$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139421.roa File: AS139421.roa (raw, json) Hash identifier: FqqCof5jrEXpuI1QB59li3yfl0RM7dqzv6UxR3EtjnM= Subject key identifier: 09:32:D0:F2:6C:15:1D:BE:1B:E6:22:31:64:BF:18:24:38:06:0A:74 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2B9AB2DBD013B989D3B937A5C25F2671637F375A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139421.roa Signing time: Mon 02 Sep 2024 04:00:00 +0000 ROA not before: Mon 02 Sep 2024 03:55:00 +0000 ROA not after: Mon 01 Sep 2025 04:00:00 +0000 asID: 139421 IP address blocks: 2405:6b40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:9a:b2:db:d0:13:b9:89:d3:b9:37:a5:c2:5f:26:71:63:7f:37:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 2 03:55:00 2024 GMT Not After : Sep 1 04:00:00 2025 GMT Subject: CN=0932D0F26C151DBE1BE6223164BF182438060A74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9b:02:c4:ce:fc:b3:dd:12:ab:ec:78:90:5a: b5:cd:20:33:ac:86:9c:58:fb:2e:fc:ee:a5:f9:6b: 3b:ca:b7:7a:2f:a2:a3:df:b0:23:1f:46:56:b3:8e: c6:35:40:aa:dd:3f:3e:2f:f5:a9:ca:11:f5:47:fd: 85:e0:55:6d:c6:51:7a:ec:50:ef:5a:3b:97:a4:7b: aa:12:c9:3b:d8:b2:8c:ea:2a:95:e9:4b:51:25:3a: be:7c:80:3d:14:30:26:1d:db:07:97:da:77:09:6e: 1e:06:bd:3a:1b:5f:91:b0:c0:b8:4d:01:66:e7:ca: d3:80:96:22:f6:df:aa:79:ed:3a:d4:e1:6b:19:5e: f1:4b:3f:94:c4:63:e8:cf:66:77:03:de:a6:41:b0: d0:f7:3d:29:39:3a:64:69:64:f1:ba:fe:62:91:47: 92:9b:41:28:38:5c:0c:21:29:33:b0:51:94:aa:0f: 5d:19:71:5a:e8:3c:25:55:c8:22:29:c4:16:25:c3: 6a:5c:b4:5c:cd:e4:6d:a9:c1:4c:95:9a:cf:2e:1a: 18:9e:fb:5e:a3:79:f0:67:76:45:5f:89:22:d1:4e: 9e:c1:d1:47:08:29:17:88:d2:c2:a2:cb:d6:a9:8e: be:73:8f:38:84:61:38:e0:6f:9f:0e:aa:59:b2:79: 51:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:32:D0:F2:6C:15:1D:BE:1B:E6:22:31:64:BF:18:24:38:06:0A:74 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139421.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6b40::/32 Signature Algorithm: sha256WithRSAEncryption 3c:c8:57:90:84:88:2a:00:0e:13:5b:c0:86:12:34:aa:d2:5a: d0:1f:4d:44:8b:c1:a8:fe:cf:c1:a0:99:87:76:48:f3:8b:16: f9:2d:e1:6d:9d:45:70:8b:f4:d6:8e:70:d0:46:50:ab:78:73: 79:a6:21:56:97:74:3e:ee:df:0a:7b:6c:59:70:4c:88:ce:48: f6:65:7b:65:e3:1d:5c:f8:a9:f0:11:63:a5:05:72:4f:a2:ae: 85:94:e6:38:c7:1e:fb:c2:29:7d:96:03:40:f1:e9:11:84:26: 22:f4:92:f0:e7:94:6e:73:eb:9e:2a:d7:ee:c3:7c:f0:43:62: de:3a:e9:52:e8:6b:20:00:82:a9:45:47:a2:02:78:e6:ef:47: d6:d8:ec:65:56:66:5f:b3:0e:2d:5c:e6:03:34:37:3f:f5:e3: cc:e8:cb:34:06:fe:bc:39:f8:a0:4b:87:73:94:9f:05:90:c1: 07:96:a7:b2:e3:01:8e:bd:4e:23:13:71:6e:0f:e3:13:a2:f9: 8b:e9:86:41:b7:10:e7:8d:ba:3f:2e:d8:3c:c0:6d:7a:a8:dc: b6:d5:d1:61:4c:a1:3d:9e:78:41:7b:06:f6:40:be:1c:d4:2d: 2f:37:7c:55:cd:83:70:e8:75:b3:a7:8e:f4:c2:d9:54:86:2a: f1:ed:95:12 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUK5qy29ATuYnTuTelwl8mcWN/N1owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkwMjAzNTUwMFoX DTI1MDkwMTA0MDAwMFowMzExMC8GA1UEAxMoMDkzMkQwRjI2QzE1MURCRTFCRTYy MjMxNjRCRjE4MjQzODA2MEE3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL6bAsTO/LPdEqvseJBatc0gM6yGnFj7LvzupflrO8q3ei+io9+wIx9GVrOO xjVAqt0/Pi/1qcoR9Uf9heBVbcZReuxQ71o7l6R7qhLJO9iyjOoqlelLUSU6vnyA PRQwJh3bB5fadwluHga9OhtfkbDAuE0BZufK04CWIvbfqnntOtThaxle8Us/lMRj 6M9mdwPepkGw0Pc9KTk6ZGlk8br+YpFHkptBKDhcDCEpM7BRlKoPXRlxWug8JVXI IinEFiXDaly0XM3kbanBTJWazy4aGJ77XqN58Gd2RV+JItFOnsHRRwgpF4jSwqLL 1qmOvnOPOIRhOOBvnw6qWbJ5UZkCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBQJMtDy bBUdvhvmIjFkvxgkOAYKdDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTQyMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQFa0AwDQYJKoZIhvcNAQELBQADggEBADzIV5CEiCoADhNbwIYS NKrSWtAfTUSLwaj+z8GgmYd2SPOLFvkt4W2dRXCL9NaOcNBGUKt4c3mmIVaXdD7u 3wp7bFlwTIjOSPZle2XjHVz4qfARY6UFck+iroWU5jjHHvvCKX2WA0Dx6RGEJiL0 kvDnlG5z654q1+7DfPBDYt466VLoayAAgqlFR6ICeObvR9bY7GVWZl+zDi1c5gM0 Nz/148zoyzQG/rw5+KBLh3OUnwWQwQeWp7LjAY69TiMTcW4P4xOi+YvphkG3EOeN uj8u2DzAbXqo3LbV0WFMoT2eeEF7BvZAvhzULS83fFXNg3DodbOnjvTC2VSGKvHt lRI= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:47 2024 by rpki-client on console-ams.rpki-client.org