$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139433.roa File: AS139433.roa (raw, json) Hash identifier: 79lgLkzmxiV3uxq9jRdsAGZPHxzb1JvISNIedB/8ax8= Subject key identifier: 3D:A9:EE:F5:CA:5B:84:D6:6F:28:2F:57:E1:E6:AF:4F:9D:63:6E:0E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0DFF7CBBCFD08B271B2BD21DE905F5A8694FA04E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139433.roa Signing time: Wed 16 Oct 2024 10:00:00 +0000 ROA not before: Wed 16 Oct 2024 09:55:00 +0000 ROA not after: Wed 15 Oct 2025 10:00:00 +0000 asID: 139433 IP address blocks: 2406:6d40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:ff:7c:bb:cf:d0:8b:27:1b:2b:d2:1d:e9:05:f5:a8:69:4f:a0:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 16 09:55:00 2024 GMT Not After : Oct 15 10:00:00 2025 GMT Subject: CN=3DA9EEF5CA5B84D66F282F57E1E6AF4F9D636E0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:eb:18:2e:7e:8f:41:ef:e3:a6:a8:c6:d9:ab: da:65:a7:f3:13:42:f0:24:1e:d5:e3:4c:b9:ac:ce: a3:a7:17:69:c7:63:cb:97:17:71:90:07:cc:74:b0: 6e:82:66:76:52:e7:3c:06:33:be:26:b4:c8:35:27: 82:9b:31:fd:7c:be:ec:51:64:2b:57:bc:06:f2:68: 3f:a3:92:b6:9b:2d:95:98:41:64:e1:20:84:98:0f: 74:49:f9:7e:e6:f5:c9:42:d0:1e:a6:b4:5f:6a:4f: 35:81:21:2f:7a:79:15:b6:93:03:3c:b8:9d:43:64: cd:e7:86:b7:ad:e9:bf:53:b4:a3:53:5c:3d:67:62: 9b:f3:5e:23:b3:ed:e2:8f:bf:d9:a6:a3:78:20:cb: a8:1b:a3:12:36:98:5d:57:48:c8:31:ef:9b:1a:36: b2:a7:9b:ab:62:51:12:97:97:b3:98:23:56:33:27: 00:c0:e9:43:5e:6a:d9:85:73:14:94:db:a5:6a:a1: b2:49:9e:27:12:50:8a:b7:3f:29:79:dd:db:e1:af: dd:4b:52:d0:4e:06:2a:30:62:e8:12:dd:b0:ce:36: f6:d5:55:a0:fb:0c:d1:b1:b0:c3:9d:7d:3c:39:08: b2:8a:ab:49:41:9c:9d:89:4b:05:de:b2:c6:49:d8: 60:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A9:EE:F5:CA:5B:84:D6:6F:28:2F:57:E1:E6:AF:4F:9D:63:6E:0E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6d40::/32 Signature Algorithm: sha256WithRSAEncryption 0b:86:95:4c:da:86:cb:40:fd:53:aa:0e:6e:c0:d5:01:8e:6d: 8b:b1:c0:7a:69:66:56:38:f7:c9:ea:d4:b9:e6:ee:11:9b:ec: d7:33:d3:04:9d:f9:f5:ce:3c:7c:c1:ca:9a:9d:f9:3d:e4:44: 4c:ab:43:73:36:23:92:b6:35:2d:27:60:bd:15:02:04:8c:84: 78:15:75:e6:9c:f8:2d:34:a5:b2:ef:81:f6:06:3b:ae:93:56: ea:9f:4b:d3:16:90:2b:fc:5c:c5:d3:a1:c0:51:f8:dc:ea:4c: c9:be:e6:77:ab:38:78:57:89:5c:a4:ee:87:21:fb:3a:56:81: d6:5f:91:fe:88:c1:18:66:b4:54:ca:d0:db:41:54:31:89:5c: 90:5c:07:60:b7:c1:22:fc:5a:92:96:1b:0b:ca:14:8d:0c:c9: 42:c9:4d:26:53:5b:fb:10:86:93:c6:dd:e1:b7:cb:d2:00:0f: 4a:06:47:d2:74:b0:17:8a:e2:9f:1a:ec:0b:ae:3d:9d:03:54: 08:f2:0b:3e:61:8d:84:98:5f:86:ad:b8:dc:55:8e:fb:6d:93: dc:e4:b8:0f:d3:21:66:19:c8:72:0d:7c:7b:c7:b6:8c:c5:a1: cc:86:fe:ed:0c:62:75:e3:1f:fe:ad:0b:d1:47:09:a1:3f:2c: 55:84:dd:de -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUDf98u8/QiycbK9Id6QX1qGlPoE4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxNjA5NTUwMFoX DTI1MTAxNTEwMDAwMFowMzExMC8GA1UEAxMoM0RBOUVFRjVDQTVCODRENjZGMjgy RjU3RTFFNkFGNEY5RDYzNkUwRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTrGC5+j0Hv46aoxtmr2mWn8xNC8CQe1eNMuazOo6cXacdjy5cXcZAHzHSw boJmdlLnPAYzvia0yDUngpsx/Xy+7FFkK1e8BvJoP6OStpstlZhBZOEghJgPdEn5 fub1yULQHqa0X2pPNYEhL3p5FbaTAzy4nUNkzeeGt63pv1O0o1NcPWdim/NeI7Pt 4o+/2aajeCDLqBujEjaYXVdIyDHvmxo2sqebq2JREpeXs5gjVjMnAMDpQ15q2YVz FJTbpWqhskmeJxJQirc/KXnd2+Gv3UtS0E4GKjBi6BLdsM429tVVoPsM0bGww519 PDkIsoqrSUGcnYlLBd6yxknYYB8CAwEAAaOCAdEwggHNMB0GA1UdDgQWBBQ9qe71 yluE1m8oL1fh5q9PnWNuDjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQGbUAwDQYJKoZIhvcNAQELBQADggEBAAuGlUzahstA/VOqDm7A 1QGObYuxwHppZlY498nq1Lnm7hGb7Ncz0wSd+fXOPHzBypqd+T3kREyrQ3M2I5K2 NS0nYL0VAgSMhHgVdeac+C00pbLvgfYGO66TVuqfS9MWkCv8XMXTocBR+NzqTMm+ 5nerOHhXiVyk7och+zpWgdZfkf6IwRhmtFTK0NtBVDGJXJBcB2C3wSL8WpKWGwvK FI0MyULJTSZTW/sQhpPG3eG3y9IAD0oGR9J0sBeK4p8a7AuuPZ0DVAjyCz5hjYSY X4atuNxVjvttk9zkuA/TIWYZyHINfHvHtozFocyG/u0MYnXjH/6tC9FHCaE/LFWE 3d4= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:24 2024 by rpki-client on console-fra.rpki-client.org