$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139433.roa File: AS139433.roa (raw, json) Hash identifier: ++C55AK7h0XQHPOOrN2eGOGyZDxfeCDb0XmpdAAH/vE= Subject key identifier: EF:96:98:00:74:10:17:45:51:BB:C2:B2:9A:5F:DB:EC:C5:CE:97:1B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 728FEBBE4E51514D30A9E802AD856E3CBB5736C4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139433.roa Signing time: Wed 15 Nov 2023 09:14:50 +0000 ROA not before: Wed 15 Nov 2023 09:09:50 +0000 ROA not after: Wed 13 Nov 2024 09:14:50 +0000 asID: 139433 IP address blocks: 2406:6d40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:8f:eb:be:4e:51:51:4d:30:a9:e8:02:ad:85:6e:3c:bb:57:36:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 15 09:09:50 2023 GMT Not After : Nov 13 09:14:50 2024 GMT Subject: CN=EF9698007410174551BBC2B29A5FDBECC5CE971B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:14:b1:06:1a:14:38:d8:7b:29:0f:26:e8:e8: c1:70:8f:22:eb:0c:86:69:2c:c5:3b:d4:70:33:f2: e6:f9:e1:01:4e:ea:a3:15:6b:cf:65:c4:1e:85:af: 2f:19:53:e6:d2:06:18:ca:18:78:9c:34:09:9d:78: 59:03:76:a7:37:54:88:45:54:14:43:da:11:d3:ba: 83:d8:2a:8e:24:5f:08:9c:d3:47:71:39:07:4c:7e: 04:93:2a:fc:6c:79:d9:53:d6:89:5b:1b:54:cc:cd: 93:14:e4:10:5f:b8:bf:09:80:cc:07:c4:43:56:fd: 06:55:95:92:fc:b7:20:70:b8:ed:30:bd:cd:d5:ba: ae:cd:1e:f2:d6:9e:28:14:48:14:a0:6e:c7:df:6d: f4:8f:91:cb:f4:9e:32:fc:bf:a1:da:66:53:a8:5f: 92:af:65:72:13:51:5e:3c:70:04:6c:e6:ef:83:2d: 2e:bb:f4:ec:08:78:e7:dd:20:e3:60:ee:1d:01:ff: 66:b8:87:9e:e2:4e:ed:48:24:55:b9:46:8c:7f:3a: ba:de:ca:9f:0f:19:d2:1e:7f:2b:9d:24:29:f7:a0: 66:15:9c:bf:54:93:f3:b7:ec:34:3f:c3:1b:f4:3b: 79:db:76:4a:a9:ff:2a:da:fe:e6:e7:ea:bb:41:b4: 6a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:96:98:00:74:10:17:45:51:BB:C2:B2:9A:5F:DB:EC:C5:CE:97:1B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6d40::/32 Signature Algorithm: sha256WithRSAEncryption 49:c9:73:38:7b:35:ec:94:74:0f:58:e8:7e:33:fa:0b:a3:d2: ff:85:2d:dc:40:ea:fd:57:28:15:8e:ea:e3:1c:b4:3e:08:a6: 98:9c:9b:5c:b0:1d:4c:31:da:1e:3a:d0:af:13:4b:86:d3:7a: e5:f8:e1:ff:3b:49:b8:dc:ba:e1:6f:d1:12:66:94:8d:1b:96: 8c:07:79:f4:81:0f:9d:71:8b:74:67:4d:30:6a:93:f1:44:bc: 89:d6:6b:48:58:e0:06:08:bd:7d:93:31:b0:29:84:fc:da:be: ed:44:b0:78:a4:f7:9c:db:8c:bd:cc:09:a0:1f:3e:81:e4:0b: c6:58:38:9a:ae:c2:6e:fe:07:54:41:33:26:47:68:f9:f2:4a: 0a:ed:2a:70:a6:ab:11:d6:05:c8:f6:d4:2e:cb:7b:28:06:b9: 06:aa:f8:3b:9c:20:c0:57:e2:9d:a2:9b:7a:3d:d9:5f:68:f9: c5:55:8a:46:b4:de:ae:2d:d2:e1:ff:c5:f1:bd:b5:e3:8c:a5: c9:30:91:62:ea:7b:82:9c:3e:f3:eb:05:d0:8c:ce:c2:22:c5: 9b:df:e3:ec:5a:fd:19:77:16:94:f8:2e:7e:64:a4:aa:48:4c: e2:2b:91:2a:96:24:ad:6e:8c:35:32:f2:63:f7:fc:65:19:f1: 6e:8a:7b:5f -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUco/rvk5RUU0wqegCrYVuPLtXNsQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNTA5MDk1MFoX DTI0MTExMzA5MTQ1MFowMzExMC8GA1UEAxMoRUY5Njk4MDA3NDEwMTc0NTUxQkJD MkIyOUE1RkRCRUNDNUNFOTcxQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYUsQYaFDjYeykPJujowXCPIusMhmksxTvUcDPy5vnhAU7qoxVrz2XEHoWv LxlT5tIGGMoYeJw0CZ14WQN2pzdUiEVUFEPaEdO6g9gqjiRfCJzTR3E5B0x+BJMq /Gx52VPWiVsbVMzNkxTkEF+4vwmAzAfEQ1b9BlWVkvy3IHC47TC9zdW6rs0e8tae KBRIFKBux99t9I+Ry/SeMvy/odpmU6hfkq9lchNRXjxwBGzm74MtLrv07Ah4590g 42DuHQH/ZriHnuJO7UgkVblGjH86ut7Knw8Z0h5/K50kKfegZhWcv1ST87fsND/D G/Q7edt2Sqn/Ktr+5ufqu0G0amkCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBTvlpgA dBAXRVG7wrKaX9vsxc6XGzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQGbUAwDQYJKoZIhvcNAQELBQADggEBAEnJczh7NeyUdA9Y6H4z +guj0v+FLdxA6v1XKBWO6uMctD4Ippicm1ywHUwx2h460K8TS4bTeuX44f87Sbjc uuFv0RJmlI0blowHefSBD51xi3RnTTBqk/FEvInWa0hY4AYIvX2TMbAphPzavu1E sHik95zbjL3MCaAfPoHkC8ZYOJquwm7+B1RBMyZHaPnySgrtKnCmqxHWBcj21C7L eygGuQaq+DucIMBX4p2im3o92V9o+cVVika03q4t0uH/xfG9teOMpckwkWLqe4Kc PvPrBdCMzsIixZvf4+xa/Rl3FpT4Ln5kpKpITOIrkSqWJK1ujDUy8mP3/GUZ8W6K e18= -----END CERTIFICATE-----Generated at Thu May 9 00:37:05 2024 by rpki-client on console-fra.rpki-client.org