$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139934.roa File: AS139934.roa (raw, json) Hash identifier: 1h0hjhfDAjoNc9bm58aj1zo/2hpn9qZqRF8RTls1Jj4= Subject key identifier: 83:8B:5B:A5:7C:7E:DF:E4:D7:E3:A9:44:60:D4:FE:66:6B:CF:C0:CC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 776E3E3DC75F1CE8D7463775B7DCF400B299982D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139934.roa Signing time: Mon 02 Oct 2023 08:15:38 +0000 ROA not before: Mon 02 Oct 2023 08:10:38 +0000 ROA not after: Mon 30 Sep 2024 08:15:38 +0000 asID: 139934 IP address blocks: 103.227.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:6e:3e:3d:c7:5f:1c:e8:d7:46:37:75:b7:dc:f4:00:b2:99:98:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 2 08:10:38 2023 GMT Not After : Sep 30 08:15:38 2024 GMT Subject: CN=838B5BA57C7EDFE4D7E3A94460D4FE666BCFC0CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:84:f8:1c:50:28:59:24:4c:54:20:24:c5:fb: e5:9a:3e:26:c8:97:a0:ec:21:bf:ed:03:d0:22:7a: b6:bf:c3:01:13:8e:ba:5c:fc:c1:0d:2d:00:d0:b1: 82:73:d4:c7:7c:0d:f9:31:52:50:92:3b:ff:0d:d5: ca:6a:a9:3f:05:b9:3a:bc:ee:d7:fa:95:fd:97:8d: 52:43:ac:a8:e5:6c:fe:7f:8d:42:15:44:2b:f8:0b: 51:3a:61:eb:5a:af:52:70:3e:26:43:48:ba:0d:10: 4e:fa:94:ec:b0:a4:0c:b5:3f:62:bc:48:8c:d9:ef: 5b:0e:9b:dd:ac:fd:20:1b:56:72:0e:00:76:a2:01: 26:96:3d:75:25:31:3d:85:8f:df:19:22:1e:63:a5: 85:44:eb:8c:6f:59:e9:b2:4e:6a:90:21:5f:f4:fe: 7b:00:4f:11:d1:c5:af:fb:e5:1c:b5:b9:13:21:11: 5a:55:80:f6:05:da:da:15:c9:68:b4:be:b0:ad:7f: eb:0f:2f:74:b8:97:4a:4f:3d:df:9a:e4:ac:ec:f3: 0f:fa:7f:ae:89:36:88:e6:53:9e:c6:61:e3:10:c8: 30:e1:80:18:7d:93:49:f8:f2:e0:ea:a9:8d:27:f9: fa:ca:da:c6:fc:87:6f:94:ed:c0:65:5e:fc:80:04: 85:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:8B:5B:A5:7C:7E:DF:E4:D7:E3:A9:44:60:D4:FE:66:6B:CF:C0:CC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.106.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:53:5b:08:8d:d5:e6:ea:33:b0:7b:a4:39:b8:e1:93:f4:a6: 94:ed:a1:c7:39:30:d8:9c:bf:f8:cd:55:15:93:7b:29:ed:7a: 55:c3:65:b1:49:66:5b:75:76:71:66:44:fc:63:67:24:c2:63: cb:7b:67:b5:9d:fc:7e:fd:ca:24:d6:9a:5e:61:dc:8d:17:41: 27:f0:0a:55:4b:ce:6d:13:4a:bd:64:0b:d3:ee:15:b0:92:9f: ec:08:42:28:db:33:4c:58:e8:fd:6e:8b:65:fc:49:f5:98:30: 5f:59:2e:d3:2e:92:47:b4:7c:48:b4:71:b1:ac:70:e5:13:7d: 0d:12:28:cf:85:73:9d:bd:19:d4:ce:d1:1a:37:99:9c:3f:b9: 5b:99:d7:e4:72:60:cd:43:31:96:cc:7c:7b:27:41:6f:94:91: 14:90:5b:55:aa:c8:ef:e5:d0:5b:90:cf:07:29:b5:a5:b9:a3: 40:37:29:29:39:db:4a:34:f4:08:d4:08:fc:37:89:d8:e2:f9: 4c:8c:fb:a2:c6:7d:b6:21:66:39:ea:97:e3:31:48:39:82:34: 92:b6:1b:a1:6b:bd:c1:79:75:55:19:e7:43:6c:4c:22:25:70: c9:10:ff:8f:47:28:ba:2e:ee:fe:5c:23:3c:c5:79:73:ac:45: ca:af:ab:14 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUd24+PcdfHOjXRjd1t9z0ALKZmC0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwMjA4MTAzOFoX DTI0MDkzMDA4MTUzOFowMzExMC8GA1UEAxMoODM4QjVCQTU3QzdFREZFNEQ3RTNB OTQ0NjBENEZFNjY2QkNGQzBDQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMaE+BxQKFkkTFQgJMX75Zo+JsiXoOwhv+0D0CJ6tr/DAROOulz8wQ0tANCx gnPUx3wN+TFSUJI7/w3VymqpPwW5Orzu1/qV/ZeNUkOsqOVs/n+NQhVEK/gLUTph 61qvUnA+JkNIug0QTvqU7LCkDLU/YrxIjNnvWw6b3az9IBtWcg4AdqIBJpY9dSUx PYWP3xkiHmOlhUTrjG9Z6bJOapAhX/T+ewBPEdHFr/vlHLW5EyERWlWA9gXa2hXJ aLS+sK1/6w8vdLiXSk8935rkrOzzD/p/rok2iOZTnsZh4xDIMOGAGH2TSfjy4Oqp jSf5+sraxvyHb5TtwGVe/IAEhS0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSDi1ul fH7f5NfjqURg1P5ma8/AzDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTkzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfjajANBgkqhkiG9w0BAQsFAAOCAQEAbFNbCI3V5uozsHukObjh k/SmlO2hxzkw2Jy/+M1VFZN7Ke16VcNlsUlmW3V2cWZE/GNnJMJjy3tntZ38fv3K JNaaXmHcjRdBJ/AKVUvObRNKvWQL0+4VsJKf7AhCKNszTFjo/W6LZfxJ9ZgwX1ku 0y6SR7R8SLRxsaxw5RN9DRIoz4Vznb0Z1M7RGjeZnD+5W5nX5HJgzUMxlsx8eydB b5SRFJBbVarI7+XQW5DPBym1pbmjQDcpKTnbSjT0CNQI/DeJ2OL5TIz7osZ9tiFm OeqX4zFIOYI0krYboWu9wXl1VRnnQ2xMIiVwyRD/j0coui7u/lwjPMV5c6xFyq+r FA== -----END CERTIFICATE-----Generated at Wed May 8 09:50:37 2024 by rpki-client on console-fra.rpki-client.org