$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139942.roa File: AS139942.roa (raw, json) Hash identifier: f+0yfXnUTAw4nJnc3f3RFsGl7u39vqR25hFP7ffrZZM= Subject key identifier: A7:F2:50:22:BD:75:7A:A6:29:5D:DD:62:9C:87:5A:D3:82:6B:E5:EF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 065063709F42A7FD2EC3DF0E15ED92C56D2472D2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139942.roa Signing time: Tue 09 Jan 2024 04:00:09 +0000 ROA not before: Tue 09 Jan 2024 03:55:09 +0000 ROA not after: Tue 07 Jan 2025 04:00:09 +0000 asID: 139942 IP address blocks: 103.146.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:50:63:70:9f:42:a7:fd:2e:c3:df:0e:15:ed:92:c5:6d:24:72:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:09 2024 GMT Not After : Jan 7 04:00:09 2025 GMT Subject: CN=A7F25022BD757AA6295DDD629C875AD3826BE5EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:14:3a:90:d7:6e:10:68:ab:7c:9a:91:71:19: e2:cb:f6:1d:e7:11:92:84:e3:4a:8b:01:d3:45:cf: 17:bf:ff:dc:ac:40:dc:ba:f6:24:a4:6c:f1:ad:30: 04:d5:8d:a7:3a:a5:0e:b3:61:92:26:cd:14:89:26: fb:15:4f:dd:ae:36:0c:ff:d1:73:60:86:47:b5:61: a0:dd:9c:c6:66:b0:84:f6:b5:6f:02:99:43:67:d0: 8f:14:e0:0c:9f:5b:b0:82:d8:d3:ae:9f:93:59:a7: 5f:e7:49:d9:7c:6c:23:b8:0d:0a:7d:c5:c2:94:f6: 2a:03:5c:6b:d1:c5:ab:67:05:55:dc:03:24:06:48: 77:1a:89:4b:18:ed:a7:ba:63:38:b0:13:a9:99:0a: b7:91:79:35:19:2f:11:fa:aa:03:c5:2e:f3:bc:1e: a6:f8:9a:eb:7e:4c:65:75:75:fd:79:71:90:0b:f4: 5b:6a:b5:57:b0:dd:de:5a:0e:cc:eb:3d:0a:28:bb: f8:65:d2:8e:fe:e2:f7:41:85:fb:49:40:99:56:3e: d0:e5:0a:4b:da:7b:22:a4:20:d7:48:ec:60:70:3f: 2c:c9:5c:e1:37:2d:25:f4:20:d8:ab:4f:33:88:62: 7f:17:66:56:03:a2:02:03:b8:2e:80:a8:75:bf:e3: 25:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:F2:50:22:BD:75:7A:A6:29:5D:DD:62:9C:87:5A:D3:82:6B:E5:EF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139942.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.199.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:a8:b7:b4:a3:5a:6b:4d:18:13:56:83:b2:5c:9a:60:31:86: 88:70:fa:a9:18:70:0f:6a:16:03:ff:0e:09:6e:0a:4e:18:bb: e6:05:e9:bb:fb:70:cc:3a:4d:07:60:c4:3b:68:1d:7d:2e:7e: 8c:81:a4:a8:8a:98:05:6a:86:0a:17:27:63:99:5a:fc:11:6b: d6:ee:ea:2b:7a:f6:ad:8a:63:d1:62:b2:4c:16:f3:65:aa:0a: 10:c7:61:e5:da:f4:dc:e1:b8:71:5a:e7:b7:f6:ba:6b:0a:0f: 33:90:11:dc:59:07:b2:46:9b:ce:e0:66:0d:74:5b:43:92:c8: de:46:49:7c:ad:5e:50:1e:db:af:39:38:4c:10:81:84:ea:8a: d8:13:ff:5c:3a:31:75:f6:79:34:ec:ab:c8:7c:56:ca:1b:81: f8:fd:ec:f9:3f:a9:1c:07:01:c8:d4:e7:88:64:e8:c2:1b:ce: cd:c3:1b:b5:ea:2d:06:59:04:07:0a:bb:99:7c:c0:8a:a3:ca: ed:dc:8a:67:27:6a:c4:ec:52:8a:99:be:34:49:b8:b2:c1:3c: 1f:3b:74:b6:5d:58:d9:2a:fb:1c:82:49:8d:ba:8f:3d:de:54: 98:58:fb:0c:70:45:49:db:a3:9c:30:ea:73:73:4e:ba:bf:15: eb:8c:13:b4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUBlBjcJ9Cp/0uw98OFe2SxW0kctIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwOVoX DTI1MDEwNzA0MDAwOVowMzExMC8GA1UEAxMoQTdGMjUwMjJCRDc1N0FBNjI5NURE RDYyOUM4NzVBRDM4MjZCRTVFRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANAUOpDXbhBoq3yakXEZ4sv2HecRkoTjSosB00XPF7//3KxA3Lr2JKRs8a0w BNWNpzqlDrNhkibNFIkm+xVP3a42DP/Rc2CGR7VhoN2cxmawhPa1bwKZQ2fQjxTg DJ9bsILY066fk1mnX+dJ2XxsI7gNCn3FwpT2KgNca9HFq2cFVdwDJAZIdxqJSxjt p7pjOLATqZkKt5F5NRkvEfqqA8Uu87wepvia635MZXV1/XlxkAv0W2q1V7Dd3loO zOs9Cii7+GXSjv7i90GF+0lAmVY+0OUKS9p7IqQg10jsYHA/LMlc4TctJfQg2KtP M4hifxdmVgOiAgO4LoCodb/jJfcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSn8lAi vXV6pild3WKch1rTgmvl7zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk0Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeSxzANBgkqhkiG9w0BAQsFAAOCAQEAK6i3tKNaa00YE1aDslya YDGGiHD6qRhwD2oWA/8OCW4KThi75gXpu/twzDpNB2DEO2gdfS5+jIGkqIqYBWqG ChcnY5la/BFr1u7qK3r2rYpj0WKyTBbzZaoKEMdh5dr03OG4cVrnt/a6awoPM5AR 3FkHskabzuBmDXRbQ5LI3kZJfK1eUB7brzk4TBCBhOqK2BP/XDoxdfZ5NOyryHxW yhuB+P3s+T+pHAcByNTniGTowhvOzcMbteotBlkEBwq7mXzAiqPK7dyKZydqxOxS ipm+NEm4ssE8Hzt0tl1Y2Sr7HIJJjbqPPd5UmFj7DHBFSdujnDDqc3NOur8V64wT tA== -----END CERTIFICATE-----Generated at Wed May 8 21:02:21 2024 by rpki-client on console-fra.rpki-client.org