$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139983.roa File: AS139983.roa (raw, json) Hash identifier: ubOGU1N5b+WJqDidbULksxRSjMLotLbvC71KgkaVoIg= Subject key identifier: A4:E7:A5:01:72:48:C4:17:F2:75:83:96:1C:51:DC:4C:8F:63:58:EF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4374D60E38BD2381208AFFAAFF287577DB2F22B7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139983.roa Signing time: Tue 11 Jul 2023 05:00:00 +0000 ROA not before: Tue 11 Jul 2023 04:55:00 +0000 ROA not after: Tue 09 Jul 2024 05:00:00 +0000 asID: 139983 IP address blocks: 103.148.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:74:d6:0e:38:bd:23:81:20:8a:ff:aa:ff:28:75:77:db:2f:22:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 11 04:55:00 2023 GMT Not After : Jul 9 05:00:00 2024 GMT Subject: CN=A4E7A5017248C417F27583961C51DC4C8F6358EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2b:55:65:4b:3a:55:3d:4a:df:71:31:b6:4e: f9:b8:8d:b2:50:93:d1:7d:a1:2e:c2:47:a7:2f:a3: 59:9a:2e:b4:9a:26:f2:37:a2:5f:d7:ff:ed:10:4d: e9:3d:d5:9d:f4:18:12:a8:1e:7e:fd:3a:0c:13:64: f2:ec:be:9e:a6:4b:1b:a4:9d:3d:f4:d3:17:1f:8b: c5:0a:52:a5:48:39:9a:ff:e5:a8:74:88:06:96:29: c9:32:c3:72:83:71:51:8d:6c:46:be:1a:92:10:84: b8:d4:7d:b6:81:3b:65:f5:f1:cf:b6:48:60:76:cd: 4b:fe:f0:91:33:3d:43:3a:cd:df:a5:f9:a5:32:c3: 85:cf:50:a5:59:57:29:47:66:b7:d6:82:77:c5:48: d4:95:71:64:b2:64:b0:aa:bc:a9:dd:c7:64:14:18: 7b:43:8e:f0:66:b0:d3:04:ea:e4:9e:94:0c:2f:e6: ea:34:0c:b6:49:61:13:1f:16:da:cd:9d:df:42:19: 75:88:3f:0c:98:f5:52:95:17:39:96:4b:f4:31:d4: 5a:b5:80:1e:50:df:ba:62:b2:3d:36:08:2e:51:63: 9b:81:7e:89:74:b6:56:44:fb:5b:9b:f5:55:84:c0: bd:a8:bb:ae:78:d7:e3:3f:a8:b1:22:62:d6:0d:e8: 5c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:E7:A5:01:72:48:C4:17:F2:75:83:96:1C:51:DC:4C:8F:63:58:EF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139983.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.48.0/23 Signature Algorithm: sha256WithRSAEncryption 92:dd:67:c3:74:6a:c9:50:62:0c:b2:b5:0e:0c:88:ff:22:c3: f1:88:5b:a9:5a:fd:d6:7b:4f:f0:49:14:a7:6d:15:a8:c3:c5: 62:97:ce:04:ca:19:fd:b5:64:0f:9e:e7:04:24:c3:fb:a1:52: 5c:12:c0:9d:84:56:75:e4:0e:13:ea:65:fd:90:d3:29:9a:75: 48:be:c4:96:ec:27:32:85:05:34:8c:83:7d:19:10:b6:a3:42: 39:b6:40:24:71:59:e4:5a:ae:9f:bb:f1:45:63:10:13:33:6c: 2b:aa:5c:88:c7:1b:36:3d:ef:d7:00:85:c1:9a:96:a3:1c:16: 68:f4:5b:4e:86:ec:79:62:cc:1e:c2:a1:d3:e1:a1:5f:c2:64: 6d:62:58:26:6a:49:14:c6:f2:44:82:19:65:48:21:4d:9d:d7: 25:51:e5:df:36:e8:71:ac:45:78:5a:4d:1a:3f:15:89:5b:54: 31:42:4c:ea:d4:ad:e0:f6:64:bf:3c:68:91:9b:89:08:ef:04: 05:89:2c:c7:a0:81:9f:6e:d3:11:6c:6b:cb:64:ef:54:27:6e: c4:1e:bd:09:c3:d4:a6:b2:79:9c:0f:ec:0e:22:28:b0:61:47: bc:07:b6:3f:34:ce:79:ca:7d:a6:05:4a:39:18:c4:6c:a7:f0: a3:9c:8a:de -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQ3TWDji9I4Egiv+q/yh1d9svIrcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcxMTA0NTUwMFoX DTI0MDcwOTA1MDAwMFowMzExMC8GA1UEAxMoQTRFN0E1MDE3MjQ4QzQxN0YyNzU4 Mzk2MUM1MURDNEM4RjYzNThFRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALcrVWVLOlU9St9xMbZO+biNslCT0X2hLsJHpy+jWZoutJom8jeiX9f/7RBN 6T3VnfQYEqgefv06DBNk8uy+nqZLG6SdPfTTFx+LxQpSpUg5mv/lqHSIBpYpyTLD coNxUY1sRr4akhCEuNR9toE7ZfXxz7ZIYHbNS/7wkTM9QzrN36X5pTLDhc9QpVlX KUdmt9aCd8VI1JVxZLJksKq8qd3HZBQYe0OO8Gaw0wTq5J6UDC/m6jQMtklhEx8W 2s2d30IZdYg/DJj1UpUXOZZL9DHUWrWAHlDfumKyPTYILlFjm4F+iXS2VkT7W5v1 VYTAvai7rnjX4z+osSJi1g3oXCUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSk56UB ckjEF/J1g5YcUdxMj2NY7zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk4My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeUMDANBgkqhkiG9w0BAQsFAAOCAQEAkt1nw3RqyVBiDLK1DgyI /yLD8YhbqVr91ntP8EkUp20VqMPFYpfOBMoZ/bVkD57nBCTD+6FSXBLAnYRWdeQO E+pl/ZDTKZp1SL7EluwnMoUFNIyDfRkQtqNCObZAJHFZ5Fqun7vxRWMQEzNsK6pc iMcbNj3v1wCFwZqWoxwWaPRbTobseWLMHsKh0+GhX8JkbWJYJmpJFMbyRIIZZUgh TZ3XJVHl3zbocaxFeFpNGj8ViVtUMUJM6tSt4PZkvzxokZuJCO8EBYksx6CBn27T EWxry2TvVCduxB69CcPUprJ5nA/sDiIosGFHvAe2PzTOecp9pgVKORjEbKfwo5yK 3g== -----END CERTIFICATE-----Generated at Wed May 8 07:45:26 2024 by rpki-client on console-ams.rpki-client.org