$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140015.roa File: AS140015.roa (raw, json) Hash identifier: OQWHD6ignHPhxCPZ13FqOrPGBM7oD0uBEqG9BwrN7ak= Subject key identifier: 66:17:5A:57:FC:34:F8:B9:33:1F:AE:CC:FD:25:83:BB:A0:80:F2:51 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 41A0D2748E3BF4CA896649BA6A854D3467055154 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140015.roa Signing time: Tue 16 Jan 2024 09:00:01 +0000 ROA not before: Tue 16 Jan 2024 08:55:01 +0000 ROA not after: Tue 14 Jan 2025 09:00:01 +0000 asID: 140015 IP address blocks: 103.149.71.0/24 maxlen: 24 2001:df3:1880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:a0:d2:74:8e:3b:f4:ca:89:66:49:ba:6a:85:4d:34:67:05:51:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 16 08:55:01 2024 GMT Not After : Jan 14 09:00:01 2025 GMT Subject: CN=66175A57FC34F8B9331FAECCFD2583BBA080F251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b3:ce:b5:5d:1b:4a:24:96:ce:f6:ef:68:53: 86:18:28:c2:a0:0a:1c:fe:a8:bf:95:7c:e4:07:21: fe:67:0b:f6:b1:e4:6a:e6:ef:ae:2b:0b:40:7d:0f: 80:5c:7b:20:34:2e:9b:6a:31:42:74:5d:cf:25:7f: 3b:bb:ea:0c:b5:d8:3c:93:0a:d2:68:44:65:a8:78: a2:6b:df:5d:d0:c3:db:42:28:23:96:f6:0e:af:d2: fa:3e:46:07:bb:6c:f1:4b:95:69:08:9d:97:1d:45: 53:ef:22:15:06:9d:f1:c3:3d:cd:66:2a:a3:4f:43: fe:dd:fc:9e:6e:2a:54:0a:96:2c:cc:b6:51:fc:ac: a6:86:19:8b:3d:6e:be:f2:55:2a:2e:a2:34:a5:0e: 19:5c:ac:71:04:7e:a8:92:ea:b7:51:b7:55:d9:fc: bf:6e:93:72:e6:da:39:dc:96:6e:ba:c1:76:54:4d: 6d:96:ef:fd:15:44:94:6d:d4:18:b8:23:8a:3d:b6: 97:99:6a:3d:37:e0:4f:e8:b0:2a:82:54:90:1d:51: 6d:d7:b9:97:ac:b2:15:42:0b:93:ec:15:51:e5:d5: 70:f1:38:c1:84:be:05:3a:c9:ad:2c:24:0c:12:73: 62:2d:7c:07:0f:9b:1b:3f:de:5f:88:98:c1:a0:d9: a7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:17:5A:57:FC:34:F8:B9:33:1F:AE:CC:FD:25:83:BB:A0:80:F2:51 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140015.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.71.0/24 IPv6: 2001:df3:1880::/48 Signature Algorithm: sha256WithRSAEncryption 1f:3e:06:01:4f:b5:11:6f:97:69:6e:2c:aa:88:1a:19:42:90: e6:ea:eb:d5:e4:aa:ed:57:b9:0e:51:29:52:68:d6:5c:f2:bf: 7b:f9:20:d3:88:55:d1:9e:15:3d:36:0d:7d:d0:1f:c3:6e:38: 03:7a:82:0b:3c:57:94:c2:c4:f4:2a:ac:ea:8c:ad:80:14:48: c5:d9:cd:71:64:6c:81:22:9a:94:96:8e:60:bb:70:4c:2d:59: 0f:31:9c:87:67:de:f8:74:ee:ca:40:90:25:3a:1e:ed:1e:e1: e6:ac:ff:b2:c3:85:75:87:a6:50:d0:3a:eb:af:6c:bc:f6:0d: db:7b:f2:fe:a6:3c:37:c9:c5:1c:7b:04:32:07:82:aa:ed:d2: 84:b5:50:46:b1:7c:ce:4d:92:8c:aa:5c:31:0a:f2:3f:be:a3: 6a:7c:ca:38:43:be:a2:45:58:eb:72:a7:84:87:0e:8c:3e:88: 71:a0:de:fe:63:9a:09:8c:ec:32:fa:c3:57:ed:48:d9:47:f8: 07:b7:9e:fd:2f:97:e4:e5:1d:9b:ec:4c:99:86:b4:63:08:37: 71:8a:56:73:f1:1b:ef:8d:6d:55:d8:44:a4:f9:ba:5c:36:ca: 98:0f:43:20:c2:f6:35:81:da:65:0a:6b:5d:88:51:9f:6a:9f: 92:35:83:f0 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUQaDSdI479MqJZkm6aoVNNGcFUVQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExNjA4NTUwMVoX DTI1MDExNDA5MDAwMVowMzExMC8GA1UEAxMoNjYxNzVBNTdGQzM0RjhCOTMzMUZB RUNDRkQyNTgzQkJBMDgwRjI1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSzzrVdG0okls7272hThhgowqAKHP6ov5V85Ach/mcL9rHkaubvrisLQH0P gFx7IDQum2oxQnRdzyV/O7vqDLXYPJMK0mhEZah4omvfXdDD20IoI5b2Dq/S+j5G B7ts8UuVaQidlx1FU+8iFQad8cM9zWYqo09D/t38nm4qVAqWLMy2UfyspoYZiz1u vvJVKi6iNKUOGVyscQR+qJLqt1G3Vdn8v26TcubaOdyWbrrBdlRNbZbv/RVElG3U GLgjij22l5lqPTfgT+iwKoJUkB1Rbde5l6yyFUILk+wVUeXVcPE4wYS+BTrJrSwk DBJzYi18Bw+bGz/eX4iYwaDZp6ECAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRmF1pX /DT4uTMfrsz9JYO7oIDyUTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDAxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGeVRzAPBAIAAjAJAwcAIAEN8xiAMA0GCSqGSIb3DQEBCwUAA4IB AQAfPgYBT7URb5dpbiyqiBoZQpDm6uvV5KrtV7kOUSlSaNZc8r97+SDTiFXRnhU9 Ng190B/DbjgDeoILPFeUwsT0KqzqjK2AFEjF2c1xZGyBIpqUlo5gu3BMLVkPMZyH Z974dO7KQJAlOh7tHuHmrP+yw4V1h6ZQ0Drrr2y89g3be/L+pjw3ycUcewQyB4Kq 7dKEtVBGsXzOTZKMqlwxCvI/vqNqfMo4Q76iRVjrcqeEhw6MPohxoN7+Y5oJjOwy +sNX7UjZR/gHt579L5fk5R2b7EyZhrRjCDdxilZz8RvvjW1V2ESk+bpcNsqYD0Mg wvY1gdplCmtdiFGfap+SNYPw -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:54 2024 by rpki-client on console-fra.rpki-client.org