$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS397763.roa File: AS397763.roa (raw, json) Hash identifier: Pyp4ECuGDD0Ljj4tNTTjWBLYqvNVI/KmiJET851Psts= Subject key identifier: 5D:6C:44:15:33:55:78:58:6C:05:28:37:2F:21:68:6E:83:E1:52:D8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5599F472580448CF376578C5ABAD5CD229C1B83E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS397763.roa Signing time: Mon 12 Feb 2024 02:08:41 +0000 ROA not before: Mon 12 Feb 2024 02:03:41 +0000 ROA not after: Mon 10 Feb 2025 02:08:41 +0000 asID: 397763 IP address blocks: 103.114.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:99:f4:72:58:04:48:cf:37:65:78:c5:ab:ad:5c:d2:29:c1:b8:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 12 02:03:41 2024 GMT Not After : Feb 10 02:08:41 2025 GMT Subject: CN=5D6C4415335578586C0528372F21686E83E152D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b2:01:69:65:8d:4b:27:86:76:a9:01:94:fe: 2d:11:a9:29:7a:6e:73:b3:0d:72:83:f4:1f:43:c9: 46:ee:1e:20:8c:a8:d0:06:1b:d1:38:5a:24:cd:e3: 45:1e:71:b9:95:4c:84:47:28:62:a4:ff:09:96:48: 1a:10:22:79:b5:9a:c2:da:e1:b4:7e:69:60:ef:15: e2:eb:4b:6a:c0:07:4d:2b:df:ff:95:18:cb:1e:eb: 07:20:cd:7a:0c:72:5a:fb:17:97:0a:6a:d6:6f:0a: f3:53:5a:2f:96:f4:86:1b:ff:bf:86:3b:cc:a8:38: e1:00:23:fb:78:a7:7e:ea:01:2d:1e:a5:41:e7:f7: be:64:6f:02:3a:35:4d:3c:5b:1d:8e:b6:72:58:7c: a4:c3:3a:59:92:df:ae:4a:df:7b:db:2f:23:a3:d9: b7:c6:23:b9:96:c4:1f:ef:ad:a3:51:0b:20:3b:58: 2e:9b:e3:74:86:79:8a:c0:c6:13:22:49:bc:4e:a8: f2:dc:7f:53:06:87:61:f5:cc:ee:f0:fd:13:85:ed: 4b:9a:ea:38:9d:ee:77:6b:c3:56:93:0e:3f:99:40: 32:f2:a2:4a:1f:04:9f:28:81:e8:85:b0:82:8b:15: a1:56:a9:b2:83:20:39:33:65:b7:44:66:c2:e8:a8: aa:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:6C:44:15:33:55:78:58:6C:05:28:37:2F:21:68:6E:83:E1:52:D8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS397763.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.114.116.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:fc:4b:88:cb:a8:2f:82:a0:d2:92:9c:bb:71:a9:d4:e6:69: 47:e0:25:c9:d1:c7:c1:40:10:82:49:a0:20:fb:ae:e3:f5:a6: 46:2d:c5:f9:5b:b1:2a:9e:2c:ab:d0:7d:9b:3e:10:80:18:5b: 1a:02:8f:82:d9:e8:27:c3:60:1b:bd:3d:a7:d2:67:29:4c:97: 53:7a:26:e6:17:b0:51:15:dc:fa:d4:89:45:b4:4d:ee:de:ae: e9:cc:8f:85:3c:da:35:ac:34:8c:47:e6:34:d0:98:76:41:eb: 57:cb:3d:17:51:74:36:99:78:e3:16:1a:a4:08:e5:19:7d:b6: 75:4b:f2:ba:85:61:76:a3:82:36:52:4b:df:b2:34:d0:8e:c6: d0:8e:f0:71:18:cf:df:cd:15:05:ff:08:e2:a0:0e:5c:98:0d: 38:d3:d9:e7:67:94:8c:88:54:7e:0c:47:91:5f:ea:8b:3b:e1: 33:20:89:6c:7d:56:b9:07:0a:8c:39:de:2f:e1:34:a1:24:7d: 40:51:59:cd:59:9d:0e:fc:0e:78:cb:27:06:e2:53:9d:0f:af: f7:29:ba:6a:2a:4e:c8:26:63:ab:59:9b:ca:92:a5:2a:9b:75: 88:fa:bc:9c:10:d5:c0:46:b2:2e:5d:95:a7:0e:d6:33:35:71: 62:5c:1b:68 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVZn0clgESM83ZXjFq61c0inBuD4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIxMjAyMDM0MVoX DTI1MDIxMDAyMDg0MVowMzExMC8GA1UEAxMoNUQ2QzQ0MTUzMzU1Nzg1ODZDMDUy ODM3MkYyMTY4NkU4M0UxNTJEODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANWyAWlljUsnhnapAZT+LRGpKXpuc7MNcoP0H0PJRu4eIIyo0AYb0ThaJM3j RR5xuZVMhEcoYqT/CZZIGhAiebWawtrhtH5pYO8V4utLasAHTSvf/5UYyx7rByDN egxyWvsXlwpq1m8K81NaL5b0hhv/v4Y7zKg44QAj+3infuoBLR6lQef3vmRvAjo1 TTxbHY62clh8pMM6WZLfrkrfe9svI6PZt8YjuZbEH++to1ELIDtYLpvjdIZ5isDG EyJJvE6o8tx/UwaHYfXM7vD9E4XtS5rqOJ3ud2vDVpMOP5lAMvKiSh8EnyiB6IWw gosVoVapsoMgOTNlt0RmwuioqqMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRdbEQV M1V4WGwFKDcvIWhug+FS2DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM5Nzc2My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdydDANBgkqhkiG9w0BAQsFAAOCAQEAa/xLiMuoL4Kg0pKcu3Gp 1OZpR+AlydHHwUAQgkmgIPuu4/WmRi3F+VuxKp4sq9B9mz4QgBhbGgKPgtnoJ8Ng G709p9JnKUyXU3om5hewURXc+tSJRbRN7t6u6cyPhTzaNaw0jEfmNNCYdkHrV8s9 F1F0Npl44xYapAjlGX22dUvyuoVhdqOCNlJL37I00I7G0I7wcRjP380VBf8I4qAO XJgNONPZ52eUjIhUfgxHkV/qizvhMyCJbH1WuQcKjDneL+E0oSR9QFFZzVmdDvwO eMsnBuJTnQ+v9ym6aipOyCZjq1mbypKlKpt1iPq8nBDVwEayLl2Vpw7WMzVxYlwb aA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:58 2024 by rpki-client on console-fra.rpki-client.org