$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139981.roa File: AS139981.roa (raw, json) Hash identifier: R17MDEY7r1NEr2SmuSh3KNSExZJBD+xxpQ8XjJYU2kg= Subject key identifier: 55:48:18:1F:7A:DD:21:E8:8F:37:CB:E9:65:A3:24:1B:76:8D:49:8E Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 3C2DC728FB34BBAD5663C09806644CAA0BCF5040 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139981.roa Signing time: Thu 06 Feb 2025 10:44:57 +0000 ROA not before: Thu 06 Feb 2025 10:39:57 +0000 ROA not after: Thu 05 Feb 2026 10:44:57 +0000 asID: 139981 IP address blocks: 157.66.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 16:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:2d:c7:28:fb:34:bb:ad:56:63:c0:98:06:64:4c:aa:0b:cf:50:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 6 10:39:57 2025 GMT Not After : Feb 5 10:44:57 2026 GMT Subject: CN=5548181F7ADD21E88F37CBE965A3241B768D498E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5e:2c:eb:5e:e6:66:16:2d:a1:07:ba:41:be: e3:2c:14:3d:e8:40:7e:7e:de:f3:b9:06:e8:74:81: 2c:49:df:b9:db:2c:9b:72:ad:04:80:8c:f6:3b:52: b4:4b:bd:4a:c8:11:17:6c:90:74:08:b4:fb:a0:94: 18:74:77:e6:74:2d:1b:24:cb:02:26:96:83:7d:cd: 50:7b:75:52:42:52:ea:7f:86:3f:f4:07:d0:21:0b: 16:f1:84:e7:8a:75:c3:66:d5:4d:8d:cf:95:0d:5f: 00:05:b9:14:3f:d5:1a:dc:4e:c2:c0:f9:68:0f:5c: b2:aa:a5:7d:c1:87:c5:7b:1b:23:63:b0:29:dd:b5: ee:06:9a:9a:42:94:74:d9:4c:48:2d:e9:7e:d8:95: 13:16:cb:63:db:30:bd:ee:f8:01:cf:81:70:8f:ac: 4c:82:2b:f0:42:3b:dc:43:61:d9:7d:61:8d:a6:b1: 4a:51:cb:35:7f:da:81:e0:31:4b:58:40:35:93:b0: b3:14:08:64:13:9e:bb:1f:94:96:31:2d:b8:b4:0b: 19:a4:e2:d8:73:a8:64:d1:62:6e:ee:17:0d:14:4d: 6f:81:19:06:99:39:8d:c4:cd:72:3d:de:f9:33:82: 6e:d4:fa:56:e8:5a:48:4a:5c:9a:c1:aa:06:fc:25: bc:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:48:18:1F:7A:DD:21:E8:8F:37:CB:E9:65:A3:24:1B:76:8D:49:8E X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139981.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.84.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:bd:31:7f:58:68:67:98:8b:1c:08:c1:0f:a1:88:63:72:ed: b8:61:9e:f9:77:44:ef:2c:f1:4c:f1:70:a8:e4:0c:ba:c4:c2: 62:7b:39:57:87:78:72:bf:ae:24:4e:60:b4:e5:30:be:84:50: 2e:87:97:fc:65:ba:94:77:3f:69:be:6e:ac:ca:8a:cd:4b:8c: bf:ab:70:57:31:e8:be:ff:96:1d:9b:cc:81:4a:4e:89:66:03: 8a:53:76:64:d5:1f:e6:22:a6:09:7d:06:84:68:3f:a0:87:fd: 80:38:2b:3a:cb:e1:5c:18:89:b7:c5:46:95:98:89:05:ac:e1: 02:9f:5e:46:ac:f1:0b:19:e0:07:be:c0:5e:78:5c:35:d1:88: 80:24:b5:4c:2d:ba:cb:f4:02:ce:86:08:75:ac:3d:a6:4c:41: 03:58:ea:cb:b5:96:57:97:c8:da:98:f2:aa:33:88:c3:72:6d: cf:18:25:0a:95:7d:6d:ab:99:3d:2d:18:d2:85:76:61:fd:5e: 32:95:8d:80:00:98:39:05:87:ba:85:cc:28:9e:9d:1a:ff:33: d8:fc:b4:85:ea:12:0f:77:52:52:09:cf:f3:be:94:f9:74:36: 33:bf:57:d5:43:80:8b:41:df:01:99:d5:e1:ef:59:68:ba:cd: c7:57:68:bf -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPC3HKPs0u61WY8CYBmRMqgvPUEAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk1N1oX DTI2MDIwNTEwNDQ1N1owMzExMC8GA1UEAxMoNTU0ODE4MUY3QUREMjFFODhGMzdD QkU5NjVBMzI0MUI3NjhENDk4RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9eLOte5mYWLaEHukG+4ywUPehAfn7e87kG6HSBLEnfudssm3KtBICM9jtS tEu9SsgRF2yQdAi0+6CUGHR35nQtGyTLAiaWg33NUHt1UkJS6n+GP/QH0CELFvGE 54p1w2bVTY3PlQ1fAAW5FD/VGtxOwsD5aA9csqqlfcGHxXsbI2OwKd217gaamkKU dNlMSC3pftiVExbLY9swve74Ac+BcI+sTIIr8EI73ENh2X1hjaaxSlHLNX/ageAx S1hANZOwsxQIZBOeux+UljEtuLQLGaTi2HOoZNFibu4XDRRNb4EZBpk5jcTNcj3e +TOCbtT6VuhaSEpcmsGqBvwlvC8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRVSBgf et0h6I83y+lloyQbdo1JjjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzOTk4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ1CVDANBgkqhkiG9w0BAQsFAAOCAQEAHb0xf1hoZ5iLHAjBD6GI Y3LtuGGe+XdE7yzxTPFwqOQMusTCYns5V4d4cr+uJE5gtOUwvoRQLoeX/GW6lHc/ ab5urMqKzUuMv6twVzHovv+WHZvMgUpOiWYDilN2ZNUf5iKmCX0GhGg/oIf9gDgr OsvhXBiJt8VGlZiJBazhAp9eRqzxCxngB77AXnhcNdGIgCS1TC26y/QCzoYIdaw9 pkxBA1jqy7WWV5fI2pjyqjOIw3JtzxglCpV9bauZPS0Y0oV2Yf1eMpWNgACYOQWH uoXMKJ6dGv8z2Py0heoSD3dSUgnP876U+XQ2M79X1UOAi0HfAZnV4e9ZaLrNx1do vw== -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:48 2025 by rpki-client