$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139953.roa File: AS139953.roa (raw, json) Hash identifier: 9I/clxJ/MOQAPPK35nlXPDepAc6nDz8CK2KtzVSuxXA= Subject key identifier: A0:B2:C6:76:AF:A8:C8:34:C6:08:13:66:A6:34:F4:E6:C4:4A:66:02 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 11BAE26BF3F2A731AB9D4FF26D990F22045A3261 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139953.roa Signing time: Mon 28 Oct 2024 08:00:00 +0000 ROA not before: Mon 28 Oct 2024 07:55:00 +0000 ROA not after: Mon 27 Oct 2025 08:00:00 +0000 asID: 139953 IP address blocks: 103.147.80.0/23 maxlen: 24 2405:b240::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:ba:e2:6b:f3:f2:a7:31:ab:9d:4f:f2:6d:99:0f:22:04:5a:32:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 28 07:55:00 2024 GMT Not After : Oct 27 08:00:00 2025 GMT Subject: CN=A0B2C676AFA8C834C6081366A634F4E6C44A6602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c1:d2:00:5f:fd:f0:01:13:6e:70:1f:ae:dd: 91:e0:2e:1e:6a:d3:a0:25:f9:70:52:4c:74:ca:f1: 35:f1:28:f0:24:8c:66:c4:12:0f:77:08:e7:8f:14: a9:ec:5b:bd:bd:17:b5:61:4e:16:cd:3d:4f:61:f1: f4:7b:82:1b:3c:d4:04:8b:92:9b:10:6e:ed:07:09: a2:bd:b2:74:24:ea:13:e6:b7:f4:59:63:5c:be:e1: 41:24:69:de:af:3e:ce:08:ac:ce:1a:b7:39:90:a3: 3c:a0:c3:ff:83:fc:16:0b:2f:f9:6e:b1:57:c9:95: 56:c0:85:72:78:a5:36:05:3a:2f:e0:b9:f3:1a:3e: 72:a9:a1:49:2a:b0:72:8e:fa:38:b1:ea:8d:8e:d5: 4a:44:6a:10:72:4c:93:93:8f:1f:91:bd:ae:67:b9: f3:62:0f:0f:b3:a9:fc:82:eb:20:31:e6:7d:4b:28: 49:d2:0f:ed:2f:70:ec:c3:65:52:19:2f:de:eb:ae: 8b:6c:99:30:ef:50:a3:0c:60:c2:1d:9f:48:7b:19: 4b:c2:d1:95:9a:55:d3:5f:e8:b6:af:ed:a7:b2:7e: d7:5f:ff:a8:80:94:a2:7f:8f:4b:37:a8:62:ca:8a: 66:3d:c7:22:e1:3f:6e:a8:ab:a5:09:72:ea:3f:a6: 81:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:B2:C6:76:AF:A8:C8:34:C6:08:13:66:A6:34:F4:E6:C4:4A:66:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139953.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.80.0/23 IPv6: 2405:b240::/32 Signature Algorithm: sha256WithRSAEncryption 4f:a7:fb:a5:74:f3:71:19:2e:0c:41:5a:4a:7a:0e:a0:f6:49: 99:4d:00:93:96:24:e3:a2:d7:dd:65:a4:80:d4:5d:b1:f3:20: 38:b6:89:63:b9:c7:08:3b:cd:3d:e7:ec:47:b2:e6:d9:f7:75: 78:ed:5e:d2:17:03:9b:8d:01:9c:9e:45:11:c7:d1:3d:89:f5: 92:62:55:d1:97:08:03:f5:7f:e1:73:f1:1a:da:7c:a4:1e:90: c1:b4:88:70:1a:49:0b:3b:65:cf:01:cd:a7:f8:31:e0:83:8d: b5:d8:0d:e7:15:5f:a3:09:df:2a:6e:a3:aa:a7:4c:9b:1b:fc: 2a:28:0a:eb:7a:9e:9c:f7:4c:69:ca:2f:4e:ae:fb:ca:3d:58: 0a:df:8a:11:6a:b0:79:02:d8:ec:fe:41:40:3c:c9:aa:c1:b8: 49:2b:64:17:ae:41:95:59:fa:2a:06:b9:1c:6d:d5:25:f3:1d: 07:5a:f0:06:a5:03:c6:e6:1e:10:e6:35:0a:13:05:b0:14:75: db:3b:db:be:7b:68:0a:89:2d:0b:0a:44:fd:3c:13:c9:63:01: 65:f3:13:6d:72:e6:66:bd:a3:10:2a:00:73:27:56:6c:49:52: d6:c7:38:1c:58:ed:36:64:fb:32:b2:45:c6:ff:d3:7b:d5:e3: ac:a4:39:42 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUEbria/PypzGrnU/ybZkPIgRaMmEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyODA3NTUwMFoX DTI1MTAyNzA4MDAwMFowMzExMC8GA1UEAxMoQTBCMkM2NzZBRkE4QzgzNEM2MDgx MzY2QTYzNEY0RTZDNDRBNjYwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMHB0gBf/fABE25wH67dkeAuHmrToCX5cFJMdMrxNfEo8CSMZsQSD3cI548U qexbvb0XtWFOFs09T2Hx9HuCGzzUBIuSmxBu7QcJor2ydCTqE+a39FljXL7hQSRp 3q8+zgiszhq3OZCjPKDD/4P8Fgsv+W6xV8mVVsCFcnilNgU6L+C58xo+cqmhSSqw co76OLHqjY7VSkRqEHJMk5OPH5G9rme582IPD7Op/ILrIDHmfUsoSdIP7S9w7MNl Uhkv3uuui2yZMO9Qowxgwh2fSHsZS8LRlZpV01/otq/tp7J+11//qICUon+PSzeo YsqKZj3HIuE/bqirpQly6j+mgTcCAwEAAaOCAd8wggHbMB0GA1UdDgQWBBSgssZ2 r6jINMYIE2amNPTmxEpmAjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWeTUDANBAIAAjAHAwUAJAWyQDANBgkqhkiG9w0BAQsFAAOCAQEA T6f7pXTzcRkuDEFaSnoOoPZJmU0Ak5Yk46LX3WWkgNRdsfMgOLaJY7nHCDvNPefs R7Lm2fd1eO1e0hcDm40BnJ5FEcfRPYn1kmJV0ZcIA/V/4XPxGtp8pB6QwbSIcBpJ CztlzwHNp/gx4IONtdgN5xVfownfKm6jqqdMmxv8KigK63qenPdMacovTq77yj1Y Ct+KEWqweQLY7P5BQDzJqsG4SStkF65BlVn6Kga5HG3VJfMdB1rwBqUDxuYeEOY1 ChMFsBR12zvbvntoCoktCwpE/TwTyWMBZfMTbXLmZr2jECoAcydWbElS1sc4HFjt NmT7MrJFxv/Te9XjrKQ5Qg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:54 2024 by rpki-client on console-fra.rpki-client.org