$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139946.roa File: AS139946.roa (raw, json) Hash identifier: ZquVAIhix/LSbJwTVJPc7tcHdVp7azFS1UhP0q1/DT4= Subject key identifier: F6:56:1B:D2:9D:3D:03:FD:2E:53:DE:28:BB:0C:70:E4:2B:60:92:EE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 30504A33FFE964F5531FD4F67E587E998B2E127A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139946.roa Signing time: Tue 09 Jan 2024 04:00:28 +0000 ROA not before: Tue 09 Jan 2024 03:55:28 +0000 ROA not after: Tue 07 Jan 2025 04:00:28 +0000 asID: 139946 IP address blocks: 103.147.46.0/23 maxlen: 24 2405:a8c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:50:4a:33:ff:e9:64:f5:53:1f:d4:f6:7e:58:7e:99:8b:2e:12:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:28 2024 GMT Not After : Jan 7 04:00:28 2025 GMT Subject: CN=F6561BD29D3D03FD2E53DE28BB0C70E42B6092EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ef:3a:66:b2:ec:24:7c:0f:e2:99:83:15:71: d6:8d:e6:b1:ed:ef:08:dc:79:e8:5c:8e:df:5f:ff: 7f:01:6c:7b:b9:ed:b1:c4:f5:b5:37:96:67:a5:62: b5:0a:5d:35:e2:eb:c7:f6:57:55:d7:f8:d9:a5:e6: 21:8b:61:c5:0e:62:d3:9e:4e:59:7c:a5:67:fc:db: 28:96:83:7a:a0:96:5e:a9:a3:2f:81:01:bd:87:44: f7:08:5f:a5:c4:2b:ff:35:4b:e3:66:6c:3e:f1:1b: 3e:58:cb:38:2e:f4:11:8c:95:6f:12:71:f2:1d:ab: 2b:61:b3:c0:9e:5e:f1:eb:e4:ad:79:b9:ec:5b:55: 22:77:aa:1f:ef:8b:fe:2c:83:b3:ee:bb:f2:e0:9b: b5:9e:fc:0b:09:1f:56:15:4a:23:4e:d3:e2:b4:6c: fb:aa:17:3f:54:86:c6:02:c6:0b:8d:0b:ab:d6:60: 43:41:b6:2a:b4:2e:e8:1c:90:9f:58:26:c2:fd:8d: 06:1b:ee:fc:21:86:bc:ac:54:3e:21:eb:f2:75:a7: 67:02:ba:86:99:69:74:ec:32:0d:cc:58:43:b5:9f: d2:33:40:4e:5a:ec:1c:ce:1c:87:84:bb:3d:f5:25: ee:12:49:f1:4d:ba:f4:54:de:92:72:e3:0e:6f:2b: 17:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:56:1B:D2:9D:3D:03:FD:2E:53:DE:28:BB:0C:70:E4:2B:60:92:EE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139946.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.46.0/23 IPv6: 2405:a8c0::/32 Signature Algorithm: sha256WithRSAEncryption 5a:df:c0:4e:31:8b:3a:a6:5f:c2:95:ce:ff:0c:b3:35:db:35: 6d:0b:e8:6f:98:dd:9d:7b:e9:99:fd:86:d7:5a:bb:d1:3f:d4: 82:ac:bf:eb:52:49:23:37:5f:8f:85:b0:e3:05:37:58:33:f2: 1c:96:d6:34:7d:60:5b:6b:cf:4a:06:98:61:a1:ed:2f:ff:a5: de:47:33:d0:22:a4:30:da:06:4a:c8:78:9f:ef:10:04:7a:fe: 9d:e6:51:a1:f8:b6:3e:b4:dc:8e:5a:28:a5:52:76:73:3e:88: fa:47:1b:28:1e:e6:94:58:4a:7b:e4:2e:aa:83:11:72:9d:ca: 5c:03:be:f4:ca:3b:66:31:e4:fb:3c:c6:0b:5a:b0:eb:48:26: a2:cc:41:50:83:9d:a0:34:1d:ce:5c:3c:bf:44:22:8c:80:d8: 7b:2a:8f:fb:48:51:a1:84:5a:a6:5e:8d:5b:d7:a7:20:e4:63: b2:11:b7:e0:07:12:8d:18:e6:d6:51:6d:3d:1e:0d:25:56:ec: 40:be:ab:3e:d9:89:1b:92:51:cd:04:2d:01:0d:ea:73:71:63: 20:ac:83:99:f2:b3:99:5a:b3:fd:83:7c:93:b1:a8:a3:2f:0a: a3:66:63:c8:f1:ad:4b:37:4a:e1:e6:b1:70:6c:0b:8a:31:b1: b4:ca:4c:51 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUMFBKM//pZPVTH9T2flh+mYsuEnowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyOFoX DTI1MDEwNzA0MDAyOFowMzExMC8GA1UEAxMoRjY1NjFCRDI5RDNEMDNGRDJFNTNE RTI4QkIwQzcwRTQyQjYwOTJFRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK3vOmay7CR8D+KZgxVx1o3mse3vCNx56FyO31//fwFse7ntscT1tTeWZ6Vi tQpdNeLrx/ZXVdf42aXmIYthxQ5i055OWXylZ/zbKJaDeqCWXqmjL4EBvYdE9whf pcQr/zVL42ZsPvEbPljLOC70EYyVbxJx8h2rK2GzwJ5e8evkrXm57FtVIneqH++L /iyDs+678uCbtZ78CwkfVhVKI07T4rRs+6oXP1SGxgLGC40Lq9ZgQ0G2KrQu6ByQ n1gmwv2NBhvu/CGGvKxUPiHr8nWnZwK6hplpdOwyDcxYQ7Wf0jNATlrsHM4ch4S7 PfUl7hJJ8U269FTeknLjDm8rFzkCAwEAAaOCAd8wggHbMB0GA1UdDgQWBBT2VhvS nT0D/S5T3ii7DHDkK2CS7jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk0Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWeTLjANBAIAAjAHAwUAJAWowDANBgkqhkiG9w0BAQsFAAOCAQEA Wt/ATjGLOqZfwpXO/wyzNds1bQvob5jdnXvpmf2G11q70T/Ugqy/61JJIzdfj4Ww 4wU3WDPyHJbWNH1gW2vPSgaYYaHtL/+l3kcz0CKkMNoGSsh4n+8QBHr+neZRofi2 PrTcjloopVJ2cz6I+kcbKB7mlFhKe+QuqoMRcp3KXAO+9Mo7ZjHk+zzGC1qw60gm osxBUIOdoDQdzlw8v0QijIDYeyqP+0hRoYRapl6NW9enIORjshG34AcSjRjm1lFt PR4NJVbsQL6rPtmJG5JRzQQtAQ3qc3FjIKyDmfKzmVqz/YN8k7Gooy8Ko2ZjyPGt SzdK4eaxcGwLijGxtMpMUQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:24 2024 by rpki-client on console-fra.rpki-client.org