$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136073.roa File: AS136073.roa (raw, json) Hash identifier: psM2i3jvMGedpLwOVNCe5bLXmrUCNZvYfZxeR1Zrj6g= Subject key identifier: B4:F1:C7:14:8A:F3:3A:37:41:6C:51:58:9D:7D:A0:67:B0:C5:AD:59 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 64777D80EDCB9F6D43375B0EE95611EC9614C3EC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136073.roa Signing time: Tue 23 Jan 2024 07:23:07 +0000 ROA not before: Tue 23 Jan 2024 07:18:07 +0000 ROA not after: Tue 21 Jan 2025 07:23:07 +0000 asID: 136073 IP address blocks: 103.55.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:77:7d:80:ed:cb:9f:6d:43:37:5b:0e:e9:56:11:ec:96:14:c3:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 23 07:18:07 2024 GMT Not After : Jan 21 07:23:07 2025 GMT Subject: CN=B4F1C7148AF33A37416C51589D7DA067B0C5AD59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:67:f4:c0:d2:7f:89:b5:1b:a0:91:15:64:6f: e8:a4:0f:cb:1c:8c:53:22:fd:cb:4a:7f:c6:8b:a6: 45:fa:61:5a:5d:a0:ab:ab:41:82:20:09:48:3f:de: d8:41:af:da:25:16:75:e8:f8:c0:ec:da:f0:43:81: 67:6e:2c:c5:ec:18:d4:54:ab:95:07:41:e8:83:a6: 92:e7:4e:31:5a:61:69:96:c4:8b:18:c9:c7:0b:8b: 36:c7:fe:63:4e:a6:ee:d9:ea:47:ff:2e:39:cc:4f: 78:6d:c0:e8:73:06:a0:91:73:b6:18:25:53:e6:c0: 81:b8:3d:7a:1b:89:c9:30:d9:d7:d0:0b:3d:e2:40: c7:27:aa:24:ad:fa:5e:91:d9:98:e0:90:66:bc:34: 8f:d2:e5:fc:3e:ef:63:99:2a:fe:c9:41:28:90:fc: b7:e6:43:bf:42:7b:43:f9:9d:3a:93:d1:a0:9e:69: a3:93:e6:91:75:37:3c:43:18:e1:70:42:f4:3a:fe: 6d:8a:ca:80:a1:00:4b:14:0f:d7:95:46:e5:8f:9a: ba:2a:0f:74:26:04:f6:c6:5c:d6:b8:9e:49:cc:a0: b6:79:7f:bf:54:31:00:df:b2:d7:56:8d:25:8e:d6: e2:ef:57:50:d2:9a:0a:96:43:f5:74:fd:28:59:ed: 57:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F1:C7:14:8A:F3:3A:37:41:6C:51:58:9D:7D:A0:67:B0:C5:AD:59 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136073.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.160.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:b7:85:29:35:e9:90:e8:95:04:88:85:b0:27:05:94:77:e5: fd:bd:44:2f:ed:68:12:a0:f7:cc:8d:ac:6b:1b:15:cb:5e:b1: 18:48:55:33:a4:f2:c4:0f:25:a4:9d:b3:86:82:a7:8d:b4:38: 22:68:d0:5b:2d:67:3d:54:82:2a:e7:91:40:02:d4:58:b0:6d: 57:26:5d:75:0e:4a:b7:41:f0:4e:5f:6b:51:c4:dc:24:09:c8: ac:fb:d4:1f:a4:07:d9:e3:de:84:a1:89:49:9c:f0:85:d1:fd: bc:69:09:01:ce:a1:4e:8d:6d:93:49:f7:5a:ce:f9:dc:29:6d: fb:7f:fb:2a:a6:82:77:4b:a0:27:1e:62:f7:7c:c2:5c:5e:a5: a5:ff:c1:aa:0a:44:82:59:43:90:33:de:bc:d7:6a:72:0a:e5: 5d:40:75:74:d9:28:64:03:2a:5e:4f:4a:2d:11:32:69:dc:fb: e5:b8:ed:b4:72:af:ed:17:ee:37:82:34:09:ad:92:ef:4e:2d: 2c:b3:57:47:b3:ab:1d:da:dc:db:70:cb:6f:24:85:4b:5b:8b: 36:26:05:a6:fb:ee:d2:d2:39:25:76:1b:e8:54:29:39:92:83: 2c:1c:91:83:f1:d3:14:80:44:36:39:70:38:6f:01:a1:3f:d0: e5:e7:94:c7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZHd9gO3Ln21DN1sO6VYR7JYUw+wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEyMzA3MTgwN1oX DTI1MDEyMTA3MjMwN1owMzExMC8GA1UEAxMoQjRGMUM3MTQ4QUYzM0EzNzQxNkM1 MTU4OUQ3REEwNjdCMEM1QUQ1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKRn9MDSf4m1G6CRFWRv6KQPyxyMUyL9y0p/xoumRfphWl2gq6tBgiAJSD/e 2EGv2iUWdej4wOza8EOBZ24sxewY1FSrlQdB6IOmkudOMVphaZbEixjJxwuLNsf+ Y06m7tnqR/8uOcxPeG3A6HMGoJFzthglU+bAgbg9ehuJyTDZ19ALPeJAxyeqJK36 XpHZmOCQZrw0j9Ll/D7vY5kq/slBKJD8t+ZDv0J7Q/mdOpPRoJ5po5PmkXU3PEMY 4XBC9Dr+bYrKgKEASxQP15VG5Y+auioPdCYE9sZc1rieScygtnl/v1QxAN+y11aN JY7W4u9XUNKaCpZD9XT9KFntVzMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS08ccU ivM6N0FsUVidfaBnsMWtWTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjA3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGc3oDANBgkqhkiG9w0BAQsFAAOCAQEAe7eFKTXpkOiVBIiFsCcF lHfl/b1EL+1oEqD3zI2saxsVy16xGEhVM6TyxA8lpJ2zhoKnjbQ4ImjQWy1nPVSC KueRQALUWLBtVyZddQ5Kt0HwTl9rUcTcJAnIrPvUH6QH2ePehKGJSZzwhdH9vGkJ Ac6hTo1tk0n3Ws753Clt+3/7KqaCd0ugJx5i93zCXF6lpf/BqgpEgllDkDPevNdq cgrlXUB1dNkoZAMqXk9KLREyadz75bjttHKv7RfuN4I0Ca2S704tLLNXR7OrHdrc 23DLbySFS1uLNiYFpvvu0tI5JXYb6FQpOZKDLByRg/HTFIBENjlwOG8BoT/Q5eeU xw== -----END CERTIFICATE-----Generated at Wed May 8 21:02:20 2024 by rpki-client on console-fra.rpki-client.org