$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63880.roa File: AS63880.roa (raw, json) Hash identifier: 9M8/sC+L4dlBBVRD9Qi/3xH9WkH3VXcL11FFR7we9wE= Subject key identifier: D1:2D:91:59:C7:11:D5:E1:26:C4:39:58:06:F1:D5:0D:04:DF:78:EF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4AB88E2B5B11EC23A697DA1D7AA74026F9D4BEAA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63880.roa Signing time: Thu 15 Feb 2024 02:00:00 +0000 ROA not before: Thu 15 Feb 2024 01:55:00 +0000 ROA not after: Thu 13 Feb 2025 02:00:00 +0000 asID: 63880 IP address blocks: 103.119.204.0/22 maxlen: 24 2406:6cc0:a500::/48 maxlen: 48 2406:6cc0:a700::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:b8:8e:2b:5b:11:ec:23:a6:97:da:1d:7a:a7:40:26:f9:d4:be:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 15 01:55:00 2024 GMT Not After : Feb 13 02:00:00 2025 GMT Subject: CN=D12D9159C711D5E126C4395806F1D50D04DF78EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c1:e4:2b:98:7f:e8:0d:9e:11:72:bc:ad:ba: 1c:47:1d:48:81:0d:15:5d:58:8e:d0:5d:1e:53:6b: c0:0b:4e:17:00:0a:5a:93:b9:9d:40:6d:da:86:83: b1:0e:c5:96:79:fe:29:71:8a:5e:73:81:58:bc:37: 06:15:86:d1:da:18:70:b4:b3:14:96:0e:31:9b:2c: 8d:f5:8f:5b:2b:2b:c9:bf:08:d3:41:35:75:4c:71: 64:e7:f7:61:ea:7e:74:e1:44:bd:dd:3e:63:24:f6: 89:fc:b1:83:ab:52:62:ba:e3:f3:e4:00:0d:e9:cb: a0:8f:2c:6e:bb:23:51:72:5d:bc:a9:e2:44:c9:92: a3:8a:bc:7d:63:92:e3:d0:29:ec:a0:aa:de:ac:e0: a2:bb:53:cd:31:97:90:9e:2a:b1:68:c3:b5:be:f4: cf:c0:2c:77:ee:f3:85:19:38:dc:8a:01:e1:70:e5: 71:19:dd:73:1a:c7:5d:93:33:72:1f:9d:63:07:c0: ac:c6:64:8d:da:f1:cf:2c:c8:86:7a:f3:32:f4:26: 53:5f:4c:62:33:31:3e:64:b7:07:a1:be:2e:de:88: af:75:2a:e2:5f:ea:38:ff:db:0c:11:84:ef:3b:0f: 72:21:02:fe:a7:40:50:aa:5e:43:0e:74:da:a7:77: ed:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:2D:91:59:C7:11:D5:E1:26:C4:39:58:06:F1:D5:0D:04:DF:78:EF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63880.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.204.0/22 IPv6: 2406:6cc0:a500::/48 2406:6cc0:a700::/48 Signature Algorithm: sha256WithRSAEncryption 34:25:07:88:1d:41:4e:f7:53:17:33:61:46:c3:d4:81:71:4b: 94:7a:0a:db:93:97:e0:5d:a8:ec:78:2b:fc:38:7a:dd:19:96: 84:1c:d7:70:83:a9:13:f8:3c:9c:0b:67:04:2c:98:70:9b:31: 7f:c9:7a:81:93:40:0f:8b:f6:27:64:7a:d8:ac:b0:31:d5:ca: a0:c1:86:85:c1:af:31:cd:3b:47:84:dd:95:18:c3:2b:b8:37: 1a:05:02:8a:70:8d:cc:92:99:07:3a:38:78:96:cc:d6:e2:88: 41:11:51:64:1e:3c:4c:cb:e7:25:b5:ed:91:6c:34:2f:25:04: e3:3e:8a:c4:48:b7:b3:7e:03:95:df:af:9a:f5:23:99:4c:6f: 64:cb:b9:ff:51:99:56:c5:8f:4f:c3:7b:57:21:cc:65:af:da: 8a:0d:90:1e:f0:5e:d7:69:4d:ea:9d:8d:ba:be:7c:c8:8c:bb: ca:33:d2:46:d1:98:f2:21:10:1a:1d:98:59:9e:8f:d1:f0:d3: be:25:e9:6f:1a:cc:bb:45:9f:22:f4:e1:c6:cd:8d:65:0b:57: b2:94:12:6e:fb:a5:aa:83:de:d8:8b:43:dc:90:85:a7:c1:54: 8e:aa:66:f2:e9:80:18:3f:2f:7c:58:74:56:0e:cf:9e:85:a6: 8a:9f:b4:88 -----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgIUSriOK1sR7COml9odeqdAJvnUvqowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIxNTAxNTUwMFoX DTI1MDIxMzAyMDAwMFowMzExMC8GA1UEAxMoRDEyRDkxNTlDNzExRDVFMTI2QzQz OTU4MDZGMUQ1MEQwNERGNzhFRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMHB5CuYf+gNnhFyvK26HEcdSIENFV1YjtBdHlNrwAtOFwAKWpO5nUBt2oaD sQ7Flnn+KXGKXnOBWLw3BhWG0doYcLSzFJYOMZssjfWPWysryb8I00E1dUxxZOf3 Yep+dOFEvd0+YyT2ifyxg6tSYrrj8+QADenLoI8sbrsjUXJdvKniRMmSo4q8fWOS 49Ap7KCq3qzgortTzTGXkJ4qsWjDtb70z8Asd+7zhRk43IoB4XDlcRndcxrHXZMz ch+dYwfArMZkjdrxzyzIhnrzMvQmU19MYjMxPmS3B6G+Lt6Ir3Uq4l/qOP/bDBGE 7zsPciEC/qdAUKpeQw502qd37aMCAwEAAaOCAekwggHlMB0GA1UdDgQWBBTRLZFZ xxHV4SbEOVgG8dUNBN947zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzYzODgwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQCZ3fMMBgEAgACMBIDBwAkBmzApQADBwAkBmzApwAwDQYJKoZIhvcN AQELBQADggEBADQlB4gdQU73UxczYUbD1IFxS5R6CtuTl+BdqOx4K/w4et0ZloQc 13CDqRP4PJwLZwQsmHCbMX/JeoGTQA+L9idketissDHVyqDBhoXBrzHNO0eE3ZUY wyu4NxoFAopwjcySmQc6OHiWzNbiiEERUWQePEzL5yW17ZFsNC8lBOM+isRIt7N+ A5Xfr5r1I5lMb2TLuf9RmVbFj0/De1chzGWv2ooNkB7wXtdpTeqdjbq+fMiMu8oz 0kbRmPIhEBodmFmej9Hw074l6W8azLtFnyL04cbNjWULV7KUEm77paqD3tiLQ9yQ hafBVI6qZvLpgBg/L3xYdFYOz56FpoqftIg= -----END CERTIFICATE-----Generated at Wed May 8 17:45:24 2024 by rpki-client on console-ams.rpki-client.org