$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56237.roa File: AS56237.roa (raw, json) Hash identifier: GseMJ9rGuFoNeQQoFDNafFjcjhSNrefUHbZi0XLj5+U= Subject key identifier: F3:17:56:9C:12:BF:34:E2:26:BC:E0:D6:07:97:58:47:79:75:C9:AE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 46B0207725117305E362BDF0A849F4821011BB2F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56237.roa Signing time: Thu 10 Oct 2024 07:00:00 +0000 ROA not before: Thu 10 Oct 2024 06:55:00 +0000 ROA not after: Thu 09 Oct 2025 07:00:00 +0000 asID: 56237 IP address blocks: 121.50.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:b0:20:77:25:11:73:05:e3:62:bd:f0:a8:49:f4:82:10:11:bb:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 10 06:55:00 2024 GMT Not After : Oct 9 07:00:00 2025 GMT Subject: CN=F317569C12BF34E226BCE0D6079758477975C9AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d1:01:83:ee:33:a6:37:f5:d0:b1:af:62:0b: c3:eb:fe:79:a0:21:30:fa:e1:91:97:89:0c:e2:17: b9:1d:10:7e:23:7a:89:1f:b8:11:73:cc:83:85:3c: ff:ed:d5:4d:93:03:80:c9:b6:13:97:6d:9d:12:2b: a8:7a:43:93:93:78:26:37:fc:1a:71:12:5f:80:df: f0:6d:5b:4c:d0:d9:b1:80:56:97:7d:bb:5b:8b:ff: 20:94:5d:3e:54:b1:39:9a:e7:ba:93:e1:a7:15:ec: a7:bf:cc:70:a0:fc:32:13:48:88:63:5b:64:e1:80: c1:a8:df:ef:0f:62:e7:9f:f9:ca:dc:64:52:aa:6e: 1b:dd:94:71:71:2d:6c:08:5f:96:6f:4b:e2:51:3c: e1:5e:b2:b1:b2:64:d8:93:75:60:16:c3:e9:cd:51: e8:5b:a4:b4:31:5a:b6:20:d5:f6:1f:e6:af:02:88: cb:29:a4:49:e4:c0:14:5d:be:a5:73:bc:b2:83:7e: 34:dc:41:87:b4:d8:d6:a3:99:7b:dd:0f:45:53:4d: 2a:dc:cd:17:4c:43:69:5b:04:59:b8:52:cc:60:a2: 72:2e:d2:9f:52:1a:cd:82:27:40:0b:a2:17:03:56: 7c:92:d9:9a:07:5c:fb:48:e5:5f:a8:90:ec:ba:de: c8:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:17:56:9C:12:BF:34:E2:26:BC:E0:D6:07:97:58:47:79:75:C9:AE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.50.32.0/24 Signature Algorithm: sha256WithRSAEncryption 09:cc:4a:69:40:d7:0e:08:16:f5:25:95:a1:73:89:b3:a0:a6: b5:b4:76:bf:d9:6a:c2:f4:22:bc:ef:24:2b:73:7a:36:99:0c: ef:33:fb:46:09:bd:41:95:ad:6e:6c:97:1d:35:2f:de:72:8f: 16:1a:12:e4:27:56:99:92:ad:d3:9f:16:89:47:ee:94:73:eb: 3c:14:db:4f:ee:fa:e9:1b:fa:7e:6a:84:00:71:82:87:dd:f4: 9f:76:98:ba:cb:03:3f:1e:1f:cf:9a:ec:62:42:11:80:36:bc: 7a:c0:be:2e:cb:95:79:46:74:28:6f:53:c4:95:c3:52:0c:ca: f1:b2:e2:e7:6b:3b:42:a4:f4:91:cc:bb:6e:02:98:38:38:d6: 44:68:97:e5:9c:38:35:5e:91:1e:2e:cc:e6:63:56:2d:f2:5b: a5:fd:59:96:f0:07:46:66:e9:17:70:10:fb:cf:aa:42:3f:7a: eb:7f:f4:35:9e:b7:d2:5e:69:c2:59:31:ff:58:8e:6e:07:17: f1:eb:2e:d4:72:b6:9c:fc:11:f8:5f:9e:be:f3:47:2f:68:71: f7:d0:17:c6:f7:3e:3f:82:8b:14:0d:a6:45:22:46:f6:23:87: b6:c8:c7:ff:ad:b5:cc:a7:95:96:79:19:5b:0c:98:6b:41:ee: 01:34:c6:53 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIURrAgdyURcwXjYr3wqEn0ghARuy8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxMDA2NTUwMFoX DTI1MTAwOTA3MDAwMFowMzExMC8GA1UEAxMoRjMxNzU2OUMxMkJGMzRFMjI2QkNF MEQ2MDc5NzU4NDc3OTc1QzlBRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOTRAYPuM6Y39dCxr2ILw+v+eaAhMPrhkZeJDOIXuR0QfiN6iR+4EXPMg4U8 /+3VTZMDgMm2E5dtnRIrqHpDk5N4Jjf8GnESX4Df8G1bTNDZsYBWl327W4v/IJRd PlSxOZrnupPhpxXsp7/McKD8MhNIiGNbZOGAwajf7w9i55/5ytxkUqpuG92UcXEt bAhflm9L4lE84V6ysbJk2JN1YBbD6c1R6FuktDFatiDV9h/mrwKIyymkSeTAFF2+ pXO8soN+NNxBh7TY1qOZe90PRVNNKtzNF0xDaVsEWbhSzGCici7Sn1IazYInQAui FwNWfJLZmgdc+0jlX6iQ7LreyNcCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBTzF1ac Er804ia84NYHl1hHeXXJrjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU2MjM3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAeTIgMA0GCSqGSIb3DQEBCwUAA4IBAQAJzEppQNcOCBb1JZWhc4mz oKa1tHa/2WrC9CK87yQrc3o2mQzvM/tGCb1Bla1ubJcdNS/eco8WGhLkJ1aZkq3T nxaJR+6Uc+s8FNtP7vrpG/p+aoQAcYKH3fSfdpi6ywM/Hh/PmuxiQhGANrx6wL4u y5V5RnQob1PElcNSDMrxsuLnaztCpPSRzLtuApg4ONZEaJflnDg1XpEeLszmY1Yt 8lul/VmW8AdGZukXcBD7z6pCP3rrf/Q1nrfSXmnCWTH/WI5uBxfx6y7Ucrac/BH4 X56+80cvaHH30BfG9z4/gosUDaZFIkb2I4e2yMf/rbXMp5WWeRlbDJhrQe4BNMZT -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:50 2024 by rpki-client on console-ams.rpki-client.org