$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136129.roa File: AS136129.roa (raw, json) Hash identifier: zBXI4M62iXXI2Ihmu0yW3Ij+51F2eYIh28C+GR0Wapg= Subject key identifier: 7B:9C:B9:4B:EC:6D:4C:CF:94:FB:30:25:DC:17:82:C7:82:85:D8:D3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7A5026885FD14808CCD0FF509CF76C64E25E8F4C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136129.roa Signing time: Fri 12 Jan 2024 04:00:00 +0000 ROA not before: Fri 12 Jan 2024 03:55:00 +0000 ROA not after: Fri 10 Jan 2025 04:00:00 +0000 asID: 136129 IP address blocks: 103.98.31.0/24 maxlen: 24 2001:df2:1100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:50:26:88:5f:d1:48:08:cc:d0:ff:50:9c:f7:6c:64:e2:5e:8f:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 12 03:55:00 2024 GMT Not After : Jan 10 04:00:00 2025 GMT Subject: CN=7B9CB94BEC6D4CCF94FB3025DC1782C78285D8D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c9:ed:9d:0a:c9:5f:6c:96:73:3f:0f:19:91: d1:b7:5a:ba:dd:fa:9c:d7:c2:93:25:88:cb:67:af: aa:82:8a:01:32:ce:0f:d2:d1:5b:8a:2e:53:81:4d: 92:0f:6d:9e:c8:2d:21:be:77:d5:1e:76:8e:b8:29: f5:57:88:bb:92:13:0e:98:24:78:2e:76:01:24:3a: 8f:0c:e4:fd:e2:75:32:fb:8d:31:bb:90:40:68:4c: 27:e5:44:39:eb:fa:e6:c1:50:75:7c:b5:ce:e4:6a: 19:6f:9f:ef:e3:c6:78:a6:e6:d1:26:12:61:b6:2f: f8:68:bd:87:75:2f:bf:52:38:22:52:ee:8b:d9:a5: c8:5d:1d:7c:36:c9:0d:07:43:75:77:2d:21:46:78: cc:b8:1b:a1:69:e4:0f:de:d7:8b:20:85:b1:64:fd: f4:4f:42:b0:31:d0:57:60:64:84:f6:d3:7d:55:61: b1:f6:7c:80:5a:27:e6:4f:06:bd:d7:96:e8:b3:99: e4:31:73:33:54:de:28:25:97:f0:0d:74:b9:38:47: 24:42:ae:57:8d:05:b5:e2:7d:5a:0a:06:36:42:b8: e2:dc:00:6b:04:0c:7a:ce:67:33:11:f5:0e:ba:af: e3:62:ac:e9:64:cf:ba:9e:0a:66:57:8b:36:db:fd: 00:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:9C:B9:4B:EC:6D:4C:CF:94:FB:30:25:DC:17:82:C7:82:85:D8:D3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136129.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.31.0/24 IPv6: 2001:df2:1100::/48 Signature Algorithm: sha256WithRSAEncryption 5f:81:37:fb:2e:75:16:6b:56:7f:5b:95:f0:c9:2f:ec:4f:49: 10:f6:3a:49:e6:1f:07:77:8f:34:19:29:07:ca:87:13:e1:57: 8e:05:a5:94:2c:54:31:78:12:e0:ef:cb:56:ac:00:68:ec:57: a1:37:8a:e0:88:7a:3b:50:47:74:6f:e6:d3:3b:8c:a9:5a:2c: 9a:75:b6:5a:82:e7:22:5a:ec:75:b3:d7:4e:13:5d:2d:89:02: e7:53:ed:8b:56:63:b7:cc:81:0c:8d:35:ba:7f:8c:d6:e7:2f: 87:4d:f5:ec:e6:06:06:a3:75:95:63:35:de:d9:76:a3:7b:ee: ba:47:6d:60:9e:44:cf:50:d9:58:89:c8:16:8f:c6:10:78:b9: 43:65:b2:24:dc:08:b7:96:80:4f:96:8f:0a:91:70:95:89:75: ad:dc:98:3d:6a:b7:d9:53:17:44:3a:99:05:0f:09:15:87:3c: 48:2a:7a:46:3c:ef:c6:34:e0:a0:e6:5a:51:aa:fe:c8:19:fa: 94:8a:bf:b9:f0:2b:ae:44:56:ec:7b:d6:40:f8:a4:e7:dd:cd: 50:b3:86:bd:02:a9:21:14:ce:5d:8a:3b:76:f1:da:09:65:5b: f7:f8:fd:0b:64:c1:f2:13:20:a7:2a:dd:74:be:49:75:da:97: 22:81:9a:09 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUelAmiF/RSAjM0P9QnPdsZOJej0wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExMjAzNTUwMFoX DTI1MDExMDA0MDAwMFowMzExMC8GA1UEAxMoN0I5Q0I5NEJFQzZENENDRjk0RkIz MDI1REMxNzgyQzc4Mjg1RDhEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMbJ7Z0KyV9slnM/DxmR0bdaut36nNfCkyWIy2evqoKKATLOD9LRW4ouU4FN kg9tnsgtIb531R52jrgp9VeIu5ITDpgkeC52ASQ6jwzk/eJ1MvuNMbuQQGhMJ+VE Oev65sFQdXy1zuRqGW+f7+PGeKbm0SYSYbYv+Gi9h3Uvv1I4IlLui9mlyF0dfDbJ DQdDdXctIUZ4zLgboWnkD97XiyCFsWT99E9CsDHQV2BkhPbTfVVhsfZ8gFon5k8G vdeW6LOZ5DFzM1TeKCWX8A10uThHJEKuV40FteJ9WgoGNkK44twAawQMes5nMxH1 Drqv42Ks6WTPup4KZleLNtv9AAsCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBR7nLlL 7G1Mz5T7MCXcF4LHgoXY0zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjEyOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGdiHzAPBAIAAjAJAwcAIAEN8hEAMA0GCSqGSIb3DQEBCwUAA4IB AQBfgTf7LnUWa1Z/W5XwyS/sT0kQ9jpJ5h8Hd480GSkHyocT4VeOBaWULFQxeBLg 78tWrABo7FehN4rgiHo7UEd0b+bTO4ypWiyadbZaguciWux1s9dOE10tiQLnU+2L VmO3zIEMjTW6f4zW5y+HTfXs5gYGo3WVYzXe2Xaje+66R21gnkTPUNlYicgWj8YQ eLlDZbIk3Ai3loBPlo8KkXCViXWt3Jg9arfZUxdEOpkFDwkVhzxIKnpGPO/GNOCg 5lpRqv7IGfqUir+58CuuRFbse9ZA+KTn3c1Qs4a9AqkhFM5dijt28doJZVv3+P0L ZMHyEyCnKt10vkl12pcigZoJ -----END CERTIFICATE-----Generated at Sat Apr 27 21:40:19 2024 by rpki-client on console-ams.rpki-client.org