$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139957.roa File: AS139957.roa (raw, json) Hash identifier: xXhtonvuBF7cXzGaMgZnrDHefYtO929u5KQdX6IJhyI= Subject key identifier: 51:8A:76:F0:F0:25:6B:88:09:39:B4:17:DA:8F:98:96:24:5C:E9:83 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2C0C81A07F2436EF3CB817B743B0980731355142 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139957.roa Signing time: Tue 09 Jan 2024 04:00:11 +0000 ROA not before: Tue 09 Jan 2024 03:55:11 +0000 ROA not after: Tue 07 Jan 2025 04:00:11 +0000 asID: 139957 IP address blocks: 103.145.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:0c:81:a0:7f:24:36:ef:3c:b8:17:b7:43:b0:98:07:31:35:51:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:11 2024 GMT Not After : Jan 7 04:00:11 2025 GMT Subject: CN=518A76F0F0256B880939B417DA8F9896245CE983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:1b:3c:cd:29:1f:f7:d8:55:c7:69:50:3f:57: c5:73:52:b8:f8:fa:c2:3c:50:72:5d:9d:10:f3:63: e2:83:34:be:62:af:c4:10:ed:72:40:ca:33:79:fc: 40:d8:55:1c:7d:f6:99:ab:87:c3:09:13:87:53:10: 2c:b1:53:1b:a0:f4:6b:cc:f6:a8:57:b6:fd:8c:38: e6:d1:41:9b:67:33:09:91:19:6c:53:ee:59:3f:86: 3c:f1:2b:5b:45:e9:78:94:cf:b1:bd:04:bf:aa:47: 85:0e:50:aa:cc:69:2b:c0:e0:ff:00:ed:9a:9d:13: 90:fa:ed:fa:19:63:47:4f:76:96:15:4c:7c:28:47: c1:3d:7f:93:d1:cc:c4:a4:f2:26:ae:a2:84:41:9f: 98:4e:03:cd:57:6d:9d:28:65:8a:46:8b:14:fe:bb: ba:34:4f:70:b2:55:19:62:99:92:09:46:84:82:51: 32:f3:a8:ba:51:5f:11:60:6f:42:3f:58:44:c1:79: 89:fa:49:2a:f0:75:35:32:7c:f8:8c:70:4c:9e:0b: 27:0c:6f:ef:79:ee:4d:f3:0a:dc:05:b0:3d:ea:fe: 1c:9a:76:64:7b:f2:fd:a6:e4:70:4f:cc:3d:8f:6c: 2a:08:39:a4:af:d7:6a:e4:df:9a:69:15:88:a3:42: 11:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:8A:76:F0:F0:25:6B:88:09:39:B4:17:DA:8F:98:96:24:5C:E9:83 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139957.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.46.0/23 Signature Algorithm: sha256WithRSAEncryption 45:f9:f9:31:f1:58:2b:bc:90:2c:cc:56:d3:fd:d0:57:9d:12: 43:ab:e0:3e:f5:f7:6f:19:79:0c:58:d0:02:14:62:ad:58:be: 2f:49:f7:19:c3:18:99:73:c5:31:54:5a:0e:19:fd:49:ab:de: 5f:70:00:6a:eb:64:c4:38:e0:77:52:1e:10:b5:15:fe:86:06: bd:e1:77:a7:a7:4c:ca:6e:2d:1f:a2:82:bb:89:4a:ad:34:a3: ec:1c:5a:3a:b6:70:90:6b:a0:f6:b0:15:e9:5e:55:27:77:cb: 5e:0f:4e:f7:48:fa:d6:45:d9:2f:b9:77:8d:ed:68:e8:82:a4: f2:e1:3d:0d:76:19:d5:93:eb:5a:ad:96:bb:b2:05:c3:30:71: 45:92:cc:8d:68:f7:ce:7f:b7:73:52:da:4e:5b:75:90:ba:82: a7:d8:7a:37:a7:86:e7:cb:68:2f:ef:76:dd:22:d1:63:07:48: a9:49:45:32:50:8d:ca:5f:38:62:0f:c9:8d:b8:5d:f9:f6:f4: 3b:a1:18:54:44:04:92:67:71:a9:06:10:5c:f9:e5:42:c4:4b: fd:5b:dd:5d:4e:fa:97:03:d7:3b:f0:2a:43:c4:57:01:06:09: 58:55:57:33:a6:7e:6f:e3:b8:38:64:00:60:db:87:7a:f1:10: e8:08:9b:de -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULAyBoH8kNu88uBe3Q7CYBzE1UUIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxMVoX DTI1MDEwNzA0MDAxMVowMzExMC8GA1UEAxMoNTE4QTc2RjBGMDI1NkI4ODA5MzlC NDE3REE4Rjk4OTYyNDVDRTk4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJYbPM0pH/fYVcdpUD9XxXNSuPj6wjxQcl2dEPNj4oM0vmKvxBDtckDKM3n8 QNhVHH32mauHwwkTh1MQLLFTG6D0a8z2qFe2/Yw45tFBm2czCZEZbFPuWT+GPPEr W0XpeJTPsb0Ev6pHhQ5QqsxpK8Dg/wDtmp0TkPrt+hljR092lhVMfChHwT1/k9HM xKTyJq6ihEGfmE4DzVdtnShlikaLFP67ujRPcLJVGWKZkglGhIJRMvOoulFfEWBv Qj9YRMF5ifpJKvB1NTJ8+IxwTJ4LJwxv73nuTfMK3AWwPer+HJp2ZHvy/abkcE/M PY9sKgg5pK/XauTfmmkViKNCEQkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRRinbw 8CVriAk5tBfaj5iWJFzpgzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk1Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeRLjANBgkqhkiG9w0BAQsFAAOCAQEARfn5MfFYK7yQLMxW0/3Q V50SQ6vgPvX3bxl5DFjQAhRirVi+L0n3GcMYmXPFMVRaDhn9SaveX3AAautkxDjg d1IeELUV/oYGveF3p6dMym4tH6KCu4lKrTSj7BxaOrZwkGug9rAV6V5VJ3fLXg9O 90j61kXZL7l3je1o6IKk8uE9DXYZ1ZPrWq2Wu7IFwzBxRZLMjWj3zn+3c1LaTlt1 kLqCp9h6N6eG58toL+923SLRYwdIqUlFMlCNyl84Yg/Jjbhd+fb0O6EYVEQEkmdx qQYQXPnlQsRL/VvdXU76lwPXO/AqQ8RXAQYJWFVXM6Z+b+O4OGQAYNuHevEQ6Aib 3g== -----END CERTIFICATE-----Generated at Mon May 6 01:46:06 2024 by rpki-client on console-ams.rpki-client.org