$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59134.roa File: AS59134.roa (raw, json) Hash identifier: wqyZn41kOaew/o9i/0qaiAOdKYyq55G+N2UUEliPoAM= Subject key identifier: E6:2E:23:43:C4:6F:F1:6F:BE:73:6F:DA:B7:DF:86:6A:E9:78:BE:54 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 634360B5F66C7BA3A4F07503BDB6D1EAB78897F8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59134.roa Signing time: Tue 09 Jan 2024 04:00:25 +0000 ROA not before: Tue 09 Jan 2024 03:55:25 +0000 ROA not after: Tue 07 Jan 2025 04:00:25 +0000 asID: 59134 IP address blocks: 103.179.30.0/23 maxlen: 24 103.179.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:43:60:b5:f6:6c:7b:a3:a4:f0:75:03:bd:b6:d1:ea:b7:88:97:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:25 2024 GMT Not After : Jan 7 04:00:25 2025 GMT Subject: CN=E62E2343C46FF16FBE736FDAB7DF866AE978BE54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:43:a8:e5:a5:d3:f3:85:49:83:ee:63:aa:ae: 6f:32:d4:d4:a7:7e:c2:78:10:3c:95:2e:66:8f:40: a9:0c:1b:b7:4e:21:cb:40:24:0e:d1:09:be:01:9a: ee:c3:e1:a3:d1:f4:5f:71:b5:28:33:10:99:85:a5: 16:d0:0f:59:e5:d4:82:2c:c2:2a:0c:f4:70:64:c3: 5d:12:4d:34:ba:f0:fe:4a:fb:0d:a0:d6:4e:bc:5d: ed:fa:86:67:cc:62:8e:fd:50:02:28:a1:f2:94:54: 7a:ac:d5:6e:54:17:a1:ba:42:03:91:0e:d7:2c:72: 17:7b:a9:ba:6b:84:17:95:e2:d0:85:5a:d8:32:ff: 86:e2:ae:7e:65:35:27:c0:7f:6f:ef:2f:51:46:41: 02:00:1a:a9:e4:5f:96:11:2e:8d:be:35:2f:88:a3: 30:08:63:94:f2:fd:c2:93:3d:e4:7d:52:c6:23:80: 8a:8a:ca:62:9a:fb:59:19:67:18:de:f4:65:c3:97: a3:7d:62:a5:01:ef:3a:73:1a:ec:9e:3a:ce:43:30: 58:c4:64:1e:28:85:5e:7c:86:a4:f0:a5:27:5e:2c: 72:88:ce:4b:cc:b8:f5:f8:c3:e4:7b:68:2f:d3:2a: 3f:61:1b:c8:06:2f:ed:58:c3:16:1b:ce:dd:39:53: aa:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:2E:23:43:C4:6F:F1:6F:BE:73:6F:DA:B7:DF:86:6A:E9:78:BE:54 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.30.0-103.179.33.255 Signature Algorithm: sha256WithRSAEncryption 69:67:bd:5a:89:39:9a:09:a6:d4:0f:8b:b4:52:2e:90:c8:a4: 30:4f:d4:79:35:5d:3e:d4:85:bf:c1:d6:5e:4d:ae:35:bb:90: 6a:8e:02:6c:97:f1:28:b6:9d:40:42:65:87:70:0e:64:b7:a7: d0:a2:4b:c3:4a:61:f4:ce:25:9b:79:75:92:6e:8d:01:ce:f6: 36:05:69:6c:4a:0c:fd:87:80:2a:ff:0a:49:f6:38:aa:5e:1b: ac:58:e8:7d:d9:fc:96:13:13:23:fe:06:86:86:59:30:dc:fa: 91:b7:1b:8e:52:80:ba:1c:42:2e:51:00:4f:8d:03:b3:1f:77: fd:2e:a2:dd:30:1a:cc:21:d5:40:d5:53:a2:2e:56:c5:fa:52: 2d:2c:dd:2d:6b:30:10:40:51:71:b5:96:15:62:9c:1b:45:c1: 1a:1f:49:e4:29:af:a0:7e:d2:c3:bb:7a:d0:1e:40:99:ab:61: 93:fb:5d:f1:94:88:1b:75:f0:97:2d:b4:02:3e:98:21:a7:c6: ab:79:91:7f:77:4a:66:2a:87:85:e2:32:84:b8:83:8b:43:ca: 07:cb:77:f8:fc:e0:7a:b7:b3:e7:b5:0a:12:d0:57:d8:37:65: a9:5e:73:b9:fc:18:f5:d2:e0:a4:de:bf:c3:81:22:97:78:81: ba:d3:5b:fa -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUY0NgtfZse6Ok8HUDvbbR6reIl/gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyNVoX DTI1MDEwNzA0MDAyNVowMzExMC8GA1UEAxMoRTYyRTIzNDNDNDZGRjE2RkJFNzM2 RkRBQjdERjg2NkFFOTc4QkU1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKBDqOWl0/OFSYPuY6qubzLU1Kd+wngQPJUuZo9AqQwbt04hy0AkDtEJvgGa 7sPho9H0X3G1KDMQmYWlFtAPWeXUgizCKgz0cGTDXRJNNLrw/kr7DaDWTrxd7fqG Z8xijv1QAiih8pRUeqzVblQXobpCA5EO1yxyF3upumuEF5Xi0IVa2DL/huKufmU1 J8B/b+8vUUZBAgAaqeRflhEujb41L4ijMAhjlPL9wpM95H1SxiOAiorKYpr7WRln GN70ZcOXo31ipQHvOnMa7J46zkMwWMRkHiiFXnyGpPClJ14scojOS8y49fjD5Hto L9MqP2EbyAYv7VjDFhvO3TlTqrcCAwEAAaOCAdcwggHTMB0GA1UdDgQWBBTmLiND xG/xb75zb9q334Zq6Xi+VDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU5MTM0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAFnsx4DBAFnsyAwDQYJKoZIhvcNAQELBQADggEBAGlnvVqJOZoJ ptQPi7RSLpDIpDBP1Hk1XT7Uhb/B1l5NrjW7kGqOAmyX8Si2nUBCZYdwDmS3p9Ci S8NKYfTOJZt5dZJujQHO9jYFaWxKDP2HgCr/Ckn2OKpeG6xY6H3Z/JYTEyP+BoaG WTDc+pG3G45SgLocQi5RAE+NA7Mfd/0uot0wGswh1UDVU6IuVsX6Ui0s3S1rMBBA UXG1lhVinBtFwRofSeQpr6B+0sO7etAeQJmrYZP7XfGUiBt18JcttAI+mCGnxqt5 kX93SmYqh4XiMoS4g4tDygfLd/j84Hq3s+e1ChLQV9g3Zalec7n8GPXS4KTev8OB Ipd4gbrTW/o= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:18 2024 by rpki-client on console-fra.rpki-client.org