$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55666.roa File: AS55666.roa (raw, json) Hash identifier: +zbwniVUnkyWLGAtfXQKIgmCBCfH68cHQpKfBmmOUU8= Subject key identifier: E2:A9:B3:0F:A4:F6:33:BA:3B:00:B3:71:AA:06:F2:42:B4:43:6E:64 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 73EE051F1BA87574B09389CC91A0A7358E2AA1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55666.roa Signing time: Fri 01 Mar 2024 07:00:00 +0000 ROA not before: Fri 01 Mar 2024 06:55:00 +0000 ROA not after: Fri 28 Feb 2025 07:00:00 +0000 asID: 55666 IP address blocks: 103.4.54.0/24 maxlen: 24 202.46.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ee:05:1f:1b:a8:75:74:b0:93:89:cc:91:a0:a7:35:8e:2a:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 1 06:55:00 2024 GMT Not After : Feb 28 07:00:00 2025 GMT Subject: CN=E2A9B30FA4F633BA3B00B371AA06F242B4436E64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:88:60:37:c8:5f:b0:f5:ce:42:77:8a:28:2a: 65:39:c5:ce:a9:0c:da:fe:08:da:f7:11:60:7e:63: 83:8c:ea:b5:86:81:6f:8d:67:4e:52:ff:cf:c7:48: 10:bb:45:10:51:d5:cc:60:d2:03:a8:58:b5:40:6b: 25:35:c1:9e:62:55:81:ce:b2:46:73:12:73:80:ab: d5:ec:29:0a:f7:af:80:db:11:11:99:d1:85:f9:24: 14:27:0f:8f:5a:97:06:ea:fc:30:27:d4:ec:44:4f: 56:2d:c3:75:18:8a:15:28:14:2d:38:78:30:48:40: 89:e1:b9:0e:5f:01:68:1b:8b:e7:f3:d1:8e:45:fa: 81:2b:da:ad:c1:dd:9c:6b:f7:12:b9:00:c7:81:61: 5c:ca:9c:91:6a:69:87:86:22:e9:81:84:77:38:c3: ce:5b:46:b5:db:8b:73:80:4c:45:ec:2c:e7:49:74: 7d:32:97:49:02:e5:11:45:8c:49:36:9f:f4:c9:4c: 8c:74:8a:b4:f8:22:55:ff:2d:73:fb:a3:d9:7c:cc: d7:ad:be:1a:f7:8b:4c:18:bc:b1:06:63:e5:91:2a: f4:98:97:11:61:02:ab:14:df:3e:11:a1:eb:4e:bd: 32:5f:ad:9d:7e:e8:6e:75:bc:a7:5f:a0:23:d1:12: 00:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:A9:B3:0F:A4:F6:33:BA:3B:00:B3:71:AA:06:F2:42:B4:43:6E:64 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55666.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.54.0/24 202.46.148.0/22 Signature Algorithm: sha256WithRSAEncryption 39:92:f7:c1:27:0d:0e:6a:34:a4:bd:ff:2f:a7:fa:5f:91:e3: 6e:14:5c:2e:26:03:bf:de:b1:6c:a5:f5:b3:fd:f3:08:0f:58: 72:64:4a:49:5f:aa:29:2f:6f:a8:ab:19:93:d2:22:64:8b:b5: cc:6d:c7:6a:aa:cd:e3:0a:dd:53:99:8d:8c:3b:b3:91:b1:da: 9a:2b:a2:9a:fd:7b:81:af:d9:ac:1f:7b:0a:5e:b3:1f:75:81: 87:b3:df:96:16:f3:dd:e1:d2:85:7e:a2:55:bf:06:83:11:c6: 