$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139997.roa File: AS139997.roa (raw, json) Hash identifier: 8vz/u846sChOSiqjHQdG1j1Ado+K4jNWb+UcaRPzkSA= Subject key identifier: BB:8A:8A:85:F9:61:65:0E:7F:30:35:DF:4B:03:8D:FF:9A:D2:DD:5D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 141A33BC447E2BE56A2500450890E9F24F4B4345 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139997.roa Signing time: Wed 06 Dec 2023 06:32:23 +0000 ROA not before: Wed 06 Dec 2023 06:27:23 +0000 ROA not after: Wed 04 Dec 2024 06:32:23 +0000 asID: 139997 IP address blocks: 103.148.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:1a:33:bc:44:7e:2b:e5:6a:25:00:45:08:90:e9:f2:4f:4b:43:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 6 06:27:23 2023 GMT Not After : Dec 4 06:32:23 2024 GMT Subject: CN=BB8A8A85F961650E7F3035DF4B038DFF9AD2DD5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:30:d1:dc:b8:a9:67:73:f9:19:22:98:41:75: fb:69:cc:96:e4:9d:fb:a9:56:19:d2:04:14:45:96: ec:07:f5:25:96:a1:ba:b8:61:ef:60:64:37:7e:9d: b0:6d:2e:5d:ad:f0:ba:8a:6b:71:1c:cd:9a:c3:f5: c0:21:f9:d4:3f:af:e6:cc:40:54:7a:0e:6e:5b:7b: b6:52:53:0f:76:80:97:14:d3:53:4e:61:01:72:ce: 5b:d3:71:24:5b:a0:c9:ec:c7:6b:86:4d:da:6a:87: a4:83:15:ce:26:aa:35:07:28:ec:db:e4:b4:17:94: 99:69:e0:52:d7:17:d3:76:74:ac:49:d3:de:ca:07: e4:ca:78:55:6d:96:d0:69:b4:67:dc:f2:f7:d6:5b: 76:89:de:7e:e3:8b:82:78:2e:1e:65:4f:a1:e5:cb: 52:cf:3f:11:b5:89:ec:d2:0f:40:f7:89:c9:a5:6c: d3:15:b2:26:05:fc:18:63:18:f9:7a:9a:46:16:6d: 4b:44:2c:b2:ad:d5:de:1f:cc:68:53:13:b8:22:66: 17:a8:b6:4f:62:03:16:ae:97:db:c2:f4:2f:dd:bc: 00:c5:83:92:9e:24:bd:cd:bb:9c:67:8a:39:29:a6: fa:69:dd:ef:9c:1e:1a:91:37:52:5f:28:7e:2e:20: 51:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:8A:8A:85:F9:61:65:0E:7F:30:35:DF:4B:03:8D:FF:9A:D2:DD:5D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139997.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.200.0/23 Signature Algorithm: sha256WithRSAEncryption 22:d5:44:84:46:a6:36:3f:ce:e0:d7:24:1d:dc:07:9e:88:4c: f6:5e:f3:0a:59:70:1c:d9:34:74:95:4b:05:b9:ff:56:97:8c: 37:09:d1:53:16:d3:fd:06:d5:d1:ba:f7:e3:4e:96:08:5d:a7: 71:c6:e1:52:46:ae:c5:11:78:82:5a:79:f5:e8:80:dc:5d:27: 4c:b4:e8:a4:83:e7:8d:ae:ff:1b:b0:c4:fa:d9:53:3d:9e:3a: d8:f7:0b:54:09:fa:11:fa:14:56:81:26:70:0a:e3:aa:fb:fc: 5e:70:56:bd:0b:d4:53:26:be:27:33:d7:cc:4e:e7:8b:7f:33: 61:49:c2:6f:dc:84:f5:ac:29:6c:d4:21:03:4b:10:dc:bf:71: a9:b4:07:e1:81:df:c1:f9:54:65:7e:6b:7c:62:66:66:d0:07: 62:df:1e:c0:a1:83:7e:6b:7d:a5:7d:bf:38:3b:a2:3b:f9:12: 45:2c:30:4a:17:64:57:b8:bb:f2:ad:18:03:47:47:95:f3:f5: e0:10:a6:00:37:03:45:90:da:3f:78:07:ee:c0:7d:9e:aa:59: b4:5c:82:f3:46:3c:13:8b:44:90:ef:dd:60:11:08:97:a4:e2: 7a:db:e6:5e:87:35:b5:e6:ec:1d:f3:f1:a0:96:bb:9e:16:a7: 9d:f3:11:58 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFBozvER+K+VqJQBFCJDp8k9LQ0UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIwNjA2MjcyM1oX DTI0MTIwNDA2MzIyM1owMzExMC8GA1UEAxMoQkI4QThBODVGOTYxNjUwRTdGMzAz NURGNEIwMzhERkY5QUQyREQ1RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKAw0dy4qWdz+RkimEF1+2nMluSd+6lWGdIEFEWW7Af1JZahurhh72BkN36d sG0uXa3wuoprcRzNmsP1wCH51D+v5sxAVHoOblt7tlJTD3aAlxTTU05hAXLOW9Nx JFugyezHa4ZN2mqHpIMVziaqNQco7NvktBeUmWngUtcX03Z0rEnT3soH5Mp4VW2W 0Gm0Z9zy99ZbdonefuOLgnguHmVPoeXLUs8/EbWJ7NIPQPeJyaVs0xWyJgX8GGMY +XqaRhZtS0Qssq3V3h/MaFMTuCJmF6i2T2IDFq6X28L0L928AMWDkp4kvc27nGeK OSmm+mnd75weGpE3Ul8ofi4gUXcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS7ioqF +WFlDn8wNd9LA43/mtLdXTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeUyDANBgkqhkiG9w0BAQsFAAOCAQEAItVEhEamNj/O4NckHdwH nohM9l7zCllwHNk0dJVLBbn/VpeMNwnRUxbT/QbV0br3406WCF2nccbhUkauxRF4 glp59eiA3F0nTLTopIPnja7/G7DE+tlTPZ462PcLVAn6EfoUVoEmcArjqvv8XnBW vQvUUya+JzPXzE7ni38zYUnCb9yE9awpbNQhA0sQ3L9xqbQH4YHfwflUZX5rfGJm ZtAHYt8ewKGDfmt9pX2/ODuiO/kSRSwwShdkV7i78q0YA0dHlfP14BCmADcDRZDa P3gH7sB9nqpZtFyC80Y8E4tEkO/dYBEIl6TietvmXoc1tebsHfPxoJa7nhannfMR WA== -----END CERTIFICATE-----Generated at Wed May 8 07:45:26 2024 by rpki-client on console-ams.rpki-client.org