$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56236.roa File: AS56236.roa (raw, json) Hash identifier: Ukfkbh9/cbU5kW/DHslnzvMmmDk6de064GrwstIPVc0= Subject key identifier: DB:B5:89:6B:F7:F2:5F:7F:0A:68:7E:B5:A6:64:93:B1:DD:7F:D6:AC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 540C0FD9E8768C090127F2ACC9371195E7C402CB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56236.roa Signing time: Tue 09 Jan 2024 04:00:11 +0000 ROA not before: Tue 09 Jan 2024 03:55:11 +0000 ROA not after: Tue 07 Jan 2025 04:00:11 +0000 asID: 56236 IP address blocks: 103.3.70.0/24 maxlen: 24 2001:df5:3600::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:0c:0f:d9:e8:76:8c:09:01:27:f2:ac:c9:37:11:95:e7:c4:02:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:11 2024 GMT Not After : Jan 7 04:00:11 2025 GMT Subject: CN=DBB5896BF7F25F7F0A687EB5A66493B1DD7FD6AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f1:19:ed:4d:3a:92:17:3e:74:6b:f2:92:d2: ee:7c:7d:09:94:35:5e:86:1c:53:2d:c8:76:3f:49: f8:81:3c:cc:61:f9:ab:79:23:74:95:48:4c:18:67: d7:4f:f8:c9:85:82:7b:74:dd:e6:84:78:0e:23:d7: 6a:f3:c8:b9:55:ce:f8:f1:b6:e5:97:17:04:67:45: d1:83:6f:b3:76:d1:aa:5f:68:19:b5:3d:61:6c:73: 99:24:53:e3:bc:7e:d8:d1:29:3a:ff:4b:09:e7:f4: 11:74:a4:79:5e:ab:a4:d7:1b:3d:60:eb:e1:9c:a3: b5:f7:0c:bb:55:50:13:a6:0f:43:db:dc:54:2c:d6: 33:e4:b5:bf:3b:cf:a8:15:66:44:d4:6b:79:00:4b: 6a:45:11:4e:12:c0:e6:04:cd:48:3a:2f:2f:28:e8: 2c:36:d9:87:0e:f4:c6:7a:80:96:b2:7a:ce:d0:09: 16:07:3a:31:01:bd:13:2c:6a:44:ae:6c:1c:59:a2: 0f:35:5e:1b:94:53:40:5a:68:f5:8f:74:68:48:aa: 9a:40:77:f2:7b:3d:68:1b:34:a8:37:e3:5e:9b:0f: 6c:3f:2f:cb:38:7c:5a:df:0a:0f:24:91:a2:4a:fb: b2:54:18:da:4d:6f:3a:01:9b:e2:4a:80:e2:3b:01: fc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:B5:89:6B:F7:F2:5F:7F:0A:68:7E:B5:A6:64:93:B1:DD:7F:D6:AC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.3.70.0/24 IPv6: 2001:df5:3600::/48 Signature Algorithm: sha256WithRSAEncryption 75:89:d7:5b:36:08:31:50:45:93:86:dc:23:79:7b:6c:35:cb: 8d:07:43:12:ca:6b:33:69:f4:f5:18:2e:3c:2f:32:82:83:a7: 97:05:8e:e3:85:6b:11:a2:1b:17:28:73:4d:33:73:0d:88:86: ef:99:36:c9:17:a8:42:ef:ea:81:f1:3e:46:95:6f:a5:c7:cd: 7d:b6:86:0f:65:e8:19:c1:03:5f:74:58:be:0b:73:cc:f9:59: 3c:c2:11:a0:c5:ff:43:7a:7f:88:9f:42:d0:8b:fc:67:91:75: 2b:bf:2f:51:ba:84:fd:0f:0d:ff:f4:ee:c7:76:a4:1d:37:87: 8e:46:f8:34:b0:ff:65:62:2d:78:6c:dc:70:50:27:21:0a:78: ef:e8:75:12:6a:27:51:80:7a:6a:60:6d:2c:50:0d:f6:d2:7a: b9:df:de:d2:3a:59:ac:e6:b2:b8:d9:6a:5f:e7:b7:25:a3:b1: 22:b5:e5:7e:39:1a:14:0b:6e:17:28:6d:9a:4d:d5:df:10:bd: bb:21:53:ba:70:01:4a:65:3d:ec:41:43:a5:37:52:e1:2c:f6: 6d:49:c3:8f:1e:4c:c9:d4:5c:12:44:6e:d4:a2:4f:b6:3e:cb: e9:8c:cf:b7:a3:b6:d8:d7:3d:bf:06:e6:9a:53:46:ce:e6:eb: 27:70:20:8f -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgIUVAwP2eh2jAkBJ/KsyTcRlefEAsswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxMVoX DTI1MDEwNzA0MDAxMVowMzExMC8GA1UEAxMoREJCNTg5NkJGN0YyNUY3RjBBNjg3 RUI1QTY2NDkzQjFERDdGRDZBQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKfxGe1NOpIXPnRr8pLS7nx9CZQ1XoYcUy3Idj9J+IE8zGH5q3kjdJVITBhn 10/4yYWCe3Td5oR4DiPXavPIuVXO+PG25ZcXBGdF0YNvs3bRql9oGbU9YWxzmSRT 47x+2NEpOv9LCef0EXSkeV6rpNcbPWDr4ZyjtfcMu1VQE6YPQ9vcVCzWM+S1vzvP qBVmRNRreQBLakURThLA5gTNSDovLyjoLDbZhw70xnqAlrJ6ztAJFgc6MQG9Eyxq RK5sHFmiDzVeG5RTQFpo9Y90aEiqmkB38ns9aBs0qDfjXpsPbD8vyzh8Wt8KDySR okr7slQY2k1vOgGb4kqA4jsB/BUCAwEAAaOCAeAwggHcMB0GA1UdDgQWBBTbtYlr 9/JffwpofrWmZJOx3X/WrDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU2MjM2LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZwNGMA8EAgACMAkDBwAgAQ31NgAwDQYJKoZIhvcNAQELBQADggEB AHWJ11s2CDFQRZOG3CN5e2w1y40HQxLKazNp9PUYLjwvMoKDp5cFjuOFaxGiGxco c00zcw2Ihu+ZNskXqELv6oHxPkaVb6XHzX22hg9l6BnBA190WL4Lc8z5WTzCEaDF /0N6f4ifQtCL/GeRdSu/L1G6hP0PDf/07sd2pB03h45G+DSw/2ViLXhs3HBQJyEK eO/odRJqJ1GAempgbSxQDfbSernf3tI6WazmsrjZal/ntyWjsSK15X45GhQLbhco bZpN1d8QvbshU7pwAUplPexBQ6U3UuEs9m1Jw48eTMnUXBJEbtSiT7Y+y+mMz7ej ttjXPb8G5ppTRs7m6ydwII8= -----END CERTIFICATE-----Generated at Wed May 8 22:46:44 2024 by rpki-client on console-ams.rpki-client.org