$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139693.roa File: AS139693.roa (raw, json) Hash identifier: oZq1IIvhobj1cfeN1/PCrmyfdtJVqPsRIUd1pIw9Jw0= Subject key identifier: D3:AD:26:2F:0B:E4:2F:DE:2C:6C:B1:2C:29:9E:98:E1:18:D6:94:FE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6ABB924FD87BE0008EF98E52A9EBAE8ED33986C1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139693.roa Signing time: Mon 03 Mar 2025 00:23:26 +0000 ROA not before: Mon 03 Mar 2025 00:18:26 +0000 ROA not after: Mon 02 Mar 2026 00:23:26 +0000 asID: 139693 IP address blocks: 163.61.187.0/24 maxlen: 24 2001:df5:1e40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:bb:92:4f:d8:7b:e0:00:8e:f9:8e:52:a9:eb:ae:8e:d3:39:86:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 3 00:18:26 2025 GMT Not After : Mar 2 00:23:26 2026 GMT Subject: CN=D3AD262F0BE42FDE2C6CB12C299E98E118D694FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:67:36:7c:5c:4e:86:b9:85:57:f5:02:b4:26: 35:30:f2:39:ef:75:9b:be:29:07:04:a9:6d:6c:39: d9:d8:34:94:d3:ba:03:b4:18:0f:83:78:b7:6f:d4: 8d:5a:8e:b1:bd:5c:91:59:7e:9f:90:71:51:a5:06: 52:f4:64:7a:90:9e:3e:ae:9c:b4:2b:b4:48:f2:72: f6:10:c1:e3:a0:e8:37:26:a0:4d:74:d5:c5:e7:7d: fc:e9:38:cc:b4:e0:72:18:a5:af:fa:85:aa:ce:19: 70:1b:d9:d9:92:67:5c:7a:56:80:76:f1:e5:2b:0a: 89:72:94:da:40:fa:48:99:13:1a:8e:56:f6:48:14: 1b:6f:06:a1:b7:d9:15:4e:6a:96:bb:6f:44:61:a2: 80:0e:4c:b0:b3:fc:ac:fe:58:2f:88:6f:be:2b:08: 01:42:ce:20:67:ec:e8:9b:65:3c:59:0a:15:48:81: e3:98:36:52:f1:02:f9:6c:40:94:f3:34:4e:33:b1: 07:e9:04:5d:7a:ea:2d:67:6b:74:df:52:7e:41:b4: 20:38:07:7c:e4:98:19:46:70:cd:ac:01:fc:3c:79: 2c:ac:6b:65:70:9c:cb:ea:c1:ef:59:2c:e5:bf:04: d5:f7:cc:ee:f9:47:23:6c:89:5a:0b:74:4d:e3:43: 35:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AD:26:2F:0B:E4:2F:DE:2C:6C:B1:2C:29:9E:98:E1:18:D6:94:FE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139693.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.187.0/24 IPv6: 2001:df5:1e40::/48 Signature Algorithm: sha256WithRSAEncryption 6b:dd:32:fd:40:01:01:49:41:d5:39:32:96:06:6d:3f:da:0f: 29:c1:0d:ac:c9:d7:4f:a8:90:78:e0:8e:15:e0:82:5a:e7:1a: 96:53:74:62:29:49:09:fd:60:dd:39:ea:2f:a7:62:cf:36:89: 31:ab:e5:14:e5:c8:23:5f:e4:cc:dc:2d:10:b0:c8:7c:c0:d1: 26:b1:14:d3:21:5e:a7:1b:50:ec:42:76:57:87:61:0f:a2:b6: 19:18:13:6e:00:92:46:e3:8f:d4:51:11:3d:f2:d0:10:b7:63: a6:b0:9d:56:4e:af:a8:a1:ce:1b:14:52:88:91:b4:55:0e:88: 3e:ae:7e:db:67:34:62:46:52:8b:6b:38:4f:7e:5e:aa:48:0f: 5d:ff:c2:25:7c:61:48:c8:b8:8d:0a:06:8b:f8:67:12:93:17: c7:62:de:74:3d:f7:11:c7:f1:04:9a:da:11:25:ad:c0:68:f9: 88:98:8c:c4:c6:19:93:70:c5:5f:9e:5c:5c:35:7c:24:a9:da: 62:35:73:dc:e1:7d:57:51:97:55:71:11:6e:85:cc:d5:39:ed: 93:c5:7a:10:52:9d:6a:36:ee:f0:d5:0c:0b:1e:08:9f:09:08: 67:f3:43:41:cb:7b:33:55:f5:6e:f2:b4:18:f0:ea:d4:c1:a0: 9f:ae:63:23 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUaruST9h74ACO+Y5SqeuujtM5hsEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMwMzAwMTgyNloX DTI2MDMwMjAwMjMyNlowMzExMC8GA1UEAxMoRDNBRDI2MkYwQkU0MkZERTJDNkNC MTJDMjk5RTk4RTExOEQ2OTRGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdnNnxcToa5hVf1ArQmNTDyOe91m74pBwSpbWw52dg0lNO6A7QYD4N4t2/U jVqOsb1ckVl+n5BxUaUGUvRkepCePq6ctCu0SPJy9hDB46DoNyagTXTVxed9/Ok4 zLTgchilr/qFqs4ZcBvZ2ZJnXHpWgHbx5SsKiXKU2kD6SJkTGo5W9kgUG28GobfZ FU5qlrtvRGGigA5MsLP8rP5YL4hvvisIAULOIGfs6JtlPFkKFUiB45g2UvEC+WxA lPM0TjOxB+kEXXrqLWdrdN9SfkG0IDgHfOSYGUZwzawB/Dx5LKxrZXCcy+rB71ks 5b8E1ffM7vlHI2yJWgt0TeNDNZECAwEAAaOCAeEwggHdMB0GA1UdDgQWBBTTrSYv C+Qv3ixssSwpnpjhGNaU/jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTY5My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKM9uzAPBAIAAjAJAwcAIAEN9R5AMA0GCSqGSIb3DQEBCwUAA4IB AQBr3TL9QAEBSUHVOTKWBm0/2g8pwQ2syddPqJB44I4V4IJa5xqWU3RiKUkJ/WDd Oeovp2LPNokxq+UU5cgjX+TM3C0QsMh8wNEmsRTTIV6nG1DsQnZXh2EPorYZGBNu AJJG44/UURE98tAQt2OmsJ1WTq+ooc4bFFKIkbRVDog+rn7bZzRiRlKLazhPfl6q SA9d/8IlfGFIyLiNCgaL+GcSkxfHYt50PfcRx/EEmtoRJa3AaPmImIzExhmTcMVf nlxcNXwkqdpiNXPc4X1XUZdVcRFuhczVOe2TxXoQUp1qNu7w1QwLHgifCQhn80NB y3szVfVu8rQY8OrUwaCfrmMj -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:31 2025 by rpki-client