$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136093.roa File: AS136093.roa (raw, json) Hash identifier: zZHEnJGK8CqarWu14fnMOVBvxMeZZ09bpBVEHByXSYI= Subject key identifier: 6F:D6:60:8B:E9:EF:94:EF:C7:F5:4B:F2:C4:01:E7:30:31:95:67:C8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2054B08EB97CC4123AB2902C979DA0B3E694D835 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136093.roa Signing time: Tue 20 Aug 2024 18:00:00 +0000 ROA not before: Tue 20 Aug 2024 17:55:00 +0000 ROA not after: Tue 19 Aug 2025 18:00:00 +0000 asID: 136093 IP address blocks: 103.41.78.0/23 maxlen: 24 103.175.208.0/23 maxlen: 24 103.220.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:54:b0:8e:b9:7c:c4:12:3a:b2:90:2c:97:9d:a0:b3:e6:94:d8:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 20 17:55:00 2024 GMT Not After : Aug 19 18:00:00 2025 GMT Subject: CN=6FD6608BE9EF94EFC7F54BF2C401E730319567C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0f:48:7c:3b:b6:9f:4a:1f:26:06:95:0a:02: e1:99:fb:66:50:99:2a:a3:8a:97:ef:e4:1b:dd:71: d8:af:53:ca:fd:15:4e:e3:c9:8e:88:0c:05:c9:81: 3b:38:bb:12:97:d5:a4:cf:9c:b1:6c:83:fd:20:17: 55:00:1e:45:b6:6e:a5:cb:34:67:32:42:2a:a6:b9: 5a:17:26:90:fc:ca:60:7d:0e:8e:d6:64:04:6f:c7: d4:1d:ea:4b:7e:c2:f1:f1:29:c6:19:0b:8c:15:cb: dd:9b:91:58:73:f9:25:72:97:13:2a:7a:96:4e:df: 63:ae:2b:ac:51:9b:10:7c:35:b7:a2:1b:21:bb:b7: 2d:ac:8a:94:39:ff:64:ba:a4:56:35:88:f2:53:db: 37:e7:fc:39:48:2e:1e:8f:52:db:47:93:66:5a:c3: 42:e5:01:c5:92:ae:6c:9f:4c:a6:f0:c3:23:6b:b7: 19:eb:f0:0d:3a:83:d4:a1:9f:19:7d:ff:de:7c:6e: d5:57:88:2f:cb:8f:30:04:21:4b:d9:59:2a:fa:c0: 87:44:4a:6f:4a:7b:1a:14:6f:e0:d7:53:c9:72:67: f5:f3:df:13:cf:e8:ee:41:71:21:eb:ee:69:a6:0c: fc:f7:1f:02:e1:85:3c:a2:59:81:c5:2d:24:8f:3d: ae:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D6:60:8B:E9:EF:94:EF:C7:F5:4B:F2:C4:01:E7:30:31:95:67:C8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136093.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.78.0/23 103.175.208.0/23 103.220.216.0/23 Signature Algorithm: sha256WithRSAEncryption 27:45:5a:b8:29:98:02:25:b5:ce:1b:63:71:91:a6:ef:69:60: 13:2e:0c:8b:2a:d2:ee:87:b1:b1:12:0e:40:14:2a:67:d1:40: fd:45:57:d7:67:35:30:ef:4b:18:b0:2c:02:ad:bf:7f:ba:ad: 6f:ee:23:ea:a0:78:b0:28:89:e7:4c:b4:70:ef:a2:1d:a3:a0: 12:7e:e6:fa:7d:46:1c:05:78:3f:eb:3b:46:ee:43:73:5f:7c: e8:d9:90:6b:77:b4:02:c1:bf:28:91:50:d2:06:bd:2d:1a:68: ec:58:a8:07:8e:bd:09:68:90:2e:38:9f:66:9d:8e:8a:83:b5: b5:d9:06:e2:05:8a:dc:c4:68:15:f3:7d:67:24:eb:0a:44:68: 8f:46:67:fa:5c:1b:e8:94:ba:a3:90:b2:d3:5b:4b:24:ef:1e: c3:06:69:f9:8e:86:04:34:f0:28:eb:fb:8a:64:5b:48:1d:f8: 5e:51:39:0b:4c:76:6a:78:68:f5:b1:77:7e:de:a9:02:13:6a: 4a:b0:a9:9d:41:1b:ad:56:cf:fe:38:b3:7b:9b:cc:14:23:1b: d1:24:c3:7d:8a:bb:f0:33:13:6c:3c:b6:fe:0a:b1:f6:85:e0: 12:67:57:cd:d8:47:07:63:84:70:ae:ef:71:9a:5e:49:6e:36: 37:9e:a9:a2 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUIFSwjrl8xBI6spAsl52gs+aU2DUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgyMDE3NTUwMFoX DTI1MDgxOTE4MDAwMFowMzExMC8GA1UEAxMoNkZENjYwOEJFOUVGOTRFRkM3RjU0 QkYyQzQwMUU3MzAzMTk1NjdDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALoPSHw7tp9KHyYGlQoC4Zn7ZlCZKqOKl+/kG91x2K9Tyv0VTuPJjogMBcmB Ozi7EpfVpM+csWyD/SAXVQAeRbZupcs0ZzJCKqa5WhcmkPzKYH0OjtZkBG/H1B3q S37C8fEpxhkLjBXL3ZuRWHP5JXKXEyp6lk7fY64rrFGbEHw1t6IbIbu3LayKlDn/ ZLqkVjWI8lPbN+f8OUguHo9S20eTZlrDQuUBxZKubJ9MpvDDI2u3GevwDTqD1KGf GX3/3nxu1VeIL8uPMAQhS9lZKvrAh0RKb0p7GhRv4NdTyXJn9fPfE8/o7kFxIevu aaYM/PcfAuGFPKJZgcUtJI89rkUCAwEAAaOCAdwwggHYMB0GA1UdDgQWBBRv1mCL 6e+U78f1S/LEAecwMZVnyDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjA5My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEAWcpTgMEAWev0AMEAWfc2DANBgkqhkiG9w0BAQsFAAOCAQEAJ0Va uCmYAiW1zhtjcZGm72lgEy4MiyrS7oexsRIOQBQqZ9FA/UVX12c1MO9LGLAsAq2/ f7qtb+4j6qB4sCiJ50y0cO+iHaOgEn7m+n1GHAV4P+s7Ru5Dc1986NmQa3e0AsG/ KJFQ0ga9LRpo7FioB469CWiQLjifZp2OioO1tdkG4gWK3MRoFfN9ZyTrCkRoj0Zn +lwb6JS6o5Cy01tLJO8ewwZp+Y6GBDTwKOv7imRbSB34XlE5C0x2anho9bF3ft6p AhNqSrCpnUEbrVbP/jize5vMFCMb0STDfYq78DMTbDy2/gqx9oXgEmdXzdhHB2OE cK7vcZpeSW42N56pog== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:23 2024 by rpki-client on console-fra.rpki-client.org