$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59272.roa File: AS59272.roa (raw, json) Hash identifier: qpLND63zM8YdviLzATmKTBn/AUVDmNLaWZU3QGzi0RE= Subject key identifier: D0:A6:88:F9:9C:3F:EA:81:E6:32:C2:BC:F8:6F:D9:D9:08:54:92:FD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 486996EA1DA533B95F5A4FAD388D25D1DE5C3EBA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59272.roa Signing time: Tue 09 Jan 2024 04:00:00 +0000 ROA not before: Tue 09 Jan 2024 03:55:00 +0000 ROA not after: Tue 07 Jan 2025 04:00:00 +0000 asID: 59272 IP address blocks: 103.81.246.0/24 maxlen: 24 103.81.248.0/23 maxlen: 24 103.225.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:69:96:ea:1d:a5:33:b9:5f:5a:4f:ad:38:8d:25:d1:de:5c:3e:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:00 2024 GMT Not After : Jan 7 04:00:00 2025 GMT Subject: CN=D0A688F99C3FEA81E632C2BCF86FD9D9085492FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dc:cf:eb:59:60:01:0b:e9:6c:5e:a6:62:56: ae:af:e2:ac:70:ad:c1:d1:cb:2f:63:cc:05:c8:4c: 47:10:3f:4e:40:e6:12:49:31:a5:c6:75:35:b7:52: 2c:a5:db:29:77:ae:e2:a8:68:bd:2e:20:95:d8:28: 63:66:25:2c:9d:5e:08:f9:d6:d4:ab:5e:60:2a:62: 16:cc:24:7b:d9:af:d0:66:ac:f4:3b:62:84:7d:d2: f7:74:88:83:74:f9:a2:ba:d2:76:c0:a7:0c:85:9f: 86:51:96:3d:d6:ae:75:92:8a:a0:03:f6:4e:c1:d1: b6:50:bd:48:f7:62:07:58:44:0a:38:06:ee:6f:e9: 7e:f7:2a:20:72:27:a6:90:47:13:87:ec:7b:bf:07: fb:e3:17:5b:8d:4e:f9:ee:25:4b:67:e9:e8:06:8a: 28:6f:3f:b6:ee:97:2a:08:68:0e:e1:f6:ae:de:9a: bd:13:74:29:40:ca:bd:c9:7b:50:5a:0a:51:15:38: 74:d3:69:ab:61:18:f3:ee:45:cb:73:74:ec:90:6c: 01:b5:ea:a9:1c:70:37:ba:0c:e0:d9:31:92:b1:bb: 4f:a8:01:c6:cf:8c:d7:b6:5a:a5:54:73:5a:d3:81: b6:d0:bb:0c:3f:b3:2d:c4:8e:80:9b:a1:3d:86:1b: 90:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:A6:88:F9:9C:3F:EA:81:E6:32:C2:BC:F8:6F:D9:D9:08:54:92:FD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.81.246.0/24 103.81.248.0/23 103.225.175.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:62:c8:a1:3f:f0:b0:da:b3:31:80:34:f1:4a:72:1e:58:a8: ba:2a:b5:3a:cc:82:cd:f2:aa:b1:26:e4:d1:92:2e:41:ec:d4: fd:6d:a1:38:01:ba:7d:f4:a9:c0:c2:88:a9:96:fc:43:c9:df: 1b:58:8d:9c:89:b5:c5:20:9e:a0:99:3d:87:2c:f5:1a:6c:50: c2:7f:99:9a:66:cb:7b:e8:42:b6:8f:cc:53:b0:1b:3d:1f:25: 3b:bb:d1:4e:2c:b7:70:cb:5f:ee:dc:b9:4d:26:99:07:d0:06: 8e:9a:3f:15:2c:8b:d0:7c:51:8e:bf:56:68:05:c1:a7:0a:7f: d1:e9:51:da:3f:10:54:f1:ae:87:20:6d:bf:77:b9:42:bb:37: 8b:34:5d:ac:f5:06:77:08:1a:78:53:d4:54:81:90:50:63:bc: 44:b5:30:1e:e3:67:5c:19:59:d0:0c:be:bc:e1:6c:42:ff:2a: 95:26:fc:f3:3d:52:b0:af:a5:40:31:36:c6:22:55:26:4c:65: dc:95:8c:5e:e1:8d:9f:5e:fd:37:c0:d5:42:bb:2b:4d:de:86: 9c:0d:75:f5:03:aa:31:aa:7c:83:22:b4:d0:8b:0e:af:72:a9: 4d:17:df:ed:e0:bc:a6:7c:51:44:b6:9a:bb:c3:7e:3e:0f:e4: d6:bd:f8:25 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUSGmW6h2lM7lfWk+tOI0l0d5cProwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwMFoX DTI1MDEwNzA0MDAwMFowMzExMC8GA1UEAxMoRDBBNjg4Rjk5QzNGRUE4MUU2MzJD MkJDRjg2RkQ5RDkwODU0OTJGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3cz+tZYAEL6WxepmJWrq/irHCtwdHLL2PMBchMRxA/TkDmEkkxpcZ1NbdS LKXbKXeu4qhovS4gldgoY2YlLJ1eCPnW1KteYCpiFswke9mv0Gas9DtihH3S93SI g3T5orrSdsCnDIWfhlGWPdaudZKKoAP2TsHRtlC9SPdiB1hECjgG7m/pfvcqIHIn ppBHE4fse78H++MXW41O+e4lS2fp6AaKKG8/tu6XKghoDuH2rt6avRN0KUDKvcl7 UFoKURU4dNNpq2EY8+5Fy3N07JBsAbXqqRxwN7oM4NkxkrG7T6gBxs+M17ZapVRz WtOBttC7DD+zLcSOgJuhPYYbkNMCAwEAAaOCAdswggHXMB0GA1UdDgQWBBTQpoj5 nD/qgeYywrz4b9nZCFSS/TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU5MjcyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZ1H2AwQBZ1H4AwQAZ+GvMA0GCSqGSIb3DQEBCwUAA4IBAQA8Ysih P/Cw2rMxgDTxSnIeWKi6KrU6zILN8qqxJuTRki5B7NT9baE4Abp99KnAwoiplvxD yd8bWI2cibXFIJ6gmT2HLPUabFDCf5maZst76EK2j8xTsBs9HyU7u9FOLLdwy1/u 3LlNJpkH0AaOmj8VLIvQfFGOv1ZoBcGnCn/R6VHaPxBU8a6HIG2/d7lCuzeLNF2s 9QZ3CBp4U9RUgZBQY7xEtTAe42dcGVnQDL684WxC/yqVJvzzPVKwr6VAMTbGIlUm TGXclYxe4Y2fXv03wNVCuytN3oacDXX1A6oxqnyDIrTQiw6vcqlNF9/t4LymfFFE tpq7w34+D+TWvfgl -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:50 2024 by rpki-client on console-ams.rpki-client.org