$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24537.roa File: AS24537.roa (raw, json) Hash identifier: oQf4NFndFPgxJcKtHFf4moyaGU7Jue/GKs4v25diH1A= Subject key identifier: A0:62:B4:59:7F:DD:1D:85:60:26:DD:25:53:1E:59:73:84:22:15:DA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6E9C0299B2796D1E85CF210A193407DB7CD7224C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24537.roa Signing time: Tue 09 Jan 2024 04:00:02 +0000 ROA not before: Tue 09 Jan 2024 03:55:02 +0000 ROA not after: Tue 07 Jan 2025 04:00:02 +0000 asID: 24537 IP address blocks: 103.173.162.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:9c:02:99:b2:79:6d:1e:85:cf:21:0a:19:34:07:db:7c:d7:22:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:02 2024 GMT Not After : Jan 7 04:00:02 2025 GMT Subject: CN=A062B4597FDD1D856026DD25531E5973842215DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:43:dc:e7:6b:b5:74:52:60:04:0f:a9:ca:32: d1:f1:4b:43:1a:6c:85:a2:3a:a9:61:95:a1:cb:4e: f4:c6:2a:9c:cc:17:39:21:cc:b8:b8:72:aa:74:23: 54:9e:ef:f3:8b:65:7c:5a:e7:97:9b:a9:f6:2d:3c: e8:4d:b4:cc:28:6b:5d:05:9d:75:7a:a1:21:f4:19: f4:81:8f:16:47:e4:60:f4:ba:f5:97:d4:c6:48:d5: db:4d:e1:31:aa:4f:2d:32:53:25:fd:dc:92:88:7a: 8b:25:62:70:2f:7c:97:70:b4:7a:a4:0f:66:27:cc: f5:6f:96:52:d1:86:9a:78:13:02:48:4e:15:25:98: 37:10:48:87:cd:a4:7a:f2:83:75:e7:c0:f5:45:43: 87:5c:b0:bb:72:bf:3c:28:1f:82:df:8f:e6:f2:99: ca:af:51:83:e6:57:60:ef:ff:b7:ed:a4:ac:96:b5: c5:a8:9d:c8:ba:97:13:66:23:7a:0d:f2:21:50:ca: 59:55:d3:df:c2:6f:55:c4:19:b3:b8:00:3c:a1:12: 1f:a9:c2:a2:5b:28:5b:1e:d2:5f:51:77:23:59:2a: 28:7b:fd:40:bd:f6:05:1e:8d:fb:17:1e:26:81:13: 66:fe:7b:90:ac:18:62:8c:89:6a:0c:69:06:e8:fa: 12:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:62:B4:59:7F:DD:1D:85:60:26:DD:25:53:1E:59:73:84:22:15:DA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.162.0/23 Signature Algorithm: sha256WithRSAEncryption 96:df:be:ef:76:f3:cd:b7:da:a7:19:be:31:16:1b:ca:9d:1a: d2:e4:e0:b7:6d:ed:c7:d7:18:04:e7:de:a4:65:eb:d4:70:4c: a3:04:95:55:0a:36:95:89:c8:f6:e8:ac:ec:a1:54:bd:ae:e4: 00:0a:2e:37:ad:fb:40:ce:73:a7:53:e0:27:7a:99:4d:77:ba: c3:4b:79:ca:a7:e3:a1:a6:40:d6:f7:26:4d:5d:bf:3b:1e:1e: 4f:de:a1:c7:ba:df:37:52:59:8e:f2:b5:53:d3:d5:71:38:d0: 35:21:70:82:4b:7d:08:23:bb:b1:15:62:22:05:3f:2a:d5:4a: 95:87:60:7c:b9:4c:ea:e9:5e:f2:ba:d8:b0:92:45:09:a4:45: fd:67:44:12:56:46:c3:d3:71:da:25:6c:b9:96:d2:49:1a:dd: 8f:eb:a4:7b:29:04:4b:72:61:cd:cf:fb:9a:e3:87:18:74:91: e2:a4:bd:c1:34:23:fb:c4:c3:27:ea:0f:bb:0f:8a:57:08:c8: f2:65:36:58:1e:ac:1a:0b:c7:42:46:e2:e4:9d:eb:1e:b9:8b: 0b:7c:f4:94:c5:20:4c:c1:ae:7c:86:9f:82:b2:37:30:18:89: d6:96:57:a1:b3:3e:ce:c8:fb:77:67:4f:47:b9:e7:32:47:98: b0:7f:3f:17 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUbpwCmbJ5bR6FzyEKGTQH23zXIkwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwMloX DTI1MDEwNzA0MDAwMlowMzExMC8GA1UEAxMoQTA2MkI0NTk3RkREMUQ4NTYwMjZE RDI1NTMxRTU5NzM4NDIyMTVEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1D3OdrtXRSYAQPqcoy0fFLQxpshaI6qWGVoctO9MYqnMwXOSHMuLhyqnQj VJ7v84tlfFrnl5up9i086E20zChrXQWddXqhIfQZ9IGPFkfkYPS69ZfUxkjV203h MapPLTJTJf3ckoh6iyVicC98l3C0eqQPZifM9W+WUtGGmngTAkhOFSWYNxBIh82k evKDdefA9UVDh1ywu3K/PCgfgt+P5vKZyq9Rg+ZXYO//t+2krJa1xaidyLqXE2Yj eg3yIVDKWVXT38JvVcQZs7gAPKESH6nColsoWx7SX1F3I1kqKHv9QL32BR6N+xce JoETZv57kKwYYoyJagxpBuj6EvECAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSgYrRZ f90dhWAm3SVTHllzhCIV2jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzI0NTM3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ62iMA0GCSqGSIb3DQEBCwUAA4IBAQCW377vdvPNt9qnGb4xFhvK nRrS5OC3be3H1xgE596kZevUcEyjBJVVCjaVicj26KzsoVS9ruQACi43rftAznOn U+AneplNd7rDS3nKp+OhpkDW9yZNXb87Hh5P3qHHut83UlmO8rVT09VxONA1IXCC S30II7uxFWIiBT8q1UqVh2B8uUzq6V7yutiwkkUJpEX9Z0QSVkbD03HaJWy5ltJJ Gt2P66R7KQRLcmHNz/ua44cYdJHipL3BNCP7xMMn6g+7D4pXCMjyZTZYHqwaC8dC RuLkneseuYsLfPSUxSBMwa58hp+CsjcwGInWllehsz7OyPt3Z09HuecyR5iwfz8X -----END CERTIFICATE-----Generated at Wed May 8 07:45:28 2024 by rpki-client on console-ams.rpki-client.org