36:16:0e:dd:c4:93:34:c8:4a:e2:84:30:89:65:2b:fe:84:a5: 21:b1:bf:48:d1:fa:a5:a4:ad:57:e0:27:97:4a:dc:3f:28:c9: 77:fa:6e:1b:45:1b:d8:87:93:58:05:6c:55:7b:e9:63:37:82: 48:cc:bc:9f:9d:cb:64:1c:65:19:83:9b:b0:a1:30:89:7d:d6: d4:5c:0c:77:17:44:6c:8c:d3:6d:fe:07:ab:f1:b0:66:dc:85: 39:04:fc:80:40:64:7f:0b:84:88:a4:00:c2:00:03:d1:c3:a7: 4e:5e:2e:48:3a:5c:9b:91:3d:3d:8a:56:46:1c:20:31:06:fa: 16:23:be:a6:ff:42:f3:21:a1:2b:3a:96:eb:60:7f:c7:d9:7e: b7:8b:63:b6 -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgITc+4FHxuodXSwk4nMkaCnNY4qoTANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDEwxBOTE4NjIxNDAwMDAxMTAvBgNVBAUTKEJBOEY3N0QyMUU1 OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIwHhcNMjQwMzAxMDY1NTAwWhcN MjUwMjI4MDcwMDAwWjAzMTEwLwYDVQQDEyhFMkE5QjMwRkE0RjYzM0JBM0IwMEIz NzFBQTA2RjI0MkI0NDM2RTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YhgN8hfsPXOQneKKCplOcXOqQza/gja9xFgfmODjOq1hoFvjWdOUv/Px0gQ u0UQUdXMYNIDqFi1QGslNcGeYlWBzrJGcxJzgKvV7CkK96+A2xERmdGF+SQUJw+P WpcG6vwwJ9TsRE9WLcN1GIoVKBQtOHgwSECJ4bkOXwFoG4vn89GORfqBK9qtwd2c a/cSuQDHgWFcypyRammHhiLpgYR3OMPOW0a124tzgExF7CznSXR9MpdJAuURRYxJ Np/0yUyMdIq0+CJV/y1z+6PZfMzXrb4a94tMGLyxBmPlkSr0mJcRYQKrFN8+EaHr Tr0yX62dfuhudbynX6Aj0RIAiQIDAQABo4IB1TCCAdEwHQYDVR0OBBYEFOKpsw+k 9jO6OwCzcaoG8kK0Q25kMB8GA1UdIwQYMBaAFLqPd9IeWP6ck5prcOJYVhfhgzdr MA4GA1UdDwEB/wQEAwIHgDBpBgNVHR8EYjBgMF6gXKBahlhyc3luYzovL3JlcG8t cnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8yL0JBOEY3N0QyMUU1OEZFOUM5 MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggr BgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdF RjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3VvOTMwaDVZX3B5VG1tdHc0bGhX Ri1HRE4ycy5jZXIwUwYIKwYBBQUHAQsERzBFMEMGCCsGAQUFBzALhjdyc3luYzov L3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8yL0FTNTU2NjYucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBABnBDYDBALKLpQwDQYJKoZIhvcNAQELBQADggEBADmS98EnDQ5qNKS9 /y+n+l+R424UXC4mA7/esWyl9bP98wgPWHJkSklfqikvb6irGZPSImSLtcxtx2qq zeMK3VOZjYw7s5Gx2poropr9e4Gv2awfewpesx91gYez35YW893h0oV+olW/BoMR xjYWDt3EkzTISuKEMIllK/6EpSGxv0jR+qWkrVfgJ5dK3D8oyXf6bhtFG9iHk1gF bFV76WM3gkjMvJ+dy2QcZRmDm7ChMIl91tRcDHcXRGyM023+B6vxsGbchTkE/IBA ZH8LhIikAMIAA9HDp05eLkg6XJuRPT2KVkYcIDEG+hYjvqb/QvMhoSs6lutgf8fZ freLY7Y= -----END CERTIFICATE-----Generated at Fri May 3 03:08:32 2024 by rpki-client on console-ams.rpki-client.org