$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139977.roa File: AS139977.roa (raw, json) Hash identifier: jLytRVKXDy3oAxW5XZ/7O+c/H/0rBHHzzBEAlfVbh30= Subject key identifier: 7E:57:96:D8:65:6C:9D:E4:F0:24:E2:86:12:A7:02:0D:62:28:87:2F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 50FCB9A16B366F82AE27860A7E6EE49C0AC44A0D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139977.roa Signing time: Tue 02 Apr 2024 05:00:00 +0000 ROA not before: Tue 02 Apr 2024 04:55:00 +0000 ROA not after: Tue 01 Apr 2025 05:00:00 +0000 asID: 139977 IP address blocks: 103.148.2.0/23 maxlen: 24 2405:c640::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:fc:b9:a1:6b:36:6f:82:ae:27:86:0a:7e:6e:e4:9c:0a:c4:4a:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 2 04:55:00 2024 GMT Not After : Apr 1 05:00:00 2025 GMT Subject: CN=7E5796D8656C9DE4F024E28612A7020D6228872F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:40:e3:de:66:3b:03:40:25:0d:25:7d:28:78: f3:62:c0:22:66:ad:de:15:d8:6d:49:a1:3e:69:fa: da:03:c6:c2:aa:0f:f5:45:d2:76:30:32:d9:b3:22: c9:1a:bb:3d:40:d4:2b:d8:df:ac:79:a5:99:ad:0b: da:ff:44:e2:70:6e:3e:73:46:37:b0:22:e7:c3:38: 4f:90:91:11:88:d4:a7:e1:8c:38:42:7c:5e:85:41: 3b:2c:31:67:c4:92:31:47:96:0a:d6:00:7c:86:87: 66:59:49:9a:0b:78:35:d8:4f:e9:1d:36:76:5e:16: 10:38:5f:a5:3d:08:17:14:71:92:dd:81:2a:bc:11: 04:30:4e:c3:62:64:1f:80:f5:36:de:ff:98:79:ed: 7c:a1:1c:18:ab:a2:36:4e:f7:ad:c6:28:5d:82:02: 25:4d:8b:cd:44:79:fe:a9:89:a8:0d:04:33:eb:c0: 8d:1a:11:4e:69:16:18:e8:98:25:1a:ed:03:93:a2: 96:5f:ad:e2:fe:17:e2:90:76:30:de:d5:fc:08:32: 5d:87:d5:b1:7e:b5:84:9d:45:7b:cf:c7:7e:2a:c1: 32:05:aa:1a:7c:26:83:03:83:23:a1:c3:1f:d5:9b: 18:5d:f6:22:2c:83:9a:e3:88:93:f5:2c:2b:85:b7: 72:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:57:96:D8:65:6C:9D:E4:F0:24:E2:86:12:A7:02:0D:62:28:87:2F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139977.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.2.0/23 IPv6: 2405:c640::/32 Signature Algorithm: sha256WithRSAEncryption 89:0f:3e:c5:a8:1a:0d:8c:36:b7:8d:06:07:ed:8b:8e:71:8f: 81:cc:85:8a:8c:06:8a:c1:b8:97:b1:87:90:09:d1:31:24:0b: 65:ad:16:0a:c8:f1:c2:bc:36:a9:90:9e:f1:88:0a:cb:31:54: 08:1a:b7:06:d6:3d:11:bc:8a:e1:17:06:e8:f7:48:da:a2:cb: d7:14:2d:be:55:85:4d:34:7a:a2:c8:fa:8b:3a:ed:9b:c8:97: 77:9d:5f:b6:49:be:8a:c0:4e:eb:00:8d:eb:42:1f:b0:a4:c4: f9:b7:58:0b:ce:de:5d:c1:9d:b7:48:00:66:b1:60:d4:c7:96: 73:04:83:f0:f6:7b:d9:2b:cd:56:aa:76:ba:6f:3a:b1:0e:65: 2b:34:65:59:72:c4:b0:30:54:a0:20:63:37:18:fb:ce:48:24: 25:4b:83:f2:7c:6c:6b:66:16:5d:6c:d4:9c:ad:92:b1:58:bb: b0:be:49:a6:24:48:d3:8d:e2:9f:b0:55:be:f9:c1:e7:68:bf: 38:c5:09:ec:9f:99:96:d6:c5:af:e8:9f:ac:31:15:93:df:46: f2:ae:00:3d:50:8d:63:16:0c:24:c2:ac:75:42:c4:2e:8f:4e: de:8b:12:fe:dc:d4:03:03:78:cc:0b:72:95:90:fc:6a:c9:81: f9:13:fe:c6 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUUPy5oWs2b4KuJ4YKfm7knArESg0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQwMjA0NTUwMFoX DTI1MDQwMTA1MDAwMFowMzExMC8GA1UEAxMoN0U1Nzk2RDg2NTZDOURFNEYwMjRF Mjg2MTJBNzAyMEQ2MjI4ODcyRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMJA495mOwNAJQ0lfSh482LAImat3hXYbUmhPmn62gPGwqoP9UXSdjAy2bMi yRq7PUDUK9jfrHmlma0L2v9E4nBuPnNGN7Ai58M4T5CREYjUp+GMOEJ8XoVBOywx Z8SSMUeWCtYAfIaHZllJmgt4NdhP6R02dl4WEDhfpT0IFxRxkt2BKrwRBDBOw2Jk H4D1Nt7/mHntfKEcGKuiNk73rcYoXYICJU2LzUR5/qmJqA0EM+vAjRoRTmkWGOiY JRrtA5Oill+t4v4X4pB2MN7V/AgyXYfVsX61hJ1Fe8/HfirBMgWqGnwmgwODI6HD H9WbGF32IiyDmuOIk/UsK4W3cpMCAwEAAaOCAd8wggHbMB0GA1UdDgQWBBR+V5bY ZWyd5PAk4oYSpwINYiiHLzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk3Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWeUAjANBAIAAjAHAwUAJAXGQDANBgkqhkiG9w0BAQsFAAOCAQEA iQ8+xagaDYw2t40GB+2LjnGPgcyFiowGisG4l7GHkAnRMSQLZa0WCsjxwrw2qZCe 8YgKyzFUCBq3BtY9EbyK4RcG6PdI2qLL1xQtvlWFTTR6osj6izrtm8iXd51ftkm+ isBO6wCN60IfsKTE+bdYC87eXcGdt0gAZrFg1MeWcwSD8PZ72SvNVqp2um86sQ5l KzRlWXLEsDBUoCBjNxj7zkgkJUuD8nxsa2YWXWzUnK2SsVi7sL5JpiRI043in7BV vvnB52i/OMUJ7J+ZltbFr+ifrDEVk99G8q4APVCNYxYMJMKsdULELo9O3osS/tzU AwN4zAtylZD8asmB+RP+xg== -----END CERTIFICATE-----Generated at Mon May 6 17:39:50 2024 by rpki-client on console-ams.rpki-client.org