$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139396.roa File: AS139396.roa (raw, json) Hash identifier: 7thJ7nv98Xd9Yek2VNiczmMRNfvkDZk6amRmnDWWfzs= Subject key identifier: 40:A9:F0:A8:B0:D0:B2:6A:2A:67:D7:92:ED:A1:F6:CB:1D:DA:F8:D1 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 08CFE1DB047CC5B6AFFA19F5C6892F6C793D186A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139396.roa Signing time: Tue 09 Jan 2024 04:00:29 +0000 ROA not before: Tue 09 Jan 2024 03:55:29 +0000 ROA not after: Tue 07 Jan 2025 04:00:29 +0000 asID: 139396 IP address blocks: 45.113.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:cf:e1:db:04:7c:c5:b6:af:fa:19:f5:c6:89:2f:6c:79:3d:18:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:29 2024 GMT Not After : Jan 7 04:00:29 2025 GMT Subject: CN=40A9F0A8B0D0B26A2A67D792EDA1F6CB1DDAF8D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:45:d8:7d:82:08:04:cd:56:89:d8:20:a0:6e: 13:f8:09:bf:20:7e:ab:c9:d9:46:2d:e2:1d:54:7e: c1:a4:3d:4a:b5:30:92:0a:21:f6:a7:71:08:40:55: b3:49:5d:da:fb:13:48:2f:e0:a4:08:c1:83:1b:08: 91:f8:ea:59:68:30:18:5c:db:3f:62:d4:a8:24:d9: 7f:c1:1b:e4:1c:07:5c:66:e5:a5:a2:45:b6:de:7c: 35:e0:0d:49:06:8c:48:b3:3c:00:4b:fd:bf:6c:72: 45:ca:5c:43:7f:69:e6:5b:0c:8c:3d:a7:7b:d3:6d: 34:50:99:dd:03:4c:03:06:fc:5b:61:05:a5:91:1f: 87:42:15:f6:7f:08:ac:72:f1:ad:8d:49:38:23:fe: 73:a0:38:cd:ab:4a:d9:52:60:8b:e2:a9:a4:14:bb: 75:c2:80:38:3b:fb:87:65:cf:87:80:73:e8:a1:81: 88:36:26:8b:a2:6a:08:bd:55:8f:c0:81:6d:0c:14: e6:56:73:8a:46:be:3f:43:33:8a:5f:6c:c0:e7:4f: 56:9e:d8:07:69:e6:e1:af:08:90:20:4f:ec:c4:b5: 17:f4:12:a0:a8:8b:96:04:83:a5:b9:dd:be:20:25: 1a:67:09:46:14:f3:65:db:9a:db:ea:c8:96:f0:3f: 1f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A9:F0:A8:B0:D0:B2:6A:2A:67:D7:92:ED:A1:F6:CB:1D:DA:F8:D1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139396.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.113.228.0/22 Signature Algorithm: sha256WithRSAEncryption 73:b1:88:ac:81:9e:62:1f:b4:cf:5b:ce:10:b7:2c:ab:25:52: 7b:6f:8e:2e:3f:32:88:d9:01:61:ba:d6:fc:ab:fd:07:3d:45: 6b:a1:f6:bf:25:bc:94:fb:ea:66:c1:10:e2:48:96:16:d1:c6: 91:2b:fd:02:fc:b8:d3:16:01:bc:fc:8a:34:9b:f1:f7:fe:15: df:32:34:0a:db:c7:30:3c:56:e7:62:17:78:48:9b:c0:a5:46: 6c:a2:1a:ed:2b:69:15:76:e3:91:dc:54:44:6b:ad:d0:c4:5a: e0:b9:0b:d8:11:df:21:e3:2e:d5:dd:06:1f:57:df:62:93:ff: c5:72:2a:42:62:3f:9d:63:a0:2b:a1:98:92:4d:c4:73:bd:d8: 46:d1:04:b9:ec:bc:3c:7a:0b:47:82:87:fd:9e:13:1c:0d:ec: 50:ae:c0:74:59:c3:21:4d:e4:97:1a:cf:f9:69:6d:4a:8f:3a: d9:7e:a8:53:77:f2:37:71:49:4d:2f:6a:c9:f6:e0:59:5b:c5: 1e:26:6e:90:78:f3:0b:49:1b:f5:14:2a:5d:77:58:5c:22:37: 88:76:0d:ce:20:80:b6:cd:48:63:63:20:ed:2c:b2:41:c7:3e: 2b:c8:4b:42:82:fb:99:61:38:a7:e0:23:c1:c2:fa:a9:15:78: 91:16:4c:f2 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCM/h2wR8xbav+hn1xokvbHk9GGowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyOVoX DTI1MDEwNzA0MDAyOVowMzExMC8GA1UEAxMoNDBBOUYwQThCMEQwQjI2QTJBNjdE NzkyRURBMUY2Q0IxRERBRjhEMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKNF2H2CCATNVonYIKBuE/gJvyB+q8nZRi3iHVR+waQ9SrUwkgoh9qdxCEBV s0ld2vsTSC/gpAjBgxsIkfjqWWgwGFzbP2LUqCTZf8Eb5BwHXGblpaJFtt58NeAN SQaMSLM8AEv9v2xyRcpcQ39p5lsMjD2ne9NtNFCZ3QNMAwb8W2EFpZEfh0IV9n8I rHLxrY1JOCP+c6A4zatK2VJgi+KppBS7dcKAODv7h2XPh4Bz6KGBiDYmi6JqCL1V j8CBbQwU5lZzika+P0Mzil9swOdPVp7YB2nm4a8IkCBP7MS1F/QSoKiLlgSDpbnd viAlGmcJRhTzZdua2+rIlvA/H88CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRAqfCo sNCyaipn15LtofbLHdr40TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTM5Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAi1x5DANBgkqhkiG9w0BAQsFAAOCAQEAc7GIrIGeYh+0z1vOELcs qyVSe2+OLj8yiNkBYbrW/Kv9Bz1Fa6H2vyW8lPvqZsEQ4kiWFtHGkSv9Avy40xYB vPyKNJvx9/4V3zI0CtvHMDxW52IXeEibwKVGbKIa7StpFXbjkdxURGut0MRa4LkL 2BHfIeMu1d0GH1ffYpP/xXIqQmI/nWOgK6GYkk3Ec73YRtEEuey8PHoLR4KH/Z4T HA3sUK7AdFnDIU3klxrP+WltSo862X6oU3fyN3FJTS9qyfbgWVvFHiZukHjzC0kb 9RQqXXdYXCI3iHYNziCAts1IY2Mg7SyyQcc+K8hLQoL7mWE4p+AjwcL6qRV4kRZM 8g== -----END CERTIFICATE-----Generated at Mon May 6 17:32:45 2024 by rpki-client on console-fra.rpki-client.org