$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135485.roa File: AS135485.roa (raw, json) Hash identifier: cR1EKLrAtnx/f6mkQkZUxVQz1e79zBPP/aioRtAKnxw= Subject key identifier: 48:2F:B1:01:12:F6:02:E8:DE:26:64:97:6D:FB:76:AC:E3:B2:E3:53 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 67C3D507B9A68DB4726DD066DE4A49B4F8937074 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135485.roa Signing time: Thu 22 Feb 2024 03:04:11 +0000 ROA not before: Thu 22 Feb 2024 02:59:11 +0000 ROA not after: Thu 20 Feb 2025 03:04:11 +0000 asID: 135485 IP address blocks: 103.78.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c3:d5:07:b9:a6:8d:b4:72:6d:d0:66:de:4a:49:b4:f8:93:70:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 22 02:59:11 2024 GMT Not After : Feb 20 03:04:11 2025 GMT Subject: CN=482FB10112F602E8DE2664976DFB76ACE3B2E353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:44:c5:e4:87:cb:dd:b9:a3:e6:59:23:ca:92: 35:03:e7:58:f3:dd:f8:fe:06:26:10:bb:b0:2b:49: ec:e7:ec:12:ba:47:1c:92:09:64:98:f2:d6:14:ff: 20:51:a5:6c:64:73:88:ff:60:43:2f:ed:5d:36:2b: c3:88:38:fa:8a:50:2e:16:28:c9:ed:88:55:76:9a: 00:81:db:cb:1e:b3:77:f4:05:df:5f:78:0f:fc:57: 26:fa:28:09:4f:d9:d5:a9:dc:9a:93:6b:2a:e5:a0: 57:7e:18:61:93:80:54:3e:3a:1b:ca:d6:73:ba:a0: 96:ef:5e:ac:84:a8:10:b2:ae:37:56:03:fe:f2:d5: 53:82:9f:71:49:4f:8d:2c:25:66:de:08:f0:da:17: d0:ef:35:bc:24:4d:16:71:24:5e:04:2a:68:96:6f: 2a:f2:41:83:31:c5:97:d4:c3:c7:57:93:08:2f:b0: 69:a9:5c:ba:43:f1:13:bb:f8:3d:d2:72:2e:15:aa: c3:00:67:e6:ad:d0:ff:06:c5:39:78:91:a8:48:1a: ca:9f:50:4e:19:e1:f8:0a:aa:96:06:78:48:39:67: ea:29:80:6a:a1:74:43:51:ad:d7:77:50:17:b4:00: 3f:54:84:89:f1:bd:14:20:79:2c:12:0f:9a:7f:75: 87:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:2F:B1:01:12:F6:02:E8:DE:26:64:97:6D:FB:76:AC:E3:B2:E3:53 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS135485.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.78.106.0/24 Signature Algorithm: sha256WithRSAEncryption 51:7c:56:1c:1f:47:4c:d7:50:1f:5c:5d:15:f0:f1:52:de:4c: 96:47:92:88:30:d2:1d:6c:9c:8c:26:23:d3:d4:74:73:14:b4: ba:2f:81:7b:03:d3:18:87:47:3d:30:1f:6c:32:2f:40:a3:20: bc:ea:1c:a6:3f:13:60:fc:7c:79:45:42:3d:71:dd:2f:a8:13: 7c:d8:f1:c3:8d:37:48:e8:78:68:b3:bb:5c:b4:8e:f1:3d:18: 39:bd:4b:c2:30:8b:d0:91:6e:b1:9c:a5:29:cc:8f:75:11:77: ea:6e:2c:5a:9a:f2:09:d5:35:e1:e3:89:f4:fa:fc:84:c6:f5: bf:f7:42:91:f1:de:c8:31:f4:ab:1b:ca:f4:b7:46:b3:e1:f8: 21:4f:9e:74:4e:8f:af:51:5f:28:be:be:8e:6e:b9:b1:01:bc: 1a:7c:aa:fc:2a:66:85:ae:57:e0:22:29:00:bc:2f:3c:d3:6e: af:fd:0b:a7:7b:c1:08:2a:4b:0c:85:a3:c4:58:fd:dd:13:f6: 4e:ed:63:6f:54:dc:4c:9b:61:8a:53:c2:5c:69:51:88:e8:9a: b2:db:2c:82:e2:b1:21:65:8a:c6:ef:2a:96:55:ae:b7:12:d1: 01:ab:09:ba:49:5f:f7:51:c0:75:a3:54:4b:45:83:66:c7:36: cb:02:5e:ac -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZ8PVB7mmjbRybdBm3kpJtPiTcHQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIyMjAyNTkxMVoX DTI1MDIyMDAzMDQxMVowMzExMC8GA1UEAxMoNDgyRkIxMDExMkY2MDJFOERFMjY2 NDk3NkRGQjc2QUNFM0IyRTM1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALJExeSHy925o+ZZI8qSNQPnWPPd+P4GJhC7sCtJ7OfsErpHHJIJZJjy1hT/ IFGlbGRziP9gQy/tXTYrw4g4+opQLhYoye2IVXaaAIHbyx6zd/QF3194D/xXJvoo CU/Z1ancmpNrKuWgV34YYZOAVD46G8rWc7qglu9erISoELKuN1YD/vLVU4KfcUlP jSwlZt4I8NoX0O81vCRNFnEkXgQqaJZvKvJBgzHFl9TDx1eTCC+waalcukPxE7v4 PdJyLhWqwwBn5q3Q/wbFOXiRqEgayp9QThnh+AqqlgZ4SDln6imAaqF0Q1Gt13dQ F7QAP1SEifG9FCB5LBIPmn91hzUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRIL7EB EvYC6N4mZJdt+3as47LjUzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNTQ4NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdOajANBgkqhkiG9w0BAQsFAAOCAQEAUXxWHB9HTNdQH1xdFfDx Ut5MlkeSiDDSHWycjCYj09R0cxS0ui+BewPTGIdHPTAfbDIvQKMgvOocpj8TYPx8 eUVCPXHdL6gTfNjxw403SOh4aLO7XLSO8T0YOb1LwjCL0JFusZylKcyPdRF36m4s WpryCdU14eOJ9Pr8hMb1v/dCkfHeyDH0qxvK9LdGs+H4IU+edE6Pr1FfKL6+jm65 sQG8Gnyq/Cpmha5X4CIpALwvPNNur/0Lp3vBCCpLDIWjxFj93RP2Tu1jb1TcTJth ilPCXGlRiOiastssguKxIWWKxu8qllWutxLRAasJuklf91HAdaNUS0WDZsc2ywJe rA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:23 2024 by rpki-client on console-fra.rpki-client.org