$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136842.roa File: AS136842.roa (raw, json) Hash identifier: 9P8tEuDbXzeGEy8aj94qWFbpudvkohb99/K0zbcPQ78= Subject key identifier: B0:91:A9:63:E1:CA:3D:F8:55:63:E9:57:6B:1C:22:02:FA:1E:96:FB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 019EB3529D9455121B6B00DBE652328F2AFBB1A8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136842.roa Signing time: Tue 10 Dec 2024 05:00:11 +0000 ROA not before: Tue 10 Dec 2024 04:55:11 +0000 ROA not after: Tue 09 Dec 2025 05:00:11 +0000 asID: 136842 IP address blocks: 103.100.246.0/24 maxlen: 24 103.100.247.0/24 maxlen: 24 2405:bc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:b3:52:9d:94:55:12:1b:6b:00:db:e6:52:32:8f:2a:fb:b1:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:11 2024 GMT Not After : Dec 9 05:00:11 2025 GMT Subject: CN=B091A963E1CA3DF85563E9576B1C2202FA1E96FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a2:59:68:23:3d:a2:6f:ce:4d:54:5c:81:e5: 12:36:38:a3:e7:b8:62:85:12:26:93:a2:36:09:d3: cc:55:b2:89:9c:9b:04:57:ea:a7:d6:0c:d7:2e:cd: 87:0e:ed:b6:54:4e:44:13:65:8f:f8:5d:00:9c:67: 19:39:3b:e8:9c:2e:86:4f:52:1e:96:37:c0:e1:6d: db:ba:1f:ae:a7:4e:5f:d7:4d:1a:fe:a8:f6:0a:6c: 0d:c8:0a:e9:0b:51:28:6f:77:ec:12:1c:d8:69:5f: b2:24:8a:b2:76:e3:62:99:ab:27:91:75:3b:ae:43: e7:9e:c9:7f:37:05:6e:6d:76:3f:dd:c3:c5:fc:11: 21:ba:45:84:80:9d:eb:4a:13:3f:a8:77:92:a0:e1: 2f:45:5a:f8:ca:e2:49:b5:fc:cc:aa:63:eb:7d:bf: 80:87:37:be:d6:3d:80:c8:49:b1:21:df:c3:67:0c: 00:70:74:d9:24:77:66:e1:39:e6:72:5d:86:05:eb: 7e:55:4f:b4:a1:3b:6e:cf:78:39:e4:82:d4:64:cb: a5:57:54:06:91:08:4f:ba:d1:6e:c0:f3:00:5f:11: fb:39:c7:bf:83:97:30:aa:fd:da:b6:54:c8:dc:c2: e7:13:0d:0e:20:40:7d:57:63:57:02:00:b3:63:4d: b7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:91:A9:63:E1:CA:3D:F8:55:63:E9:57:6B:1C:22:02:FA:1E:96:FB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136842.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.246.0/23 IPv6: 2405:bc0::/32 Signature Algorithm: sha256WithRSAEncryption 25:1f:a0:c4:15:d3:e0:68:9c:4c:3d:f6:08:31:9c:f4:fc:94: fb:7c:a8:cd:6a:76:05:d7:2b:03:6f:18:dd:00:bf:1a:2b:b0: 51:71:1a:5b:78:3f:40:2d:4e:43:9e:ec:20:e7:a1:1f:e0:24: 53:c5:89:81:d7:6a:af:19:2f:1f:87:9e:e0:c3:2b:12:78:77: e9:95:d7:34:eb:fe:0c:2f:cf:4c:5e:bb:f4:e5:d2:df:23:13: 65:7c:c9:f1:26:53:0c:12:91:b7:68:fc:58:ba:ea:2f:ec:36: c6:44:4a:14:8e:dd:12:0f:2c:15:8a:47:32:18:36:0e:88:6d: 6c:da:93:44:f3:27:65:bf:9e:91:e0:f8:76:79:d6:2a:64:50: 26:f8:ee:f5:d1:ec:11:d4:68:c1:c3:83:52:28:2f:c6:c4:74: 74:ab:ee:f9:0c:6c:00:5a:f9:01:f1:c3:b1:0f:ef:c7:d5:2a: a9:a7:7b:8f:a1:6d:96:32:9d:b7:83:cf:07:c5:d3:96:f8:62: 59:39:5c:45:01:73:94:56:20:7e:49:8b:f1:56:25:5c:bc:25: fd:c8:f5:6f:11:26:02:11:3c:02:8f:cd:72:85:55:84:da:90: ec:a6:d9:d7:99:f6:93:6b:92:5a:29:c8:b4:e2:99:d6:88:57: 2e:4b:52:35 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUAZ6zUp2UVRIbawDb5lIyjyr7sagwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxMVoX DTI1MTIwOTA1MDAxMVowMzExMC8GA1UEAxMoQjA5MUE5NjNFMUNBM0RGODU1NjNF OTU3NkIxQzIyMDJGQTFFOTZGQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANyiWWgjPaJvzk1UXIHlEjY4o+e4YoUSJpOiNgnTzFWyiZybBFfqp9YM1y7N hw7ttlRORBNlj/hdAJxnGTk76Jwuhk9SHpY3wOFt27ofrqdOX9dNGv6o9gpsDcgK 6QtRKG937BIc2GlfsiSKsnbjYpmrJ5F1O65D557JfzcFbm12P93DxfwRIbpFhICd 60oTP6h3kqDhL0Va+MriSbX8zKpj632/gIc3vtY9gMhJsSHfw2cMAHB02SR3ZuE5 5nJdhgXrflVPtKE7bs94OeSC1GTLpVdUBpEIT7rRbsDzAF8R+znHv4OXMKr92rZU yNzC5xMNDiBAfVdjVwIAs2NNt10CAwEAAaOCAd8wggHbMB0GA1UdDgQWBBSwkalj 4co9+FVj6VdrHCIC+h6W+zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjg0Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWdk9jANBAIAAjAHAwUAJAULwDANBgkqhkiG9w0BAQsFAAOCAQEA JR+gxBXT4GicTD32CDGc9PyU+3yozWp2BdcrA28Y3QC/GiuwUXEaW3g/QC1OQ57s IOehH+AkU8WJgddqrxkvH4ee4MMrEnh36ZXXNOv+DC/PTF679OXS3yMTZXzJ8SZT DBKRt2j8WLrqL+w2xkRKFI7dEg8sFYpHMhg2DohtbNqTRPMnZb+ekeD4dnnWKmRQ Jvju9dHsEdRowcODUigvxsR0dKvu+QxsAFr5AfHDsQ/vx9Uqqad7j6FtljKdt4PP B8XTlvhiWTlcRQFzlFYgfkmL8VYlXLwl/cj1bxEmAhE8Ao/NcoVVhNqQ7KbZ15n2 k2uSWinItOKZ1ohXLktSNQ== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:51 2025 by rpki-client