$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140006.roa File: AS140006.roa (raw, json) Hash identifier: 85c//4IcJ1/OQpgedWYfPpwfQIz9zpxDmgAYPv/zMQk= Subject key identifier: 65:82:F2:39:7D:F8:2A:09:A8:32:40:99:12:93:81:E7:69:2F:29:56 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 15822A4FC97EA7CEEA44C3B91A0884214C8F1032 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140006.roa Signing time: Thu 25 Apr 2024 09:00:00 +0000 ROA not before: Thu 25 Apr 2024 08:55:00 +0000 ROA not after: Thu 24 Apr 2025 09:00:00 +0000 asID: 140006 IP address blocks: 103.148.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:82:2a:4f:c9:7e:a7:ce:ea:44:c3:b9:1a:08:84:21:4c:8f:10:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 25 08:55:00 2024 GMT Not After : Apr 24 09:00:00 2025 GMT Subject: CN=6582F2397DF82A09A8324099129381E7692F2956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:58:3e:26:9c:38:98:ca:df:67:9f:3c:c0:94: 8b:66:ae:55:1b:89:3f:c3:8a:36:44:3d:27:85:bf: 55:3f:a9:1b:3b:e0:38:8b:16:be:84:77:3e:81:e6: c4:d1:11:e8:7a:de:fe:7e:ee:26:8a:1a:95:b3:8e: 8c:6a:8a:be:95:4e:dd:ec:3c:fc:b3:35:2d:95:eb: 32:7d:ff:3f:c2:7e:a7:b5:33:88:f5:fb:05:d4:df: 3e:64:f2:42:e2:ac:ac:59:42:ce:f4:dc:23:72:99: fe:68:4d:aa:8f:64:dc:3e:5a:2c:0b:21:17:83:a3: 62:86:c8:a4:f4:ab:64:28:cf:5c:69:0b:48:f0:67: 0e:3a:c2:ab:86:53:51:c7:e1:9b:4e:1a:38:f5:78: ef:d0:3f:1f:bc:dc:68:b6:f4:8d:5a:2b:6a:9f:a6: c9:f5:e6:5c:0d:fc:df:8f:20:ba:49:8a:4c:17:50: c0:2e:ac:58:fd:cb:85:45:a0:02:52:86:66:09:a7: 5b:67:ae:2b:6d:07:0f:94:1b:da:97:75:18:77:1c: dd:9c:66:cc:1f:58:df:4f:68:6c:44:c6:6b:e2:3a: 84:1a:89:d0:0a:d7:16:70:93:46:fa:e2:b6:f1:66: f6:c0:91:67:c3:86:d3:fe:f9:c5:a4:58:a5:87:16: b2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:82:F2:39:7D:F8:2A:09:A8:32:40:99:12:93:81:E7:69:2F:29:56 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140006.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.235.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:23:75:2d:90:65:e8:25:32:03:94:bf:ef:3b:3a:09:c8:8c: 1d:af:6e:91:4b:7f:e3:61:c3:bc:14:d9:89:79:97:b2:a0:05: 3a:0f:d3:01:1b:d8:71:9b:5a:9a:58:f0:bc:7f:c8:5c:52:c7: 87:f4:c4:5c:82:b6:3e:da:52:b3:f1:99:1d:59:9e:e9:8c:51: 7f:36:f7:4e:38:65:f0:1b:c3:ed:13:57:63:07:e0:c6:87:4a: 6e:cc:bb:c5:26:ee:f2:86:61:00:29:dd:94:b5:28:cc:07:16: f7:bb:76:e6:07:c5:14:40:ee:4d:ed:4b:1e:08:2a:eb:d6:e1: d9:34:20:32:e7:33:ba:75:51:19:9a:4a:be:6b:26:a2:3f:69: 5d:2f:cc:65:a3:54:9c:ed:46:ac:33:17:96:e5:5e:43:42:d6: 3a:db:ec:9e:08:65:a8:91:4f:b9:8e:5a:6b:49:e5:50:b0:27: ca:8c:93:74:6d:ee:dd:df:c1:58:ba:16:de:70:11:f6:26:d9: f1:62:ac:96:08:5c:f0:6e:5d:c9:8d:05:f1:a3:51:2f:e2:2c: 5e:93:1f:de:ff:81:94:60:93:b7:d9:26:d4:22:ae:68:0e:3a: e0:b3:7e:60:5f:44:3c:7a:c5:9a:fc:60:94:b6:69:3a:a4:65: 49:5c:61:fa -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFYIqT8l+p87qRMO5GgiEIUyPEDIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyNTA4NTUwMFoX DTI1MDQyNDA5MDAwMFowMzExMC8GA1UEAxMoNjU4MkYyMzk3REY4MkEwOUE4MzI0 MDk5MTI5MzgxRTc2OTJGMjk1NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFYPiacOJjK32efPMCUi2auVRuJP8OKNkQ9J4W/VT+pGzvgOIsWvoR3PoHm xNER6Hre/n7uJooalbOOjGqKvpVO3ew8/LM1LZXrMn3/P8J+p7UziPX7BdTfPmTy QuKsrFlCzvTcI3KZ/mhNqo9k3D5aLAshF4OjYobIpPSrZCjPXGkLSPBnDjrCq4ZT Ucfhm04aOPV479A/H7zcaLb0jVorap+myfXmXA38348gukmKTBdQwC6sWP3LhUWg AlKGZgmnW2euK20HD5Qb2pd1GHcc3ZxmzB9Y309obETGa+I6hBqJ0ArXFnCTRvri tvFm9sCRZ8OG0/75xaRYpYcWsi0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRlgvI5 ffgqCagyQJkSk4HnaS8pVjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDAwNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeU6zANBgkqhkiG9w0BAQsFAAOCAQEAHCN1LZBl6CUyA5S/7zs6 CciMHa9ukUt/42HDvBTZiXmXsqAFOg/TARvYcZtamljwvH/IXFLHh/TEXIK2PtpS s/GZHVme6YxRfzb3Tjhl8BvD7RNXYwfgxodKbsy7xSbu8oZhACndlLUozAcW97t2 5gfFFEDuTe1LHggq69bh2TQgMuczunVRGZpKvmsmoj9pXS/MZaNUnO1GrDMXluVe Q0LWOtvsnghlqJFPuY5aa0nlULAnyoyTdG3u3d/BWLoW3nAR9ibZ8WKslghc8G5d yY0F8aNRL+IsXpMf3v+BlGCTt9km1CKuaA464LN+YF9EPHrFmvxglLZpOqRlSVxh +g== -----END CERTIFICATE-----Generated at Wed May 8 18:12:15 2024 by rpki-client on console-fra.rpki-client.org