$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140386.roa File: AS140386.roa (raw, json) Hash identifier: hF36/wQVBqoysNf+9QXzMHfy1Uwaln67i/ncF9Zqo40= Subject key identifier: 5D:58:D3:B4:58:28:44:2F:7F:2A:81:53:E2:FC:CF:30:B4:62:77:90 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 77463552F178201245802363363F27F31CB3B42E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140386.roa Signing time: Tue 10 Dec 2024 05:00:02 +0000 ROA not before: Tue 10 Dec 2024 04:55:02 +0000 ROA not after: Tue 09 Dec 2025 05:00:02 +0000 asID: 140386 IP address blocks: 103.149.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:46:35:52:f1:78:20:12:45:80:23:63:36:3f:27:f3:1c:b3:b4:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:02 2024 GMT Not After : Dec 9 05:00:02 2025 GMT Subject: CN=5D58D3B45828442F7F2A8153E2FCCF30B4627790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:69:fc:a2:a6:5a:1c:8f:44:87:11:a4:04:c2: 9c:0d:cf:c0:99:ca:43:79:33:f0:a6:47:86:4f:a3: 3d:03:ba:e8:6a:f3:27:3d:e1:de:9c:6c:29:9a:ea: b7:20:c7:5c:b5:95:dc:8d:0f:b9:a5:13:d8:f1:c3: d7:65:48:7d:7b:8b:60:45:ed:0d:91:80:78:2d:d8: 00:a8:99:99:94:ec:f4:ad:fc:2c:cb:6c:df:61:21: 0c:78:ed:70:92:4e:78:4a:6c:93:09:03:c5:ba:11: 9c:18:92:aa:83:73:f9:bc:93:b5:fa:f9:6f:35:27: fc:de:c9:c3:c9:48:07:15:45:47:58:13:03:12:de: 2c:df:fc:e5:53:6a:50:7d:14:4f:96:5c:60:68:16: a0:f6:31:a7:bd:83:63:94:70:99:3c:a5:2f:a1:9c: b9:66:22:4c:0c:f0:e4:dd:a8:cf:ae:47:a9:9f:59: d0:2c:aa:62:45:94:e8:ad:9c:d2:67:60:b7:2d:cd: 84:60:d7:19:6c:31:9b:ee:71:5b:2c:1e:f7:92:e4: bc:e4:f6:4b:b1:9d:0f:ef:6f:ac:b5:3b:68:5f:a7: 76:11:be:2d:0d:78:b2:32:a6:ce:e0:cf:80:b6:33: 92:45:ba:8f:6e:e4:e7:5f:93:08:a0:29:9c:cc:74: 1b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:58:D3:B4:58:28:44:2F:7F:2A:81:53:E2:FC:CF:30:B4:62:77:90 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140386.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.209.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:b0:12:1b:4d:ea:d8:b7:3b:26:48:4a:dc:e0:34:50:d1:bc: 23:11:51:8a:94:53:61:34:8e:67:30:a8:e8:b9:e4:82:9e:d8: 34:dc:9f:f9:55:ab:a8:55:60:3d:07:52:c7:2a:b1:9f:37:86: 6f:80:c2:95:ea:4b:d3:be:82:b9:c8:af:cc:30:18:2d:51:83: da:47:c6:60:e2:32:34:f7:0e:4c:13:76:c8:08:4a:ae:ec:d0: a2:a5:b9:cb:10:dc:39:c4:71:14:71:15:c6:92:9d:22:2e:e7: bb:3f:4b:f3:84:70:e7:52:de:d5:76:6c:61:5f:54:5a:b0:39: 05:e8:c4:53:7f:06:ef:d0:af:96:54:a0:0c:37:39:89:d8:9d: 38:62:ee:34:fe:57:1f:b4:de:5b:4b:de:e7:b7:de:54:bf:7b: 5e:99:15:f9:9f:6e:e4:4e:9e:b2:20:d7:b5:47:30:82:7e:11: a2:e1:42:37:e0:bd:8a:70:82:2a:06:02:f9:a6:e9:4e:22:59: bd:81:3c:d4:b3:1d:2b:ae:d6:47:47:c3:6d:de:9d:a5:a5:ff: 30:2f:cc:f1:05:56:fb:1e:d8:72:2d:28:eb:47:92:46:38:31: 97:6b:bc:58:e2:1f:7b:90:fc:4f:75:77:49:96:11:e6:97:0f: 36:57:53:b7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUd0Y1UvF4IBJFgCNjNj8n8xyztC4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwMloX DTI1MTIwOTA1MDAwMlowMzExMC8GA1UEAxMoNUQ1OEQzQjQ1ODI4NDQyRjdGMkE4 MTUzRTJGQ0NGMzBCNDYyNzc5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOVp/KKmWhyPRIcRpATCnA3PwJnKQ3kz8KZHhk+jPQO66GrzJz3h3pxsKZrq tyDHXLWV3I0PuaUT2PHD12VIfXuLYEXtDZGAeC3YAKiZmZTs9K38LMts32EhDHjt cJJOeEpskwkDxboRnBiSqoNz+byTtfr5bzUn/N7Jw8lIBxVFR1gTAxLeLN/85VNq UH0UT5ZcYGgWoPYxp72DY5RwmTylL6GcuWYiTAzw5N2oz65HqZ9Z0CyqYkWU6K2c 0mdgty3NhGDXGWwxm+5xWywe95LkvOT2S7GdD+9vrLU7aF+ndhG+LQ14sjKmzuDP gLYzkkW6j27k51+TCKApnMx0G9ECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRdWNO0 WChEL38qgVPi/M8wtGJ3kDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDM4Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeV0TANBgkqhkiG9w0BAQsFAAOCAQEAPrASG03q2Lc7JkhK3OA0 UNG8IxFRipRTYTSOZzCo6Lnkgp7YNNyf+VWrqFVgPQdSxyqxnzeGb4DClepL076C ucivzDAYLVGD2kfGYOIyNPcOTBN2yAhKruzQoqW5yxDcOcRxFHEVxpKdIi7nuz9L 84Rw51Le1XZsYV9UWrA5BejEU38G79CvllSgDDc5ididOGLuNP5XH7TeW0ve57fe VL97XpkV+Z9u5E6esiDXtUcwgn4RouFCN+C9inCCKgYC+abpTiJZvYE81LMdK67W R0fDbd6dpaX/MC/M8QVW+x7Yci0o60eSRjgxl2u8WOIfe5D8T3V3SZYR5pcPNldT tw== -----END CERTIFICATE-----Generated at Sun Feb 16 20:59:31 2025 by rpki-client