$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139953.roa File: AS139953.roa (raw, json) Hash identifier: PGFMMksP/1jRbHhrJ1fBaxDCC0ZlxnweAWo1hDnzHLE= Subject key identifier: 53:7A:27:FF:E0:9C:0D:9C:8D:3B:AE:1A:43:D9:81:C6:34:19:62:70 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5043818DBF4D724910A9054A8C452D105AA11A3D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139953.roa Signing time: Mon 27 Nov 2023 07:43:14 +0000 ROA not before: Mon 27 Nov 2023 07:38:14 +0000 ROA not after: Mon 25 Nov 2024 07:43:14 +0000 asID: 139953 IP address blocks: 103.147.80.0/23 maxlen: 24 2405:b240::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:43:81:8d:bf:4d:72:49:10:a9:05:4a:8c:45:2d:10:5a:a1:1a:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 27 07:38:14 2023 GMT Not After : Nov 25 07:43:14 2024 GMT Subject: CN=537A27FFE09C0D9C8D3BAE1A43D981C634196270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c9:02:a4:14:72:09:8f:e2:80:23:49:34:61: d5:5e:8f:aa:74:34:82:4d:fb:46:48:33:4f:8c:bf: 56:98:5d:00:58:b2:c7:b2:f6:13:7e:d4:df:2c:5c: a3:6e:63:09:25:8f:0a:d0:c6:f2:ab:6a:e0:2f:be: 9e:76:43:a0:c2:98:e2:10:dc:da:bd:0b:78:98:81: ab:b2:94:b7:59:ee:54:cd:39:95:fe:a0:c1:f9:ea: d8:f1:bd:08:de:f4:a0:92:4b:7c:df:cb:f0:e4:f5: b1:cf:43:19:7f:02:78:eb:73:f4:d5:f7:0b:89:10: ac:df:58:90:67:20:c5:dc:31:88:36:96:14:f2:02: 99:92:12:8a:97:8a:ea:9e:07:a6:97:2c:c5:e6:8b: 58:96:11:7d:85:f5:c5:b1:9e:dd:b6:f7:e6:c3:4d: 60:5e:3f:b4:ba:9f:7a:fe:64:17:ff:6a:74:23:f3: 86:b9:b7:ef:03:85:88:15:f3:61:ea:04:b3:82:84: f3:08:48:d8:a0:a3:bb:da:9f:eb:f8:7d:5c:84:54: 7e:9b:5e:ad:70:bd:40:c8:a6:46:ad:44:37:71:94: c0:a0:a6:5d:05:48:00:f3:15:b3:82:4b:14:9f:e8: c5:51:41:13:bd:37:42:6e:75:d2:d6:3f:18:12:be: 54:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:7A:27:FF:E0:9C:0D:9C:8D:3B:AE:1A:43:D9:81:C6:34:19:62:70 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139953.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.80.0/23 IPv6: 2405:b240::/32 Signature Algorithm: sha256WithRSAEncryption 85:b8:79:f8:b5:a0:77:ca:8d:50:3f:02:44:2c:01:23:3d:f8: 2b:91:b2:91:42:a5:cf:f8:24:71:ad:01:45:19:d7:38:bb:54: 3a:32:fb:72:3f:29:24:9e:ad:ed:cd:1f:78:64:9f:81:ac:74: 78:49:97:7b:54:02:e2:54:31:e3:26:12:c6:6e:64:6f:ba:1f: 7b:ca:00:1c:19:a3:df:b8:34:a3:0f:e1:de:d3:30:32:5d:f1: 3b:f8:54:dc:18:91:b6:56:66:f8:d9:58:e7:55:c5:37:6f:ae: 74:17:a6:0a:8b:8b:19:10:0f:1e:e5:0c:12:cd:66:ed:a8:15: 46:c0:5a:1d:15:e5:63:16:92:1f:29:6f:a4:9e:2a:7f:1e:7f: 6a:fb:4a:60:a2:73:a5:df:22:7b:d8:2f:e8:11:da:d3:3b:19: 05:11:8f:56:6a:98:05:a3:70:90:42:12:92:3b:c6:07:d4:45: 85:03:81:2b:08:a6:9e:0e:6a:8e:12:ea:6d:a3:aa:0e:03:c0: 6e:62:fa:41:80:8e:f7:cc:82:49:6f:ce:7a:0a:6a:52:99:3d: f6:6f:e8:c8:08:23:d7:21:65:b3:3c:4b:56:b2:16:a0:e2:91: 22:d7:1a:2e:2c:f2:f8:7c:f6:31:53:fd:bf:05:50:dc:80:d0: 9e:25:dc:1a -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUUEOBjb9NckkQqQVKjEUtEFqhGj0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyNzA3MzgxNFoX DTI0MTEyNTA3NDMxNFowMzExMC8GA1UEAxMoNTM3QTI3RkZFMDlDMEQ5QzhEM0JB RTFBNDNEOTgxQzYzNDE5NjI3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMHJAqQUcgmP4oAjSTRh1V6PqnQ0gk37RkgzT4y/VphdAFiyx7L2E37U3yxc o25jCSWPCtDG8qtq4C++nnZDoMKY4hDc2r0LeJiBq7KUt1nuVM05lf6gwfnq2PG9 CN70oJJLfN/L8OT1sc9DGX8CeOtz9NX3C4kQrN9YkGcgxdwxiDaWFPICmZISipeK 6p4HppcsxeaLWJYRfYX1xbGe3bb35sNNYF4/tLqfev5kF/9qdCPzhrm37wOFiBXz YeoEs4KE8whI2KCju9qf6/h9XIRUfpterXC9QMimRq1EN3GUwKCmXQVIAPMVs4JL FJ/oxVFBE703Qm510tY/GBK+VIkCAwEAAaOCAd8wggHbMB0GA1UdDgQWBBRTeif/ 4JwNnI07rhpD2YHGNBlicDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWeTUDANBAIAAjAHAwUAJAWyQDANBgkqhkiG9w0BAQsFAAOCAQEA hbh5+LWgd8qNUD8CRCwBIz34K5GykUKlz/gkca0BRRnXOLtUOjL7cj8pJJ6t7c0f eGSfgax0eEmXe1QC4lQx4yYSxm5kb7ofe8oAHBmj37g0ow/h3tMwMl3xO/hU3BiR tlZm+NlY51XFN2+udBemCouLGRAPHuUMEs1m7agVRsBaHRXlYxaSHylvpJ4qfx5/ avtKYKJzpd8ie9gv6BHa0zsZBRGPVmqYBaNwkEISkjvGB9RFhQOBKwimng5qjhLq baOqDgPAbmL6QYCO98yCSW/OegpqUpk99m/oyAgj1yFlszxLVrIWoOKRItcaLizy +Hz2MVP9vwVQ3IDQniXcGg== -----END CERTIFICATE-----Generated at Wed May 8 18:12:15 2024 by rpki-client on console-fra.rpki-client.org