$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136073.roa File: AS136073.roa (raw, json) Hash identifier: /lWqEDl+bPJKdP6ZAvmDBnSTyGkGIwVUZP9aAYDvp2U= Subject key identifier: BC:2D:2F:3E:B5:9A:40:22:EE:C2:08:89:E5:FA:BF:F4:D8:B5:D3:F2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 439D67B7D31EF22F3A383E68D59FC019CEA74B26 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136073.roa Signing time: Tue 24 Dec 2024 08:00:00 +0000 ROA not before: Tue 24 Dec 2024 07:55:00 +0000 ROA not after: Tue 23 Dec 2025 08:00:00 +0000 asID: 136073 IP address blocks: 103.55.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:9d:67:b7:d3:1e:f2:2f:3a:38:3e:68:d5:9f:c0:19:ce:a7:4b:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 24 07:55:00 2024 GMT Not After : Dec 23 08:00:00 2025 GMT Subject: CN=BC2D2F3EB59A4022EEC20889E5FABFF4D8B5D3F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:87:e6:0a:58:83:da:d1:da:e3:5d:d2:0c:4f: 4b:cc:bc:85:b9:b8:3b:eb:9d:de:60:72:da:95:66: de:23:63:23:c1:05:e3:2b:20:a6:a7:93:14:1c:77: 10:37:5a:a2:86:8f:3c:31:a5:f6:17:21:21:41:80: 25:28:69:45:fc:7a:52:75:60:ec:f3:16:db:8b:59: 39:37:a9:45:e1:2f:9f:c7:57:4d:2d:4f:ee:2a:86: e4:93:20:35:c2:b5:33:dc:f7:6c:43:c2:d6:6e:40: 26:d6:22:eb:68:44:46:83:ab:f0:ed:d6:bb:b6:c1: 78:a4:0a:d7:94:70:8a:63:77:c8:43:41:c1:b9:1e: de:34:e9:34:b7:40:3b:3e:81:83:86:7d:e1:b7:06: 80:20:9c:ee:c8:c9:85:bc:d6:c6:1c:f9:00:df:6e: 0c:cb:f3:ae:fd:6c:28:df:eb:eb:9a:44:11:c6:23: eb:bb:ba:96:de:6f:97:8e:77:93:48:b6:ac:0c:b4: e7:e5:1b:f8:51:0b:f3:03:9f:52:0f:a4:03:c9:5d: ec:93:ee:7d:01:2a:60:bf:56:bd:b3:0e:fa:22:aa: c0:f6:17:16:dd:af:c4:84:c6:1d:a2:37:a3:8a:37: a2:3a:cc:b8:56:20:a3:81:37:96:7e:be:b2:42:5a: 1f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:2D:2F:3E:B5:9A:40:22:EE:C2:08:89:E5:FA:BF:F4:D8:B5:D3:F2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136073.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.160.0/24 Signature Algorithm: sha256WithRSAEncryption 30:8a:2e:49:b6:a4:19:e4:a8:23:00:45:79:ea:03:98:f4:28: c5:12:c4:bc:32:fd:14:fd:80:49:5e:4d:a6:1b:ee:46:b6:cb: a1:be:65:bc:e8:22:24:68:fc:f3:4a:1f:47:37:be:cd:e9:18: 22:3e:1a:e0:10:8f:eb:9b:74:b2:61:45:8f:2f:13:56:d6:9e: 0a:fe:40:90:b2:65:15:a5:f4:7e:24:12:1e:dd:3b:1d:73:01: d8:23:fb:41:66:70:11:76:cd:76:31:52:5e:58:c9:43:a6:6d: c0:48:65:c4:6d:5c:1b:19:16:31:23:03:de:cd:ea:2c:d6:76: 36:84:88:d2:5e:a0:7a:2a:be:15:da:36:60:3e:40:5f:16:6b: d4:88:be:c3:6a:dd:91:50:d3:21:c4:d4:95:9a:10:b6:66:a2: c1:04:f0:f4:0a:1f:7f:b1:73:a1:e2:13:68:d6:4a:b8:16:a4: 93:9c:87:13:77:32:7e:ff:a3:6c:ea:44:7c:45:97:6c:df:41: 38:8f:74:1e:21:64:bf:b5:a7:f1:01:69:6e:af:81:93:71:73: ef:2b:16:09:20:8d:0c:25:b9:78:60:f6:6d:40:31:00:50:b1: 04:4c:85:53:41:d5:b7:d4:2d:52:d5:72:aa:89:6e:fc:f8:0d: 8b:38:9d:2d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQ51nt9Me8i86OD5o1Z/AGc6nSyYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIyNDA3NTUwMFoX DTI1MTIyMzA4MDAwMFowMzExMC8GA1UEAxMoQkMyRDJGM0VCNTlBNDAyMkVFQzIw ODg5RTVGQUJGRjREOEI1RDNGMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMqH5gpYg9rR2uNd0gxPS8y8hbm4O+ud3mBy2pVm3iNjI8EF4ysgpqeTFBx3 EDdaooaPPDGl9hchIUGAJShpRfx6UnVg7PMW24tZOTepReEvn8dXTS1P7iqG5JMg NcK1M9z3bEPC1m5AJtYi62hERoOr8O3Wu7bBeKQK15RwimN3yENBwbke3jTpNLdA Oz6Bg4Z94bcGgCCc7sjJhbzWxhz5AN9uDMvzrv1sKN/r65pEEcYj67u6lt5vl453 k0i2rAy05+Ub+FEL8wOfUg+kA8ld7JPufQEqYL9WvbMO+iKqwPYXFt2vxITGHaI3 o4o3ojrMuFYgo4E3ln6+skJaH/0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS8LS8+ tZpAIu7CCInl+r/02LXT8jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjA3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGc3oDANBgkqhkiG9w0BAQsFAAOCAQEAMIouSbakGeSoIwBFeeoD mPQoxRLEvDL9FP2ASV5NphvuRrbLob5lvOgiJGj880ofRze+zekYIj4a4BCP65t0 smFFjy8TVtaeCv5AkLJlFaX0fiQSHt07HXMB2CP7QWZwEXbNdjFSXljJQ6ZtwEhl xG1cGxkWMSMD3s3qLNZ2NoSI0l6geiq+Fdo2YD5AXxZr1Ii+w2rdkVDTIcTUlZoQ tmaiwQTw9Aoff7FzoeITaNZKuBakk5yHE3cyfv+jbOpEfEWXbN9BOI90HiFkv7Wn 8QFpbq+Bk3Fz7ysWCSCNDCW5eGD2bUAxAFCxBEyFU0HVt9QtUtVyqolu/PgNizid LQ== -----END CERTIFICATE-----Generated at Sat Apr 5 08:32:10 2025 by rpki-client