$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136873.roa File: AS136873.roa (raw, json) Hash identifier: iCpsHc7LJ5y0URaECOoBV68/vLcsBTa0B670Ih2nlFs= Subject key identifier: D3:18:C1:CA:50:38:8A:03:A4:C7:3A:64:4D:B0:B7:CD:11:9F:CD:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 658874D5A155163CCEB89B1B946022CE52678FA3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136873.roa Signing time: Tue 12 Sep 2023 08:49:39 +0000 ROA not before: Tue 12 Sep 2023 08:44:39 +0000 ROA not after: Tue 10 Sep 2024 08:49:39 +0000 asID: 136873 IP address blocks: 103.75.84.0/23 maxlen: 24 103.165.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:88:74:d5:a1:55:16:3c:ce:b8:9b:1b:94:60:22:ce:52:67:8f:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 12 08:44:39 2023 GMT Not After : Sep 10 08:49:39 2024 GMT Subject: CN=D318C1CA50388A03A4C73A644DB0B7CD119FCD6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:48:9c:e4:47:15:ad:98:ee:9b:39:30:45:84: 64:ca:5d:45:b3:19:6a:d3:20:55:2f:81:2e:5a:f5: d4:f0:e1:88:e8:02:15:6f:87:c8:f5:d6:0e:e3:52: c7:a3:64:6b:6a:7c:34:3b:09:2f:14:92:e7:b1:5d: 25:1a:6c:a2:d7:6d:52:02:43:02:fa:bc:2f:02:6b: 1e:bd:da:f3:82:e9:67:a2:55:6e:3d:9d:3b:28:bd: 5e:a0:5a:b0:91:7e:be:c6:4e:09:11:35:f9:83:44: 9e:3a:af:ac:d1:f9:4c:64:be:b6:60:c3:7c:d0:8b: cf:f7:f2:c5:af:77:3a:cd:24:4a:a5:46:2d:9d:e1: 22:9a:91:0c:61:11:ba:9a:60:89:26:0b:d2:bf:da: 62:1b:41:5c:3b:1b:9f:6c:05:91:1d:0d:fd:6b:87: 2b:91:03:1f:80:3b:9c:69:8e:ed:f8:ea:35:8a:c9: ec:f7:b6:89:55:bc:f8:ee:13:f8:ee:9b:15:31:8b: c4:ce:26:35:18:6e:42:b0:f8:44:df:1b:19:39:ef: f4:4d:60:b8:ef:31:36:11:57:f3:a1:91:70:c0:d3: 72:42:f4:0d:43:13:11:35:2e:6a:12:14:36:31:56: c0:f7:c8:78:66:3d:8b:3b:e2:bc:25:bf:6e:a2:cf: f2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:18:C1:CA:50:38:8A:03:A4:C7:3A:64:4D:B0:B7:CD:11:9F:CD:6B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136873.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.75.84.0/23 103.165.156.0/23 Signature Algorithm: sha256WithRSAEncryption 59:33:58:a3:8a:55:77:66:62:c7:ef:40:a8:66:0d:9f:f5:be: 1f:35:29:70:7a:0a:6a:69:af:4f:b0:dc:08:07:d8:f8:ac:0d: 5a:c0:37:12:1f:2a:2c:ba:5d:47:2a:9e:0f:b0:98:b6:63:aa: 37:d2:25:0d:ea:0f:58:ef:8f:d3:10:aa:4c:45:7d:3c:38:4d: 4c:1d:8f:e1:20:c6:3d:83:8d:9e:f6:b0:0c:75:15:a1:23:c3: 90:73:00:ff:fb:75:ef:81:92:eb:a8:c9:67:9a:9a:ac:a9:50: 61:c0:c4:a4:16:d4:36:3a:61:de:5e:a3:9c:40:67:b2:0e:4f: 95:f8:b7:d1:e4:47:da:e3:9f:d2:c1:aa:e4:93:e1:a7:39:73: 30:b8:ee:6e:46:30:c2:7f:12:eb:56:6e:28:62:e9:35:fc:8c: 70:9b:7b:70:9c:3d:19:21:3f:02:80:85:9a:54:1e:f6:bf:e1: 48:ec:93:09:ea:ca:dd:0e:ff:09:34:be:27:6d:78:98:aa:94: 4b:15:63:c6:58:67:7d:4e:23:94:30:68:2c:42:09:fa:ad:1b: 1c:8b:37:7e:8c:fb:bd:a9:fa:33:e9:c1:25:6a:d9:0b:c1:73: cc:32:3a:4e:f1:ae:9a:8b:9b:b2:ed:b6:89:b3:cb:7c:a7:4e: df:72:a2:a0 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUZYh01aFVFjzOuJsblGAizlJnj6MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkxMjA4NDQzOVoX DTI0MDkxMDA4NDkzOVowMzExMC8GA1UEAxMoRDMxOEMxQ0E1MDM4OEEwM0E0Qzcz QTY0NERCMEI3Q0QxMTlGQ0Q2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOpInORHFa2Y7ps5MEWEZMpdRbMZatMgVS+BLlr11PDhiOgCFW+HyPXWDuNS x6Nka2p8NDsJLxSS57FdJRpsotdtUgJDAvq8LwJrHr3a84LpZ6JVbj2dOyi9XqBa sJF+vsZOCRE1+YNEnjqvrNH5TGS+tmDDfNCLz/fyxa93Os0kSqVGLZ3hIpqRDGER uppgiSYL0r/aYhtBXDsbn2wFkR0N/WuHK5EDH4A7nGmO7fjqNYrJ7Pe2iVW8+O4T +O6bFTGLxM4mNRhuQrD4RN8bGTnv9E1guO8xNhFX86GRcMDTckL0DUMTETUuahIU NjFWwPfIeGY9izvivCW/bqLP8ukCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBTTGMHK UDiKA6THOmRNsLfNEZ/NazAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjg3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAWdLVAMEAWelnDANBgkqhkiG9w0BAQsFAAOCAQEAWTNYo4pVd2Zi x+9AqGYNn/W+HzUpcHoKammvT7DcCAfY+KwNWsA3Eh8qLLpdRyqeD7CYtmOqN9Il DeoPWO+P0xCqTEV9PDhNTB2P4SDGPYONnvawDHUVoSPDkHMA//t174GS66jJZ5qa rKlQYcDEpBbUNjph3l6jnEBnsg5Plfi30eRH2uOf0sGq5JPhpzlzMLjubkYwwn8S 61ZuKGLpNfyMcJt7cJw9GSE/AoCFmlQe9r/hSOyTCerK3Q7/CTS+J214mKqUSxVj xlhnfU4jlDBoLEIJ+q0bHIs3foz7van6M+nBJWrZC8FzzDI6TvGumoubsu22ibPL fKdO33KioA== -----END CERTIFICATE-----Generated at Sun May 5 09:49:41 2024 by rpki-client on console-fra.rpki-client.org