$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24534.roa File: AS24534.roa (raw, json) Hash identifier: LHlZRAnWuteNF061NazvhqQfCk4/KsK4LvPzJk0maQU= Subject key identifier: 57:AD:79:ED:67:67:BA:32:1A:F9:F6:19:48:85:CB:F4:5E:23:73:85 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2054474D2621D8C36D997D1AAF728C93AB894CBE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24534.roa Signing time: Mon 22 Jul 2024 11:06:06 +0000 ROA not before: Mon 22 Jul 2024 11:01:06 +0000 ROA not after: Mon 21 Jul 2025 11:06:06 +0000 asID: 24534 IP address blocks: 103.52.68.0/22 maxlen: 24 103.136.78.0/23 maxlen: 24 103.149.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:54:47:4d:26:21:d8:c3:6d:99:7d:1a:af:72:8c:93:ab:89:4c:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 22 11:01:06 2024 GMT Not After : Jul 21 11:06:06 2025 GMT Subject: CN=57AD79ED6767BA321AF9F6194885CBF45E237385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c4:ef:b2:8a:3d:4d:da:c7:89:84:bf:aa:0d: 2b:05:c5:22:b5:bc:dd:a6:ba:27:69:5e:a0:81:3e: 3f:4f:7d:93:47:27:03:cd:c3:34:25:34:8c:5d:68: ca:8a:f8:ab:25:5a:6f:0e:43:d6:f8:9d:c8:b1:20: a1:f3:ba:7d:ec:c6:bb:ba:8d:74:7f:f0:62:76:4c: 0b:b6:84:63:39:4b:9a:3a:02:ca:8c:5b:4b:df:78: ae:0d:ed:0f:c3:a6:8d:2b:8b:c6:4d:f3:24:9d:9c: 6b:70:61:c6:ab:72:59:67:f3:f5:0f:03:9c:2b:e1: c7:39:8e:15:29:a5:81:f0:f0:b6:15:2c:bc:44:56: 96:fb:9d:c0:f9:bb:5e:ad:b5:15:82:87:81:c6:7d: ce:91:d6:a9:c5:d2:ec:c1:0f:e9:35:d9:e6:19:00: 75:72:65:af:16:f7:36:56:33:e8:2f:e8:6b:ef:7d: 4f:34:6d:76:47:f5:6e:c3:26:dc:08:f8:08:f4:68: 15:dc:a1:71:37:3c:f8:70:d3:22:1d:76:6e:57:12: b0:6a:f9:ab:c5:2a:92:6f:51:1f:7b:df:78:f9:ac: f3:49:08:d4:57:ab:9c:8c:05:33:c1:b2:87:db:5d: ff:a9:04:f8:10:b2:e7:56:11:ee:16:a8:49:76:98: 55:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:AD:79:ED:67:67:BA:32:1A:F9:F6:19:48:85:CB:F4:5E:23:73:85 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.68.0/22 103.136.78.0/23 103.149.14.0/23 Signature Algorithm: sha256WithRSAEncryption 10:22:99:89:a9:e0:b3:80:5a:9a:78:fa:f0:f6:47:52:ca:16: b6:c8:4b:1b:2e:69:73:f5:2d:bc:ed:e8:48:4b:f8:aa:8a:03: 7c:14:9f:35:42:e6:42:d9:dc:2c:13:f2:e4:30:75:3d:20:89: c2:fd:9b:f5:cb:7b:3d:51:be:18:2b:c6:37:71:1b:68:51:cd: 2d:b5:83:f8:a4:63:fc:fa:c9:a4:e0:54:34:66:a3:0f:4b:21: d5:27:dd:54:fa:b6:d5:09:6c:c1:19:3d:bb:e5:ca:35:f5:78: 5d:d0:72:af:ad:30:6b:7a:b1:57:40:8f:af:d3:5e:46:c6:8c: 38:61:a3:74:5a:f2:91:ce:3d:ca:13:27:72:d1:fa:52:07:01: f5:7f:dc:e0:cc:23:06:9b:17:2b:a8:ed:99:1c:5e:16:77:84: 60:a1:9d:94:9b:27:ea:56:84:31:93:f8:da:21:9c:74:5e:cd: 94:44:b3:4f:f3:22:7c:3a:74:c6:c1:75:0d:70:54:ad:a0:92: 41:d9:70:a1:da:96:31:d6:dd:cd:e4:4e:80:e0:ab:f4:4c:21: 20:7a:f7:ca:5e:c8:4c:95:85:1b:86:e9:c9:15:a1:85:6d:89: 91:b0:ec:af:99:a6:72:63:1b:2a:c5:1e:a6:1f:77:11:ce:48: 8a:6d:55:c9 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUIFRHTSYh2MNtmX0ar3KMk6uJTL4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyMjExMDEwNloX DTI1MDcyMTExMDYwNlowMzExMC8GA1UEAxMoNTdBRDc5RUQ2NzY3QkEzMjFBRjlG NjE5NDg4NUNCRjQ1RTIzNzM4NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjE77KKPU3ax4mEv6oNKwXFIrW83aa6J2leoIE+P099k0cnA83DNCU0jF1o yor4qyVabw5D1vidyLEgofO6fezGu7qNdH/wYnZMC7aEYzlLmjoCyoxbS994rg3t D8OmjSuLxk3zJJ2ca3BhxqtyWWfz9Q8DnCvhxzmOFSmlgfDwthUsvERWlvudwPm7 Xq21FYKHgcZ9zpHWqcXS7MEP6TXZ5hkAdXJlrxb3NlYz6C/oa+99TzRtdkf1bsMm 3Aj4CPRoFdyhcTc8+HDTIh12blcSsGr5q8Uqkm9RH3vfePms80kI1FernIwFM8Gy h9td/6kE+BCy51YR7haoSXaYVdECAwEAAaOCAdswggHXMB0GA1UdDgQWBBRXrXnt Z2e6Mhr59hlIhcv0XiNzhTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzI0NTM0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZzREAwQBZ4hOAwQBZ5UOMA0GCSqGSIb3DQEBCwUAA4IBAQAQIpmJ qeCzgFqaePrw9kdSyha2yEsbLmlz9S287ehIS/iqigN8FJ81QuZC2dwsE/LkMHU9 IInC/Zv1y3s9Ub4YK8Y3cRtoUc0ttYP4pGP8+smk4FQ0ZqMPSyHVJ91U+rbVCWzB GT275co19Xhd0HKvrTBrerFXQI+v015Gxow4YaN0WvKRzj3KEydy0fpSBwH1f9zg zCMGmxcrqO2ZHF4Wd4RgoZ2UmyfqVoQxk/jaIZx0Xs2URLNP8yJ8OnTGwXUNcFSt oJJB2XCh2pYx1t3N5E6A4Kv0TCEgevfKXshMlYUbhunJFaGFbYmRsOyvmaZyYxsq xR6mH3cRzkiKbVXJ -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:58 2024 by rpki-client on console-fra.rpki-client.org