$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139398.roa File: AS139398.roa (raw, json) Hash identifier: jN472taVuXkiMyQ61vuCrtmlEK2IPiIUALum2z4sC74= Subject key identifier: 5C:70:BB:44:54:2C:55:39:D1:B0:87:18:52:7C:7A:19:5E:63:C0:27 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 42628D681FA8B003D977B8790F3462DBBE7F665D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139398.roa Signing time: Tue 09 Jan 2024 04:00:19 +0000 ROA not before: Tue 09 Jan 2024 03:55:19 +0000 ROA not after: Tue 07 Jan 2025 04:00:19 +0000 asID: 139398 IP address blocks: 144.48.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 15:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:62:8d:68:1f:a8:b0:03:d9:77:b8:79:0f:34:62:db:be:7f:66:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:19 2024 GMT Not After : Jan 7 04:00:19 2025 GMT Subject: CN=5C70BB44542C5539D1B08718527C7A195E63C027 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b0:a8:20:ac:32:3b:59:ab:c2:26:12:38:27: 54:fc:7c:f9:e2:4c:93:70:2b:ec:61:21:67:e4:7a: ac:42:92:a6:34:20:84:a0:ef:ed:33:fa:46:ea:b4: 29:fc:7c:06:6f:7b:43:60:77:5f:5f:5e:4c:8c:97: 40:6c:e5:18:c5:8a:d3:cd:96:ce:e5:15:f6:cb:ba: a6:23:4a:f6:9d:4b:99:ae:39:10:2a:01:bf:a3:20: 3f:99:85:f8:8d:2c:93:70:c4:cc:8a:c0:8c:c8:e9: 1c:a9:40:4d:94:2c:6b:e5:3f:7f:61:a0:c0:5a:4b: da:98:22:3a:cd:5f:eb:f8:ea:a6:0a:58:ea:39:a4: 88:fc:2d:c7:96:48:8d:21:0e:7e:d0:59:30:85:f0: 82:0a:41:a6:31:6a:e1:66:7d:b9:78:9e:d7:5e:9d: a1:64:03:66:db:e4:01:cc:a5:95:76:1a:43:65:a0: 7f:8b:ce:8d:96:18:f5:0d:95:e6:31:3f:75:e6:cc: 57:10:03:14:b4:84:e8:b5:bf:08:82:f6:2e:25:ab: 31:ec:25:f8:0d:37:b8:d5:c4:10:29:13:8d:28:ef: 44:b2:4b:1a:07:79:a3:21:38:65:06:9f:d6:bf:3a: a4:34:c6:00:67:d2:25:86:a2:10:9b:d1:e3:63:ad: d5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:70:BB:44:54:2C:55:39:D1:B0:87:18:52:7C:7A:19:5E:63:C0:27 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139398.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.48.12.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:e6:0b:df:47:5f:8e:f3:f5:f3:4d:00:44:5c:c3:13:58:6b: 78:0e:a7:6a:31:01:60:99:d5:78:6d:5e:28:eb:1a:2c:67:06: 62:e5:7c:ca:37:bb:16:fb:c9:ce:35:a0:de:e9:a2:be:ae:b2: a5:29:cc:1a:5d:f2:48:05:ac:19:b9:ba:c4:03:74:69:de:27: 2c:31:62:ea:56:cc:55:b1:81:86:d3:16:3f:d3:fe:68:8a:f6: cd:8e:8a:09:96:c7:00:d2:5c:9c:ca:08:ae:2c:1f:fc:f6:44: 4d:a3:17:1f:25:94:c7:ff:07:d5:e6:d4:28:17:90:67:81:ba: 76:1e:b8:80:4b:cd:d1:55:10:6a:8c:9c:a2:e2:66:b7:4e:a3: ea:a0:bd:40:6d:24:7b:2b:b8:01:c6:af:d9:66:8b:62:a5:cd: 29:d3:32:bc:b3:53:35:2b:f4:89:19:2f:32:e6:db:6b:07:f2: cd:3c:34:08:26:ce:a6:7a:b5:64:06:da:8b:7a:a9:ca:57:dd: 6c:97:da:91:02:8e:21:7c:92:38:f3:cd:d0:3a:ae:1f:e6:f8: 35:35:e4:79:ad:6b:cf:cc:9b:2d:6a:59:be:6f:20:6b:4e:c3: 1e:f7:28:38:eb:94:54:14:2e:1d:94:08:ff:4b:bf:31:f0:31: 8a:6d:8d:16 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQmKNaB+osAPZd7h5DzRi275/Zl0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxOVoX DTI1MDEwNzA0MDAxOVowMzExMC8GA1UEAxMoNUM3MEJCNDQ1NDJDNTUzOUQxQjA4 NzE4NTI3QzdBMTk1RTYzQzAyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOSwqCCsMjtZq8ImEjgnVPx8+eJMk3Ar7GEhZ+R6rEKSpjQghKDv7TP6Ruq0 Kfx8Bm97Q2B3X19eTIyXQGzlGMWK082WzuUV9su6piNK9p1Lma45ECoBv6MgP5mF +I0sk3DEzIrAjMjpHKlATZQsa+U/f2GgwFpL2pgiOs1f6/jqpgpY6jmkiPwtx5ZI jSEOftBZMIXwggpBpjFq4WZ9uXie116doWQDZtvkAcyllXYaQ2Wgf4vOjZYY9Q2V 5jE/debMVxADFLSE6LW/CIL2LiWrMewl+A03uNXEECkTjSjvRLJLGgd5oyE4ZQaf 1r86pDTGAGfSJYaiEJvR42Ot1YkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRccLtE VCxVOdGwhxhSfHoZXmPAJzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTM5OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEApAwDDANBgkqhkiG9w0BAQsFAAOCAQEAfOYL30dfjvP1800ARFzD E1hreA6najEBYJnVeG1eKOsaLGcGYuV8yje7FvvJzjWg3umivq6ypSnMGl3ySAWs Gbm6xAN0ad4nLDFi6lbMVbGBhtMWP9P+aIr2zY6KCZbHANJcnMoIriwf/PZETaMX HyWUx/8H1ebUKBeQZ4G6dh64gEvN0VUQaoycouJmt06j6qC9QG0keyu4Acav2WaL YqXNKdMyvLNTNSv0iRkvMubbawfyzTw0CCbOpnq1ZAbai3qpylfdbJfakQKOIXyS OPPN0DquH+b4NTXkea1rz8ybLWpZvm8ga07DHvcoOOuUVBQuHZQI/0u/MfAxim2N Fg== -----END CERTIFICATE-----Generated at Tue May 7 04:35:01 2024 by rpki-client on console-ams.rpki-client.org