$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139952.roa File: AS139952.roa (raw, json) Hash identifier: 9tR2QOzpX+Sb9QioF8JhMW+IGPvVddpi0IqNkeb91ws= Subject key identifier: 9D:36:A9:04:EB:D4:11:87:D1:FE:C9:FE:5D:37:BE:31:62:67:46:C6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7A6B6C9799AE9266634E78E3CEF79761F8C890A4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139952.roa Signing time: Fri 02 Aug 2024 05:00:00 +0000 ROA not before: Fri 02 Aug 2024 04:55:00 +0000 ROA not after: Fri 01 Aug 2025 05:00:00 +0000 asID: 139952 IP address blocks: 103.245.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:6b:6c:97:99:ae:92:66:63:4e:78:e3:ce:f7:97:61:f8:c8:90:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 2 04:55:00 2024 GMT Not After : Aug 1 05:00:00 2025 GMT Subject: CN=9D36A904EBD41187D1FEC9FE5D37BE31626746C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:be:c5:73:e3:78:12:2c:e6:e1:fc:b5:68:65: 33:a6:49:b5:a3:9a:55:a3:62:46:1b:9b:91:09:56: 45:84:df:e1:82:2f:39:7d:bf:fa:a2:4b:cd:41:02: 92:56:49:5e:e4:15:4c:a7:4e:7d:22:fd:87:b9:dc: 2c:5f:a4:6d:e3:b2:52:a6:21:f5:c1:09:49:18:e0: 64:b8:2f:f2:f5:89:73:ea:61:58:5f:d1:a6:0c:26: a7:ad:cb:9e:b7:8a:49:62:d6:ac:ce:8d:ce:e5:1e: 4e:fb:5c:ea:9b:cf:be:09:4c:cd:20:38:d3:c3:1c: 7b:4f:a4:2f:ca:f2:cf:30:2c:4e:36:88:03:7a:6e: f9:84:ee:5e:86:6c:f0:d6:fe:0d:b1:6f:52:06:c5: ff:9e:53:0d:6f:ce:e1:30:79:89:95:8d:be:0e:4f: e0:c7:ea:81:80:07:80:0b:8f:46:0e:d0:1f:8f:47: 4a:10:b4:37:92:6d:2c:9a:83:7e:c5:38:e7:fc:26: e5:a4:64:48:f0:ce:a6:55:20:c0:66:c2:54:62:d1: f2:ba:93:ef:e6:17:96:c8:cc:c2:17:2b:41:1b:b9: 82:dc:2a:d4:a6:96:5f:ed:68:ed:ab:d0:39:84:e4: 0b:6e:84:04:97:6d:fc:6d:b9:34:88:b0:1d:ce:cd: 95:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:36:A9:04:EB:D4:11:87:D1:FE:C9:FE:5D:37:BE:31:62:67:46:C6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139952.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.26.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:fa:0a:13:94:d5:1a:c4:71:2e:4c:7a:d0:99:da:fb:81:87: bd:da:97:79:9a:3a:be:7e:e2:26:ca:d3:6b:59:38:6f:af:9b: 71:f9:d0:08:13:a4:97:ad:cc:1a:cf:b4:3a:20:a9:a9:25:67: b3:3a:5c:3c:17:8e:d8:39:60:de:24:8b:cb:87:ed:af:44:5c: 7f:2e:8d:70:34:87:e9:38:51:c6:9a:e7:ba:78:5b:c3:79:36: fd:f6:f6:dc:e3:14:8b:c9:38:55:fc:56:4e:33:54:f3:ba:24: a9:0d:f8:a6:d3:92:89:bc:64:cf:2f:35:37:18:94:05:51:b1: 22:56:ae:04:bc:97:7e:c4:ca:9c:41:ff:45:7f:ec:16:6b:5d: 6e:72:84:63:d1:59:04:3d:91:31:dd:22:c9:ff:5c:bd:15:19: 26:5b:1f:99:cc:52:5f:e6:a4:13:40:03:5b:01:4a:08:d7:f5: 08:03:e6:fb:7c:e7:f4:45:a8:28:6b:69:e6:b9:12:b8:ad:9a: 80:9e:13:b4:2d:72:4b:79:dd:78:14:41:e3:ab:8d:c0:81:82: e6:fd:f5:b6:79:b9:0a:8c:45:09:e7:cb:42:62:f0:2b:9f:f0: fb:a3:9d:cb:9d:19:69:4b:8f:dd:0f:33:f8:c7:c3:73:d7:c5: f0:77:ff:7a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUemtsl5mukmZjTnjjzveXYfjIkKQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwMjA0NTUwMFoX DTI1MDgwMTA1MDAwMFowMzExMC8GA1UEAxMoOUQzNkE5MDRFQkQ0MTE4N0QxRkVD OUZFNUQzN0JFMzE2MjY3NDZDNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKu+xXPjeBIs5uH8tWhlM6ZJtaOaVaNiRhubkQlWRYTf4YIvOX2/+qJLzUEC klZJXuQVTKdOfSL9h7ncLF+kbeOyUqYh9cEJSRjgZLgv8vWJc+phWF/Rpgwmp63L nreKSWLWrM6NzuUeTvtc6pvPvglMzSA408Mce0+kL8ryzzAsTjaIA3pu+YTuXoZs 8Nb+DbFvUgbF/55TDW/O4TB5iZWNvg5P4MfqgYAHgAuPRg7QH49HShC0N5JtLJqD fsU45/wm5aRkSPDOplUgwGbCVGLR8rqT7+YXlsjMwhcrQRu5gtwq1KaWX+1o7avQ OYTkC26EBJdt/G25NIiwHc7NlX0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSdNqkE 69QRh9H+yf5dN74xYmdGxjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk1Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf1GjANBgkqhkiG9w0BAQsFAAOCAQEAPvoKE5TVGsRxLkx60Jna +4GHvdqXeZo6vn7iJsrTa1k4b6+bcfnQCBOkl63MGs+0OiCpqSVnszpcPBeO2Dlg 3iSLy4ftr0Rcfy6NcDSH6ThRxprnunhbw3k2/fb23OMUi8k4VfxWTjNU87okqQ34 ptOSibxkzy81NxiUBVGxIlauBLyXfsTKnEH/RX/sFmtdbnKEY9FZBD2RMd0iyf9c vRUZJlsfmcxSX+akE0ADWwFKCNf1CAPm+3zn9EWoKGtp5rkSuK2agJ4TtC1yS3nd eBRB46uNwIGC5v31tnm5CoxFCefLQmLwK5/w+6Ody50ZaUuP3Q8z+MfDc9fF8Hf/ eg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:24 2024 by rpki-client on console-fra.rpki-client.org