$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139366.roa File: AS139366.roa (raw, json) Hash identifier: Cc0ZUzDQ+Ft3DlTDXH4Ozv39xRzwYLVKRG4JcZVfDnM= Subject key identifier: F7:4A:54:78:CF:03:AE:D6:78:45:CA:89:1F:18:66:49:B2:CD:7A:37 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3B09EDCD5564965E2E54D609D1097ACDB992AF2B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139366.roa Signing time: Thu 21 Nov 2024 03:36:10 +0000 ROA not before: Thu 21 Nov 2024 03:31:10 +0000 ROA not after: Thu 20 Nov 2025 03:36:10 +0000 asID: 139366 IP address blocks: 103.141.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:09:ed:cd:55:64:96:5e:2e:54:d6:09:d1:09:7a:cd:b9:92:af:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 21 03:31:10 2024 GMT Not After : Nov 20 03:36:10 2025 GMT Subject: CN=F74A5478CF03AED67845CA891F186649B2CD7A37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:52:38:61:9d:05:48:7a:67:50:6a:1b:34:13: 0d:3c:15:9f:10:b2:5d:12:1f:c8:7b:8d:5b:b0:b9: 48:9d:df:27:fd:10:36:ba:6c:18:c7:e7:c9:e1:10: db:8c:0d:6d:d6:a7:95:d4:f9:86:06:bc:c2:ef:78: a7:b1:ae:11:54:05:9c:33:31:e3:95:2f:9a:43:75: df:1f:9f:46:32:42:45:ca:98:36:bd:84:0d:6e:88: 35:7d:95:54:ea:e8:be:46:50:64:44:e8:e8:62:6a: 5c:5d:95:9d:2b:b1:4f:f7:ea:8a:8d:4c:90:a5:a9: c2:35:6e:2c:c3:3d:03:5c:e6:dc:18:79:81:c0:ce: c5:3e:cf:fb:99:ee:9f:69:af:01:7c:02:6b:d2:43: d7:8b:ce:41:ab:af:2a:80:ec:e6:08:dc:36:61:d9: ee:18:94:1a:b9:35:ae:15:0d:7f:8b:29:29:e1:45: d8:23:96:8d:28:96:ee:64:86:5f:3a:8d:9d:4f:65: 57:d6:5d:b3:a9:ee:0a:d2:1d:36:54:ac:23:f1:71: 65:14:ac:34:15:f8:95:e2:dc:17:54:04:36:c0:c5: d9:1c:cc:5a:1b:0c:2a:97:79:b0:f2:ef:96:72:59: 0f:36:a2:ad:ef:33:dd:d4:bf:1d:04:f3:54:08:20: 80:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:4A:54:78:CF:03:AE:D6:78:45:CA:89:1F:18:66:49:B2:CD:7A:37 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139366.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.230.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:f0:d7:82:a3:69:fe:8e:cf:eb:36:9c:a1:6f:14:1b:37:df: 49:47:bd:65:7a:da:cf:bc:b2:f0:2e:e5:c8:b8:e4:34:30:73: aa:a7:f7:77:51:21:1d:f7:7f:f9:2c:3c:e7:f4:32:f4:2b:bf: 70:62:f2:2a:c6:af:14:a1:16:b5:5c:be:d8:5d:67:f7:9c:69: f5:0e:cb:6d:e4:75:f1:2c:b1:55:20:7e:90:6e:dd:18:15:3d: 8c:34:a5:9b:ec:c4:ac:2e:2b:9f:a2:d1:f1:66:0b:02:09:d1: 2d:a4:b5:c3:5f:e1:9d:d4:1a:29:2e:54:1f:13:70:dc:f7:d1: 6d:5a:b5:fd:ba:eb:8c:ea:39:92:ef:ae:02:98:c3:96:53:fe: 7f:77:d1:35:22:40:de:ae:31:69:56:d8:f1:15:76:54:8d:50: 08:e3:92:44:1c:08:61:b0:2c:51:a9:a9:74:b6:d6:5d:44:e2: 7d:a0:e8:ba:6a:4a:eb:34:02:86:f1:ca:bd:28:a3:3b:8c:f9: ef:7a:0e:96:3a:2f:48:f0:36:ec:33:79:12:64:1a:09:ec:3d: 1d:0b:5a:a9:44:40:72:f2:d5:24:d9:be:d3:f6:64:6a:8a:bb: 42:72:fe:40:6a:52:9c:87:17:4f:7c:b4:a2:62:74:fc:dd:5c: 3f:ec:66:73 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOwntzVVkll4uVNYJ0Ql6zbmSryswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyMTAzMzExMFoX DTI1MTEyMDAzMzYxMFowMzExMC8GA1UEAxMoRjc0QTU0NzhDRjAzQUVENjc4NDVD QTg5MUYxODY2NDlCMkNEN0EzNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANZSOGGdBUh6Z1BqGzQTDTwVnxCyXRIfyHuNW7C5SJ3fJ/0QNrpsGMfnyeEQ 24wNbdanldT5hga8wu94p7GuEVQFnDMx45UvmkN13x+fRjJCRcqYNr2EDW6INX2V VOrovkZQZETo6GJqXF2VnSuxT/fqio1MkKWpwjVuLMM9A1zm3Bh5gcDOxT7P+5nu n2mvAXwCa9JD14vOQauvKoDs5gjcNmHZ7hiUGrk1rhUNf4spKeFF2COWjSiW7mSG XzqNnU9lV9Zds6nuCtIdNlSsI/FxZRSsNBX4leLcF1QENsDF2RzMWhsMKpd5sPLv lnJZDzaire8z3dS/HQTzVAgggGkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT3SlR4 zwOu1nhFyokfGGZJss16NzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTM2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeN5jANBgkqhkiG9w0BAQsFAAOCAQEAG/DXgqNp/o7P6zacoW8U GzffSUe9ZXraz7yy8C7lyLjkNDBzqqf3d1EhHfd/+Sw85/Qy9Cu/cGLyKsavFKEW tVy+2F1n95xp9Q7LbeR18SyxVSB+kG7dGBU9jDSlm+zErC4rn6LR8WYLAgnRLaS1 w1/hndQaKS5UHxNw3PfRbVq1/brrjOo5ku+uApjDllP+f3fRNSJA3q4xaVbY8RV2 VI1QCOOSRBwIYbAsUampdLbWXUTifaDoumpK6zQChvHKvSijO4z573oOljovSPA2 7DN5EmQaCew9HQtaqURAcvLVJNm+0/Zkaoq7QnL+QGpSnIcXT3y0omJ0/N1cP+xm cw== -----END CERTIFICATE-----Generated at Sun Feb 16 21:00:41 2025 by rpki-client