$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140029.roa File: AS140029.roa (raw, json) Hash identifier: AjLSnOvfYz4vyE7//Hua/5KlmuLdiZtFV1ItZa4Z0uA= Subject key identifier: 69:10:7E:43:AE:29:05:9B:51:09:45:CD:B2:D8:9D:EE:3B:CA:04:BD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 32CE002578A9F8B8CD6D648CA5801BA5D29D17FC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140029.roa Signing time: Tue 10 Dec 2024 05:00:03 +0000 ROA not before: Tue 10 Dec 2024 04:55:03 +0000 ROA not after: Tue 09 Dec 2025 05:00:03 +0000 asID: 140029 IP address blocks: 103.149.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ce:00:25:78:a9:f8:b8:cd:6d:64:8c:a5:80:1b:a5:d2:9d:17:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:03 2024 GMT Not After : Dec 9 05:00:03 2025 GMT Subject: CN=69107E43AE29059B510945CDB2D89DEE3BCA04BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a7:59:3c:2a:93:7c:0a:92:88:9d:00:26:2d: e8:5a:60:4e:b7:83:db:c6:98:ae:8e:19:8c:6c:34: 7b:8c:3a:83:13:e7:63:00:f9:c6:0e:5d:0b:05:fb: 4f:4d:9d:a7:6f:e7:80:2c:0f:16:09:f2:05:a6:a7: 2a:04:dd:98:08:f4:e5:c5:29:28:15:e2:1a:d0:12: 0f:a5:f4:30:3f:b1:3f:ce:fb:14:54:fb:8d:7d:ce: 69:1d:84:4f:5e:c7:02:79:8e:32:87:43:4f:8a:54: ed:ec:bb:8c:bf:19:7a:97:99:5f:a2:b2:a4:17:60: 26:3d:1f:ea:af:a4:14:84:32:fa:e3:2e:b5:3b:94: a4:27:aa:42:2b:a2:88:78:23:13:84:c4:85:27:57: f6:6a:53:f9:28:50:fc:4c:65:b0:94:5e:9e:a8:d6: 61:b3:7d:66:e9:50:62:28:b2:7e:84:76:44:85:84: 42:b3:75:34:e3:82:83:0e:52:0c:bd:00:79:0d:25: ed:e8:9f:90:8e:f0:8e:5d:8f:a6:7e:1d:db:bf:92: 38:6d:5a:33:f5:08:6d:c0:7d:19:0e:53:7e:65:23: bf:22:07:2c:88:99:20:bb:67:b9:cb:da:2f:24:ca: 67:64:fb:86:1f:8b:5e:4e:73:c1:5a:97:0f:96:91: 69:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:10:7E:43:AE:29:05:9B:51:09:45:CD:B2:D8:9D:EE:3B:CA:04:BD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140029.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.208.0/24 Signature Algorithm: sha256WithRSAEncryption 80:48:28:e0:b6:fb:ea:16:06:9f:2f:20:34:c9:33:1d:9b:a8: 92:a3:5d:e5:ff:a3:bb:b4:34:3d:d3:31:b3:f9:66:fc:6c:af: a1:d2:4e:0e:65:63:80:cf:88:b9:ed:0f:cb:e4:d1:0b:17:15: c5:cd:6e:97:6f:e3:fe:76:d8:98:8b:3f:b3:6d:2d:ee:5e:1d: 7f:e6:49:e5:ac:36:8d:e8:8b:c0:46:3f:e0:d2:0d:20:f2:e1: 56:c1:24:c3:88:e9:91:07:30:ed:d5:a0:45:81:aa:7d:f3:54: 8c:64:8a:97:27:73:e8:4b:d5:d4:67:ac:d1:d0:a0:e2:3a:ad: 96:84:77:56:56:51:b9:d9:ea:d8:e9:83:b0:fa:4c:d5:4c:a2: 29:c3:c0:29:5a:4d:c1:5b:ee:46:f0:4f:84:3c:44:07:48:ae: e7:27:7b:38:81:b8:50:38:d2:a6:75:7e:93:45:20:07:04:44: 9f:be:f8:39:f4:db:f4:f4:92:6e:f8:10:90:04:89:7c:b4:49: 8c:ec:7e:48:2c:de:0c:da:7b:73:1d:84:1a:46:29:9f:c1:96: b6:3f:9d:82:9f:d4:c6:d0:71:cb:e2:9b:11:d5:a3:27:68:00: 7c:9e:c0:fe:40:0a:c4:34:19:86:5a:38:ea:32:d1:8f:f8:46: a0:83:c2:a8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMs4AJXip+LjNbWSMpYAbpdKdF/wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwM1oX DTI1MTIwOTA1MDAwM1owMzExMC8GA1UEAxMoNjkxMDdFNDNBRTI5MDU5QjUxMDk0 NUNEQjJEODlERUUzQkNBMDRCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOOnWTwqk3wKkoidACYt6FpgTreD28aYro4ZjGw0e4w6gxPnYwD5xg5dCwX7 T02dp2/ngCwPFgnyBaanKgTdmAj05cUpKBXiGtASD6X0MD+xP877FFT7jX3OaR2E T17HAnmOModDT4pU7ey7jL8ZepeZX6KypBdgJj0f6q+kFIQy+uMutTuUpCeqQiui iHgjE4TEhSdX9mpT+ShQ/ExlsJRenqjWYbN9ZulQYiiyfoR2RIWEQrN1NOOCgw5S DL0AeQ0l7eifkI7wjl2Ppn4d27+SOG1aM/UIbcB9GQ5TfmUjvyIHLIiZILtnucva LyTKZ2T7hh+LXk5zwVqXD5aRafMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRpEH5D rikFm1EJRc2y2J3uO8oEvTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDAyOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeV0DANBgkqhkiG9w0BAQsFAAOCAQEAgEgo4Lb76hYGny8gNMkz HZuokqNd5f+ju7Q0PdMxs/lm/GyvodJODmVjgM+Iue0Py+TRCxcVxc1ul2/j/nbY mIs/s20t7l4df+ZJ5aw2jeiLwEY/4NINIPLhVsEkw4jpkQcw7dWgRYGqffNUjGSK lydz6EvV1Ges0dCg4jqtloR3VlZRudnq2OmDsPpM1UyiKcPAKVpNwVvuRvBPhDxE B0iu5yd7OIG4UDjSpnV+k0UgBwREn774OfTb9PSSbvgQkASJfLRJjOx+SCzeDNp7 cx2EGkYpn8GWtj+dgp/UxtBxy+KbEdWjJ2gAfJ7A/kAKxDQZhlo46jLRj/hGoIPC qA== -----END CERTIFICATE-----Generated at Sun Feb 16 20:42:12 2025 by rpki-client