$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55672.roa File: AS55672.roa (raw, json) Hash identifier: YN+18YVsNccm3dei9Ze+IaJd+1aALAR/M8ImFSWwiXw= Subject key identifier: 2A:AC:B5:4F:59:6A:C0:BA:8F:33:D1:13:A7:9A:EF:93:89:3C:19:41 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0D0FAA5B4E4E6FB3E0EC228050E95A96E55E4692 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55672.roa Signing time: Tue 09 Jan 2024 04:00:24 +0000 ROA not before: Tue 09 Jan 2024 03:55:24 +0000 ROA not after: Tue 07 Jan 2025 04:00:24 +0000 asID: 55672 IP address blocks: 103.162.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:0f:aa:5b:4e:4e:6f:b3:e0:ec:22:80:50:e9:5a:96:e5:5e:46:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:24 2024 GMT Not After : Jan 7 04:00:24 2025 GMT Subject: CN=2AACB54F596AC0BA8F33D113A79AEF93893C1941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:93:f1:14:e0:88:35:ed:e4:01:21:af:67:08: 17:46:ed:10:b2:3e:a6:9b:0e:3b:d3:76:56:32:ca: 04:c3:54:43:09:76:e3:65:9e:7d:39:d5:7e:7b:f6: 3e:e7:4d:1c:bb:7b:2c:b1:dd:8d:d0:fb:65:d9:fb: 82:2a:03:3e:41:b6:01:c8:d6:e5:64:ab:5e:f0:52: b5:8d:60:d5:82:c0:18:94:18:9a:0b:72:a7:56:1c: 0a:54:7a:34:4b:cd:ba:90:90:cb:40:5e:cc:6f:16: 51:59:48:7c:6f:a1:24:2d:92:04:51:20:1a:76:50: 9b:60:d0:0d:e0:86:f4:f8:c2:01:68:24:7d:8d:a6: dd:6f:39:39:93:f0:93:b1:35:3f:a0:a8:e8:56:71: ab:f6:ad:51:6b:6c:af:7f:f8:83:e5:49:35:d3:a8: c5:02:55:de:68:56:74:23:e9:9d:73:78:00:92:5f: 4c:96:e2:39:d5:45:7d:6d:52:da:34:17:fb:52:03: 63:b0:f3:ec:2a:3c:df:cd:7e:2a:91:cd:bd:25:c1: 14:22:7f:18:67:55:74:6f:51:e6:d0:1c:a3:d9:53: d7:c1:0e:4a:d3:bc:0a:d0:b8:f8:4f:d5:05:d5:72: d1:f9:be:e9:29:e6:f2:e7:49:e7:c7:4d:ab:38:85: 6b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:AC:B5:4F:59:6A:C0:BA:8F:33:D1:13:A7:9A:EF:93:89:3C:19:41 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55672.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.251.0/24 Signature Algorithm: sha256WithRSAEncryption 55:92:14:e8:a8:54:12:80:70:da:d0:4d:49:1a:8d:0c:32:cc: c6:59:08:86:b0:b4:1b:ed:49:75:ed:b5:01:d1:62:ea:b0:9e: 9f:88:e6:cb:ef:45:6d:f5:b1:8b:ad:a6:fa:1e:12:98:fc:c6: a2:bb:ae:35:c1:64:1f:d2:97:12:8e:3d:43:e2:95:e6:1c:e6: 35:0c:5c:8b:27:a6:6a:39:05:4b:7a:11:ae:6f:c4:d4:ae:35: 5d:1a:fd:14:30:59:09:be:5f:92:56:fd:31:fb:fc:1e:ba:a6: dc:5e:64:f8:7b:53:e4:a8:b2:bb:84:2a:9e:92:89:01:0c:b7: 9f:38:f0:f1:f3:5c:69:6f:2d:3c:6d:45:f1:17:05:f3:e5:a8: 94:95:69:03:8f:0d:72:e5:40:cd:cf:6f:17:5b:a7:10:a3:5d: 2f:18:03:4f:38:48:80:31:ce:20:ec:11:39:f2:bf:6a:9c:ce: 3d:59:9b:cd:7e:7a:e7:da:d5:36:83:c9:cc:3c:e9:2d:4f:93: b9:94:86:b1:29:28:f0:c4:74:19:5d:6a:e5:df:52:e2:26:21: e9:ea:6b:c4:ec:73:c6:8d:a9:70:c2:ad:02:de:ce:50:52:6b: 10:bb:c8:90:7b:5e:fb:c6:3f:7e:98:70:6e:36:aa:62:d0:2f: 49:37:e6:df -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUDQ+qW05Ob7Pg7CKAUOlaluVeRpIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyNFoX DTI1MDEwNzA0MDAyNFowMzExMC8GA1UEAxMoMkFBQ0I1NEY1OTZBQzBCQThGMzNE MTEzQTc5QUVGOTM4OTNDMTk0MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANOT8RTgiDXt5AEhr2cIF0btELI+ppsOO9N2VjLKBMNUQwl242WefTnVfnv2 PudNHLt7LLHdjdD7Zdn7gioDPkG2AcjW5WSrXvBStY1g1YLAGJQYmgtyp1YcClR6 NEvNupCQy0BezG8WUVlIfG+hJC2SBFEgGnZQm2DQDeCG9PjCAWgkfY2m3W85OZPw k7E1P6Co6FZxq/atUWtsr3/4g+VJNdOoxQJV3mhWdCPpnXN4AJJfTJbiOdVFfW1S 2jQX+1IDY7Dz7Co8381+KpHNvSXBFCJ/GGdVdG9R5tAco9lT18EOStO8CtC4+E/V BdVy0fm+6Snm8udJ58dNqziFa5ECAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQqrLVP WWrAuo8z0ROnmu+TiTwZQTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU1NjcyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6L7MA0GCSqGSIb3DQEBCwUAA4IBAQBVkhToqFQSgHDa0E1JGo0M MszGWQiGsLQb7Ul17bUB0WLqsJ6fiObL70Vt9bGLrab6HhKY/Maiu641wWQf0pcS jj1D4pXmHOY1DFyLJ6ZqOQVLehGub8TUrjVdGv0UMFkJvl+SVv0x+/weuqbcXmT4 e1PkqLK7hCqekokBDLefOPDx81xpby08bUXxFwXz5aiUlWkDjw1y5UDNz28XW6cQ o10vGANPOEiAMc4g7BE58r9qnM49WZvNfnrn2tU2g8nMPOktT5O5lIaxKSjwxHQZ XWrl31LiJiHp6mvE7HPGjalwwq0C3s5QUmsQu8iQe177xj9+mHBuNqpi0C9JN+bf -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:58 2024 by rpki-client on console-fra.rpki-client.org