$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139995.roa File: AS139995.roa (raw, json) Hash identifier: gG8HfeCJiIZT507yolN7uWvt26zDbH48Q+P14oef7jA= Subject key identifier: E9:F4:A8:40:0E:8E:5F:28:DF:79:18:76:D2:09:DB:FF:E9:9E:AD:4C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0A592C812FC1A7F8850E72E41EA83C25BAC05E81 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139995.roa Signing time: Tue 10 Dec 2024 05:00:17 +0000 ROA not before: Tue 10 Dec 2024 04:55:17 +0000 ROA not after: Tue 09 Dec 2025 05:00:17 +0000 asID: 139995 IP address blocks: 103.148.192.0/23 maxlen: 24 2001:df2:e580::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:59:2c:81:2f:c1:a7:f8:85:0e:72:e4:1e:a8:3c:25:ba:c0:5e:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:17 2024 GMT Not After : Dec 9 05:00:17 2025 GMT Subject: CN=E9F4A8400E8E5F28DF791876D209DBFFE99EAD4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:52:8f:52:73:35:8c:f3:79:3f:6c:91:bb:60: a0:f6:34:ba:bd:2e:f6:2f:ae:fa:a1:44:6b:47:dc: 6e:31:06:e5:b9:c5:41:31:81:be:4a:ce:a8:5a:22: 35:2c:18:de:a2:7d:36:6f:80:6d:2e:6e:89:e2:df: 1c:6f:9e:8e:af:03:2b:1c:47:f5:51:17:f5:7c:8b: bc:c9:15:3e:67:ff:d9:b0:b5:94:48:82:cf:cb:72: 86:2b:5c:3e:ad:ab:17:d0:aa:67:36:a6:fa:c8:9c: 1c:0f:c1:93:ca:cf:f5:39:1c:1b:db:a4:7e:b7:11: 93:41:8f:4b:01:11:23:c7:86:32:11:86:69:f5:db: bc:e1:fb:d9:66:35:37:78:9b:70:3b:39:0d:c3:c4: f5:6e:9b:fa:f6:79:07:89:4a:fc:bd:fc:55:6a:66: 5d:bb:1b:de:db:64:e8:0b:5f:c1:20:c8:a7:3f:f2: c2:03:6e:8a:49:f2:6a:9a:31:46:64:23:e1:23:ef: 6f:3c:d5:e9:43:15:2f:2c:fb:8c:12:c9:59:cf:43: a4:b4:05:ce:94:1f:58:19:17:82:ab:99:6d:d1:b4: 5d:b2:ef:d9:9d:92:58:da:c2:23:f8:af:c4:13:03: bb:ba:58:32:ed:ad:33:58:06:57:9c:47:bc:45:bf: 8a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F4:A8:40:0E:8E:5F:28:DF:79:18:76:D2:09:DB:FF:E9:9E:AD:4C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139995.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.192.0/23 IPv6: 2001:df2:e580::/48 Signature Algorithm: sha256WithRSAEncryption 3b:8f:23:fd:f5:b3:8b:c6:1f:6a:6c:cd:19:ce:b7:00:f0:c8: 33:03:86:40:03:bd:7c:0f:b2:20:54:ed:ff:d1:dd:59:2f:37: 4b:19:71:41:2b:f8:e8:83:46:b9:32:a5:48:56:27:15:48:95: 96:43:11:a7:72:da:29:46:ab:ce:c5:a0:0f:76:f2:16:22:0d: 70:b4:bc:b1:00:07:19:f6:66:b2:01:1d:5d:8c:cb:f7:8e:4e: b5:0c:c6:ad:b2:55:2a:2e:23:17:53:30:42:7d:d4:1a:b7:5b: 5b:4f:1d:46:0c:f8:53:0c:15:e1:9b:16:10:35:55:71:2d:af: d5:75:cd:54:97:5b:63:21:c5:ec:41:4c:06:b3:1e:8c:19:16: 2f:01:59:3d:03:cb:fc:67:6b:a5:20:28:b8:d6:42:ba:3f:aa: d1:cb:28:fb:6b:ee:8a:39:f5:df:74:d9:3a:f0:7e:07:b8:ca: 01:47:e0:c3:b2:63:6f:8d:1c:98:71:43:77:78:d3:ae:d5:30: a8:51:92:2e:c9:b0:9c:7a:53:3d:78:09:86:18:43:f0:c7:d9: 90:35:3a:dd:25:fa:14:aa:78:0d:fb:a0:13:ce:e0:ae:00:44: 0a:24:ec:f4:31:33:29:0d:24:94:52:7d:06:c6:b0:67:d1:f1: f2:26:63:27 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUClksgS/Bp/iFDnLkHqg8JbrAXoEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxN1oX DTI1MTIwOTA1MDAxN1owMzExMC8GA1UEAxMoRTlGNEE4NDAwRThFNUYyOERGNzkx ODc2RDIwOURCRkZFOTlFQUQ0QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKtSj1JzNYzzeT9skbtgoPY0ur0u9i+u+qFEa0fcbjEG5bnFQTGBvkrOqFoi NSwY3qJ9Nm+AbS5uieLfHG+ejq8DKxxH9VEX9XyLvMkVPmf/2bC1lEiCz8tyhitc Pq2rF9CqZzam+sicHA/Bk8rP9TkcG9ukfrcRk0GPSwERI8eGMhGGafXbvOH72WY1 N3ibcDs5DcPE9W6b+vZ5B4lK/L38VWpmXbsb3ttk6AtfwSDIpz/ywgNuiknyapox RmQj4SPvbzzV6UMVLyz7jBLJWc9DpLQFzpQfWBkXgquZbdG0XbLv2Z2SWNrCI/iv xBMDu7pYMu2tM1gGV5xHvEW/ivMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBTp9KhA Do5fKN95GHbSCdv/6Z6tTDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk5NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWeUwDAPBAIAAjAJAwcAIAEN8uWAMA0GCSqGSIb3DQEBCwUAA4IB AQA7jyP99bOLxh9qbM0ZzrcA8MgzA4ZAA718D7IgVO3/0d1ZLzdLGXFBK/jog0a5 MqVIVicVSJWWQxGnctopRqvOxaAPdvIWIg1wtLyxAAcZ9mayAR1djMv3jk61DMat slUqLiMXUzBCfdQat1tbTx1GDPhTDBXhmxYQNVVxLa/Vdc1Ul1tjIcXsQUwGsx6M GRYvAVk9A8v8Z2ulICi41kK6P6rRyyj7a+6KOfXfdNk68H4HuMoBR+DDsmNvjRyY cUN3eNOu1TCoUZIuybCcelM9eAmGGEPwx9mQNTrdJfoUqngN+6ATzuCuAEQKJOz0 MTMpDSSUUn0GxrBn0fHyJmMn -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:39 2025 by rpki-client