$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139934.roa File: AS139934.roa (raw, json) Hash identifier: uInb0Cxdi1Zev5GaAXE9TcgAaWN6yC1KyR3S3pJ1jHg= Subject key identifier: F3:05:ED:05:91:E8:FE:FA:55:CB:27:FE:9A:3B:1E:AD:6F:6F:AF:33 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0D274A7439EF94F652A400946668AE6353A98915 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139934.roa Signing time: Mon 02 Sep 2024 09:00:00 +0000 ROA not before: Mon 02 Sep 2024 08:55:00 +0000 ROA not after: Mon 01 Sep 2025 09:00:00 +0000 asID: 139934 IP address blocks: 103.227.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:27:4a:74:39:ef:94:f6:52:a4:00:94:66:68:ae:63:53:a9:89:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 2 08:55:00 2024 GMT Not After : Sep 1 09:00:00 2025 GMT Subject: CN=F305ED0591E8FEFA55CB27FE9A3B1EAD6F6FAF33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5b:18:51:40:45:e8:fc:80:ea:14:6d:83:52: 9d:44:d6:c0:0e:9a:68:0e:bf:a3:27:5a:fd:aa:30: 5a:3a:86:c1:58:50:92:cb:25:3e:a7:ca:30:ec:ff: 33:78:4b:30:07:4e:57:6f:99:50:a8:72:31:1c:7b: e8:d9:dc:a2:c8:26:ad:d0:76:02:20:53:94:f4:06: aa:cf:68:2c:8e:0b:5f:84:ee:f2:ac:eb:e9:fe:d2: f9:2f:ab:c6:ef:2f:9e:d4:7a:52:ec:38:ca:05:f0: ab:a0:c5:f2:a6:a5:18:77:fb:cf:1c:cd:db:95:70: 78:6d:d9:bd:83:c0:fc:3c:f2:4b:86:a8:e8:f8:c6: 42:6d:b4:f2:6b:97:69:0e:ce:01:79:e3:f1:0f:aa: 97:ee:d6:af:c3:8e:8e:a5:d3:ba:09:86:52:f3:45: 1b:b8:f9:4f:dd:cb:42:c5:81:a1:66:85:0f:d3:d3: b9:71:f7:3a:61:4f:a5:d7:4d:96:da:ca:67:32:87: 46:1d:9d:55:a8:52:44:22:f7:92:78:b2:26:e6:2a: 53:d5:4d:3f:8c:65:f3:34:6d:d3:19:37:cf:00:34: e1:52:98:6c:ae:aa:b8:2e:37:22:7e:64:50:ee:ac: 44:b4:25:51:af:0e:7e:0f:7b:42:9b:dc:af:62:60: 18:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:05:ED:05:91:E8:FE:FA:55:CB:27:FE:9A:3B:1E:AD:6F:6F:AF:33 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.106.0/23 Signature Algorithm: sha256WithRSAEncryption 42:48:65:5a:6d:2d:71:f5:8c:cc:20:1e:41:04:82:2b:2b:c3: 0b:04:97:62:60:73:b8:6a:7e:00:7e:72:2e:01:6f:1b:8c:41: 5d:0b:5e:91:75:79:b2:13:7e:59:f9:69:a1:1c:96:e7:ad:88: 4f:29:2b:af:ec:4d:7b:41:2f:f9:37:fc:27:da:6a:f2:aa:88: cd:7c:79:31:b6:51:23:d8:a9:ec:ec:9e:4c:44:d7:dd:13:5d: 7a:04:5e:0e:d8:78:d9:86:b5:2f:df:e2:57:08:ca:d4:e3:a6: 25:e8:0a:d3:97:7d:25:01:2c:60:9d:07:52:9e:34:6d:83:36: fe:62:cc:1d:41:6e:9e:be:96:2c:6f:d4:b5:1b:f5:c0:6b:12: 6b:45:e9:7e:cf:c8:91:54:40:81:cf:f3:c2:fd:49:93:77:e5: 9a:18:9c:9d:20:6b:f9:89:ab:23:fc:78:f5:83:39:f3:4a:0d: d9:a8:f5:09:17:ae:8b:ab:24:7b:03:eb:bd:40:e1:a9:f3:27: 3a:11:52:74:d3:bf:1f:f6:16:af:db:3d:c6:17:b2:b3:4e:a0: 70:de:f2:9a:8a:74:c8:46:31:20:ab:89:94:ac:7c:c3:85:ed: e6:26:e0:7a:96:8f:df:e3:64:57:d6:a0:8e:0d:99:42:4f:cd: 5f:9f:43:2d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDSdKdDnvlPZSpACUZmiuY1OpiRUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkwMjA4NTUwMFoX DTI1MDkwMTA5MDAwMFowMzExMC8GA1UEAxMoRjMwNUVEMDU5MUU4RkVGQTU1Q0Iy N0ZFOUEzQjFFQUQ2RjZGQUYzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9bGFFARej8gOoUbYNSnUTWwA6aaA6/oyda/aowWjqGwVhQksslPqfKMOz/ M3hLMAdOV2+ZUKhyMRx76NncosgmrdB2AiBTlPQGqs9oLI4LX4Tu8qzr6f7S+S+r xu8vntR6Uuw4ygXwq6DF8qalGHf7zxzN25VweG3ZvYPA/DzyS4ao6PjGQm208muX aQ7OAXnj8Q+ql+7Wr8OOjqXTugmGUvNFG7j5T93LQsWBoWaFD9PTuXH3OmFPpddN ltrKZzKHRh2dVahSRCL3kniyJuYqU9VNP4xl8zRt0xk3zwA04VKYbK6quC43In5k UO6sRLQlUa8Ofg97Qpvcr2JgGHECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTzBe0F kej++lXLJ/6aOx6tb2+vMzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTkzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfjajANBgkqhkiG9w0BAQsFAAOCAQEAQkhlWm0tcfWMzCAeQQSC KyvDCwSXYmBzuGp+AH5yLgFvG4xBXQtekXV5shN+WflpoRyW562ITykrr+xNe0Ev +Tf8J9pq8qqIzXx5MbZRI9ip7OyeTETX3RNdegReDth42Ya1L9/iVwjK1OOmJegK 05d9JQEsYJ0HUp40bYM2/mLMHUFunr6WLG/UtRv1wGsSa0Xpfs/IkVRAgc/zwv1J k3flmhicnSBr+YmrI/x49YM580oN2aj1CReui6skewPrvUDhqfMnOhFSdNO/H/YW r9s9xheys06gcN7ymop0yEYxIKuJlKx8w4Xt5ibgepaP3+NkV9agjg2ZQk/NX59D LQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:27 2024 by rpki-client on console-ams.rpki-client.org