSAEncryption 76:4a:d9:74:a5:a9:bb:d3:21:fa:a4:50:7d:b5:a6:e6:da:38: 6f:88:21:0a:28:51:79:93:d3:91:be:33:ee:eb:b7:d2:a4:74: 0c:ff:81:b6:13:3c:ae:86:19:a7:2e:dc:38:db:d0:38:82:02: a7:43:b1:94:9b:44:71:56:ce:ba:75:bf:06:01:d8:fb:ed:0c: 5e:6a:1b:db:af:60:6a:ec:1c:16:9d:ca:c2:89:d1:b4:a1:38: 73:06:ff:2d:a5:2d:8a:01:a4:e6:ee:65:91:9c:b0:a1:66:4b: d9:c5:79:90:8c:2e:46:4c:10:71:02:9e:d4:6e:cd:26:f5:90: 2f:09:63:fe:6c:1e:c1:c2:aa:6b:90:98:ba:37:58:75:ef:17: 64:77:45:90:0c:5c:e4:3b:69:ce:15:7b:7f:80:c0:93:80:fd: 9e:2e:5b:c1:d4:7a:cd:39:c9:fb:c1:b8:df:89:d3:b4:91:fc: f8:7b:30:3a:6a:4d:5c:c1:b5:ac:00:2c:bf:47:77:b0:8d:a1: 79:59:13:56:5b:7b:7e:64:a0:90:06:4a:c1:63:ff:80:2b:94: 8f:51:1f:25:7e:71:51:b8:0d:73:00:45:7b:45:00:b7:07:8a: be:c3:0b:16:f7:36:4d:f2:d0:28:a8:f2:ae:5b:f2:6b:c4:49: e6:ea:23:1f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPIThnvgpaaRlSHNruaaLZRiiMywwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyM1oX DTI1MDEwNzA0MDAyM1owMzExMC8GA1UEAxMoM0JGMEZGMTA2NDNBQkZEQkVCMkY1 RDIzOUUyREE5OThENDBCMjZGMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjq3hEvy76rDiCQKeY9vvTpe2AVORBO4eCXBnNVDqcUU14IYlPhQPbaXqWt p4O63m5CCkewPtiPJhaN2XgRxpmVkmDUCPJXjkJ33JkPmWxMeIiyRWPN6z+TFOkC VppW92OcyKrqLiIcrernFsDbto4CR40ZBZl7BU2fBfPYADjW1atRa4OxoV4WRgUW A1WgbD/JW4R1/okOUllm83EpTpU0I/8WeVQm4UVMwC9oQgJUQvaRt3pQOTV4vhiR hT5gY1u/62sACXw1bWoPl2XSYTcmozoM0/JlxxYKfvbNhh3yxVccYkcRWPnx0BKW 5ZsHfXjlsbvRf/dWq+F6cTMCj8UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ78P8Q ZDq/2+svXSOeLamY1Asm8jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNTQ3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmdL6DANBgkqhkiG9w0BAQsFAAOCAQEAdkrZdKWpu9Mh+qRQfbWm 5to4b4ghCihReZPTkb4z7uu30qR0DP+BthM8roYZpy7cONvQOIICp0OxlJtEcVbO unW/BgHY++0MXmob269gauwcFp3KwonRtKE4cwb/LaUtigGk5u5lkZywoWZL2cV5 kIwuRkwQcQKe1G7NJvWQLwlj/mwewcKqa5CYujdYde8XZHdFkAxc5DtpzhV7f4DA k4D9ni5bwdR6zTnJ+8G434nTtJH8+HswOmpNXMG1rAAsv0d3sI2heVkTVlt7fmSg kAZKwWP/gCuUj1EfJX5xUbgNcwBFe0UAtweKvsMLFvc2TfLQKKjyrlvya8RJ5uoj Hw== -----END CERTIFICATE-----Generated at Fri May 3 03:08:29 2024 by rpki-client on console-ams.rpki-client.org