$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136123.roa File: AS136123.roa (raw, json) Hash identifier: xMShOYKw1Nur+CgVmSVMLEFuJ10Q1TPQMjI9DTkQupg= Subject key identifier: 53:CE:38:49:2D:40:29:5C:D1:74:AF:F7:0E:F5:90:B5:D0:3C:00:D3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 17F2AB6152BCA9857D5A0B5EC95A318A465CFBFC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136123.roa Signing time: Tue 09 Jan 2024 04:00:09 +0000 ROA not before: Tue 09 Jan 2024 03:55:09 +0000 ROA not after: Tue 07 Jan 2025 04:00:09 +0000 asID: 136123 IP address blocks: 103.95.162.0/24 maxlen: 24 103.98.61.0/24 maxlen: 24 2001:df1:b300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:f2:ab:61:52:bc:a9:85:7d:5a:0b:5e:c9:5a:31:8a:46:5c:fb:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:09 2024 GMT Not After : Jan 7 04:00:09 2025 GMT Subject: CN=53CE38492D40295CD174AFF70EF590B5D03C00D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:78:f0:f3:c1:17:66:b3:f9:e2:3a:c2:8d:3e: 15:e3:ca:0e:4f:3c:ed:7c:d7:aa:61:ac:12:f5:82: 6e:1c:d2:20:bf:9b:9b:65:0d:c3:99:0a:8c:6d:db: a1:80:af:f5:dd:9a:3e:ae:73:6f:36:39:3b:a7:c7: 95:65:47:88:bb:d4:82:fe:c0:31:f2:1d:52:98:b4: e6:97:f1:6e:ba:7f:ad:1a:a7:db:ef:01:44:24:42: b5:45:3f:be:54:62:f0:26:9d:5a:02:ad:34:04:89: 09:a3:fa:28:f0:df:c3:43:58:0e:37:12:e1:a3:3f: f5:9c:22:b0:87:19:ae:e4:ea:1b:6b:24:79:6c:e2: 31:c1:0e:13:eb:98:98:9e:d9:c9:7e:7b:c5:ab:18: 29:7b:13:52:69:a4:0b:a0:c3:21:b4:4f:b1:9e:c1: a9:42:d7:31:53:27:70:8e:06:d5:09:a1:c8:9a:3d: 8d:5e:e7:74:92:df:53:33:9a:0c:93:84:0e:1d:f2: 9d:9d:bb:81:4d:70:36:ba:de:75:36:b2:65:6b:cd: cd:d7:b0:20:da:9c:94:8d:04:5b:e5:86:06:bc:a7: 93:33:c8:38:fe:67:64:f7:e0:3a:01:20:ad:38:12: b9:21:ee:ba:5a:0d:f4:97:37:6d:c5:29:3f:f1:33: 28:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:CE:38:49:2D:40:29:5C:D1:74:AF:F7:0E:F5:90:B5:D0:3C:00:D3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136123.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.162.0/24 103.98.61.0/24 IPv6: 2001:df1:b300::/48 Signature Algorithm: sha256WithRSAEncryption 55:25:6e:76:96:19:37:49:09:a7:3b:d3:09:4d:0b:0a:c2:a6: 88:fb:1e:aa:16:8e:41:7f:bb:48:5f:c4:5c:45:e5:e8:ff:ca: 6f:7e:e4:df:2e:c7:26:ef:4f:f4:b9:40:49:e1:4b:e9:74:44: 47:e3:d9:3a:ce:f0:e1:af:a9:13:6b:2c:fe:fa:7e:12:6d:85: 91:be:d3:9b:cc:71:af:57:e3:90:a2:e7:1e:67:0b:1c:4c:e4: dc:e3:9e:8a:9b:65:2b:ce:a2:31:c7:5d:68:c8:7e:52:b4:74: c2:5e:7b:3e:c3:01:08:6f:aa:f2:17:66:d1:eb:d8:0c:af:f6: c1:4a:07:9a:af:72:29:2a:70:29:f1:bc:07:c4:50:0e:ce:74: 6f:c4:91:3d:43:a0:fc:41:4e:fd:59:0f:dc:5a:47:38:95:2b: 6c:d2:d2:e5:40:54:87:31:84:62:db:c0:f0:73:1a:2c:b5:f4: a0:1b:85:a3:ca:6d:9d:4c:a3:2f:71:a4:92:2d:d3:70:39:b6: b0:18:51:b6:98:ac:4f:0f:f9:d7:79:94:0c:72:8e:d7:e9:eb: e4:ed:f1:c5:3b:09:5d:cd:18:9e:cc:65:41:a2:46:51:4f:4a: 82:c9:7e:03:2a:3e:70:bc:5a:cb:5c:76:ed:52:07:b6:87:6a: 90:56:7c:e0 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUF/KrYVK8qYV9WgteyVoxikZc+/wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwOVoX DTI1MDEwNzA0MDAwOVowMzExMC8GA1UEAxMoNTNDRTM4NDkyRDQwMjk1Q0QxNzRB RkY3MEVGNTkwQjVEMDNDMDBEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL548PPBF2az+eI6wo0+FePKDk887XzXqmGsEvWCbhzSIL+bm2UNw5kKjG3b oYCv9d2aPq5zbzY5O6fHlWVHiLvUgv7AMfIdUpi05pfxbrp/rRqn2+8BRCRCtUU/ vlRi8CadWgKtNASJCaP6KPDfw0NYDjcS4aM/9ZwisIcZruTqG2skeWziMcEOE+uY mJ7ZyX57xasYKXsTUmmkC6DDIbRPsZ7BqULXMVMncI4G1QmhyJo9jV7ndJLfUzOa DJOEDh3ynZ27gU1wNrredTayZWvNzdewINqclI0EW+WGBrynkzPIOP5nZPfgOgEg rTgSuSHuuloN9Jc3bcUpP/EzKF0CAwEAAaOCAecwggHjMB0GA1UdDgQWBBRTzjhJ LUApXNF0r/cO9ZC10DwA0zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjEyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAGdfogMEAGdiPTAPBAIAAjAJAwcAIAEN8bMAMA0GCSqGSIb3DQEB CwUAA4IBAQBVJW52lhk3SQmnO9MJTQsKwqaI+x6qFo5Bf7tIX8RcReXo/8pvfuTf Lscm70/0uUBJ4UvpdERH49k6zvDhr6kTayz++n4SbYWRvtObzHGvV+OQouceZwsc TOTc456Km2UrzqIxx11oyH5StHTCXns+wwEIb6ryF2bR69gMr/bBSgear3IpKnAp 8bwHxFAOznRvxJE9Q6D8QU79WQ/cWkc4lSts0tLlQFSHMYRi28DwcxostfSgG4Wj ym2dTKMvcaSSLdNwObawGFG2mKxPD/nXeZQMco7X6evk7fHFOwldzRiezGVBokZR T0qCyX4DKj5wvFrLXHbtUge2h2qQVnzg -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:53 2024 by rpki-client on console-fra.rpki-client.org