$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139388.roa File: AS139388.roa (raw, json) Hash identifier: Jnc/EHK3fORM/vNBk8Kcs95UOE4KL0bTw63bZ8RJJb0= Subject key identifier: 79:9C:4A:C8:0A:FD:B2:3A:5A:3E:17:B8:E2:26:12:FE:1B:D8:04:71 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 58B179A5FB1E01812D5B30404616BCB061E341AD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139388.roa Signing time: Mon 18 Dec 2023 02:32:32 +0000 ROA not before: Mon 18 Dec 2023 02:27:32 +0000 ROA not after: Mon 16 Dec 2024 02:32:32 +0000 asID: 139388 IP address blocks: 160.20.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:b1:79:a5:fb:1e:01:81:2d:5b:30:40:46:16:bc:b0:61:e3:41:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 18 02:27:32 2023 GMT Not After : Dec 16 02:32:32 2024 GMT Subject: CN=799C4AC80AFDB23A5A3E17B8E22612FE1BD80471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:19:70:1a:8d:af:74:ca:06:19:db:45:a1:59: a8:78:b3:3c:52:27:9e:dc:e0:b3:b2:93:27:7e:a0: 50:b8:84:da:c4:1d:b6:41:35:a6:41:35:2c:8c:de: 55:f7:e5:dc:d4:51:4d:d6:b8:18:a0:0a:15:c1:b8: 07:bc:50:bb:47:82:11:8c:54:db:a5:73:af:ac:4a: 08:01:15:be:6b:67:52:c8:81:81:b0:1e:7b:9a:92: 8d:f0:92:49:cc:b5:ee:29:61:60:f4:21:e9:ad:80: 9a:cf:f8:cb:50:19:6f:32:b6:ab:29:a5:ff:66:2d: b6:eb:6a:04:5c:fa:e9:f5:2d:bb:2d:37:12:46:a6: 0e:10:9b:ef:12:7c:ef:3a:ab:bb:05:73:c7:0e:8e: 5b:c2:65:aa:93:9c:44:97:3b:b9:de:fa:6d:8e:da: 9a:78:5f:d4:63:90:81:2b:31:af:94:64:28:1d:fc: 39:8c:1b:ad:61:78:0c:49:9e:cb:13:f5:14:c9:01: 76:6f:94:49:02:b1:ee:3c:2b:e5:6b:1a:5b:f5:12: 9a:45:9f:ab:53:47:e0:54:5c:3e:49:b8:56:71:cb: 75:d3:f7:d2:9a:5f:36:58:8c:44:f4:d0:37:3a:fb: 3e:4f:34:1e:f0:45:43:70:04:13:6e:0f:6c:cc:98: d4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:9C:4A:C8:0A:FD:B2:3A:5A:3E:17:B8:E2:26:12:FE:1B:D8:04:71 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139388.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.223.0/24 Signature Algorithm: sha256WithRSAEncryption 41:6c:bd:27:10:d4:32:bd:69:e0:69:88:29:7d:10:97:02:3a: 9b:ca:0c:72:17:4c:24:43:1c:47:f3:db:98:64:60:d2:ce:e5: 78:06:49:ca:da:2d:1e:44:56:9b:a9:cf:0d:d5:89:aa:b4:d1: 69:1f:f7:79:02:fe:96:a9:3b:a2:bc:58:e5:34:b4:b5:e7:06: 13:3f:ea:da:7e:4e:6d:e9:cb:ff:c0:5e:36:e0:b2:c5:4e:40: f5:f5:f5:75:58:e7:e2:26:30:83:c5:53:5a:94:17:fe:4c:21: 79:f6:57:66:14:75:26:0d:40:84:41:03:aa:4f:7c:72:e3:f6: 72:43:44:16:6b:93:8e:fe:81:13:56:4c:ca:cc:b1:ac:45:0d: 93:34:73:43:65:a1:e9:89:e1:63:20:44:5a:89:66:c4:f0:c1: ca:b7:61:cb:98:2d:74:b0:00:68:a2:86:e9:70:5b:bd:df:91: 08:95:91:31:b4:9a:69:5a:55:cf:1f:e3:05:1e:19:23:c5:27: 05:6c:b9:72:94:be:bb:56:12:76:95:cb:81:90:05:67:d3:19: ab:25:01:a1:52:83:cf:fa:a3:cc:02:6e:a8:18:5a:9b:93:e2: 19:35:9d:20:a2:5d:87:b2:2a:be:a9:33:fd:b6:12:56:ff:98: ef:d3:ee:71 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWLF5pfseAYEtWzBARha8sGHjQa0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxODAyMjczMloX DTI0MTIxNjAyMzIzMlowMzExMC8GA1UEAxMoNzk5QzRBQzgwQUZEQjIzQTVBM0Ux N0I4RTIyNjEyRkUxQkQ4MDQ3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPQZcBqNr3TKBhnbRaFZqHizPFInntzgs7KTJ36gULiE2sQdtkE1pkE1LIze Vffl3NRRTda4GKAKFcG4B7xQu0eCEYxU26Vzr6xKCAEVvmtnUsiBgbAee5qSjfCS Scy17ilhYPQh6a2Ams/4y1AZbzK2qyml/2YttutqBFz66fUtuy03EkamDhCb7xJ8 7zqruwVzxw6OW8JlqpOcRJc7ud76bY7amnhf1GOQgSsxr5RkKB38OYwbrWF4DEme yxP1FMkBdm+USQKx7jwr5WsaW/USmkWfq1NH4FRcPkm4VnHLddP30ppfNliMRPTQ Nzr7Pk80HvBFQ3AEE24PbMyY1JUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR5nErI Cv2yOlo+F7jiJhL+G9gEcTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTM4OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKAU3zANBgkqhkiG9w0BAQsFAAOCAQEAQWy9JxDUMr1p4GmIKX0Q lwI6m8oMchdMJEMcR/PbmGRg0s7leAZJytotHkRWm6nPDdWJqrTRaR/3eQL+lqk7 orxY5TS0tecGEz/q2n5ObenL/8BeNuCyxU5A9fX1dVjn4iYwg8VTWpQX/kwhefZX ZhR1Jg1AhEEDqk98cuP2ckNEFmuTjv6BE1ZMysyxrEUNkzRzQ2Wh6YnhYyBEWolm xPDByrdhy5gtdLAAaKKG6XBbvd+RCJWRMbSaaVpVzx/jBR4ZI8UnBWy5cpS+u1YS dpXLgZAFZ9MZqyUBoVKDz/qjzAJuqBham5PiGTWdIKJdh7Iqvqkz/bYSVv+Y79Pu cQ== -----END CERTIFICATE-----Generated at Wed May 8 21:02:21 2024 by rpki-client on console-fra.rpki-client.org