$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136093.roa File: AS136093.roa (raw, json) Hash identifier: iMK2h0ApUS3ipClzu7nBDT7QWkRzsRkiScU6jZVgZng= Subject key identifier: BB:DD:B0:69:68:63:B7:87:F1:36:CF:AB:02:53:23:1C:59:FC:D5:CF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2266EB55E02567E901F04BD0401A17271459647F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136093.roa Signing time: Tue 19 Sep 2023 17:44:08 +0000 ROA not before: Tue 19 Sep 2023 17:39:08 +0000 ROA not after: Tue 17 Sep 2024 17:44:08 +0000 asID: 136093 IP address blocks: 103.41.78.0/23 maxlen: 24 103.175.208.0/23 maxlen: 24 103.220.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:66:eb:55:e0:25:67:e9:01:f0:4b:d0:40:1a:17:27:14:59:64:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 19 17:39:08 2023 GMT Not After : Sep 17 17:44:08 2024 GMT Subject: CN=BBDDB0696863B787F136CFAB0253231C59FCD5CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fd:dd:bd:83:53:1d:1f:14:9e:e0:b7:3e:6b: e1:10:a7:4c:d2:ab:bb:e3:89:1a:be:58:dc:cf:75: 66:e3:e7:64:7f:53:0d:60:7a:f7:4e:d1:34:0b:a9: bb:84:c2:59:6f:e4:e8:b5:1f:52:1f:49:b6:6f:46: 3d:7f:a3:82:69:5c:8d:b6:ca:e3:50:aa:9c:65:b3: 1b:11:3f:d4:8c:ca:23:2b:b9:22:89:da:67:b2:35: 5b:37:e0:2f:7a:be:36:87:bd:ca:a5:ea:0d:92:2e: 93:f2:1e:af:9c:b4:28:96:65:94:d6:2a:14:ee:8d: 98:e3:f4:1d:36:f2:d6:74:93:89:a1:4e:9e:f8:21: c0:35:71:9f:1a:27:97:5d:d6:a6:33:09:7b:df:76: bf:2c:42:a5:d3:20:b7:49:48:05:59:62:69:a1:f6: 76:4d:e1:30:48:77:6e:e3:2b:b7:7e:06:8c:ac:95: 18:ec:66:59:2a:ca:c0:bf:d0:e8:73:7f:9f:e7:3b: 3a:67:e5:c2:58:4f:87:53:e0:3a:32:65:34:05:6b: f6:65:a1:3f:7b:20:90:52:f0:79:a8:44:a1:83:dc: 8b:8f:46:bd:a5:84:6c:b8:fb:7f:8a:cd:f2:ab:6f: 6e:db:63:af:8e:e5:b0:9d:04:91:02:4d:47:c3:62: 20:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DD:B0:69:68:63:B7:87:F1:36:CF:AB:02:53:23:1C:59:FC:D5:CF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136093.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.78.0/23 103.175.208.0/23 103.220.216.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:d1:0d:f1:e6:83:56:bd:fd:01:9d:af:21:cd:0c:d2:9b:a5: c0:c7:7f:60:10:e2:3d:8c:89:0c:64:ce:35:1d:7a:9b:b0:93: f6:9e:fa:02:a9:f9:93:d1:e7:1d:ac:a5:5a:a4:64:42:24:ba: 4d:17:85:7c:e7:96:f2:bf:0b:b7:65:7f:15:66:96:4d:83:d3: 72:57:90:40:cb:86:a8:e1:54:2a:4a:46:c7:62:e8:14:ea:4d: 70:fc:b1:d2:ea:24:57:61:13:16:2d:32:9c:ae:75:d3:61:ec: af:e4:c8:13:7e:ee:8b:24:79:05:3a:13:3d:f8:15:52:9e:40: 98:71:a7:3c:87:ac:29:06:50:74:0c:4b:92:dd:63:6e:46:17: a1:d1:cc:e8:ae:c0:55:d8:2b:eb:5e:28:e2:2d:27:5d:14:4d: b1:2d:18:4b:c9:47:b8:d4:cb:84:ef:36:4b:75:43:8f:7a:ab: 75:28:f0:4b:04:ae:5e:ee:5c:93:11:9c:94:93:7a:38:ae:2c: 5d:40:70:19:c1:b7:70:c0:9c:56:b8:01:d6:ff:44:fd:ae:4d: 58:43:95:f2:11:07:70:76:eb:ce:a9:39:cf:6b:45:6b:1e:11: 1e:10:03:61:db:84:d6:41:c8:91:78:3a:c6:bf:df:09:1b:c9: e2:e9:de:80 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUImbrVeAlZ+kB8EvQQBoXJxRZZH8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkxOTE3MzkwOFoX DTI0MDkxNzE3NDQwOFowMzExMC8GA1UEAxMoQkJEREIwNjk2ODYzQjc4N0YxMzZD RkFCMDI1MzIzMUM1OUZDRDVDRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOH93b2DUx0fFJ7gtz5r4RCnTNKru+OJGr5Y3M91ZuPnZH9TDWB6907RNAup u4TCWW/k6LUfUh9Jtm9GPX+jgmlcjbbK41CqnGWzGxE/1IzKIyu5IonaZ7I1Wzfg L3q+Noe9yqXqDZIuk/Ier5y0KJZllNYqFO6NmOP0HTby1nSTiaFOnvghwDVxnxon l13WpjMJe992vyxCpdMgt0lIBVliaaH2dk3hMEh3buMrt34GjKyVGOxmWSrKwL/Q 6HN/n+c7OmflwlhPh1PgOjJlNAVr9mWhP3sgkFLweahEoYPci49GvaWEbLj7f4rN 8qtvbttjr47lsJ0EkQJNR8NiIGMCAwEAAaOCAdwwggHYMB0GA1UdDgQWBBS73bBp aGO3h/E2z6sCUyMcWfzVzzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjA5My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEAWcpTgMEAWev0AMEAWfc2DANBgkqhkiG9w0BAQsFAAOCAQEAbdEN 8eaDVr39AZ2vIc0M0pulwMd/YBDiPYyJDGTONR16m7CT9p76Aqn5k9HnHaylWqRk QiS6TReFfOeW8r8Lt2V/FWaWTYPTcleQQMuGqOFUKkpGx2LoFOpNcPyx0uokV2ET Fi0ynK5102Hsr+TIE37uiyR5BToTPfgVUp5AmHGnPIesKQZQdAxLkt1jbkYXodHM 6K7AVdgr614o4i0nXRRNsS0YS8lHuNTLhO82S3VDj3qrdSjwSwSuXu5ckxGclJN6 OK4sXUBwGcG3cMCcVrgB1v9E/a5NWEOV8hEHcHbrzqk5z2tFax4RHhADYduE1kHI kXg6xr/fCRvJ4unegA== -----END CERTIFICATE-----Generated at Wed May 8 17:45:21 2024 by rpki-client on console-ams.rpki-client.org