$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136835.roa File: AS136835.roa (raw, json) Hash identifier: kO+kSivDHoFExwcJIG2OX9LYOMBd+Zbl/df1hAg5nHI= Subject key identifier: 8E:07:F1:78:00:0F:D2:F7:CF:9C:69:A8:EE:E1:C1:7D:42:0D:37:B5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3C1D004EF8F977CF80082ADA46B773BC952D6F81 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136835.roa Signing time: Tue 09 Jan 2024 04:00:19 +0000 ROA not before: Tue 09 Jan 2024 03:55:19 +0000 ROA not after: Tue 07 Jan 2025 04:00:19 +0000 asID: 136835 IP address blocks: 2407:24c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:1d:00:4e:f8:f9:77:cf:80:08:2a:da:46:b7:73:bc:95:2d:6f:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:19 2024 GMT Not After : Jan 7 04:00:19 2025 GMT Subject: CN=8E07F178000FD2F7CF9C69A8EEE1C17D420D37B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e4:ea:60:f5:cf:91:a6:73:de:22:ea:45:fc: de:a2:40:2b:4d:3e:59:79:a4:dc:32:4c:da:14:6f: 5a:a8:d2:27:cb:00:b3:c7:c0:f1:fc:87:31:28:32: 2c:df:5a:ba:01:cf:4e:6a:f3:a2:b9:3e:8f:5e:0b: 00:6e:1a:b7:36:13:cc:d4:e8:13:32:d3:f8:2b:07: 72:1a:61:59:de:c5:fb:47:2f:b2:42:bf:ec:6e:d8: 48:a3:f8:f2:80:02:d0:82:bf:ab:7d:3a:ce:ac:78: d7:c5:44:d7:b8:74:5e:58:29:3e:0e:22:d0:f1:8a: 79:2f:a7:3e:81:e1:28:e4:aa:a6:56:17:2d:72:4b: b2:84:bd:50:77:ba:92:74:bd:0b:66:53:30:83:66: af:41:58:0f:ed:11:11:6d:d5:f7:8a:17:a1:74:c2: ff:52:56:84:1a:a3:23:3e:70:dc:67:e4:d5:cf:48: 00:66:e3:2e:6e:ce:1b:3c:f2:ec:5a:1c:62:d3:19: 96:dd:d8:b8:6f:66:6b:70:9e:09:fc:dd:d6:b0:aa: 60:24:7b:db:9c:11:18:2d:d4:2a:93:15:fc:eb:e4: a4:b4:0f:f2:32:cf:c0:1d:cd:9f:26:30:c8:d6:9c: 24:f1:53:77:b4:ac:6f:08:65:3b:1c:4e:7b:f5:b6: ef:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:07:F1:78:00:0F:D2:F7:CF:9C:69:A8:EE:E1:C1:7D:42:0D:37:B5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:24c0::/32 Signature Algorithm: sha256WithRSAEncryption 9c:0d:65:94:d5:40:db:12:e8:dd:da:7c:9d:dd:8c:6b:d8:89: 19:91:ef:65:02:71:90:f7:f7:fe:6b:14:e2:16:08:a0:a7:3f: bf:fb:09:ad:75:dd:aa:58:84:5c:4c:03:67:3e:71:00:4c:3b: 7d:20:d2:88:ad:84:16:bc:4b:a3:f7:c3:64:0a:ed:ef:e1:f9: 8a:4d:5f:b9:b5:88:f3:de:12:8a:a1:a1:0d:c7:72:32:17:a5: c7:e4:0f:d0:dc:68:66:ff:d3:e3:84:21:92:0f:02:6e:0c:71: ac:f5:f9:fb:bb:87:e0:3a:91:26:89:7b:82:f0:22:84:58:68: fc:c5:06:ed:e1:75:17:9c:27:e2:6b:4f:cf:b8:20:85:b3:55: 28:41:07:22:bb:8b:5c:a9:7c:7f:8a:ad:0b:60:0c:99:32:fe: e1:7f:ca:82:b4:85:e1:ec:ec:ec:74:9d:f5:14:02:28:eb:ad: 4d:70:0c:68:06:e0:b2:f6:d9:00:5c:29:96:79:35:5c:c9:86: 56:da:ea:e6:db:9e:6d:01:ff:28:47:93:4e:4e:52:e9:b1:3b: 3c:a8:5e:2c:c4:0f:f3:25:7e:ae:7c:60:ba:7a:9a:b9:f6:f9: af:31:d3:ea:8e:8d:3a:f2:eb:73:aa:11:70:42:f0:a2:e3:be: 77:f3:66:7c -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUPB0ATvj5d8+ACCraRrdzvJUtb4EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxOVoX DTI1MDEwNzA0MDAxOVowMzExMC8GA1UEAxMoOEUwN0YxNzgwMDBGRDJGN0NGOUM2 OUE4RUVFMUMxN0Q0MjBEMzdCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALrk6mD1z5Gmc94i6kX83qJAK00+WXmk3DJM2hRvWqjSJ8sAs8fA8fyHMSgy LN9augHPTmrzork+j14LAG4atzYTzNToEzLT+CsHchphWd7F+0cvskK/7G7YSKP4 8oAC0IK/q306zqx418VE17h0XlgpPg4i0PGKeS+nPoHhKOSqplYXLXJLsoS9UHe6 knS9C2ZTMINmr0FYD+0REW3V94oXoXTC/1JWhBqjIz5w3Gfk1c9IAGbjLm7OGzzy 7FocYtMZlt3YuG9ma3CeCfzd1rCqYCR725wRGC3UKpMV/OvkpLQP8jLPwB3NnyYw yNacJPFTd7SsbwhlOxxOe/W277cCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSOB/F4 AA/S98+caaju4cF9Qg03tTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjgzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQHJMAwDQYJKoZIhvcNAQELBQADggEBAJwNZZTVQNsS6N3afJ3d jGvYiRmR72UCcZD39/5rFOIWCKCnP7/7Ca113apYhFxMA2c+cQBMO30g0oithBa8 S6P3w2QK7e/h+YpNX7m1iPPeEoqhoQ3HcjIXpcfkD9DcaGb/0+OEIZIPAm4Mcaz1 +fu7h+A6kSaJe4LwIoRYaPzFBu3hdRecJ+JrT8+4IIWzVShBByK7i1ypfH+KrQtg DJky/uF/yoK0heHs7Ox0nfUUAijrrU1wDGgG4LL22QBcKZZ5NVzJhlba6ubbnm0B /yhHk05OUumxOzyoXizED/Mlfq58YLp6mrn2+a8x0+qOjTry63OqEXBC8KLjvnfz Znw= -----END CERTIFICATE-----Generated at Fri May 3 03:08:30 2024 by rpki-client on console-ams.rpki-client.org