$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139942.roa File: AS139942.roa (raw, json) Hash identifier: C4oxZMGU4/UP8hwcHNzmRqXRoNkIRhA2XPhh6+8flDY= Subject key identifier: 38:7D:DA:E1:4D:AE:5C:29:A1:0A:62:8B:94:41:13:4F:A4:3C:55:83 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4C5863DE1146FE41B09B94C9BF82940723CFEE41 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139942.roa Signing time: Tue 10 Dec 2024 05:00:07 +0000 ROA not before: Tue 10 Dec 2024 04:55:07 +0000 ROA not after: Tue 09 Dec 2025 05:00:07 +0000 asID: 139942 IP address blocks: 103.146.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:58:63:de:11:46:fe:41:b0:9b:94:c9:bf:82:94:07:23:cf:ee:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:07 2024 GMT Not After : Dec 9 05:00:07 2025 GMT Subject: CN=387DDAE14DAE5C29A10A628B9441134FA43C5583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6b:7a:89:83:7b:6d:76:e7:01:1c:22:d9:3f: 3d:43:3d:5c:43:f5:12:75:df:46:c7:55:78:00:51: 35:3d:08:03:14:02:0c:9f:54:07:43:27:78:37:49: f9:85:63:d0:0c:5a:c8:d7:a5:8e:87:94:ff:ad:ff: ff:6a:9b:6c:40:fb:13:c2:db:bf:97:0f:8b:a2:92: 67:6f:61:11:72:72:21:bf:c5:04:87:6a:a7:5d:d8: 94:d0:d1:38:47:20:6d:f1:f0:a9:d9:50:6c:af:af: 0c:22:ae:64:09:88:43:77:66:60:a4:e1:2b:99:37: e6:ba:db:21:84:3f:87:4c:48:11:4f:31:c6:88:d7: 69:1b:fb:61:8d:c7:60:44:57:6e:60:2f:27:30:f5: 93:3e:c0:f5:35:4e:30:52:18:1b:d2:42:ce:c1:2e: 5c:13:28:7c:d7:e5:b1:fd:15:a9:1c:11:07:7f:c7: 11:8e:c4:d0:3e:08:8b:af:4a:28:1c:72:3f:d9:ef: ca:07:fc:f7:d4:8c:be:f8:fa:29:ea:9a:c0:f4:15: 75:70:83:f1:22:70:90:0a:51:ec:02:ef:85:de:cb: 12:3f:f5:8d:96:f0:5d:b9:f9:94:a0:e7:cc:24:bb: 8d:83:dd:4e:3b:ec:7b:bc:bd:d7:54:12:3d:2e:99: 58:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:7D:DA:E1:4D:AE:5C:29:A1:0A:62:8B:94:41:13:4F:A4:3C:55:83 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139942.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.199.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:65:01:83:08:5a:8d:a1:10:9d:be:90:ec:c0:be:9c:35:78: 53:fc:8b:c7:47:57:fe:b0:22:48:83:a0:83:65:61:05:93:04: 17:1a:f1:03:29:90:13:af:b8:84:a9:7f:5a:de:e5:f1:33:3a: 90:b4:dd:36:31:9a:a9:3f:10:01:bf:51:fe:a8:52:df:76:d7: dd:c1:b5:2f:00:07:fd:a9:ec:2b:dc:0a:d5:14:43:0e:c1:c5: 2b:44:08:c0:0c:db:35:f8:41:2b:ae:56:50:a2:5c:48:bd:9c: 1f:59:85:3b:1b:29:e6:81:a3:98:81:5f:38:53:3d:36:17:93: ee:52:55:07:58:2f:c6:67:af:98:bf:af:67:2e:8c:06:23:2e: 06:6e:e7:cd:b0:f0:53:f6:ca:5b:13:f6:ce:c7:c3:6f:f9:5a: 5e:14:2c:c4:65:48:35:4d:78:d8:8a:f8:6a:e7:fe:2d:d0:66: c4:ee:b4:32:c2:31:9c:62:b6:89:3b:aa:bd:56:fe:75:b7:ec: 51:08:d5:25:6c:a7:af:c6:a1:95:b9:38:02:ee:db:c8:12:bd: 26:35:0d:2b:92:6a:41:34:6b:de:31:13:06:db:b0:85:22:c7: c6:78:e4:60:41:5c:ff:22:97:f1:28:4a:4a:53:a3:bf:ce:cc: 86:2b:6d:ce -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTFhj3hFG/kGwm5TJv4KUByPP7kEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwN1oX DTI1MTIwOTA1MDAwN1owMzExMC8GA1UEAxMoMzg3RERBRTE0REFFNUMyOUExMEE2 MjhCOTQ0MTEzNEZBNDNDNTU4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNreomDe2125wEcItk/PUM9XEP1EnXfRsdVeABRNT0IAxQCDJ9UB0MneDdJ +YVj0AxayNeljoeU/63//2qbbED7E8Lbv5cPi6KSZ29hEXJyIb/FBIdqp13YlNDR OEcgbfHwqdlQbK+vDCKuZAmIQ3dmYKThK5k35rrbIYQ/h0xIEU8xxojXaRv7YY3H YERXbmAvJzD1kz7A9TVOMFIYG9JCzsEuXBMofNflsf0VqRwRB3/HEY7E0D4Ii69K KBxyP9nvygf899SMvvj6KeqawPQVdXCD8SJwkApR7ALvhd7LEj/1jZbwXbn5lKDn zCS7jYPdTjvse7y911QSPS6ZWNECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ4fdrh Ta5cKaEKYouUQRNPpDxVgzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk0Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeSxzANBgkqhkiG9w0BAQsFAAOCAQEAXmUBgwhajaEQnb6Q7MC+ nDV4U/yLx0dX/rAiSIOgg2VhBZMEFxrxAymQE6+4hKl/Wt7l8TM6kLTdNjGaqT8Q Ab9R/qhS33bX3cG1LwAH/ansK9wK1RRDDsHFK0QIwAzbNfhBK65WUKJcSL2cH1mF Oxsp5oGjmIFfOFM9NheT7lJVB1gvxmevmL+vZy6MBiMuBm7nzbDwU/bKWxP2zsfD b/laXhQsxGVINU142Ir4auf+LdBmxO60MsIxnGK2iTuqvVb+dbfsUQjVJWynr8ah lbk4Au7byBK9JjUNK5JqQTRr3jETBtuwhSLHxnjkYEFc/yKX8ShKSlOjv87Mhitt zg== -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:04 2025 by rpki-client