$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139403.roa File: AS139403.roa (raw, json) Hash identifier: vPvZXPp9GFL7pD+OQ3N/ukksCix973zpWIaF2h+pGvw= Subject key identifier: 8D:36:F2:ED:F4:DA:74:3F:30:24:6D:B2:54:3D:BA:EB:A2:56:70:CA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 74B63EBB97D68ABD85B733807A6157F577559278 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139403.roa Signing time: Mon 29 Jan 2024 05:00:00 +0000 ROA not before: Mon 29 Jan 2024 04:55:00 +0000 ROA not after: Mon 27 Jan 2025 05:00:00 +0000 asID: 139403 IP address blocks: 103.143.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:b6:3e:bb:97:d6:8a:bd:85:b7:33:80:7a:61:57:f5:77:55:92:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 29 04:55:00 2024 GMT Not After : Jan 27 05:00:00 2025 GMT Subject: CN=8D36F2EDF4DA743F30246DB2543DBAEBA25670CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:51:e9:df:a4:de:66:ef:ef:69:41:e2:84:f9: bb:a1:20:6a:69:0e:cc:fe:f9:29:ac:0e:80:c4:ed: 4c:91:bb:cf:d4:87:85:e8:a2:e2:ec:5c:60:d8:6a: bb:0f:08:35:db:1d:2c:49:69:47:60:e8:21:8a:15: d4:ca:2d:dd:98:23:d6:65:9a:96:8c:17:c8:73:df: 6e:9c:78:17:5c:53:87:0a:0a:b4:fc:46:a1:7a:47: 34:ea:4d:6c:a6:62:31:04:ad:3f:fe:d3:1f:f9:46: 83:19:16:52:a7:5b:76:ce:41:b3:30:3d:18:a6:ae: aa:7d:ab:2b:56:d6:26:4b:6a:86:65:5b:db:f0:7a: d1:1e:0b:10:d7:c5:69:fc:ec:34:b5:4c:dc:b5:c6: 3c:9b:29:b5:20:3f:6d:5a:df:68:4d:ba:ae:e5:f8: 22:76:89:ae:38:1c:1d:a1:ba:d6:ce:fe:4d:cf:04: ef:c5:a8:58:90:b6:37:6b:90:ed:a2:f1:41:d3:93: f8:93:1f:82:c9:46:f8:ed:43:24:e6:e3:68:12:88: 41:66:5c:5a:14:7b:fd:ce:43:38:2b:c1:bf:03:ce: a3:bd:d7:f8:ce:17:fe:7d:43:c2:7e:04:37:c5:60: 49:db:7a:89:0d:22:2e:4c:49:71:0e:3d:8f:7b:75: 46:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:36:F2:ED:F4:DA:74:3F:30:24:6D:B2:54:3D:BA:EB:A2:56:70:CA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139403.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.154.0/24 Signature Algorithm: sha256WithRSAEncryption 80:36:39:2d:99:9b:20:4a:dd:f7:cb:b6:c3:c7:c3:f1:25:42: 69:fb:57:c7:04:bc:96:5a:3a:fc:a4:7b:04:0e:65:8f:6d:a0: 32:40:97:07:5f:99:eb:6c:56:e5:73:3b:de:de:a2:3a:3d:60: 77:63:bf:a3:3d:dc:e8:59:0c:8f:14:f9:f8:f2:00:bd:46:d7: 7e:98:1a:20:93:74:9a:bf:88:8e:f8:81:ef:97:c9:6d:78:a6: 98:2b:d7:c0:f6:60:89:cd:cf:30:cc:7f:2e:98:58:c7:92:2e: ea:a0:6d:31:f0:ab:6c:c3:91:34:45:52:b1:54:36:87:e6:5f: d0:68:45:4c:1e:ba:bc:ed:2b:e7:08:33:c0:3d:e2:32:3f:3c: 49:0c:30:46:19:b5:cb:1f:8b:76:ba:e2:be:e0:91:cb:f0:ea: e4:1d:ac:d7:be:09:e7:6c:9e:38:a1:e3:f7:5b:fe:45:9f:76: b9:61:6d:55:f9:a1:1b:bb:52:58:ac:8f:04:0d:69:a6:9c:5d: 7e:69:86:f7:da:18:af:77:0b:36:17:44:d9:77:c4:0b:c5:6e: ec:99:4c:1a:d0:0d:11:35:48:a9:9b:24:17:3f:56:6a:eb:b5: 01:e8:9c:ef:00:40:a5:ed:e8:2f:a1:95:08:90:f3:41:93:e5: 1c:17:27:d7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdLY+u5fWir2FtzOAemFX9XdVkngwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEyOTA0NTUwMFoX DTI1MDEyNzA1MDAwMFowMzExMC8GA1UEAxMoOEQzNkYyRURGNERBNzQzRjMwMjQ2 REIyNTQzREJBRUJBMjU2NzBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1R6d+k3mbv72lB4oT5u6EgamkOzP75KawOgMTtTJG7z9SHheii4uxcYNhq uw8INdsdLElpR2DoIYoV1Mot3Zgj1mWalowXyHPfbpx4F1xThwoKtPxGoXpHNOpN bKZiMQStP/7TH/lGgxkWUqdbds5BszA9GKauqn2rK1bWJktqhmVb2/B60R4LENfF afzsNLVM3LXGPJsptSA/bVrfaE26ruX4InaJrjgcHaG61s7+Tc8E78WoWJC2N2uQ 7aLxQdOT+JMfgslG+O1DJObjaBKIQWZcWhR7/c5DOCvBvwPOo73X+M4X/n1Dwn4E N8VgSdt6iQ0iLkxJcQ49j3t1RuMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSNNvLt 9Np0PzAkbbJUPbrrolZwyjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTQwMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGePmjANBgkqhkiG9w0BAQsFAAOCAQEAgDY5LZmbIErd98u2w8fD 8SVCaftXxwS8llo6/KR7BA5lj22gMkCXB1+Z62xW5XM73t6iOj1gd2O/oz3c6FkM jxT5+PIAvUbXfpgaIJN0mr+IjviB75fJbXimmCvXwPZgic3PMMx/LphYx5Iu6qBt MfCrbMORNEVSsVQ2h+Zf0GhFTB66vO0r5wgzwD3iMj88SQwwRhm1yx+LdrrivuCR y/Dq5B2s174J52yeOKHj91v+RZ92uWFtVfmhG7tSWKyPBA1pppxdfmmG99oYr3cL NhdE2XfEC8Vu7JlMGtANETVIqZskFz9Wauu1Aeic7wBApe3oL6GVCJDzQZPlHBcn 1w== -----END CERTIFICATE-----Generated at Wed May 8 09:50:37 2024 by rpki-client on console-fra.rpki-client.org