$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136129.roa File: AS136129.roa (raw, json) Hash identifier: kzEeKcGLtE0Bx9RJ/VBrsbSVLB4zK10VdjRq6jo9WZA= Subject key identifier: 7B:76:19:4C:C2:D8:FD:64:41:87:27:C3:39:0F:36:6A:9D:06:47:80 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 117B188D0A645992ABD38CD4956512C089894445 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136129.roa Signing time: Fri 13 Dec 2024 04:00:00 +0000 ROA not before: Fri 13 Dec 2024 03:55:00 +0000 ROA not after: Fri 12 Dec 2025 04:00:00 +0000 asID: 136129 IP address blocks: 103.98.31.0/24 maxlen: 24 2001:df2:1100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:7b:18:8d:0a:64:59:92:ab:d3:8c:d4:95:65:12:c0:89:89:44:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 13 03:55:00 2024 GMT Not After : Dec 12 04:00:00 2025 GMT Subject: CN=7B76194CC2D8FD64418727C3390F366A9D064780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b1:54:0b:f0:bf:59:ff:18:17:2e:56:a7:f0: aa:33:1a:aa:40:4c:45:6c:1c:2c:f1:31:22:55:bb: b6:f7:b4:18:91:2d:7e:69:db:cc:2f:cc:2e:6b:08: 1b:fc:20:c8:42:e6:71:a0:18:a9:20:fa:7e:56:c5: 0d:ad:7a:42:48:27:19:b4:db:d0:76:cb:82:50:10: 4b:7e:c1:00:61:d1:54:f6:c2:7d:c8:38:bb:4f:92: ce:e1:0b:03:52:97:d3:56:2e:fc:fa:6b:f4:6d:71: 29:49:f6:5f:76:3d:65:fc:a4:a3:ec:05:35:03:77: b4:f6:07:16:9d:43:3d:06:a4:bf:bb:3f:47:13:a4: 49:39:f1:ba:4f:41:f9:04:99:2d:a2:29:45:40:59: 40:18:48:17:17:04:e4:90:20:66:1d:d2:44:36:b2: ff:a5:2e:6b:ae:1e:54:6f:07:25:75:82:59:26:0f: 9f:30:07:47:02:8f:ef:10:2e:c2:8e:f2:cd:94:2e: f6:c5:ce:22:23:b2:7e:c4:ee:d1:c9:d5:6e:85:fc: ad:ad:a7:9c:07:d3:e4:a5:7d:c7:80:6b:ea:46:b9: 38:e3:22:40:a0:23:be:20:3c:f7:db:03:a1:79:77: 48:09:ee:6a:55:4f:a8:87:49:8a:f0:ea:70:54:55: f9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:76:19:4C:C2:D8:FD:64:41:87:27:C3:39:0F:36:6A:9D:06:47:80 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136129.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.31.0/24 IPv6: 2001:df2:1100::/48 Signature Algorithm: sha256WithRSAEncryption 35:c6:e3:50:be:06:84:14:e4:0d:4c:6f:6e:37:8f:df:ba:1d: f3:2e:a6:67:a2:e7:cb:19:d8:d5:d5:ef:05:2c:e9:18:49:f0: 98:a0:69:bd:ed:25:ad:15:36:bf:29:1d:b2:15:16:6e:d6:68: 5e:65:6e:68:3b:43:f4:2c:c6:f2:26:78:62:3c:30:89:56:18: 2c:23:d0:79:15:1c:ef:32:f2:ed:ae:81:86:68:74:69:23:c6: 34:c4:47:97:52:ca:6d:d6:f5:32:7c:8c:a6:65:38:78:21:16: b8:44:5a:b4:22:5e:c2:a8:9b:01:37:29:ce:79:d3:cc:6b:04: 4b:bc:b5:4a:70:d2:c0:5d:15:8e:e4:af:e9:47:05:8d:9b:93: ce:c4:48:88:2b:ec:d3:2e:78:bc:e3:22:53:4c:d4:b4:ee:47: 61:b2:7a:93:74:be:7d:20:f0:e6:7a:0f:45:38:ce:05:92:95: 48:81:a5:78:9c:0e:6f:a3:a3:2d:35:0d:1f:02:00:08:a9:b6: cf:b1:8d:ea:3e:9c:72:ae:9a:e2:97:95:97:5d:ba:46:b9:27: b6:ee:c1:d4:62:09:13:b3:fd:8b:f3:41:66:4f:7b:08:3d:ce: b1:d4:9f:70:d4:2f:9e:e8:0a:48:71:15:0e:3b:a4:91:f3:a6: 46:f5:ca:87 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUEXsYjQpkWZKr04zUlWUSwImJREUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMzAzNTUwMFoX DTI1MTIxMjA0MDAwMFowMzExMC8GA1UEAxMoN0I3NjE5NENDMkQ4RkQ2NDQxODcy N0MzMzkwRjM2NkE5RDA2NDc4MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALqxVAvwv1n/GBcuVqfwqjMaqkBMRWwcLPExIlW7tve0GJEtfmnbzC/MLmsI G/wgyELmcaAYqSD6flbFDa16QkgnGbTb0HbLglAQS37BAGHRVPbCfcg4u0+SzuEL A1KX01Yu/Ppr9G1xKUn2X3Y9Zfyko+wFNQN3tPYHFp1DPQakv7s/RxOkSTnxuk9B +QSZLaIpRUBZQBhIFxcE5JAgZh3SRDay/6Uua64eVG8HJXWCWSYPnzAHRwKP7xAu wo7yzZQu9sXOIiOyfsTu0cnVboX8ra2nnAfT5KV9x4Br6ka5OOMiQKAjviA899sD oXl3SAnualVPqIdJivDqcFRV+V0CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBR7dhlM wtj9ZEGHJ8M5DzZqnQZHgDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjEyOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGdiHzAPBAIAAjAJAwcAIAEN8hEAMA0GCSqGSIb3DQEBCwUAA4IB AQA1xuNQvgaEFOQNTG9uN4/fuh3zLqZnoufLGdjV1e8FLOkYSfCYoGm97SWtFTa/ KR2yFRZu1mheZW5oO0P0LMbyJnhiPDCJVhgsI9B5FRzvMvLtroGGaHRpI8Y0xEeX Uspt1vUyfIymZTh4IRa4RFq0Il7CqJsBNynOedPMawRLvLVKcNLAXRWO5K/pRwWN m5POxEiIK+zTLni84yJTTNS07kdhsnqTdL59IPDmeg9FOM4FkpVIgaV4nA5vo6Mt NQ0fAgAIqbbPsY3qPpxyrpril5WXXbpGuSe27sHUYgkTs/2L80FmT3sIPc6x1J9w 1C+e6ApIcRUOO6SR86ZG9cqH -----END CERTIFICATE-----Generated at Sat Apr 5 08:32:08 2025 by rpki-client