$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140386.roa File: AS140386.roa (raw, json) Hash identifier: TIxL9t3bYmp4/D9gXOJ22I8LJln6VTyUl3juYNgfXAg= Subject key identifier: 17:F3:E4:2E:A4:45:09:7E:B5:7B:A2:03:9F:72:55:AC:15:BC:14:AB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0CEBDE31A0CA4A68DA8A19959E504C4175C89524 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140386.roa Signing time: Tue 09 Jan 2024 04:00:04 +0000 ROA not before: Tue 09 Jan 2024 03:55:04 +0000 ROA not after: Tue 07 Jan 2025 04:00:04 +0000 asID: 140386 IP address blocks: 103.149.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:eb:de:31:a0:ca:4a:68:da:8a:19:95:9e:50:4c:41:75:c8:95:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:04 2024 GMT Not After : Jan 7 04:00:04 2025 GMT Subject: CN=17F3E42EA445097EB57BA2039F7255AC15BC14AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:f7:ae:25:dd:72:aa:b6:81:71:e5:a4:8e:ac: 44:3b:b8:d6:4a:d8:8f:c6:32:29:33:db:d6:a7:2c: 9e:4d:ed:c9:b4:87:37:5b:77:48:75:64:41:27:a0: 73:e6:fd:30:6a:13:79:04:10:01:81:19:0e:c2:54: f4:89:2f:f9:d7:45:fc:12:16:0c:63:13:01:c0:e1: 9f:d3:36:de:40:26:5c:54:62:46:62:2c:6b:30:91: 23:c8:c4:4a:52:2a:28:1a:a2:37:ab:5a:12:38:5f: 32:d1:3c:da:87:67:ac:b9:25:2a:aa:b4:62:b7:26: 8e:c5:f2:74:ec:e3:d9:3d:ab:ef:84:bd:98:70:4f: b6:4c:8c:9f:3a:f8:39:c9:57:5a:e0:07:ab:b9:59: 16:3e:eb:ff:a9:b6:61:d6:96:31:b4:bd:76:52:18: 07:a5:6a:59:9b:47:63:33:ac:d5:73:76:70:14:6a: 58:94:95:cf:c7:7d:e6:ec:98:e0:77:67:ac:a6:39: 2f:45:c7:39:46:da:0d:76:2a:b4:9d:80:0b:b2:ca: 31:b4:4a:5e:9d:48:c3:92:cc:72:9b:05:c5:43:3e: fd:8c:46:db:72:53:ad:a2:e6:de:0e:f8:aa:8c:c5: b2:8d:77:28:96:1c:32:7d:2f:e8:53:95:3e:15:a2: e0:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:F3:E4:2E:A4:45:09:7E:B5:7B:A2:03:9F:72:55:AC:15:BC:14:AB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140386.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.209.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:34:6e:24:5b:6d:6b:c5:ed:4a:8f:63:18:9a:87:98:93:4c: a9:a0:20:a7:d0:80:23:55:13:14:47:f5:3c:36:ec:a9:ee:ef: ae:ec:85:bf:23:fe:c5:b9:47:19:c3:eb:74:63:07:e4:50:d3: d2:eb:6f:0e:93:3d:b5:73:b6:e4:b9:b0:fc:0e:5c:47:22:5c: be:0b:24:8c:62:dd:b7:e9:6c:61:1b:5e:dd:fa:2f:3c:7e:4d: 4d:12:e0:50:1f:73:b6:94:6e:32:06:bc:9d:4b:c7:74:ca:c9: 20:61:51:00:a8:63:1d:4a:cd:ab:9a:9f:b8:d1:85:15:48:0e: e8:49:ff:5f:fe:b3:56:c9:91:3d:af:e1:39:19:bd:af:8e:11: 2d:9e:72:4c:68:bb:f3:36:f7:e3:6b:68:65:7d:c4:44:e4:66: 82:15:ff:47:df:04:25:3c:36:54:0c:15:d3:2b:b7:90:2c:fa: d4:7e:d5:80:f8:9a:51:3d:e9:81:c0:3a:00:0e:ae:79:cc:59: 4a:e9:d1:29:ac:2e:b0:73:12:c3:fc:8a:6a:97:71:a1:a9:0c: f8:37:5b:16:42:59:48:19:a4:87:b3:6a:85:56:90:12:a4:f6: a4:0c:55:0f:c4:96:e1:9c:23:8e:60:52:dd:90:7b:88:fc:79: ac:70:7d:77 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDOveMaDKSmjaihmVnlBMQXXIlSQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwNFoX DTI1MDEwNzA0MDAwNFowMzExMC8GA1UEAxMoMTdGM0U0MkVBNDQ1MDk3RUI1N0JB MjAzOUY3MjU1QUMxNUJDMTRBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO33riXdcqq2gXHlpI6sRDu41krYj8YyKTPb1qcsnk3tybSHN1t3SHVkQSeg c+b9MGoTeQQQAYEZDsJU9Ikv+ddF/BIWDGMTAcDhn9M23kAmXFRiRmIsazCRI8jE SlIqKBqiN6taEjhfMtE82odnrLklKqq0YrcmjsXydOzj2T2r74S9mHBPtkyMnzr4 OclXWuAHq7lZFj7r/6m2YdaWMbS9dlIYB6VqWZtHYzOs1XN2cBRqWJSVz8d95uyY 4HdnrKY5L0XHOUbaDXYqtJ2AC7LKMbRKXp1Iw5LMcpsFxUM+/YxG23JTraLm3g74 qozFso13KJYcMn0v6FOVPhWi4HECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQX8+Qu pEUJfrV7ogOfclWsFbwUqzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDM4Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeV0TANBgkqhkiG9w0BAQsFAAOCAQEADjRuJFtta8XtSo9jGJqH mJNMqaAgp9CAI1UTFEf1PDbsqe7vruyFvyP+xblHGcPrdGMH5FDT0utvDpM9tXO2 5Lmw/A5cRyJcvgskjGLdt+lsYRte3fovPH5NTRLgUB9ztpRuMga8nUvHdMrJIGFR AKhjHUrNq5qfuNGFFUgO6En/X/6zVsmRPa/hORm9r44RLZ5yTGi78zb342toZX3E RORmghX/R98EJTw2VAwV0yu3kCz61H7VgPiaUT3pgcA6AA6uecxZSunRKawusHMS w/yKapdxoakM+DdbFkJZSBmkh7NqhVaQEqT2pAxVD8SW4ZwjjmBS3ZB7iPx5rHB9 dw== -----END CERTIFICATE-----Generated at Fri May 3 03:08:30 2024 by rpki-client on console-ams.rpki-client.org