$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140423.roa File: AS140423.roa (raw, json) Hash identifier: OPYvxT0cG9XkoTNUa/+uvwKBwOwoXRE0GlUPrNg1k3U= Subject key identifier: D7:94:44:0A:64:75:A0:63:FA:47:38:03:21:D4:1B:87:CB:D7:F9:58 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0664C3CF0710F898E7CB9F9C12BFBE45FAC1F50B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140423.roa Signing time: Thu 28 Sep 2023 10:00:00 +0000 ROA not before: Thu 28 Sep 2023 09:55:00 +0000 ROA not after: Thu 26 Sep 2024 10:00:00 +0000 asID: 140423 IP address blocks: 2001:df1:7140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:64:c3:cf:07:10:f8:98:e7:cb:9f:9c:12:bf:be:45:fa:c1:f5:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 28 09:55:00 2023 GMT Not After : Sep 26 10:00:00 2024 GMT Subject: CN=D794440A6475A063FA47380321D41B87CBD7F958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5f:cd:b9:37:bd:55:47:1f:e4:2b:0a:e0:be: 19:84:eb:a4:23:0f:bd:b7:d2:34:74:4f:5e:de:62: 34:96:25:19:f2:42:0b:f7:0a:b1:41:3a:ef:3b:5f: b6:72:30:54:3f:2d:2a:3d:ac:dd:a2:48:37:40:80: 81:52:8f:15:19:2d:92:8b:90:8f:d6:d1:ec:8a:51: c6:29:53:97:93:6c:f0:cc:28:de:21:05:be:09:e3: dd:d2:b3:44:82:2d:6f:26:88:13:f9:0b:3d:c9:20: 90:66:9d:9c:44:08:37:ba:94:13:e2:5e:f8:a0:dd: dc:25:37:d8:36:2d:19:b0:37:61:79:2a:c7:a4:e3: a4:1b:3e:e4:de:d1:82:be:57:71:6b:28:4d:a1:d3: 0f:3e:cc:ae:e6:1b:99:cb:6e:00:bb:b6:25:2e:e6: 5c:dc:e0:82:62:97:6d:50:e6:f3:da:61:1d:e1:4d: 2e:9a:c4:cf:ef:a1:c2:06:87:36:11:5c:a7:70:9b: 1d:8f:bf:9d:a4:f7:5b:e0:1c:cf:fe:2b:5d:2f:70: 6e:7c:e0:c3:c4:65:de:ea:8f:7c:d7:25:e9:ce:47: 5c:5b:a3:c4:e4:b6:e4:81:f3:5a:fd:64:6c:7e:7c: d0:d0:08:a3:b2:56:0e:f6:f8:c6:14:c0:dc:58:b0: 11:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:94:44:0A:64:75:A0:63:FA:47:38:03:21:D4:1B:87:CB:D7:F9:58 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140423.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:7140::/48 Signature Algorithm: sha256WithRSAEncryption 93:77:58:bf:ec:8a:89:f7:1e:87:1e:e1:b3:a0:f2:cf:a3:80: 77:1c:90:10:f8:d5:b5:d5:ea:bc:15:88:69:1f:68:07:35:66: a1:81:52:49:ec:14:fc:63:ea:ac:b6:44:9a:00:49:62:3e:17: ef:9b:23:6b:e1:b2:e4:99:e3:af:75:d0:2b:aa:21:6b:c4:d8: 8d:a4:dc:f0:3e:0c:05:83:fb:5f:6d:6d:99:9f:de:b8:c8:f9: 7f:1e:eb:e5:32:63:e4:b9:d3:0b:cf:0c:5e:98:ac:77:6e:54: 29:03:7b:95:08:50:d3:65:40:89:7d:08:16:1f:d3:d3:03:52: 5a:30:db:97:49:e6:2b:f6:c8:4b:10:00:9c:11:76:b8:a5:9f: aa:23:ec:7a:ad:a8:d6:20:df:b5:56:7f:87:a0:da:5e:8d:70: 4a:76:9c:cc:2a:c7:10:56:f6:58:44:d1:b1:76:53:32:5b:b9: 6f:e0:28:6d:57:3c:56:55:b5:1e:b8:7f:77:5b:73:78:d5:ed: 6b:35:9c:6a:70:b9:e7:cf:27:e7:83:dd:27:29:f0:c0:95:97: d1:67:e1:5a:57:47:16:ae:95:93:01:c3:f9:87:aa:86:97:08: 32:21:04:92:b2:b8:7e:be:64:e7:6a:83:bb:e0:85:30:28:08: 96:2f:5f:d9 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUBmTDzwcQ+Jjny5+cEr++RfrB9QswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkyODA5NTUwMFoX DTI0MDkyNjEwMDAwMFowMzExMC8GA1UEAxMoRDc5NDQ0MEE2NDc1QTA2M0ZBNDcz ODAzMjFENDFCODdDQkQ3Rjk1ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK5fzbk3vVVHH+QrCuC+GYTrpCMPvbfSNHRPXt5iNJYlGfJCC/cKsUE67ztf tnIwVD8tKj2s3aJIN0CAgVKPFRktkouQj9bR7IpRxilTl5Ns8Mwo3iEFvgnj3dKz RIItbyaIE/kLPckgkGadnEQIN7qUE+Je+KDd3CU32DYtGbA3YXkqx6TjpBs+5N7R gr5XcWsoTaHTDz7MruYbmctuALu2JS7mXNzggmKXbVDm89phHeFNLprEz++hwgaH NhFcp3CbHY+/naT3W+Acz/4rXS9wbnzgw8Rl3uqPfNcl6c5HXFujxOS25IHzWv1k bH580NAIo7JWDvb4xhTA3FiwEZ8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTXlEQK ZHWgY/pHOAMh1BuHy9f5WDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfFxQDANBgkqhkiG9w0BAQsFAAOCAQEAk3dYv+yKifcehx7h s6Dyz6OAdxyQEPjVtdXqvBWIaR9oBzVmoYFSSewU/GPqrLZEmgBJYj4X75sja+Gy 5Jnjr3XQK6oha8TYjaTc8D4MBYP7X21tmZ/euMj5fx7r5TJj5LnTC88MXpisd25U KQN7lQhQ02VAiX0IFh/T0wNSWjDbl0nmK/bISxAAnBF2uKWfqiPseq2o1iDftVZ/ h6DaXo1wSnaczCrHEFb2WETRsXZTMlu5b+AobVc8VlW1Hrh/d1tzeNXtazWcanC5 588n54PdJynwwJWX0WfhWldHFq6VkwHD+YeqhpcIMiEEkrK4fr5k52qDu+CFMCgI li9f2Q== -----END CERTIFICATE-----Generated at Fri May 3 04:42:25 2024 by rpki-client on console-fra.rpki-client.org