$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140003.roa File: AS140003.roa (raw, json) Hash identifier: e+qAOC+XOWhdCowyJkGhWK6Q5vIoZoeA2kN9pHLRlhY= Subject key identifier: D2:6A:20:D2:7B:6D:1F:42:CE:A9:A7:C7:48:CB:71:E8:41:AE:A0:02 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 773492A5C3108F53527EE3556A73729EDA7DD063 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140003.roa Signing time: Thu 04 Jul 2024 02:00:00 +0000 ROA not before: Thu 04 Jul 2024 01:55:00 +0000 ROA not after: Thu 03 Jul 2025 02:00:00 +0000 asID: 140003 IP address blocks: 203.119.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:34:92:a5:c3:10:8f:53:52:7e:e3:55:6a:73:72:9e:da:7d:d0:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 4 01:55:00 2024 GMT Not After : Jul 3 02:00:00 2025 GMT Subject: CN=D26A20D27B6D1F42CEA9A7C748CB71E841AEA002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:15:78:0a:e0:b9:a1:1d:ab:b6:1e:69:f5:ae: 23:32:fa:68:93:5e:02:77:e7:c7:36:11:82:eb:ba: 12:c5:47:71:f6:4e:b5:dd:97:80:19:74:c9:3f:0c: 5a:43:42:98:44:d0:49:76:f1:c5:da:9e:52:f5:36: b6:20:fb:c7:b7:52:1a:ef:e3:f4:f7:15:61:37:26: 83:7e:0b:d3:3b:49:54:20:8f:cf:e3:de:94:ca:e8: 75:34:67:9d:12:ee:99:55:70:6b:47:e9:58:eb:ed: 58:b0:8e:93:05:48:a8:d1:41:ce:dc:22:d7:28:23: 9e:5e:18:3b:9a:b2:fa:cb:25:0d:a1:d1:53:ce:b8: d1:78:99:04:07:91:e4:43:85:0c:c1:5a:ea:a7:60: 7d:2c:3c:21:22:59:46:6f:89:8a:05:27:84:83:23: 88:a8:69:8f:fa:32:4d:2a:2f:dd:78:09:45:a0:94: ef:7a:ac:cb:37:64:6e:62:0c:2b:87:fb:e6:34:ad: ff:e1:9f:b7:45:8a:a6:19:2d:dc:45:c3:7b:cf:41: 7f:8d:ac:30:2c:49:a8:7a:a5:aa:b3:3d:ca:dc:47: 2b:25:78:d0:da:6d:1a:ab:af:2f:ce:66:24:b7:37: 58:7d:64:6a:84:2d:ea:58:ea:f1:e0:95:7f:bb:3d: 9d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:6A:20:D2:7B:6D:1F:42:CE:A9:A7:C7:48:CB:71:E8:41:AE:A0:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140003.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.119.13.0/24 Signature Algorithm: sha256WithRSAEncryption 20:45:ee:25:1a:6a:9b:82:f7:06:e9:10:f4:75:55:4c:b4:86: 87:af:70:ed:28:f7:1c:2b:44:c6:94:15:06:e7:9e:70:c7:9a: d9:fa:0e:8f:f9:5c:97:bf:05:7e:36:0c:9f:99:da:94:26:90: ee:8f:ec:f4:1d:a6:18:bf:ae:7c:b3:90:b0:ad:23:16:99:11: f5:fb:24:0e:bf:e9:ad:ad:75:f3:fd:0f:de:04:14:98:2c:bf: 38:f7:b1:3d:1a:7f:05:24:89:8f:06:28:10:d9:4b:96:14:af: 2e:46:1f:3c:5c:82:5d:66:b4:26:f1:c2:8d:67:c3:80:e3:5b: c0:4d:31:84:88:16:55:f6:2b:b3:41:21:f6:90:49:a4:cc:cd: 83:75:43:06:1e:de:3e:7a:ee:b8:f9:70:20:70:be:a4:be:78: 7c:9a:43:09:45:8d:fb:b7:7d:af:4f:9d:77:8d:1b:78:e7:1c: 2c:71:23:7e:bd:01:74:bf:48:03:ab:8c:2b:89:b5:eb:88:03: ab:13:63:20:71:c3:eb:6d:eb:ab:79:69:f0:04:fa:a9:3d:ac: fd:49:c6:94:e9:4e:a7:28:43:1f:4e:12:2e:08:78:30:fb:2a: 0c:d7:10:47:30:6e:ed:9c:b6:e1:1c:8b:b7:12:a0:16:13:90: 08:10:de:cd -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdzSSpcMQj1NSfuNVanNyntp90GMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwNDAxNTUwMFoX DTI1MDcwMzAyMDAwMFowMzExMC8GA1UEAxMoRDI2QTIwRDI3QjZEMUY0MkNFQTlB N0M3NDhDQjcxRTg0MUFFQTAwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKcVeArguaEdq7YeafWuIzL6aJNeAnfnxzYRguu6EsVHcfZOtd2XgBl0yT8M WkNCmETQSXbxxdqeUvU2tiD7x7dSGu/j9PcVYTcmg34L0ztJVCCPz+PelMrodTRn nRLumVVwa0fpWOvtWLCOkwVIqNFBztwi1ygjnl4YO5qy+sslDaHRU8640XiZBAeR 5EOFDMFa6qdgfSw8ISJZRm+JigUnhIMjiKhpj/oyTSov3XgJRaCU73qsyzdkbmIM K4f75jSt/+Gft0WKphkt3EXDe89Bf42sMCxJqHqlqrM9ytxHKyV40NptGquvL85m JLc3WH1kaoQt6ljq8eCVf7s9nesCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTSaiDS e20fQs6pp8dIy3HoQa6gAjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDAwMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMt3DTANBgkqhkiG9w0BAQsFAAOCAQEAIEXuJRpqm4L3BukQ9HVV TLSGh69w7Sj3HCtExpQVBueecMea2foOj/lcl78FfjYMn5nalCaQ7o/s9B2mGL+u fLOQsK0jFpkR9fskDr/pra118/0P3gQUmCy/OPexPRp/BSSJjwYoENlLlhSvLkYf PFyCXWa0JvHCjWfDgONbwE0xhIgWVfYrs0Eh9pBJpMzNg3VDBh7ePnruuPlwIHC+ pL54fJpDCUWN+7d9r0+dd40beOccLHEjfr0BdL9IA6uMK4m164gDqxNjIHHD623r q3lp8AT6qT2s/UnGlOlOpyhDH04SLgh4MPsqDNcQRzBu7Zy24RyLtxKgFhOQCBDe zQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:24 2024 by rpki-client on console-fra.rpki-client.org