$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139997.roa File: AS139997.roa (raw, json) Hash identifier: 4PSaJR+INCKKannii/5GWCfEbubc9e0TJ2epNgpHahs= Subject key identifier: EB:A7:10:F5:A9:46:84:54:F6:A6:AC:A4:E8:C5:58:99:C2:BB:A3:3F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 09993D47485D2A059FD5F6159A3DBA746B8FF75D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139997.roa Signing time: Wed 06 Nov 2024 07:00:00 +0000 ROA not before: Wed 06 Nov 2024 06:55:00 +0000 ROA not after: Wed 05 Nov 2025 07:00:00 +0000 asID: 139997 IP address blocks: 103.148.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:99:3d:47:48:5d:2a:05:9f:d5:f6:15:9a:3d:ba:74:6b:8f:f7:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 6 06:55:00 2024 GMT Not After : Nov 5 07:00:00 2025 GMT Subject: CN=EBA710F5A9468454F6A6ACA4E8C55899C2BBA33F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:74:9f:25:4f:bf:7f:60:b1:0a:4f:90:5e:32: 91:b1:94:95:de:58:56:e1:e0:c8:64:7b:d5:cf:fe: 02:e6:5d:a6:e8:6b:a6:7e:21:4d:b0:21:30:d7:27: bd:c2:3c:fa:ad:3f:6c:bd:4c:27:e5:f4:06:b0:b2: db:bb:64:42:26:af:a2:fd:91:f0:f6:8b:05:7e:4b: 62:04:a9:15:91:bd:ac:99:0c:c6:77:9a:68:e5:d8: 54:25:bc:99:ed:ac:73:60:69:1f:ea:1c:2b:06:2c: 87:89:5c:1c:1f:5d:fc:8d:a6:3d:92:d2:a8:c6:b2: 1f:37:19:40:21:c0:41:e1:b6:6e:f0:7f:4e:d3:02: 58:fb:3b:f9:b8:fa:d7:ef:0b:58:fa:39:ce:4a:48: 6c:ab:48:83:41:96:9e:36:e1:25:1f:05:a3:3c:25: 1e:6d:1a:de:fc:33:b3:05:ec:10:fd:f8:1e:46:59: 50:e9:42:89:cf:f4:33:ef:a6:c0:3a:ea:eb:af:34: 8e:0c:57:60:09:db:df:95:1c:5f:85:14:f6:09:12: 3d:93:db:06:39:91:de:81:06:a6:45:d7:9e:ed:23: 9d:64:10:d3:d8:d7:ca:3a:d4:d5:d9:bf:ee:5a:ff: 4b:d4:0b:1f:8e:64:fe:52:0d:fb:2b:f2:26:66:9e: 20:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A7:10:F5:A9:46:84:54:F6:A6:AC:A4:E8:C5:58:99:C2:BB:A3:3F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139997.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.200.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:94:97:55:37:dc:0e:26:9f:39:60:86:d8:9d:d8:68:73:d3: 63:ae:bf:41:58:2f:11:60:a1:61:fe:ff:b0:32:bf:d2:2b:f8: ee:a6:fe:8f:7f:67:77:f6:8f:da:6a:61:0b:fc:1b:8e:44:79: bb:b4:18:90:0c:eb:a1:cd:59:ac:53:bd:52:30:a7:52:23:57: c3:2f:30:9c:b9:33:36:d1:0e:b5:27:d9:93:17:18:10:2e:21: 5d:2b:19:64:ce:7f:17:34:f5:22:b4:cd:20:99:50:ca:2d:3c: ce:58:de:ab:a1:24:ba:9d:b0:7b:16:d4:40:17:a1:24:f8:23: 11:0d:8d:90:39:b9:80:a3:3c:78:db:21:0b:96:cc:b6:f4:ad: 67:4f:1c:95:6b:df:d7:16:d8:6a:a5:b4:8a:db:90:af:13:7b: f3:e5:d8:0e:59:e1:9b:e7:a4:0f:9f:83:e2:da:e5:64:50:2d: 10:63:df:a1:6d:f2:3b:8c:68:9a:62:9a:74:16:58:8e:90:c8: 5b:a9:c3:dc:c9:96:60:39:7f:23:c5:08:34:8c:fd:a5:c6:cf: 5c:8c:35:52:af:e2:f0:2c:5a:70:3b:f9:45:17:ad:25:0e:7e: bd:fd:55:20:e1:1f:02:28:25:cd:13:c0:9d:8c:ef:67:54:33: 2f:eb:6e:c2 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCZk9R0hdKgWf1fYVmj26dGuP910wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEwNjA2NTUwMFoX DTI1MTEwNTA3MDAwMFowMzExMC8GA1UEAxMoRUJBNzEwRjVBOTQ2ODQ1NEY2QTZB Q0E0RThDNTU4OTlDMkJCQTMzRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK90nyVPv39gsQpPkF4ykbGUld5YVuHgyGR71c/+AuZdpuhrpn4hTbAhMNcn vcI8+q0/bL1MJ+X0BrCy27tkQiavov2R8PaLBX5LYgSpFZG9rJkMxneaaOXYVCW8 me2sc2BpH+ocKwYsh4lcHB9d/I2mPZLSqMayHzcZQCHAQeG2bvB/TtMCWPs7+bj6 1+8LWPo5zkpIbKtIg0GWnjbhJR8FozwlHm0a3vwzswXsEP34HkZZUOlCic/0M++m wDrq6680jgxXYAnb35UcX4UU9gkSPZPbBjmR3oEGpkXXnu0jnWQQ09jXyjrU1dm/ 7lr/S9QLH45k/lIN+yvyJmaeID8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTrpxD1 qUaEVPamrKToxViZwrujPzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeUyDANBgkqhkiG9w0BAQsFAAOCAQEAGpSXVTfcDiafOWCG2J3Y aHPTY66/QVgvEWChYf7/sDK/0iv47qb+j39nd/aP2mphC/wbjkR5u7QYkAzroc1Z rFO9UjCnUiNXwy8wnLkzNtEOtSfZkxcYEC4hXSsZZM5/FzT1IrTNIJlQyi08zlje q6Ekup2wexbUQBehJPgjEQ2NkDm5gKM8eNshC5bMtvStZ08clWvf1xbYaqW0ituQ rxN78+XYDlnhm+ekD5+D4trlZFAtEGPfoW3yO4xommKadBZYjpDIW6nD3MmWYDl/ I8UINIz9pcbPXIw1Uq/i8CxacDv5RRetJQ5+vf1VIOEfAiglzRPAnYzvZ1QzL+tu wg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:27 2024 by rpki-client on console-ams.rpki-client.org