$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140006.roa File: AS140006.roa (raw, json) Hash identifier: xyLw/qgVaJW3UXlgJZtQhnE0mCqpSB9Q1OgBlCXp8ok= Subject key identifier: AE:33:A9:54:58:6F:97:C2:4C:71:0E:94:D0:B6:C7:E5:4B:22:41:D0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7BEC57236829D37E4099ED00A20B428AECA9C9BD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140006.roa Signing time: Thu 27 Mar 2025 09:00:00 +0000 ROA not before: Thu 27 Mar 2025 08:55:00 +0000 ROA not after: Thu 26 Mar 2026 09:00:00 +0000 asID: 140006 IP address blocks: 103.148.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:ec:57:23:68:29:d3:7e:40:99:ed:00:a2:0b:42:8a:ec:a9:c9:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 27 08:55:00 2025 GMT Not After : Mar 26 09:00:00 2026 GMT Subject: CN=AE33A954586F97C24C710E94D0B6C7E54B2241D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:02:c3:39:93:20:b0:81:0e:e5:35:d3:29:b5: f2:1b:82:6d:32:0e:5a:5d:af:11:05:92:3e:b3:37: 63:23:83:26:ac:89:1c:51:07:b7:88:83:c6:a2:8a: 91:84:7c:17:33:09:4f:a0:f1:aa:cc:6b:da:3a:e4: 22:56:0a:ff:bb:97:5c:d0:a5:18:ed:20:47:6c:1d: fe:b5:c2:62:65:c2:ef:0e:2c:d3:54:0b:e5:18:e0: 15:a7:6a:d3:5b:8c:e2:b0:e5:f8:f6:6a:35:bd:be: a5:c1:15:f0:93:a0:71:93:d0:ea:f1:ac:bc:e3:44: 9b:d5:04:bf:34:aa:58:2a:27:39:b4:d0:7c:bb:a1: 14:f6:68:c9:5b:2f:dd:d5:e3:0b:fc:cc:ae:76:ab: b4:26:be:bc:94:bd:22:5a:81:f9:15:68:18:bc:e5: d2:9c:8f:8a:d6:2a:0b:9c:58:c9:6a:58:75:38:fc: 64:70:56:4e:92:70:ef:92:09:8b:6d:e8:1b:20:c5: c1:43:82:a1:a9:11:12:f2:71:e5:be:e7:c1:7b:77: 44:4c:09:3c:e8:ec:5e:af:f9:e8:0e:7b:14:41:76: 24:27:a9:98:a0:22:95:ab:02:07:43:00:f8:7c:c4: 01:8f:a3:ff:9b:f8:14:d3:5c:f5:6f:72:e1:90:5a: ee:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:33:A9:54:58:6F:97:C2:4C:71:0E:94:D0:B6:C7:E5:4B:22:41:D0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140006.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.235.0/24 Signature Algorithm: sha256WithRSAEncryption 91:b3:77:d6:05:cb:c1:5c:1e:90:fa:a9:3e:0f:ea:9b:ae:7f: 76:82:10:ee:40:cd:32:ac:03:65:d4:37:95:4f:d1:c9:66:e4: 11:81:18:c4:cd:ea:fc:56:24:88:11:2f:2b:2a:a8:0c:8b:f4: 04:c4:55:05:9a:f4:ba:7f:c1:0d:c5:bf:2e:db:28:5e:af:d8: 1b:28:a1:14:71:9e:07:34:57:5d:27:45:89:c0:1f:e1:30:ee: 1b:4a:48:24:75:98:b5:03:90:55:03:46:90:6e:aa:a9:51:39: 7c:9d:b5:2e:9a:71:21:a3:61:79:9a:9d:24:d4:c5:ad:e1:56: 6f:a7:4a:8b:6a:62:03:b1:31:2f:f0:13:86:74:84:a4:bd:db: 71:db:40:6b:73:9f:07:de:99:4f:c1:64:e8:63:0a:a7:ba:f3: 9a:66:30:2f:df:f1:e6:9f:f5:72:57:1d:93:4d:5e:39:fe:af: aa:91:ab:9a:96:d0:b4:63:2c:d5:29:cc:c2:54:d5:16:bf:13: af:6a:93:b0:4a:10:0f:44:13:a0:12:a6:e5:e7:0d:c3:eb:dc: 23:28:25:ad:53:f9:c2:00:08:d8:1c:83:25:1c:a9:4c:39:ab: 53:90:8e:15:e5:12:91:6f:58:97:61:8a:28:2f:a5:0f:92:95: c4:c7:09:f3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUe+xXI2gp035Ame0AogtCiuypyb0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMyNzA4NTUwMFoX DTI2MDMyNjA5MDAwMFowMzExMC8GA1UEAxMoQUUzM0E5NTQ1ODZGOTdDMjRDNzEw RTk0RDBCNkM3RTU0QjIyNDFEMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANwCwzmTILCBDuU10ym18huCbTIOWl2vEQWSPrM3YyODJqyJHFEHt4iDxqKK kYR8FzMJT6Dxqsxr2jrkIlYK/7uXXNClGO0gR2wd/rXCYmXC7w4s01QL5RjgFadq 01uM4rDl+PZqNb2+pcEV8JOgcZPQ6vGsvONEm9UEvzSqWConObTQfLuhFPZoyVsv 3dXjC/zMrnartCa+vJS9IlqB+RVoGLzl0pyPitYqC5xYyWpYdTj8ZHBWTpJw75IJ i23oGyDFwUOCoakREvJx5b7nwXt3REwJPOjsXq/56A57FEF2JCepmKAilasCB0MA +HzEAY+j/5v4FNNc9W9y4ZBa7p0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSuM6lU WG+XwkxxDpTQtsflSyJB0DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDAwNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeU6zANBgkqhkiG9w0BAQsFAAOCAQEAkbN31gXLwVwekPqpPg/q m65/doIQ7kDNMqwDZdQ3lU/RyWbkEYEYxM3q/FYkiBEvKyqoDIv0BMRVBZr0un/B DcW/LtsoXq/YGyihFHGeBzRXXSdFicAf4TDuG0pIJHWYtQOQVQNGkG6qqVE5fJ21 LppxIaNheZqdJNTFreFWb6dKi2piA7ExL/AThnSEpL3bcdtAa3OfB96ZT8Fk6GMK p7rzmmYwL9/x5p/1clcdk01eOf6vqpGrmpbQtGMs1SnMwlTVFr8Tr2qTsEoQD0QT oBKm5ecNw+vcIyglrVP5wgAI2ByDJRypTDmrU5COFeUSkW9Yl2GKKC+lD5KVxMcJ 8w== -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:33 2025 by rpki-client