$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139396.roa File: AS139396.roa (raw, json) Hash identifier: AmNIegQvGaAH2bFoT3vq/HRumawoMFd9BZzr29qzVPk= Subject key identifier: B1:FE:CD:DF:9D:AF:AF:5F:75:33:F4:3C:81:76:FC:BA:3D:66:9A:82 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 63AA6CE47BDD13AF1A60E55951E96557340F4484 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139396.roa Signing time: Tue 10 Dec 2024 05:00:25 +0000 ROA not before: Tue 10 Dec 2024 04:55:25 +0000 ROA not after: Tue 09 Dec 2025 05:00:25 +0000 asID: 139396 IP address blocks: 45.113.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:aa:6c:e4:7b:dd:13:af:1a:60:e5:59:51:e9:65:57:34:0f:44:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:25 2024 GMT Not After : Dec 9 05:00:25 2025 GMT Subject: CN=B1FECDDF9DAFAF5F7533F43C8176FCBA3D669A82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4b:35:fb:cc:1f:f0:47:8d:36:47:05:9e:be: 71:43:d7:eb:be:3d:fc:41:d0:4d:aa:3a:37:19:9d: 99:7f:50:b3:3d:e0:4b:5e:f8:77:f9:41:27:50:33: dc:d9:f5:e0:1b:21:80:bb:35:17:3b:35:6b:2d:01: a7:78:28:a5:fe:1c:50:18:6a:2e:fa:28:f9:d7:21: 51:70:98:42:06:3f:2a:c5:9c:8e:9b:71:1b:aa:0c: 53:e0:2c:88:df:76:8f:80:87:4b:44:90:f1:9d:61: fe:86:39:71:e4:49:cf:46:b4:22:f4:ab:5b:4e:ff: 2d:dc:cc:ed:36:3f:fc:29:3e:1b:ab:db:57:88:d0: b2:b4:5c:1b:ad:7a:66:5c:92:d6:9e:a7:75:ce:ba: 9e:16:6e:98:6d:c2:4a:7b:8c:f9:b1:20:78:27:30: a2:5d:92:c3:c3:3b:6b:ef:10:48:d5:0e:1d:32:59: 8f:19:ef:3a:f3:e9:d2:ea:3e:e5:4e:fc:79:e9:a3: bf:9c:e6:1b:8d:86:58:95:df:78:09:01:fb:42:36: b9:cd:1e:40:71:b1:19:16:d7:51:c7:df:f6:89:70: 2b:c5:ca:74:f1:81:43:1e:88:c4:33:d3:b8:98:0a: d6:65:87:32:8f:f7:d3:00:17:25:7a:e2:61:50:33: 27:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:FE:CD:DF:9D:AF:AF:5F:75:33:F4:3C:81:76:FC:BA:3D:66:9A:82 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139396.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.113.228.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:cb:7a:8d:f8:a9:41:0d:d0:59:28:5c:fd:3b:25:41:cd:e5: fb:fe:0a:f7:30:82:ae:3b:27:1e:5a:25:fe:56:23:2a:c1:a1: 09:3a:15:c8:4a:bd:0d:59:66:4c:d8:81:d6:1b:b7:d1:69:ab: c4:7c:bf:08:c6:fc:3e:ab:94:f1:20:54:21:3d:4f:c7:31:dd: 7a:f2:e5:00:5a:72:21:78:ab:7c:75:5a:0a:1a:ff:e5:f6:e2: 1c:63:00:72:06:54:2d:ff:86:b2:4a:ee:d7:dd:2d:c8:c9:88: c7:29:b8:a9:fd:15:8e:35:f8:21:e3:50:c6:b7:20:b0:3e:c9: 07:82:7a:5d:28:5b:a4:e5:f2:ab:f7:ec:93:f4:e9:73:28:6d: cb:7f:48:41:4e:42:23:5c:00:ba:2a:61:a5:51:3a:64:ae:2e: b5:a6:c5:7b:0e:c7:7c:e3:bd:cd:73:e5:9e:06:30:06:ed:78: 68:3e:28:d5:6c:4b:aa:8c:96:ff:19:ba:e1:43:9d:c7:bb:7a: b1:6b:f0:95:83:d2:24:77:db:39:dc:3c:44:14:f9:77:ad:1c: 75:e4:2e:9c:b6:19:d6:06:17:7c:3f:a8:18:6d:0a:d0:08:1c: 57:63:ca:ac:b0:e2:ca:96:c3:5a:fc:3d:42:fe:7c:ac:56:dd: 9d:d7:b9:49 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUY6ps5HvdE68aYOVZUellVzQPRIQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyNVoX DTI1MTIwOTA1MDAyNVowMzExMC8GA1UEAxMoQjFGRUNEREY5REFGQUY1Rjc1MzNG NDNDODE3NkZDQkEzRDY2OUE4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1LNfvMH/BHjTZHBZ6+cUPX6749/EHQTao6NxmdmX9Qsz3gS174d/lBJ1Az 3Nn14BshgLs1Fzs1ay0Bp3gopf4cUBhqLvoo+dchUXCYQgY/KsWcjptxG6oMU+As iN92j4CHS0SQ8Z1h/oY5ceRJz0a0IvSrW07/LdzM7TY//Ck+G6vbV4jQsrRcG616 ZlyS1p6ndc66nhZumG3CSnuM+bEgeCcwol2Sw8M7a+8QSNUOHTJZjxnvOvPp0uo+ 5U78eemjv5zmG42GWJXfeAkB+0I2uc0eQHGxGRbXUcff9olwK8XKdPGBQx6IxDPT uJgK1mWHMo/30wAXJXriYVAzJ4kCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSx/s3f na+vX3Uz9DyBdvy6PWaagjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTM5Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAi1x5DANBgkqhkiG9w0BAQsFAAOCAQEAbMt6jfipQQ3QWShc/Tsl Qc3l+/4K9zCCrjsnHlol/lYjKsGhCToVyEq9DVlmTNiB1hu30WmrxHy/CMb8PquU 8SBUIT1PxzHdevLlAFpyIXirfHVaChr/5fbiHGMAcgZULf+Gskru190tyMmIxym4 qf0VjjX4IeNQxrcgsD7JB4J6XShbpOXyq/fsk/Tpcyhty39IQU5CI1wAuiphpVE6 ZK4utabFew7HfOO9zXPlngYwBu14aD4o1WxLqoyW/xm64UOdx7t6sWvwlYPSJHfb Odw8RBT5d60cdeQunLYZ1gYXfD+oGG0K0AgcV2PKrLDiypbDWvw9Qv58rFbdnde5 SQ== -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:45 2025 by rpki-client