$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56237.roa File: AS56237.roa (raw, json) Hash identifier: EplQ41lN/RSzKb5/89Uv7thAsrBvDSTPhXEuDMH9iWU= Subject key identifier: AD:FC:B5:83:FF:BB:0C:C7:24:F5:08:B8:70:D4:5A:52:75:71:A1:49 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6A8A0D5A841668ED33974D65A0A5822096CA4390 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56237.roa Signing time: Thu 09 Nov 2023 06:26:26 +0000 ROA not before: Thu 09 Nov 2023 06:21:26 +0000 ROA not after: Thu 07 Nov 2024 06:26:26 +0000 asID: 56237 IP address blocks: 121.50.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:8a:0d:5a:84:16:68:ed:33:97:4d:65:a0:a5:82:20:96:ca:43:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 9 06:21:26 2023 GMT Not After : Nov 7 06:26:26 2024 GMT Subject: CN=ADFCB583FFBB0CC724F508B870D45A527571A149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7a:8f:9f:98:dc:ec:ed:c6:2c:fc:4f:d7:7a: 5b:8b:4e:40:5a:8f:64:90:10:c0:4b:be:93:de:27: 33:ba:08:d7:73:6f:7c:e8:09:5c:03:e9:8b:6d:a7: cb:71:1d:d5:ce:b3:eb:e1:29:00:51:dc:97:98:75: 52:23:57:01:01:f3:fb:4c:38:6b:ac:57:cf:de:14: 2b:f3:41:6c:4d:12:9f:4c:15:d7:dd:1c:6c:9e:c1: e9:4c:1a:a2:ad:7d:a3:74:24:c7:50:5a:21:16:66: 73:e3:a3:c4:27:8d:cc:ea:71:6d:74:25:f9:39:c7: d7:7d:cd:58:51:59:52:3e:a8:7f:ca:ec:94:a3:36: a0:1c:1b:d7:e5:ad:48:f9:d7:3c:ab:f2:21:24:7a: 73:e0:bf:2e:7b:19:9a:6c:93:de:fd:b3:1b:40:6e: db:44:e3:0b:80:ad:5d:e7:6b:b1:66:a6:fa:59:d4: ee:4a:9c:61:8b:6a:81:31:30:2f:4f:1a:96:35:8c: 12:0e:ec:b8:7f:d7:31:b0:93:f2:8e:3a:a0:6d:5c: b1:62:cf:ed:48:c8:be:b1:a5:19:c2:00:f1:f2:50: 82:a8:93:e7:58:38:32:b8:a3:1a:ea:5c:f9:fe:97: 72:ac:6e:05:a4:45:43:a2:7d:3d:ab:bd:5f:d5:bb: 92:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:FC:B5:83:FF:BB:0C:C7:24:F5:08:B8:70:D4:5A:52:75:71:A1:49 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.50.32.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:42:59:41:cf:af:4d:e6:4c:17:44:30:96:b2:7f:ee:05:11: 33:50:77:b9:62:92:85:39:07:a0:e1:e1:36:e3:82:11:7f:5b: 4d:4c:41:1f:aa:93:c5:4b:35:82:b5:aa:7e:10:a8:9b:67:9a: 2c:06:2d:41:54:47:66:f1:b2:3f:55:b7:7a:4d:17:0e:f1:95: d3:e0:e4:b3:10:98:4b:00:e9:76:c5:af:48:48:6f:0d:aa:d7: 41:ed:5f:64:86:9c:fe:73:2e:8f:cb:ff:ee:a0:d3:33:87:da: 60:6f:c5:27:1a:e5:42:b4:18:40:09:eb:34:76:f0:3a:1c:86: 3b:a4:35:ac:68:7c:30:e9:67:f5:fc:ee:3b:a2:6f:d0:cd:aa: d5:04:c8:d1:c8:9c:5c:f5:56:1c:cb:c5:87:06:17:bd:a5:70: 08:40:27:df:ab:92:99:81:1c:d5:71:f0:02:c0:18:74:9e:f7: b4:bb:8f:93:60:d4:8f:43:72:2c:21:bc:3e:20:10:35:15:3f: bf:0b:6e:6c:28:eb:c9:b3:08:91:37:3a:0a:ab:3d:23:6a:85: 0e:a9:65:97:08:87:7f:c4:cb:40:c9:38:3a:e3:cf:ac:bc:be: 17:4f:d1:d3:8f:82:9a:a1:75:fb:f2:40:7a:46:b4:fb:74:4f: 42:30:73:e3 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUaooNWoQWaO0zl01loKWCIJbKQ5AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwOTA2MjEyNloX DTI0MTEwNzA2MjYyNlowMzExMC8GA1UEAxMoQURGQ0I1ODNGRkJCMENDNzI0RjUw OEI4NzBENDVBNTI3NTcxQTE0OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKJ6j5+Y3Oztxiz8T9d6W4tOQFqPZJAQwEu+k94nM7oI13NvfOgJXAPpi22n y3Ed1c6z6+EpAFHcl5h1UiNXAQHz+0w4a6xXz94UK/NBbE0Sn0wV190cbJ7B6Uwa oq19o3Qkx1BaIRZmc+OjxCeNzOpxbXQl+TnH133NWFFZUj6of8rslKM2oBwb1+Wt SPnXPKvyISR6c+C/LnsZmmyT3v2zG0Bu20TjC4CtXedrsWam+lnU7kqcYYtqgTEw L08aljWMEg7suH/XMbCT8o46oG1csWLP7UjIvrGlGcIA8fJQgqiT51g4MrijGupc +f6XcqxuBaRFQ6J9Pau9X9W7kt0CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSt/LWD /7sMxyT1CLhw1FpSdXGhSTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU2MjM3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAeTIgMA0GCSqGSIb3DQEBCwUAA4IBAQAqQllBz69N5kwXRDCWsn/u BREzUHe5YpKFOQeg4eE244IRf1tNTEEfqpPFSzWCtap+EKibZ5osBi1BVEdm8bI/ Vbd6TRcO8ZXT4OSzEJhLAOl2xa9ISG8NqtdB7V9khpz+cy6Py//uoNMzh9pgb8Un GuVCtBhACes0dvA6HIY7pDWsaHww6Wf1/O47om/QzarVBMjRyJxc9VYcy8WHBhe9 pXAIQCffq5KZgRzVcfACwBh0nve0u4+TYNSPQ3IsIbw+IBA1FT+/C25sKOvJswiR NzoKqz0jaoUOqWWXCId/xMtAyTg648+svL4XT9HTj4KaoXX78kB6RrT7dE9CMHPj -----END CERTIFICATE-----Generated at Wed May 8 18:12:19 2024 by rpki-client on console-fra.rpki-client.org