$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140015.roa File: AS140015.roa (raw, json) Hash identifier: VkpD+IQ+CeK1b0dv58LokyFoaJu0Ufx/Bc4N+CmJ7lg= Subject key identifier: D7:7B:E9:0F:4C:55:72:64:2B:0D:8E:45:79:C6:24:F1:97:14:4B:8D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2935C7A66FADC0091FE18D9C75E13333DEB95900 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140015.roa Signing time: Tue 17 Dec 2024 10:00:01 +0000 ROA not before: Tue 17 Dec 2024 09:55:01 +0000 ROA not after: Tue 16 Dec 2025 10:00:01 +0000 asID: 140015 IP address blocks: 103.149.71.0/24 maxlen: 24 2001:df3:1880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:35:c7:a6:6f:ad:c0:09:1f:e1:8d:9c:75:e1:33:33:de:b9:59:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 17 09:55:01 2024 GMT Not After : Dec 16 10:00:01 2025 GMT Subject: CN=D77BE90F4C5572642B0D8E4579C624F197144B8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:55:eb:b9:cc:d7:b1:15:f9:34:4d:01:ff:75: ca:c6:01:f9:cd:cf:8c:76:01:86:10:2c:82:50:68: 3b:74:7d:d3:ef:9b:25:6a:be:5b:55:89:21:d5:18: 9f:6f:a9:32:f4:5d:bc:8b:51:df:90:2b:ca:fe:0a: 6d:ce:54:38:c8:0c:0d:a0:bb:66:39:62:06:7f:58: 4c:19:5f:4e:23:f5:ee:2d:1d:62:53:14:1f:fc:cc: 69:02:fe:c3:ab:fc:ea:d8:03:c2:e2:82:1c:98:47: 22:c6:cf:10:7d:f7:bc:3a:41:b5:b0:5e:56:f1:71: 83:7e:1a:0f:f8:a5:13:b7:59:5e:3e:f3:09:54:b5: f5:26:a2:c6:f1:64:b8:d6:38:9c:eb:5f:9d:2e:6f: 61:a0:24:22:6c:71:31:85:fa:a4:56:1a:44:fe:f6: ec:bf:f0:1e:ee:a6:69:f8:8b:86:e7:f7:6a:2c:94: c8:68:a1:a7:95:1f:cd:8e:56:e7:88:b4:2a:43:cc: b9:84:97:9f:48:80:c8:13:d2:94:f8:af:38:f5:98: 1d:0c:9b:74:d2:64:9a:8d:7b:6e:40:18:ae:29:7d: 76:87:39:74:fe:1f:11:47:aa:56:79:a5:c7:71:ca: c1:fc:fa:50:b9:24:87:88:70:6c:6f:dd:08:30:e6: 21:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:7B:E9:0F:4C:55:72:64:2B:0D:8E:45:79:C6:24:F1:97:14:4B:8D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140015.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.71.0/24 IPv6: 2001:df3:1880::/48 Signature Algorithm: sha256WithRSAEncryption 45:7e:25:f9:bf:e7:e9:0d:21:8b:60:bc:07:8b:f3:19:23:6e: f3:3f:d2:74:d7:2e:85:85:ea:bf:97:21:99:c8:99:c5:38:34: a4:0d:ba:fc:ac:45:58:29:5a:db:f5:97:16:e4:09:33:99:8f: 70:9f:1d:cf:9c:5b:43:4d:d3:60:fd:0e:b3:73:b0:80:e3:37: ac:2c:7e:d5:2c:9a:d4:76:46:27:3e:9b:1d:02:fc:77:3c:04: 00:eb:14:ba:03:17:f8:51:b9:6f:95:ce:9e:f1:aa:65:dd:d2: da:e8:91:49:f5:33:3b:ea:e2:a2:75:08:e8:3f:4d:0b:39:0f: 53:67:6a:10:c1:f3:5c:73:1f:2e:0c:1b:38:22:55:df:8d:d7: ca:be:c3:e7:c5:d7:7e:8f:19:69:28:5b:c0:00:b0:cb:4a:45: 89:1f:cd:a6:e5:9c:30:2f:d7:87:f7:a4:18:b8:3d:e7:2b:f6: 5b:44:17:0a:2f:25:5c:4f:30:45:81:b7:e1:c4:f5:17:4e:24: 0a:3f:c9:08:33:c9:a6:c2:a1:9c:ce:c1:42:8d:7a:c5:3e:3b: ac:86:2a:04:63:46:1c:26:d2:87:f8:80:ee:99:f6:9d:08:27: b4:b4:d1:37:e0:75:b3:18:41:f4:ae:17:68:44:90:ff:60:01: a1:91:a9:57 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUKTXHpm+twAkf4Y2cdeEzM965WQAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxNzA5NTUwMVoX DTI1MTIxNjEwMDAwMVowMzExMC8GA1UEAxMoRDc3QkU5MEY0QzU1NzI2NDJCMEQ4 RTQ1NzlDNjI0RjE5NzE0NEI4RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJpV67nM17EV+TRNAf91ysYB+c3PjHYBhhAsglBoO3R90++bJWq+W1WJIdUY n2+pMvRdvItR35Aryv4Kbc5UOMgMDaC7ZjliBn9YTBlfTiP17i0dYlMUH/zMaQL+ w6v86tgDwuKCHJhHIsbPEH33vDpBtbBeVvFxg34aD/ilE7dZXj7zCVS19SaixvFk uNY4nOtfnS5vYaAkImxxMYX6pFYaRP727L/wHu6mafiLhuf3aiyUyGihp5UfzY5W 54i0KkPMuYSXn0iAyBPSlPivOPWYHQybdNJkmo17bkAYril9doc5dP4fEUeqVnml x3HKwfz6ULkkh4hwbG/dCDDmIZMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBTXe+kP TFVyZCsNjkV5xiTxlxRLjTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDAxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGeVRzAPBAIAAjAJAwcAIAEN8xiAMA0GCSqGSIb3DQEBCwUAA4IB AQBFfiX5v+fpDSGLYLwHi/MZI27zP9J01y6Fheq/lyGZyJnFODSkDbr8rEVYKVrb 9ZcW5AkzmY9wnx3PnFtDTdNg/Q6zc7CA4zesLH7VLJrUdkYnPpsdAvx3PAQA6xS6 Axf4Ublvlc6e8apl3dLa6JFJ9TM76uKidQjoP00LOQ9TZ2oQwfNccx8uDBs4IlXf jdfKvsPnxdd+jxlpKFvAALDLSkWJH82m5ZwwL9eH96QYuD3nK/ZbRBcKLyVcTzBF gbfhxPUXTiQKP8kIM8mmwqGczsFCjXrFPjushioEY0YcJtKH+IDumfadCCe0tNE3 4HWzGEH0rhdoRJD/YAGhkalX -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:02 2025 by rpki-client