$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140003.roa File: AS140003.roa (raw, json) Hash identifier: xs/GWitzVZ9bBoTXifqIB2LlH7hJ80g30QMh5LUy1h8= Subject key identifier: 62:02:82:7A:B7:EE:46:A8:69:B5:77:56:EF:55:E6:BC:40:7D:5F:20 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 42F5692E5F79D0D8405184A9A5583493F4994E3A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140003.roa Signing time: Thu 03 Aug 2023 01:51:00 +0000 ROA not before: Thu 03 Aug 2023 01:46:00 +0000 ROA not after: Thu 01 Aug 2024 01:51:00 +0000 asID: 140003 IP address blocks: 203.119.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:f5:69:2e:5f:79:d0:d8:40:51:84:a9:a5:58:34:93:f4:99:4e:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 3 01:46:00 2023 GMT Not After : Aug 1 01:51:00 2024 GMT Subject: CN=6202827AB7EE46A869B57756EF55E6BC407D5F20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5c:ae:79:75:d3:09:35:48:73:a1:24:99:8b: 28:30:4f:1f:60:74:fa:a6:04:ad:3f:5a:81:ba:38: 47:37:69:c5:c9:0c:79:2b:1e:94:e0:d7:8b:09:9a: b8:e4:34:cb:38:7a:fb:1f:e6:51:fe:6f:99:a3:e9: 10:fa:53:10:9b:07:05:24:e1:ea:83:ef:82:45:c4: b1:31:fa:1e:36:04:aa:47:81:8e:ad:06:dd:1e:01: 48:f1:e3:7b:07:b5:d7:05:3f:42:d9:5f:48:d6:e1: 11:17:f6:fa:27:03:19:76:82:7b:4a:02:bb:4a:3b: 44:fb:38:b0:f7:c0:f9:28:d5:84:bc:12:c1:1e:13: 55:d2:17:9b:4c:a3:11:4a:ac:a3:c1:5c:08:5f:b2: 96:74:ef:6e:d8:51:e9:2e:8d:98:78:34:16:6c:42: 39:5f:c1:b0:51:d1:a6:d5:89:8c:08:31:f6:3a:3e: 46:ac:fd:a6:b9:3a:30:9a:1d:c6:50:ca:7c:7e:a2: 59:0f:51:2e:ab:27:91:a4:1d:62:cc:a2:b8:a3:57: 0c:bc:70:6c:f8:a4:c7:b5:49:e0:fc:13:32:8e:94: e3:03:45:dd:db:ad:06:74:de:46:eb:8f:16:a9:2c: 89:d9:e9:f2:f2:8f:16:b4:86:50:0f:6e:fe:cd:9e: dc:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:02:82:7A:B7:EE:46:A8:69:B5:77:56:EF:55:E6:BC:40:7D:5F:20 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140003.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.119.13.0/24 Signature Algorithm: sha256WithRSAEncryption 08:f8:02:79:63:96:fb:f4:1e:d7:8f:7d:09:ed:7e:80:bd:bf: a1:68:e9:b4:ee:49:81:1f:54:b1:7a:27:aa:c2:c3:8b:7e:2f: 79:b8:b3:66:d1:56:c6:1f:56:4a:85:bf:7f:1c:e2:6b:78:3a: 37:3e:fe:7c:36:b6:7b:d7:df:b6:9f:81:10:6b:03:2e:da:62: ed:08:ca:27:11:7c:44:2c:0e:7d:ae:05:dd:27:0a:db:e7:01: 1b:34:74:a6:f8:64:ee:58:b0:47:31:a8:24:a2:aa:6f:b6:5f: b1:0f:39:0e:72:67:d7:ae:70:e4:34:28:fe:59:bb:49:ee:2b: a4:da:4a:0f:c6:31:10:ce:16:0d:97:7c:86:26:da:e0:4c:01: 44:50:a4:fd:0d:19:7f:b3:c6:87:6f:a1:1e:84:c3:f9:77:a9: 1d:25:88:20:22:73:8f:c3:b3:c0:b2:7f:51:24:2d:54:66:09: 46:5f:d7:7e:ff:d0:71:04:c4:10:21:4f:80:a4:93:db:ae:8b: 47:70:16:d4:3f:f7:a5:15:eb:8b:7e:85:c8:88:ad:f0:a0:45: e7:39:71:a3:f4:f3:2e:e0:52:2a:1d:31:ef:a8:74:c7:c2:7d: 49:19:14:21:15:3f:e2:0d:ff:ac:ea:95:61:00:33:ef:b6:5e: c9:38:1e:f1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQvVpLl950NhAUYSppVg0k/SZTjowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwMzAxNDYwMFoX DTI0MDgwMTAxNTEwMFowMzExMC8GA1UEAxMoNjIwMjgyN0FCN0VFNDZBODY5QjU3 NzU2RUY1NUU2QkM0MDdENUYyMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKtcrnl10wk1SHOhJJmLKDBPH2B0+qYErT9agbo4RzdpxckMeSselODXiwma uOQ0yzh6+x/mUf5vmaPpEPpTEJsHBSTh6oPvgkXEsTH6HjYEqkeBjq0G3R4BSPHj ewe11wU/QtlfSNbhERf2+icDGXaCe0oCu0o7RPs4sPfA+SjVhLwSwR4TVdIXm0yj EUqso8FcCF+ylnTvbthR6S6NmHg0FmxCOV/BsFHRptWJjAgx9jo+Rqz9prk6MJod xlDKfH6iWQ9RLqsnkaQdYsyiuKNXDLxwbPikx7VJ4PwTMo6U4wNF3dutBnTeRuuP Fqksidnp8vKPFrSGUA9u/s2e3L0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRiAoJ6 t+5GqGm1d1bvVea8QH1fIDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDAwMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMt3DTANBgkqhkiG9w0BAQsFAAOCAQEACPgCeWOW+/Qe1499Ce1+ gL2/oWjptO5JgR9UsXonqsLDi34vebizZtFWxh9WSoW/fxzia3g6Nz7+fDa2e9ff tp+BEGsDLtpi7QjKJxF8RCwOfa4F3ScK2+cBGzR0pvhk7liwRzGoJKKqb7ZfsQ85 DnJn165w5DQo/lm7Se4rpNpKD8YxEM4WDZd8hiba4EwBRFCk/Q0Zf7PGh2+hHoTD +XepHSWIICJzj8OzwLJ/USQtVGYJRl/Xfv/QcQTEECFPgKST266LR3AW1D/3pRXr i36FyIit8KBF5zlxo/TzLuBSKh0x76h0x8J9SRkUIRU/4g3/rOqVYQAz77ZeyTge 8Q== -----END CERTIFICATE-----Generated at Wed May 8 22:46:42 2024 by rpki-client on console-ams.rpki-client.org