$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139381.roa File: AS139381.roa (raw, json) Hash identifier: fdfhz4q/j8N6FxNhRHaTkGOcaeevAccjx4kDPmZETiE= Subject key identifier: 0D:28:52:6F:4E:70:D7:AE:1E:C7:CC:E3:4A:FE:1F:F2:24:E9:A7:89 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 54788636C578EF9EFC9420BDFB01D4A5B6C10EEC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139381.roa Signing time: Tue 22 Oct 2024 08:00:00 +0000 ROA not before: Tue 22 Oct 2024 07:55:00 +0000 ROA not after: Tue 21 Oct 2025 08:00:00 +0000 asID: 139381 IP address blocks: 202.47.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:78:86:36:c5:78:ef:9e:fc:94:20:bd:fb:01:d4:a5:b6:c1:0e:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 22 07:55:00 2024 GMT Not After : Oct 21 08:00:00 2025 GMT Subject: CN=0D28526F4E70D7AE1EC7CCE34AFE1FF224E9A789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ed:75:bb:88:8d:be:e7:4e:b9:58:ba:37:d8: 66:d8:43:21:95:0a:7d:a4:c0:3b:76:8f:37:d1:b2: 03:4b:b0:72:87:33:33:bb:0c:95:cd:4a:e4:11:33: 1b:db:89:88:34:94:0f:22:c4:e0:42:48:e3:b8:2b: d9:a9:83:92:f5:da:cf:fe:fc:fd:01:ea:f2:6c:d1: 9e:da:55:7d:01:e2:b0:03:92:a9:9e:e5:8f:c6:43: 63:b2:4c:a1:c9:98:56:34:8b:40:dc:08:3c:5a:0b: 19:a6:c1:58:08:46:9a:00:f6:05:c8:23:9b:5c:9a: 98:3c:f3:85:14:73:e5:32:47:62:c2:4c:7f:8f:90: 0e:43:b4:68:fd:e0:cf:5c:18:c9:fd:66:25:19:30: 45:f0:69:e8:dd:2f:0b:42:4e:12:af:4c:5b:f1:da: 4c:5d:9d:25:ba:30:42:6b:64:99:f1:50:8d:94:00: 17:2f:5c:5b:67:6e:29:13:f6:b1:f2:92:8e:c0:1a: 7c:3d:40:80:bb:8c:a2:bd:17:11:0d:48:09:9f:a1: 8a:c6:2e:ae:39:82:87:cb:00:3a:00:b3:13:e3:5e: 9a:c2:48:fd:65:8f:61:84:49:64:58:4c:89:a4:b3: ed:13:24:0a:8a:3f:d4:43:d9:9e:8f:3a:9a:20:64: 32:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:28:52:6F:4E:70:D7:AE:1E:C7:CC:E3:4A:FE:1F:F2:24:E9:A7:89 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139381.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.188.0/23 Signature Algorithm: sha256WithRSAEncryption 22:ed:93:74:8c:40:8a:3e:63:f4:4c:68:71:92:d5:c6:fd:06: 20:a8:6c:94:bf:9f:d8:01:12:f0:e5:b4:7e:85:a1:92:03:b0: 24:f4:05:13:40:5e:c6:76:3f:8c:3b:32:42:f0:60:b2:cc:7e: fc:8b:fa:7d:bd:54:5c:75:37:0b:09:75:2f:ab:a1:d6:ec:89: 93:4e:02:01:6f:18:12:c8:d5:b0:cb:26:37:67:55:f6:02:25: a1:47:dc:90:bc:f5:62:90:68:ca:fa:a8:ad:ac:c6:a4:4d:3f: f9:34:ee:03:53:bf:d0:e1:8e:f4:30:d4:56:85:c8:78:3c:3d: 7a:1f:e6:23:c0:a9:6c:04:6d:95:b1:88:07:9f:a5:7e:4e:71: 99:8a:63:82:e7:2c:c1:75:7a:17:71:cd:aa:79:45:9a:50:9b: 3e:e0:37:e1:b8:45:a9:0a:5f:84:b3:71:c6:f1:02:2f:d4:9c: 3f:cd:8c:3f:d0:58:b7:56:74:73:a7:38:0e:94:2d:ba:ff:15: d9:e1:98:6b:95:2f:ef:e4:79:a3:73:4e:c8:80:4e:b8:64:09: b3:a8:7f:b6:79:e8:12:77:c9:b2:da:fd:3e:61:32:f2:6f:27: 15:46:99:40:b6:42:9e:2b:85:8b:3f:c2:9d:c3:8f:d9:65:bf: d8:2e:21:f1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVHiGNsV47578lCC9+wHUpbbBDuwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyMjA3NTUwMFoX DTI1MTAyMTA4MDAwMFowMzExMC8GA1UEAxMoMEQyODUyNkY0RTcwRDdBRTFFQzdD Q0UzNEFGRTFGRjIyNEU5QTc4OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMbtdbuIjb7nTrlYujfYZthDIZUKfaTAO3aPN9GyA0uwcoczM7sMlc1K5BEz G9uJiDSUDyLE4EJI47gr2amDkvXaz/78/QHq8mzRntpVfQHisAOSqZ7lj8ZDY7JM ocmYVjSLQNwIPFoLGabBWAhGmgD2Bcgjm1yamDzzhRRz5TJHYsJMf4+QDkO0aP3g z1wYyf1mJRkwRfBp6N0vC0JOEq9MW/HaTF2dJbowQmtkmfFQjZQAFy9cW2duKRP2 sfKSjsAafD1AgLuMor0XEQ1ICZ+hisYurjmCh8sAOgCzE+NemsJI/WWPYYRJZFhM iaSz7RMkCoo/1EPZno86miBkMpsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQNKFJv TnDXrh7HzONK/h/yJOmniTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTM4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAcovvDANBgkqhkiG9w0BAQsFAAOCAQEAIu2TdIxAij5j9ExocZLV xv0GIKhslL+f2AES8OW0foWhkgOwJPQFE0BexnY/jDsyQvBgssx+/Iv6fb1UXHU3 Cwl1L6uh1uyJk04CAW8YEsjVsMsmN2dV9gIloUfckLz1YpBoyvqorazGpE0/+TTu A1O/0OGO9DDUVoXIeDw9eh/mI8CpbARtlbGIB5+lfk5xmYpjgucswXV6F3HNqnlF mlCbPuA34bhFqQpfhLNxxvECL9ScP82MP9BYt1Z0c6c4DpQtuv8V2eGYa5Uv7+R5 o3NOyIBOuGQJs6h/tnnoEnfJstr9PmEy8m8nFUaZQLZCniuFiz/CncOP2WW/2C4h 8Q== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:47 2024 by rpki-client on console-ams.rpki-client.org