$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139981.roa File: AS139981.roa (raw, json) Hash identifier: ryntDsSFfZynKEW1Q+r6cJ7pTAHa5zUOyRqiExzNxro= Subject key identifier: 23:49:F4:FB:89:24:01:5C:14:F6:18:E1:7F:DA:3D:9A:D5:6D:F9:60 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 77AE4FA3DBC38AAD4AF3144543C45F6558A0C4D9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139981.roa Signing time: Mon 01 Jul 2024 17:53:02 +0000 ROA not before: Mon 01 Jul 2024 17:48:02 +0000 ROA not after: Mon 30 Jun 2025 17:53:02 +0000 asID: 139981 IP address blocks: 103.71.160.0/22 maxlen: 24 202.74.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:ae:4f:a3:db:c3:8a:ad:4a:f3:14:45:43:c4:5f:65:58:a0:c4:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 17:48:02 2024 GMT Not After : Jun 30 17:53:02 2025 GMT Subject: CN=2349F4FB8924015C14F618E17FDA3D9AD56DF960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c8:db:5b:c2:a3:91:b2:c6:14:cb:5f:cc:c5: e4:f8:83:5c:aa:53:7d:1e:15:54:07:bc:fc:bd:67: 53:a8:23:71:be:21:02:99:a4:bd:0f:99:e3:ac:58: 5a:92:8b:a5:98:f5:55:42:f2:d9:41:65:f3:f8:d5: 6c:a0:05:02:77:d9:79:68:8b:58:6e:8e:4b:c7:f5: e7:7b:c9:86:88:06:91:55:e7:16:a9:3d:16:43:fb: 75:b2:08:4a:f7:89:a2:33:86:e9:9b:cd:5c:13:41: 22:a3:aa:1a:de:f5:42:0b:75:a0:2b:2c:b1:77:77: 7e:ef:06:f7:df:7b:0e:7a:46:3d:ea:15:2f:80:06: b1:18:e4:1c:17:02:25:2c:4b:c6:de:2a:7c:89:58: b1:85:d3:76:ee:10:90:55:1a:f3:5e:82:6c:3c:53: d2:e0:31:d4:b2:86:ff:ea:f1:df:bc:7f:c6:d1:34: 50:c7:a0:01:0b:19:97:80:d8:f6:e6:f0:1b:98:23: 93:10:c6:c8:b5:c4:88:8d:d7:de:46:77:19:20:9b: 64:c4:dc:7b:3f:f6:48:ea:17:3f:04:4f:3b:f4:f4: 4e:fc:7d:85:c9:68:46:18:02:be:11:70:f1:21:29: 96:6b:db:13:46:4d:3a:1c:62:c8:25:af:e4:1b:41: 3f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:49:F4:FB:89:24:01:5C:14:F6:18:E1:7F:DA:3D:9A:D5:6D:F9:60 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139981.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.160.0/22 202.74.72.0/23 Signature Algorithm: sha256WithRSAEncryption 00:c3:c6:68:8f:40:9c:53:65:8f:55:21:ea:f3:ea:ec:1a:3f: 4d:ca:b3:df:56:bf:a4:3f:f0:8f:46:a1:54:f8:5c:3d:2b:26: 7b:f2:5f:d1:e7:a1:ee:65:cf:76:36:db:67:de:2d:05:b6:be: 65:69:ff:d0:b5:cf:17:f7:94:d4:28:77:c7:77:b6:eb:7d:91: 4a:92:5f:bb:99:2e:ff:2b:24:d7:27:35:0b:ea:30:cf:e1:4b: 24:2b:ed:ae:ec:3f:00:1a:98:e3:04:4f:30:4c:b1:5d:3e:b3: 51:cf:4f:71:cc:c4:3f:7d:f9:7d:a4:23:0a:83:08:47:68:92: 81:30:91:7f:26:52:85:bb:08:39:00:32:7b:e3:68:46:fe:20: 6e:24:dd:e7:fa:0d:ef:b4:f5:4b:23:43:5b:83:38:ef:ac:5c: c6:74:40:5c:b0:c1:37:73:52:b6:25:d6:af:37:53:fa:37:dc: 9a:82:22:57:3b:0b:d6:8f:ce:fb:1e:8d:f0:b4:d5:af:ed:d6: 03:a8:e8:9a:6a:33:82:03:e9:be:06:1b:5b:e6:f8:fb:01:7e: dc:ab:fc:f2:bd:40:da:55:fa:89:b6:bd:50:86:b7:39:e9:b6: a5:a7:8c:42:b7:d2:3a:4d:14:30:a3:c2:13:d9:56:0d:dd:08: 6c:d1:d1:1c -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUd65Po9vDiq1K8xRFQ8RfZVigxNkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTE3NDgwMloX DTI1MDYzMDE3NTMwMlowMzExMC8GA1UEAxMoMjM0OUY0RkI4OTI0MDE1QzE0RjYx OEUxN0ZEQTNEOUFENTZERjk2MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALnI21vCo5GyxhTLX8zF5PiDXKpTfR4VVAe8/L1nU6gjcb4hApmkvQ+Z46xY WpKLpZj1VULy2UFl8/jVbKAFAnfZeWiLWG6OS8f153vJhogGkVXnFqk9FkP7dbII SveJojOG6ZvNXBNBIqOqGt71Qgt1oCsssXd3fu8G9997DnpGPeoVL4AGsRjkHBcC JSxLxt4qfIlYsYXTdu4QkFUa816CbDxT0uAx1LKG/+rx37x/xtE0UMegAQsZl4DY 9ubwG5gjkxDGyLXEiI3X3kZ3GSCbZMTcez/2SOoXPwRPO/T0Tvx9hcloRhgCvhFw 8SEplmvbE0ZNOhxiyCWv5BtBP/ECAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQjSfT7 iSQBXBT2GOF/2j2a1W35YDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAmdHoAMEAcpKSDANBgkqhkiG9w0BAQsFAAOCAQEAAMPGaI9AnFNl j1Uh6vPq7Bo/Tcqz31a/pD/wj0ahVPhcPSsme/Jf0eeh7mXPdjbbZ94tBba+ZWn/ 0LXPF/eU1Ch3x3e2632RSpJfu5ku/ysk1yc1C+owz+FLJCvtruw/ABqY4wRPMEyx XT6zUc9PcczEP335faQjCoMIR2iSgTCRfyZShbsIOQAye+NoRv4gbiTd5/oN77T1 SyNDW4M476xcxnRAXLDBN3NStiXWrzdT+jfcmoIiVzsL1o/O+x6N8LTVr+3WA6jo mmozggPpvgYbW+b4+wF+3Kv88r1A2lX6iba9UIa3Oem2paeMQrfSOk0UMKPCE9lW Dd0IbNHRHA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:47 2024 by rpki-client on console-ams.rpki-client.org