$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139995.roa File: AS139995.roa (raw, json) Hash identifier: tR96NhdEkIvYOdTUqy3pglXwfSmj61zo9jpw8wcHNDg= Subject key identifier: BE:73:40:C8:5F:12:13:72:45:C6:41:F4:F0:04:F4:AB:4E:D2:26:6D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 356A0A610AAEEB75897C09772AA1F3B8DF511CE7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139995.roa Signing time: Tue 09 Jan 2024 04:00:21 +0000 ROA not before: Tue 09 Jan 2024 03:55:21 +0000 ROA not after: Tue 07 Jan 2025 04:00:21 +0000 asID: 139995 IP address blocks: 103.148.192.0/23 maxlen: 24 2001:df2:e580::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:6a:0a:61:0a:ae:eb:75:89:7c:09:77:2a:a1:f3:b8:df:51:1c:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:21 2024 GMT Not After : Jan 7 04:00:21 2025 GMT Subject: CN=BE7340C85F12137245C641F4F004F4AB4ED2266D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:27:ee:5a:40:de:a6:29:79:df:3a:d4:ff:30: e1:14:a1:fd:ef:73:06:02:46:75:93:f5:72:d6:55: 04:8e:eb:71:1b:a3:d0:78:99:7f:58:eb:09:ab:54: ab:18:f2:de:74:21:0a:9e:7f:cb:4b:11:b1:bd:81: 22:e5:7c:ee:73:2b:05:f0:0e:03:86:80:9b:aa:48: f9:29:d8:61:ee:e4:76:8e:fb:41:2d:ba:7d:20:75: a4:e9:b6:00:95:1b:7e:2b:a6:d1:48:9c:20:b7:4e: 74:e7:a6:9b:85:54:c8:d2:13:07:b6:56:d2:06:18: 7c:f7:d9:00:58:d2:82:af:9d:b8:a1:dd:34:18:56: 97:23:85:3a:f6:5c:e3:7d:e8:7b:b0:8b:d0:b8:a4: 06:62:86:77:02:58:1d:58:a2:95:4f:aa:ec:ff:3a: 21:aa:17:64:77:89:21:b7:e0:49:31:4f:6a:b3:96: dd:b2:01:4e:fd:b5:e3:8b:14:3c:e6:1e:c8:17:29: 9f:93:69:ed:e6:27:38:ee:84:8d:31:9f:1f:ce:f9: a7:17:e7:80:a8:b5:5f:1b:78:d6:7c:1d:95:79:cf: 48:7a:b0:6f:1c:84:1d:3c:01:21:d7:7a:8a:38:4f: 16:71:b8:a9:5a:75:05:c2:b7:21:ef:8f:fe:2a:f1: 96:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:73:40:C8:5F:12:13:72:45:C6:41:F4:F0:04:F4:AB:4E:D2:26:6D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139995.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.192.0/23 IPv6: 2001:df2:e580::/48 Signature Algorithm: sha256WithRSAEncryption 59:0c:2a:fb:01:6b:21:a3:a1:0a:58:98:4d:6c:9b:14:c8:95: ca:e0:08:ee:4f:6a:be:31:74:1d:6a:c9:af:a6:6d:5d:a9:78: e8:76:23:c5:67:4e:1c:da:7d:25:a3:2c:d5:9c:e7:f5:59:48: b1:c7:7d:2c:dd:58:f7:e6:d7:56:6d:95:e7:7b:39:82:12:75: c6:2b:cf:88:90:55:8f:cc:16:e0:bc:35:33:82:ba:5f:87:3a: be:32:31:c3:6c:a3:89:42:5c:ca:3d:ba:f0:8a:04:e7:b7:64: e0:54:bc:6a:96:5e:5a:bd:0f:b3:d5:ff:ef:d1:ae:78:f4:8c: 99:4b:b6:25:12:1d:40:30:b4:f6:6d:b5:bf:a0:d2:67:1d:d1: 0b:71:ed:d2:e0:11:a9:a4:b3:fb:7a:fb:14:67:20:0c:0d:e5: a0:2f:83:85:37:8d:fe:a7:c8:16:e6:21:81:24:0a:e0:d4:63: 5e:fb:f9:7f:b4:d8:0d:46:e6:42:9d:3b:26:95:be:e5:a7:41: 33:1f:90:3d:07:0e:94:bb:bc:36:ef:61:47:ba:85:ad:27:07: fd:d0:ec:5b:46:d2:3f:60:9e:e2:9e:be:1f:29:aa:0c:71:eb: a2:c4:bc:77:f9:7f:b0:6b:01:8c:6c:df:8b:49:b7:a2:3d:77: 70:bb:a3:c5 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUNWoKYQqu63WJfAl3KqHzuN9RHOcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyMVoX DTI1MDEwNzA0MDAyMVowMzExMC8GA1UEAxMoQkU3MzQwQzg1RjEyMTM3MjQ1QzY0 MUY0RjAwNEY0QUI0RUQyMjY2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOQn7lpA3qYped861P8w4RSh/e9zBgJGdZP1ctZVBI7rcRuj0HiZf1jrCatU qxjy3nQhCp5/y0sRsb2BIuV87nMrBfAOA4aAm6pI+SnYYe7kdo77QS26fSB1pOm2 AJUbfium0UicILdOdOemm4VUyNITB7ZW0gYYfPfZAFjSgq+duKHdNBhWlyOFOvZc 433oe7CL0LikBmKGdwJYHViilU+q7P86IaoXZHeJIbfgSTFParOW3bIBTv2144sU POYeyBcpn5Np7eYnOO6EjTGfH875pxfngKi1Xxt41nwdlXnPSHqwbxyEHTwBIdd6 ijhPFnG4qVp1BcK3Ie+P/irxlhUCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBS+c0DI XxITckXGQfTwBPSrTtImbTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk5NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWeUwDAPBAIAAjAJAwcAIAEN8uWAMA0GCSqGSIb3DQEBCwUAA4IB AQBZDCr7AWsho6EKWJhNbJsUyJXK4AjuT2q+MXQdasmvpm1dqXjodiPFZ04c2n0l oyzVnOf1WUixx30s3Vj35tdWbZXnezmCEnXGK8+IkFWPzBbgvDUzgrpfhzq+MjHD bKOJQlzKPbrwigTnt2TgVLxqll5avQ+z1f/v0a549IyZS7YlEh1AMLT2bbW/oNJn HdELce3S4BGppLP7evsUZyAMDeWgL4OFN43+p8gW5iGBJArg1GNe+/l/tNgNRuZC nTsmlb7lp0EzH5A9Bw6Uu7w272FHuoWtJwf90OxbRtI/YJ7inr4fKaoMceuixLx3 +X+wawGMbN+LSbeiPXdwu6PF -----END CERTIFICATE-----Generated at Wed May 8 09:50:37 2024 by rpki-client on console-fra.rpki-client.org