$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136873.roa File: AS136873.roa (raw, json) Hash identifier: YlpZJv5EMMJV3YPnuee/HaYQK92elJ6+5g6JUEQbJFk= Subject key identifier: 0D:78:68:33:FB:CF:E9:97:A2:20:59:F0:3A:45:2B:ED:28:53:29:D0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3B73A5449BBDDF6F31DEF5A3106CCAABE7D6BEEA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136873.roa Signing time: Tue 13 Aug 2024 09:00:00 +0000 ROA not before: Tue 13 Aug 2024 08:55:00 +0000 ROA not after: Tue 12 Aug 2025 09:00:00 +0000 asID: 136873 IP address blocks: 103.75.84.0/23 maxlen: 24 103.165.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:73:a5:44:9b:bd:df:6f:31:de:f5:a3:10:6c:ca:ab:e7:d6:be:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 13 08:55:00 2024 GMT Not After : Aug 12 09:00:00 2025 GMT Subject: CN=0D786833FBCFE997A22059F03A452BED285329D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:34:0f:a7:ea:05:36:9a:d7:93:7e:e0:00:27: 89:4c:80:41:c9:1c:6c:64:15:10:6e:14:0f:fc:09: 14:21:7f:98:a9:6e:de:8c:7f:bf:a3:95:d7:d0:ba: 4b:95:ea:c1:31:e7:9a:58:16:a0:cd:80:74:e8:9b: 03:0a:62:60:0d:93:29:2c:1f:c0:1f:d2:13:74:97: 6d:47:2b:10:d1:90:dc:8c:95:77:3e:2f:f4:c7:31: 61:72:06:52:05:20:5b:9a:f0:11:c6:70:24:78:5d: e1:15:28:7e:52:1e:64:81:ff:db:c0:21:12:3e:e2: b6:dd:f4:a6:5b:78:88:aa:6f:82:8e:db:cd:9d:f9: 03:58:b6:46:86:85:9a:fe:ef:06:51:59:e8:a1:82: 8a:aa:0f:1b:4e:16:11:ec:8b:0d:b5:cf:e2:a2:7e: 5f:8f:97:c6:03:b8:8b:81:30:2a:8f:17:11:7a:24: 76:62:3b:88:16:22:00:e5:8a:a4:8f:32:ce:12:32: 2a:29:20:57:37:18:d9:3f:af:7a:8e:82:2b:3e:9b: d8:d0:dd:ba:4f:e9:f1:97:55:c6:f5:0a:29:3a:40: 2b:f2:07:5a:6c:03:0a:5a:3b:e8:69:bd:c0:5c:6f: 3c:93:15:3f:01:82:2e:d6:6f:5d:26:6c:6c:f5:1c: b4:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:78:68:33:FB:CF:E9:97:A2:20:59:F0:3A:45:2B:ED:28:53:29:D0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136873.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.75.84.0/23 103.165.156.0/23 Signature Algorithm: sha256WithRSAEncryption 37:a4:01:7c:c9:ee:0b:40:9e:2f:92:1a:cd:a7:fa:d2:a8:fc: bd:09:4a:05:6d:a8:67:2f:46:19:56:ce:6d:5c:72:91:7e:71: d1:00:dd:8d:74:52:c2:ac:b0:18:b9:c8:c7:d8:8e:26:35:33: 45:05:98:e0:c3:45:c0:59:19:0b:34:db:82:5b:16:e7:76:21: 56:8a:8a:1a:53:e5:25:3e:66:a1:35:82:22:d7:81:c9:bf:04: 75:5f:c1:59:58:e9:a6:60:cb:f4:b4:a4:f5:a2:79:3d:41:94: 77:d6:b0:07:70:4b:3e:bb:ab:b5:ad:fb:45:b7:39:32:89:cd: b0:14:13:94:ce:e7:39:c0:02:09:21:08:f8:5f:f2:b3:90:54: 93:77:0c:33:1f:bc:a9:45:8d:ce:15:91:fa:d7:37:6b:bb:c1: c6:32:17:ca:df:bd:13:79:7c:50:91:29:c4:68:8f:2f:5c:a0: ab:01:a8:08:e9:62:28:7c:c4:db:b8:1e:f7:45:da:3f:2b:7d: 02:17:df:e8:c8:ba:8b:ef:c9:64:54:e7:c5:2d:b8:31:c3:0b: 0b:0a:b6:60:66:fc:6b:c1:84:97:b7:f5:1d:d7:f6:8c:5c:65: a2:56:26:2d:da:19:59:5f:b6:62:8d:da:9c:d4:c8:c3:e6:20: 4e:26:fa:ae -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUO3OlRJu9328x3vWjEGzKq+fWvuowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxMzA4NTUwMFoX DTI1MDgxMjA5MDAwMFowMzExMC8GA1UEAxMoMEQ3ODY4MzNGQkNGRTk5N0EyMjA1 OUYwM0E0NTJCRUQyODUzMjlEMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALs0D6fqBTaa15N+4AAniUyAQckcbGQVEG4UD/wJFCF/mKlu3ox/v6OV19C6 S5XqwTHnmlgWoM2AdOibAwpiYA2TKSwfwB/SE3SXbUcrENGQ3IyVdz4v9McxYXIG UgUgW5rwEcZwJHhd4RUoflIeZIH/28AhEj7itt30plt4iKpvgo7bzZ35A1i2RoaF mv7vBlFZ6KGCiqoPG04WEeyLDbXP4qJ+X4+XxgO4i4EwKo8XEXokdmI7iBYiAOWK pI8yzhIyKikgVzcY2T+veo6CKz6b2NDduk/p8ZdVxvUKKTpAK/IHWmwDClo76Gm9 wFxvPJMVPwGCLtZvXSZsbPUctBMCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQNeGgz +8/pl6IgWfA6RSvtKFMp0DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjg3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAWdLVAMEAWelnDANBgkqhkiG9w0BAQsFAAOCAQEAN6QBfMnuC0Ce L5Iazaf60qj8vQlKBW2oZy9GGVbObVxykX5x0QDdjXRSwqywGLnIx9iOJjUzRQWY 4MNFwFkZCzTbglsW53YhVoqKGlPlJT5moTWCIteByb8EdV/BWVjppmDL9LSk9aJ5 PUGUd9awB3BLPrurta37Rbc5MonNsBQTlM7nOcACCSEI+F/ys5BUk3cMMx+8qUWN zhWR+tc3a7vBxjIXyt+9E3l8UJEpxGiPL1ygqwGoCOliKHzE27ge90XaPyt9Ahff 6Mi6i+/JZFTnxS24McMLCwq2YGb8a8GEl7f1Hdf2jFxlolYmLdoZWV+2Yo3anNTI w+YgTib6rg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:53 2024 by rpki-client on console-fra.rpki-client.org