$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139950.roa File: AS139950.roa (raw, json) Hash identifier: TPQJmXagC8buVp8FzIbYsAY7mhJxQ2oDsNnveYjRRhQ= Subject key identifier: 2B:2A:AA:A2:1B:6A:6F:63:F1:37:EE:2D:73:1B:E5:3C:DF:65:03:5A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6FCCB678F507A4BF8B2EBBFB5B0DC53A0013DBBF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139950.roa Signing time: Mon 23 Dec 2024 06:00:00 +0000 ROA not before: Mon 23 Dec 2024 05:55:00 +0000 ROA not after: Mon 22 Dec 2025 06:00:00 +0000 asID: 139950 IP address blocks: 103.147.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 12:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:cc:b6:78:f5:07:a4:bf:8b:2e:bb:fb:5b:0d:c5:3a:00:13:db:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 23 05:55:00 2024 GMT Not After : Dec 22 06:00:00 2025 GMT Subject: CN=2B2AAAA21B6A6F63F137EE2D731BE53CDF65035A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:22:59:7d:bd:9f:95:8c:0f:ba:70:27:13:7d: d2:33:ba:b3:23:a7:90:3b:c0:3a:f6:53:97:7f:be: 52:60:13:d5:9b:cc:21:b6:46:ee:c4:b1:65:ab:0b: fa:75:cf:94:c8:f3:bb:a9:a6:18:b1:16:6e:1a:f2: eb:0b:57:a7:89:a7:48:1f:6d:b6:78:41:ef:fe:d3: 81:90:fd:23:4d:28:bc:f2:a8:81:f5:89:39:a3:f1: 25:1b:7d:eb:cf:7b:25:23:09:77:8b:b7:67:13:1f: 42:fa:2c:66:9b:fd:c6:27:b5:be:8c:0b:0a:1a:f7: f2:04:13:05:9b:81:e6:80:b2:ed:b4:15:f4:6d:99: d2:ba:bf:95:11:68:76:57:5b:0d:9b:cf:e4:8b:71: 7b:e2:0e:48:b2:b5:11:9e:74:b2:d9:73:a9:88:dd: 70:ee:96:3a:b8:ec:03:a4:9c:06:85:d6:04:21:6a: 48:6e:c3:46:7b:5e:9d:39:3e:78:50:2e:d5:98:09: 8f:ce:74:45:0c:a9:07:28:eb:7b:0c:7a:ea:f3:82: 41:42:3d:9e:e9:4b:4b:32:6d:dd:7e:8e:b8:ff:c8: 2e:d8:6f:44:01:52:8c:d3:b3:4e:18:70:c0:31:3d: 9c:97:cb:95:35:41:b2:35:a6:98:58:03:6f:b2:bf: 89:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:2A:AA:A2:1B:6A:6F:63:F1:37:EE:2D:73:1B:E5:3C:DF:65:03:5A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139950.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.68.0/24 Signature Algorithm: sha256WithRSAEncryption 15:03:e3:43:34:a2:0f:9d:66:fa:b0:a5:52:52:bd:7c:b2:37: 9d:c5:37:e0:24:a6:c2:36:5a:b1:27:8f:04:e6:a0:27:3c:33: e9:18:ce:e1:ee:93:a0:e7:d2:de:39:00:c0:29:70:21:4a:d0: 5e:6b:ac:6b:4c:a6:53:11:c1:47:44:29:b5:a8:3f:f6:66:f9: 3d:ff:c6:88:87:16:dc:f9:f3:00:28:c4:05:40:bf:c9:5c:d0: 66:61:90:8f:51:22:c5:83:59:e9:ca:71:85:6a:b6:3c:5b:39: 45:4e:7a:64:52:be:04:5f:45:0a:1f:ad:53:f3:03:6f:c7:8f: 5a:e4:14:bd:7f:c6:11:7d:a5:ce:47:a7:f0:dc:d1:38:68:d8: aa:16:da:d6:e2:06:ee:22:4f:2f:51:94:24:07:6d:1e:50:b4: 1d:af:85:01:6b:f0:7d:53:5d:0e:9d:ad:65:82:92:dd:60:2a: 6b:20:69:43:e9:d7:ff:0c:52:d9:c7:17:8e:cd:1e:92:14:b2: 1a:87:b5:25:1e:30:fc:9c:38:27:78:ce:0c:e2:35:eb:f3:5f: 29:fb:69:d5:aa:3c:8a:84:b7:f2:9a:8e:41:ea:08:5f:a5:1e: 65:4d:c6:f6:74:d1:fb:97:92:9b:a9:d1:63:7f:64:ac:6f:bc: bd:01:b9:e5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUb8y2ePUHpL+LLrv7Ww3FOgAT278wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIyMzA1NTUwMFoX DTI1MTIyMjA2MDAwMFowMzExMC8GA1UEAxMoMkIyQUFBQTIxQjZBNkY2M0YxMzdF RTJENzMxQkU1M0NERjY1MDM1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPMiWX29n5WMD7pwJxN90jO6syOnkDvAOvZTl3++UmAT1ZvMIbZG7sSxZasL +nXPlMjzu6mmGLEWbhry6wtXp4mnSB9ttnhB7/7TgZD9I00ovPKogfWJOaPxJRt9 6897JSMJd4u3ZxMfQvosZpv9xie1vowLChr38gQTBZuB5oCy7bQV9G2Z0rq/lRFo dldbDZvP5Itxe+IOSLK1EZ50stlzqYjdcO6WOrjsA6ScBoXWBCFqSG7DRntenTk+ eFAu1ZgJj850RQypByjrewx66vOCQUI9nulLSzJt3X6OuP/ILthvRAFSjNOzThhw wDE9nJfLlTVBsjWmmFgDb7K/iaMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQrKqqi G2pvY/E37i1zG+U832UDWjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk1MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeTRDANBgkqhkiG9w0BAQsFAAOCAQEAFQPjQzSiD51m+rClUlK9 fLI3ncU34CSmwjZasSePBOagJzwz6RjO4e6ToOfS3jkAwClwIUrQXmusa0ymUxHB R0Qptag/9mb5Pf/GiIcW3PnzACjEBUC/yVzQZmGQj1EixYNZ6cpxhWq2PFs5RU56 ZFK+BF9FCh+tU/MDb8ePWuQUvX/GEX2lzken8NzROGjYqhba1uIG7iJPL1GUJAdt HlC0Ha+FAWvwfVNdDp2tZYKS3WAqayBpQ+nX/wxS2ccXjs0ekhSyGoe1JR4w/Jw4 J3jODOI16/NfKftp1ao8ioS38pqOQeoIX6UeZU3G9nTR+5eSm6nRY39krG+8vQG5 5Q== -----END CERTIFICATE-----Generated at Tue Apr 8 15:57:29 2025 by rpki-client