$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139397.roa File: AS139397.roa (raw, json) Hash identifier: iST8f14lQkLXTk2DHZzD1Rp5T6qYg/tQloxDiiEnFTs= Subject key identifier: 1B:7A:D9:50:1A:A9:6F:0C:B4:B4:18:A6:B0:19:BC:D1:80:20:8A:71 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 48E671AF0A274A9CBBE440F0A061E54050DC72F1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139397.roa Signing time: Tue 09 Jan 2024 04:00:05 +0000 ROA not before: Tue 09 Jan 2024 03:55:05 +0000 ROA not after: Tue 07 Jan 2025 04:00:05 +0000 asID: 139397 IP address blocks: 123.253.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:e6:71:af:0a:27:4a:9c:bb:e4:40:f0:a0:61:e5:40:50:dc:72:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:05 2024 GMT Not After : Jan 7 04:00:05 2025 GMT Subject: CN=1B7AD9501AA96F0CB4B418A6B019BCD180208A71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:c4:64:1d:9c:3f:13:a2:c3:67:5c:ef:07:7c: 95:a6:a8:99:a8:40:78:fd:a7:58:00:20:cd:44:0c: 41:b6:d1:23:98:61:c6:e5:10:33:98:cc:18:1d:b8: 20:1c:c3:85:41:ca:60:a1:0a:52:f3:ea:e5:8e:cd: e4:40:fd:7f:27:10:42:ce:9d:6f:c5:f0:bd:cf:d1: 18:36:04:71:da:2f:9c:e3:74:ab:b7:20:3d:aa:a2: 85:8b:b4:79:48:35:b0:c2:75:8a:75:db:aa:b4:7b: 83:6a:2b:60:4a:6b:53:9e:85:6c:41:36:e6:34:3a: c2:6b:66:2f:32:88:15:67:14:63:84:7d:7e:36:c3: 84:89:be:9a:34:cf:61:f0:c9:52:d1:9a:23:46:d2: e3:1d:33:4f:9c:66:12:c2:fa:34:8e:c2:39:91:e6: 59:74:9e:8a:44:8d:ad:29:72:5f:bf:ce:f6:4a:a6: ba:1e:6c:46:3f:04:69:92:2e:29:ce:07:37:f7:c0: ce:8e:2b:11:2d:a9:3b:bc:21:3c:de:07:ac:c5:5f: bf:ee:22:2b:89:06:78:09:32:a5:3b:d2:1d:df:4d: 4d:9f:76:69:69:16:d2:cb:b7:8d:63:86:92:de:6d: 47:9c:33:0c:bf:25:89:8a:46:35:43:c8:38:c0:ac: 37:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:7A:D9:50:1A:A9:6F:0C:B4:B4:18:A6:B0:19:BC:D1:80:20:8A:71 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139397.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.253.252.0/22 Signature Algorithm: sha256WithRSAEncryption 16:5a:ba:d1:06:9b:ba:3c:7a:a0:26:31:2d:88:74:6c:81:5f: f8:42:46:0e:28:53:3c:9b:7f:d9:82:53:14:7b:98:b0:70:c1: ae:2d:dd:92:de:f5:cd:fe:b3:e2:7c:68:01:85:52:25:7c:bd: de:c5:6a:5f:b7:cc:bb:e3:0f:a9:8d:94:79:1a:1d:79:05:45: c5:40:e5:ee:89:76:91:92:c8:26:99:de:8e:34:c8:60:42:39: f6:e1:3c:1c:6b:08:e6:49:65:52:62:00:f5:ad:f1:a9:33:eb: 4e:84:42:6f:d0:d4:df:18:7e:bf:6b:f3:36:c8:3e:54:11:24: b1:11:58:fd:64:19:6f:d0:8a:5a:1e:97:f7:93:33:94:64:20: a3:b5:de:d7:b3:b8:4a:d4:c6:16:99:73:1c:27:a2:82:14:f8: 5b:93:44:17:42:30:02:ed:4e:c3:ca:77:3f:d6:b0:38:4f:b1: 26:88:17:42:18:9d:05:72:d2:23:c5:70:90:7c:9e:83:48:ec: 9e:f3:72:ba:7d:51:3b:23:d5:a9:04:ab:d9:99:f7:9c:53:b2: 40:e9:78:3e:68:db:c4:72:cc:2a:91:72:76:d6:c0:3c:0e:16: e4:48:08:76:12:4e:8f:8c:5d:72:1d:5d:4e:21:f5:33:c3:91: 80:fc:b6:a6 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUSOZxrwonSpy75EDwoGHlQFDccvEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwNVoX DTI1MDEwNzA0MDAwNVowMzExMC8GA1UEAxMoMUI3QUQ5NTAxQUE5NkYwQ0I0QjQx OEE2QjAxOUJDRDE4MDIwOEE3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO/EZB2cPxOiw2dc7wd8laaomahAeP2nWAAgzUQMQbbRI5hhxuUQM5jMGB24 IBzDhUHKYKEKUvPq5Y7N5ED9fycQQs6db8Xwvc/RGDYEcdovnON0q7cgPaqihYu0 eUg1sMJ1inXbqrR7g2orYEprU56FbEE25jQ6wmtmLzKIFWcUY4R9fjbDhIm+mjTP YfDJUtGaI0bS4x0zT5xmEsL6NI7COZHmWXSeikSNrSlyX7/O9kqmuh5sRj8EaZIu Kc4HN/fAzo4rES2pO7whPN4HrMVfv+4iK4kGeAkypTvSHd9NTZ92aWkW0su3jWOG kt5tR5wzDL8liYpGNUPIOMCsN1UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQbetlQ GqlvDLS0GKawGbzRgCCKcTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTM5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAnv9/DANBgkqhkiG9w0BAQsFAAOCAQEAFlq60Qabujx6oCYxLYh0 bIFf+EJGDihTPJt/2YJTFHuYsHDBri3dkt71zf6z4nxoAYVSJXy93sVqX7fMu+MP qY2UeRodeQVFxUDl7ol2kZLIJpnejjTIYEI59uE8HGsI5kllUmIA9a3xqTPrToRC b9DU3xh+v2vzNsg+VBEksRFY/WQZb9CKWh6X95MzlGQgo7Xe17O4StTGFplzHCei ghT4W5NEF0IwAu1Ow8p3P9awOE+xJogXQhidBXLSI8VwkHyeg0jsnvNyun1ROyPV qQSr2Zn3nFOyQOl4PmjbxHLMKpFydtbAPA4W5EgIdhJOj4xdch1dTiH1M8ORgPy2 pg== -----END CERTIFICATE-----Generated at Tue May 7 18:07:16 2024 by rpki-client on console-fra.rpki-client.org