$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136876.roa File: AS136876.roa (raw, json) Hash identifier: XwGevHk5DtfmbTpLFm5Bbh1rSJFFIRyIWWy6dMYpyI0= Subject key identifier: 3F:9A:60:3D:09:69:08:6D:2B:04:83:90:09:37:55:57:75:FA:B8:F2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0CB2A4508084C783F14989BEFB519641CC8571FC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136876.roa Signing time: Thu 09 May 2024 06:12:16 +0000 ROA not before: Thu 09 May 2024 06:07:16 +0000 ROA not after: Thu 08 May 2025 06:12:16 +0000 asID: 136876 IP address blocks: 103.105.190.0/24 maxlen: 24 103.163.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:b2:a4:50:80:84:c7:83:f1:49:89:be:fb:51:96:41:cc:85:71:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 9 06:07:16 2024 GMT Not After : May 8 06:12:16 2025 GMT Subject: CN=3F9A603D0969086D2B0483900937555775FAB8F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:48:0c:49:36:18:b2:70:15:ef:7a:74:8d:22: 9a:10:62:ee:dc:be:76:ff:d8:13:31:a1:e8:a4:6e: 37:21:48:c8:40:c7:43:f2:c0:aa:61:a7:3e:bb:e1: d8:39:02:72:19:3d:ab:1c:b9:cd:50:1c:18:35:86: 1a:6b:10:ea:15:9a:8a:e1:f9:78:b7:c5:6b:cf:49: 0f:0f:17:25:9b:2f:36:42:b5:49:c6:65:a1:34:e8: 97:80:b2:92:6c:1e:e4:7d:d6:a5:ca:af:f1:64:21: 3d:58:06:b2:a8:b2:94:72:5c:8c:fd:ba:0a:bb:45: f2:32:51:96:2c:18:cf:31:5f:85:4f:35:35:27:22: d9:ad:8c:41:81:f2:14:b4:2c:7f:1e:da:54:ef:9c: a0:1b:e2:a8:3b:8a:d7:1e:93:15:11:85:eb:2b:8e: bf:88:56:08:40:c5:d0:4e:db:bc:28:84:55:b0:c9: 15:b1:5e:9e:f9:6b:03:8f:ce:8b:7d:61:96:b1:24: d3:d3:7e:ed:d8:8c:00:f4:24:78:80:15:1c:6b:e8: d2:37:6c:06:80:12:99:bf:bb:20:0b:37:8e:27:dc: 91:68:d9:c1:69:0a:a0:9a:9b:33:89:54:9e:4d:3e: 87:69:16:3a:69:3b:d9:81:c2:d1:39:c1:66:8f:aa: 75:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9A:60:3D:09:69:08:6D:2B:04:83:90:09:37:55:57:75:FA:B8:F2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136876.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.190.0/24 103.163.38.0/24 Signature Algorithm: sha256WithRSAEncryption 23:86:52:e3:7b:aa:4a:e9:12:f2:2c:66:2d:ec:ce:da:2f:d8: 50:ee:f8:f0:d3:78:55:8b:80:fa:e6:28:8a:6b:21:f3:41:06: 82:8a:73:81:c4:08:c2:a3:b1:a5:b9:f1:5c:bc:a9:b7:68:28: fb:09:70:90:e0:7d:d7:39:8c:2f:8a:bb:21:8b:20:27:09:36: 17:66:f7:f4:0b:91:b9:b6:6b:83:e7:d3:df:58:97:ff:ee:29: db:d1:01:22:77:ce:47:45:29:a8:ca:6d:fb:41:79:1e:b6:91: f8:cd:d4:43:3d:5f:19:60:40:3d:f8:8d:99:f1:bb:18:80:7a: 63:55:f7:72:d2:f2:61:81:d6:83:65:80:2b:aa:46:3f:65:f3: ec:48:3d:82:21:3e:17:ef:6e:a6:59:29:52:50:6f:b3:39:d8: 38:d5:68:34:8b:47:f7:a3:8d:0c:78:1a:f5:96:83:b2:a7:18: 04:44:a9:18:63:73:ec:c6:37:b3:1a:4a:87:1d:ed:29:37:36: 46:c3:f5:21:b3:f2:c2:1b:8a:11:45:30:37:28:b0:af:89:1c: 30:f3:e3:b6:f4:fd:23:19:77:e0:2f:2d:77:ae:42:8e:d6:e5: 88:59:7a:06:87:ac:4b:13:1c:b5:88:ae:84:8d:31:cf:5f:87: e0:cc:80:9f -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUDLKkUICEx4PxSYm++1GWQcyFcfwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUwOTA2MDcxNloX DTI1MDUwODA2MTIxNlowMzExMC8GA1UEAxMoM0Y5QTYwM0QwOTY5MDg2RDJCMDQ4 MzkwMDkzNzU1NTc3NUZBQjhGMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdIDEk2GLJwFe96dI0imhBi7ty+dv/YEzGh6KRuNyFIyEDHQ/LAqmGnPrvh 2DkCchk9qxy5zVAcGDWGGmsQ6hWaiuH5eLfFa89JDw8XJZsvNkK1ScZloTTol4Cy kmwe5H3Wpcqv8WQhPVgGsqiylHJcjP26CrtF8jJRliwYzzFfhU81NSci2a2MQYHy FLQsfx7aVO+coBviqDuK1x6TFRGF6yuOv4hWCEDF0E7bvCiEVbDJFbFenvlrA4/O i31hlrEk09N+7diMAPQkeIAVHGvo0jdsBoASmb+7IAs3jifckWjZwWkKoJqbM4lU nk0+h2kWOmk72YHC0TnBZo+qdbcCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQ/mmA9 CWkIbSsEg5AJN1VXdfq48jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjg3Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGdpvgMEAGejJjANBgkqhkiG9w0BAQsFAAOCAQEAI4ZS43uqSukS 8ixmLezO2i/YUO748NN4VYuA+uYoimsh80EGgopzgcQIwqOxpbnxXLypt2go+wlw kOB91zmML4q7IYsgJwk2F2b39AuRubZrg+fT31iX/+4p29EBInfOR0UpqMpt+0F5 HraR+M3UQz1fGWBAPfiNmfG7GIB6Y1X3ctLyYYHWg2WAK6pGP2Xz7Eg9giE+F+9u plkpUlBvsznYONVoNItH96ONDHga9ZaDsqcYBESpGGNz7MY3sxpKhx3tKTc2RsP1 IbPywhuKEUUwNyiwr4kcMPPjtvT9Ixl34C8td65CjtbliFl6BoesSxMctYiuhI0x z1+H4MyAnw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:46 2024 by rpki-client on console-ams.rpki-client.org