$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139381.roa File: AS139381.roa (raw, json) Hash identifier: +8WYLTpWGdQTKAc4KQy49acDjXkXk2L3h6pwQsmUnOI= Subject key identifier: FE:37:CE:5D:8A:88:62:FE:C0:5A:8D:DF:D6:C9:60:7B:DB:5E:44:F0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 09347C94486C4D3DAFA540797E135DD1FB23FCBB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139381.roa Signing time: Tue 21 Nov 2023 07:25:50 +0000 ROA not before: Tue 21 Nov 2023 07:20:50 +0000 ROA not after: Tue 19 Nov 2024 07:25:50 +0000 asID: 139381 IP address blocks: 202.47.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:34:7c:94:48:6c:4d:3d:af:a5:40:79:7e:13:5d:d1:fb:23:fc:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 21 07:20:50 2023 GMT Not After : Nov 19 07:25:50 2024 GMT Subject: CN=FE37CE5D8A8862FEC05A8DDFD6C9607BDB5E44F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f3:73:1c:14:61:30:31:38:16:04:ec:a3:ec: 7e:b7:cb:9a:2b:4e:f0:ac:0b:e6:79:7f:05:6b:94: a2:76:65:2e:95:6a:a1:3a:c0:b1:72:32:77:f8:53: 43:10:ca:e1:0a:dd:35:27:51:ba:0b:2c:16:78:c0: 58:3f:fb:9a:45:d8:c3:43:e9:ff:ab:1f:a9:c2:9b: 85:37:27:74:85:c5:c1:83:2c:11:11:dd:39:ca:9c: 55:ec:84:ea:5e:fe:2f:a3:aa:f3:86:48:04:4e:ad: 0c:25:61:89:3b:f3:f3:89:76:ba:a5:c9:5e:52:be: 11:9b:3e:8a:db:cc:ce:d7:58:35:1a:fd:0c:c3:52: 0a:0c:96:6b:d0:55:32:d8:e7:a0:5b:27:1c:33:2f: 9a:52:49:55:18:2d:a9:8a:8c:a7:d4:e3:28:b1:26: 3f:3a:52:ff:0d:95:52:48:d8:e1:e5:d9:29:93:9f: 1f:0f:64:89:f4:29:49:56:4c:fe:f6:77:d8:0b:aa: 37:f6:33:a3:26:c0:e9:6d:1e:48:0a:8d:03:ce:5a: 7a:35:c1:ed:2c:16:cd:fb:80:e9:1d:fd:e8:eb:22: ec:66:84:0a:52:2d:15:18:60:9a:ee:75:00:39:af: 4a:ab:96:34:77:11:3d:01:3a:aa:ff:6b:e1:71:e2: 51:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:37:CE:5D:8A:88:62:FE:C0:5A:8D:DF:D6:C9:60:7B:DB:5E:44:F0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139381.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.188.0/23 Signature Algorithm: sha256WithRSAEncryption 30:18:99:ee:55:d6:4e:d5:24:97:87:6f:4d:7a:e6:f1:a6:c3: d3:87:dc:d5:c6:84:06:de:90:51:9c:2d:87:a9:9e:6e:76:67: d2:6c:14:13:0e:1b:e7:e9:6b:39:6d:39:8c:ee:b1:68:10:6e: b5:44:c0:45:69:78:2d:c6:dd:66:c2:67:c1:67:53:38:19:6f: e9:16:22:40:61:44:c7:01:b9:01:11:4d:62:e4:f6:4f:30:16: 38:a4:97:fa:fb:72:ce:7c:75:fc:c8:09:07:c9:3a:c9:11:c3: 30:07:ab:a6:01:00:14:bc:e9:9a:80:9f:72:26:93:01:1a:72: 5e:09:17:6f:5b:27:81:1e:02:1e:4b:62:e4:e3:2d:ea:a3:96: f2:6f:bf:bf:60:ef:3c:5a:c3:8e:0a:95:71:8c:35:1a:b9:e7: 7e:79:24:9f:14:36:48:7c:76:4d:1b:6b:22:94:9a:20:90:e2: 09:0f:55:d5:29:ff:0b:20:14:a4:f1:67:8f:b3:f9:97:36:35: 12:51:87:ef:1c:69:42:9a:27:fa:36:51:71:47:4f:54:78:0d: 4b:f7:71:ea:2d:a9:3d:ff:cb:07:2a:ed:e6:0a:99:bf:1e:9a: 7b:d6:8d:7c:39:d3:99:58:26:e9:0e:ff:d7:eb:eb:d0:17:ca: 14:52:fd:17 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCTR8lEhsTT2vpUB5fhNd0fsj/LswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyMTA3MjA1MFoX DTI0MTExOTA3MjU1MFowMzExMC8GA1UEAxMoRkUzN0NFNUQ4QTg4NjJGRUMwNUE4 RERGRDZDOTYwN0JEQjVFNDRGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALnzcxwUYTAxOBYE7KPsfrfLmitO8KwL5nl/BWuUonZlLpVqoTrAsXIyd/hT QxDK4QrdNSdRugssFnjAWD/7mkXYw0Pp/6sfqcKbhTcndIXFwYMsERHdOcqcVeyE 6l7+L6Oq84ZIBE6tDCVhiTvz84l2uqXJXlK+EZs+itvMztdYNRr9DMNSCgyWa9BV MtjnoFsnHDMvmlJJVRgtqYqMp9TjKLEmPzpS/w2VUkjY4eXZKZOfHw9kifQpSVZM /vZ32AuqN/YzoybA6W0eSAqNA85aejXB7SwWzfuA6R396Osi7GaEClItFRhgmu51 ADmvSquWNHcRPQE6qv9r4XHiUQkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT+N85d iohi/sBajd/WyWB7215E8DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTM4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAcovvDANBgkqhkiG9w0BAQsFAAOCAQEAMBiZ7lXWTtUkl4dvTXrm 8abD04fc1caEBt6QUZwth6mebnZn0mwUEw4b5+lrOW05jO6xaBButUTARWl4Lcbd ZsJnwWdTOBlv6RYiQGFExwG5ARFNYuT2TzAWOKSX+vtyznx1/MgJB8k6yRHDMAer pgEAFLzpmoCfciaTARpyXgkXb1sngR4CHkti5OMt6qOW8m+/v2DvPFrDjgqVcYw1 GrnnfnkknxQ2SHx2TRtrIpSaIJDiCQ9V1Sn/CyAUpPFnj7P5lzY1ElGH7xxpQpon +jZRcUdPVHgNS/dx6i2pPf/LByrt5gqZvx6ae9aNfDnTmVgm6Q7/1+vr0BfKFFL9 Fw== -----END CERTIFICATE-----Generated at Wed May 8 15:17:41 2024 by rpki-client on console-fra.rpki-client.org