$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139952.roa File: AS139952.roa (raw, json) Hash identifier: /Islmgcl6U/EiI1AMKm/WUU+q78fXc65w71zcigCVls= Subject key identifier: 79:3F:82:DA:BF:41:30:BD:42:64:F0:A6:B4:B3:C4:AF:27:35:E3:66 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 320AEF442016E1124976298B10C45616CA319B66 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139952.roa Signing time: Fri 01 Sep 2023 04:13:05 +0000 ROA not before: Fri 01 Sep 2023 04:08:05 +0000 ROA not after: Fri 30 Aug 2024 04:13:05 +0000 asID: 139952 IP address blocks: 103.245.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:0a:ef:44:20:16:e1:12:49:76:29:8b:10:c4:56:16:ca:31:9b:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 1 04:08:05 2023 GMT Not After : Aug 30 04:13:05 2024 GMT Subject: CN=793F82DABF4130BD4264F0A6B4B3C4AF2735E366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3d:68:30:aa:b4:ba:26:19:3c:cf:1a:84:df: b7:87:7d:f9:73:0f:9d:38:b9:d4:20:5d:c2:6b:5a: 41:70:17:21:c4:a3:9d:d6:29:4b:79:58:be:7c:15: eb:81:4c:46:ea:44:ce:09:2c:1e:5c:1c:26:e2:b1: c8:5a:64:00:63:c1:07:91:54:2c:bb:9c:c4:51:34: d8:a6:9d:26:a3:33:db:d6:33:92:a6:10:a7:77:d9: db:ac:f0:02:42:70:de:df:fb:0c:09:6f:7c:ff:15: a5:79:8f:26:4f:29:12:a3:bf:68:6d:db:e3:7f:32: 6e:3d:ee:e2:12:11:ff:e0:b3:a3:55:3a:9f:6e:bb: db:a9:e9:fa:c9:f0:6c:ac:bf:d9:59:63:ea:d6:da: fb:cc:e6:c8:78:4a:79:d9:f5:62:ba:97:eb:59:bd: c5:7c:25:65:8d:7c:18:8d:53:0c:73:5b:0e:4f:a7: f0:f8:da:b6:b2:17:da:99:4b:53:4b:96:dc:77:1a: f0:f8:d5:6a:94:52:a2:c2:a1:96:ce:bc:a3:1d:7d: 1f:f4:a8:6f:7c:1d:4d:d4:35:05:b8:e1:7a:d2:d3: ae:89:a2:fc:ed:8a:43:37:f4:23:05:d3:92:0d:6e: 43:ad:67:42:68:7b:cf:ba:46:7a:af:d5:68:76:15: c5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:3F:82:DA:BF:41:30:BD:42:64:F0:A6:B4:B3:C4:AF:27:35:E3:66 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139952.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.26.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:47:2b:c3:72:7c:21:93:48:ec:a7:51:2b:a3:73:b3:0f:04: 23:22:78:f0:ea:c7:e8:16:7b:fa:55:f0:ab:7d:21:f5:7e:93: 5b:ae:ad:aa:cd:dc:89:3c:df:04:e9:0e:17:53:96:da:10:ec: 1c:da:6b:f1:1f:f7:ac:4d:0e:13:22:32:39:75:79:89:71:8e: 56:a7:fb:f1:fd:da:cf:dd:28:24:b6:64:9c:6a:e6:45:d9:da: 6a:91:4d:53:1b:b6:10:d7:89:b2:ef:98:92:38:0f:0b:d9:52: e7:79:13:41:88:5b:69:02:0a:02:3e:3f:58:a5:bb:40:aa:cc: bf:fd:7d:97:62:5f:6e:01:81:e7:b4:17:86:42:a5:16:4f:95: 7d:3e:16:0e:f1:68:f9:2e:0d:2b:8a:89:52:6e:53:e3:d5:43: b9:96:35:5c:cb:62:f1:99:7c:67:a7:dd:8c:9f:55:30:a0:39: 66:43:49:e2:c5:62:4b:01:c1:eb:94:aa:7b:af:04:20:1c:43: 3d:97:c3:97:45:36:18:67:86:9c:ab:bf:29:c2:25:ed:0d:aa: 1d:e9:83:c6:bf:bb:45:0f:95:4d:8b:3f:e1:91:05:6a:70:cc: ef:be:5d:c1:87:e2:a1:39:66:78:87:a7:b4:62:1e:bc:e5:cf: 32:44:1e:b7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMgrvRCAW4RJJdimLEMRWFsoxm2YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwMTA0MDgwNVoX DTI0MDgzMDA0MTMwNVowMzExMC8GA1UEAxMoNzkzRjgyREFCRjQxMzBCRDQyNjRG MEE2QjRCM0M0QUYyNzM1RTM2NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKQ9aDCqtLomGTzPGoTft4d9+XMPnTi51CBdwmtaQXAXIcSjndYpS3lYvnwV 64FMRupEzgksHlwcJuKxyFpkAGPBB5FULLucxFE02KadJqMz29YzkqYQp3fZ26zw AkJw3t/7DAlvfP8VpXmPJk8pEqO/aG3b438ybj3u4hIR/+Czo1U6n26726np+snw bKy/2Vlj6tba+8zmyHhKedn1YrqX61m9xXwlZY18GI1TDHNbDk+n8PjatrIX2plL U0uW3Hca8PjVapRSosKhls68ox19H/Sob3wdTdQ1BbjhetLTromi/O2KQzf0IwXT kg1uQ61nQmh7z7pGeq/VaHYVxbECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR5P4La v0EwvUJk8Ka0s8SvJzXjZjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk1Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf1GjANBgkqhkiG9w0BAQsFAAOCAQEAD0crw3J8IZNI7KdRK6Nz sw8EIyJ48OrH6BZ7+lXwq30h9X6TW66tqs3ciTzfBOkOF1OW2hDsHNpr8R/3rE0O EyIyOXV5iXGOVqf78f3az90oJLZknGrmRdnaapFNUxu2ENeJsu+YkjgPC9lS53kT QYhbaQIKAj4/WKW7QKrMv/19l2JfbgGB57QXhkKlFk+VfT4WDvFo+S4NK4qJUm5T 49VDuZY1XMti8Zl8Z6fdjJ9VMKA5ZkNJ4sViSwHB65Sqe68EIBxDPZfDl0U2GGeG nKu/KcIl7Q2qHemDxr+7RQ+VTYs/4ZEFanDM775dwYfioTlmeIentGIevOXPMkQe tw== -----END CERTIFICATE-----Generated at Thu May 9 00:29:15 2024 by rpki-client on console-ams.rpki-client.org