$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56235.roa File: AS56235.roa (raw, json) Hash identifier: 4VsClXRTDcKBy7Nk1rOBImwcu+JaxSq4WZ+DjLmYHgA= Subject key identifier: 8C:52:10:27:AA:7E:B8:FB:33:57:C4:CF:3B:97:03:EC:BA:A8:97:5F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3717F926039E433BA3A42AD7DEF2C9E4A1C66502 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56235.roa Signing time: Tue 09 Jan 2024 04:00:14 +0000 ROA not before: Tue 09 Jan 2024 03:55:14 +0000 ROA not after: Tue 07 Jan 2025 04:00:14 +0000 asID: 56235 IP address blocks: 103.3.44.0/24 maxlen: 24 103.3.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:17:f9:26:03:9e:43:3b:a3:a4:2a:d7:de:f2:c9:e4:a1:c6:65:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:14 2024 GMT Not After : Jan 7 04:00:14 2025 GMT Subject: CN=8C521027AA7EB8FB3357C4CF3B9703ECBAA8975F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:84:b2:95:d6:ca:08:1d:43:e3:01:61:1b:09: fc:99:d3:2b:d2:1a:23:6e:2e:2c:09:d6:3b:dc:08: 35:3b:f9:5f:66:29:f5:73:3f:c6:36:13:e4:b0:aa: 8d:d3:65:41:45:32:be:ac:33:8c:90:38:c8:05:f5: 8f:3b:d2:0d:1c:7b:ba:79:fe:10:67:97:47:6c:d8: b6:49:3a:28:81:71:2a:54:fb:22:0f:83:49:e6:8b: da:a6:d9:2f:57:e5:90:42:4a:b6:b7:d1:13:64:4c: 89:87:b8:e9:8b:90:92:4c:8b:6c:0f:1b:c8:fb:4d: 74:70:cb:06:13:5f:64:bc:81:98:d8:97:a2:02:17: 14:32:76:cb:9d:6b:72:be:06:41:aa:8e:53:de:1e: e5:1c:74:96:ea:ee:69:78:b3:77:99:21:e5:b1:2e: 71:a6:39:d1:7d:fd:09:9d:10:90:bf:20:e8:a6:52: 96:09:b8:c5:f8:63:e1:bb:9c:4d:19:6e:56:2c:34: 82:0f:16:ed:8d:48:58:95:c2:f5:01:86:65:07:86: a7:6d:bc:48:f5:f4:0f:36:a8:cb:58:5e:91:24:dc: 6f:87:ec:de:39:51:66:71:5e:df:85:b2:34:60:87: 52:be:10:c4:12:3e:de:4a:1f:5b:35:87:c7:93:e3: 26:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:52:10:27:AA:7E:B8:FB:33:57:C4:CF:3B:97:03:EC:BA:A8:97:5F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.3.44.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:aa:53:7e:81:2d:d7:de:62:04:ab:2f:6a:6e:bc:95:e2:42: 7d:5f:c0:9b:0c:ee:d7:f7:08:f5:02:13:0f:6b:cd:22:81:1a: 4c:52:9e:42:b6:2e:23:fc:1e:f0:61:89:db:4b:17:cc:f2:6a: 32:95:17:68:39:17:f4:19:7d:94:94:a2:cb:90:41:e6:96:49: c8:8d:78:95:14:b4:c7:0c:b0:55:49:b6:c3:d9:7e:cb:1b:e0: 7b:15:f8:f1:fe:ce:6c:fc:87:51:11:a7:db:e6:9a:cc:19:40: 05:52:61:2d:d1:91:8f:58:33:7c:c0:56:cd:dc:eb:9d:c6:11: 2f:0e:52:85:e2:2e:17:b1:01:68:18:17:28:f6:f6:c0:17:23: 64:3d:e3:8b:18:e5:6b:dc:f2:80:e6:e5:9f:67:8e:90:22:78: c0:56:93:6f:70:c9:a4:91:b5:92:9f:48:3f:48:ec:ff:43:76: b3:de:9f:ea:49:2d:b5:e1:86:be:d3:5c:ce:24:73:c1:2f:f9: 14:e2:a0:42:11:fd:81:a8:28:0c:00:89:ec:6e:6c:af:58:4a: ce:5c:01:77:c1:da:20:db:e7:60:e7:2f:d3:69:7c:c9:f5:c8: a0:12:8d:82:ad:61:7f:c9:e5:44:c9:a5:f4:d3:06:64:2e:be: ea:4b:59:32 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUNxf5JgOeQzujpCrX3vLJ5KHGZQIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxNFoX DTI1MDEwNzA0MDAxNFowMzExMC8GA1UEAxMoOEM1MjEwMjdBQTdFQjhGQjMzNTdD NENGM0I5NzAzRUNCQUE4OTc1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL6EspXWyggdQ+MBYRsJ/JnTK9IaI24uLAnWO9wINTv5X2Yp9XM/xjYT5LCq jdNlQUUyvqwzjJA4yAX1jzvSDRx7unn+EGeXR2zYtkk6KIFxKlT7Ig+DSeaL2qbZ L1flkEJKtrfRE2RMiYe46YuQkkyLbA8byPtNdHDLBhNfZLyBmNiXogIXFDJ2y51r cr4GQaqOU94e5Rx0luruaXizd5kh5bEucaY50X39CZ0QkL8g6KZSlgm4xfhj4buc TRluViw0gg8W7Y1IWJXC9QGGZQeGp228SPX0Dzaoy1hekSTcb4fs3jlRZnFe34Wy NGCHUr4QxBI+3kofWzWHx5PjJrkCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSMUhAn qn64+zNXxM87lwPsuqiXXzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU2MjM1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZwMsMA0GCSqGSIb3DQEBCwUAA4IBAQCbqlN+gS3X3mIEqy9qbryV 4kJ9X8CbDO7X9wj1AhMPa80igRpMUp5Cti4j/B7wYYnbSxfM8moylRdoORf0GX2U lKLLkEHmlknIjXiVFLTHDLBVSbbD2X7LG+B7Ffjx/s5s/IdREafb5prMGUAFUmEt 0ZGPWDN8wFbN3OudxhEvDlKF4i4XsQFoGBco9vbAFyNkPeOLGOVr3PKA5uWfZ46Q InjAVpNvcMmkkbWSn0g/SOz/Q3az3p/qSS214Ya+01zOJHPBL/kU4qBCEf2BqCgM AInsbmyvWErOXAF3wdog2+dg5y/TaXzJ9cigEo2CrWF/yeVEyaX00wZkLr7qS1ky -----END CERTIFICATE-----Generated at Sun May 5 09:36:58 2024 by rpki-client on console-ams.rpki-client.org