$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139421.roa File: AS139421.roa (raw, json) Hash identifier: OaMUpuPuBoZySjcQwxdAYILb/r2yoAYGHH3vrghzFIc= Subject key identifier: F0:A9:B4:BF:EF:43:C5:9B:66:F3:7B:20:0F:E1:DF:80:20:F8:B4:B4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 383E1D650466F54A5C0BE487C6443FCDA8295502 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139421.roa Signing time: Mon 02 Oct 2023 03:38:49 +0000 ROA not before: Mon 02 Oct 2023 03:33:49 +0000 ROA not after: Mon 30 Sep 2024 03:38:49 +0000 asID: 139421 IP address blocks: 2405:6b40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:3e:1d:65:04:66:f5:4a:5c:0b:e4:87:c6:44:3f:cd:a8:29:55:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 2 03:33:49 2023 GMT Not After : Sep 30 03:38:49 2024 GMT Subject: CN=F0A9B4BFEF43C59B66F37B200FE1DF8020F8B4B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7c:b5:5b:1e:62:32:71:80:12:f3:b0:b5:7d: 19:15:17:72:ce:33:12:38:e0:92:93:86:df:90:c5: 55:b5:20:2d:3f:d7:98:50:26:37:2a:30:5e:0e:7b: 1c:da:3e:0f:1c:cf:43:ed:86:54:9f:a1:c7:04:74: ab:e1:56:40:51:66:85:14:29:7f:04:d6:ba:0a:d1: b0:c8:ba:89:3b:df:77:76:5b:a2:f4:8a:c7:22:42: 2c:9f:e5:22:31:d6:ac:70:74:41:f2:ca:20:44:e9: 36:f3:45:47:8b:b4:b9:59:64:04:b7:a9:4c:f8:a2: 98:68:a5:99:2b:13:22:1c:cb:69:56:ef:ea:3a:ee: db:12:a5:87:68:da:ac:e8:a7:96:52:fc:2e:b5:cc: ba:e4:61:e6:fe:8e:9f:04:15:ab:4c:ea:3c:47:a1: 8e:4a:71:ef:96:1b:0d:fc:15:3c:35:f1:30:cc:77: 21:4a:11:38:4b:48:ae:c8:2c:d8:39:4c:34:72:c2: cd:7c:9f:a3:ff:d8:6f:06:45:ff:d3:98:a5:89:63: 3e:43:c2:e8:40:bd:ef:0d:6a:03:54:cd:cb:17:98: c8:b7:9a:1b:d8:a0:35:f9:28:ac:08:00:36:c4:08: a8:4a:6f:f5:ba:77:74:8f:61:ff:b8:70:f7:e0:16: 15:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:A9:B4:BF:EF:43:C5:9B:66:F3:7B:20:0F:E1:DF:80:20:F8:B4:B4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139421.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6b40::/32 Signature Algorithm: sha256WithRSAEncryption 1e:93:1b:19:e9:37:f4:ed:c7:bd:52:b5:73:74:ab:30:d0:f5: 6e:c1:74:44:56:1f:a9:cc:ab:1d:65:31:04:aa:d5:4d:62:3e: 89:f2:88:9c:56:bc:80:c5:5c:73:29:3f:28:9a:40:4b:38:cf: b4:42:51:a9:d0:97:4a:6d:16:4a:96:8e:f5:51:42:43:71:dd: 4c:23:29:6a:98:f9:77:de:3f:96:1d:2c:f4:02:5f:26:f2:d1: 46:d0:ca:b4:58:d3:fd:b8:be:83:0d:a4:1e:d9:12:e9:cd:6f: 9f:13:02:8a:0f:d1:e4:51:e5:48:22:66:f0:5b:53:70:70:93: 2d:76:f3:6b:39:28:06:53:a1:62:b9:bf:88:a3:12:64:b6:35: ec:c5:2c:1b:e7:00:8a:f1:e8:66:3f:eb:ce:b8:fc:b3:65:12: 69:5f:9a:6c:07:d8:be:ee:8a:1f:bd:48:64:6c:f6:39:c2:45: 48:14:fd:3e:78:3f:cc:52:0e:89:dd:5e:90:02:26:da:4f:56: 62:98:e0:06:84:de:5e:56:35:1c:fb:b1:5d:53:46:f6:4a:18: 4a:9f:38:52:26:76:d3:eb:08:18:74:1c:15:61:9f:3b:04:0a: c3:fa:f7:a6:99:b1:90:77:41:00:7c:96:7e:00:49:5a:db:3f: f4:f3:2c:af -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUOD4dZQRm9UpcC+SHxkQ/zagpVQIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwMjAzMzM0OVoX DTI0MDkzMDAzMzg0OVowMzExMC8GA1UEAxMoRjBBOUI0QkZFRjQzQzU5QjY2RjM3 QjIwMEZFMURGODAyMEY4QjRCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALp8tVseYjJxgBLzsLV9GRUXcs4zEjjgkpOG35DFVbUgLT/XmFAmNyowXg57 HNo+DxzPQ+2GVJ+hxwR0q+FWQFFmhRQpfwTWugrRsMi6iTvfd3ZbovSKxyJCLJ/l IjHWrHB0QfLKIETpNvNFR4u0uVlkBLepTPiimGilmSsTIhzLaVbv6jru2xKlh2ja rOinllL8LrXMuuRh5v6OnwQVq0zqPEehjkpx75YbDfwVPDXxMMx3IUoROEtIrsgs 2DlMNHLCzXyfo//YbwZF/9OYpYljPkPC6EC97w1qA1TNyxeYyLeaG9igNfkorAgA NsQIqEpv9bp3dI9h/7hw9+AWFWECAwEAAaOCAdEwggHNMB0GA1UdDgQWBBTwqbS/ 70PFm2bzeyAP4d+AIPi0tDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTQyMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQFa0AwDQYJKoZIhvcNAQELBQADggEBAB6TGxnpN/Ttx71StXN0 qzDQ9W7BdERWH6nMqx1lMQSq1U1iPonyiJxWvIDFXHMpPyiaQEs4z7RCUanQl0pt FkqWjvVRQkNx3UwjKWqY+XfeP5YdLPQCXyby0UbQyrRY0/24voMNpB7ZEunNb58T AooP0eRR5UgiZvBbU3Bwky1282s5KAZToWK5v4ijEmS2NezFLBvnAIrx6GY/6864 /LNlEmlfmmwH2L7uih+9SGRs9jnCRUgU/T54P8xSDondXpACJtpPVmKY4AaE3l5W NRz7sV1TRvZKGEqfOFImdtPrCBh0HBVhnzsECsP696aZsZB3QQB8ln4ASVrbP/Tz LK8= -----END CERTIFICATE-----Generated at Fri May 3 04:42:25 2024 by rpki-client on console-fra.rpki-client.org