$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140407.roa File: AS140407.roa (raw, json) Hash identifier: 6Xy8ZM9UN5JMnFtouErmS3RH+CFsXd4z2jJDJs0I7nM= Subject key identifier: 72:0A:0D:17:AA:52:37:69:ED:66:D5:C3:8E:DC:5E:03:79:E2:8D:9C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 602352727A0D9E2EFCFBF6635856F6077F693315 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140407.roa Signing time: Fri 05 Apr 2024 04:00:00 +0000 ROA not before: Fri 05 Apr 2024 03:55:00 +0000 ROA not after: Fri 04 Apr 2025 04:00:00 +0000 asID: 140407 IP address blocks: 2001:df1:3fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:23:52:72:7a:0d:9e:2e:fc:fb:f6:63:58:56:f6:07:7f:69:33:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 5 03:55:00 2024 GMT Not After : Apr 4 04:00:00 2025 GMT Subject: CN=720A0D17AA523769ED66D5C38EDC5E0379E28D9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:12:a1:a0:f2:b5:d0:de:38:45:1a:19:d8:ae: c3:df:2b:f0:06:59:bb:14:e4:b1:fb:c3:c8:0e:fe: b2:08:04:15:66:5b:a1:0b:36:dd:23:d4:ff:c8:c5: 8f:92:13:32:8e:5f:8f:e1:4f:8c:f1:c7:e7:e5:03: 27:d3:1d:a3:64:23:43:7f:50:f8:aa:67:08:ac:7b: da:fb:d5:39:4a:72:94:22:d5:9a:5b:71:9e:c1:5c: d9:01:78:86:a0:02:18:00:66:24:61:b6:f1:a1:da: 3b:c0:71:d2:a9:39:c1:3f:53:76:b7:cd:40:e3:c4: 71:ce:6e:99:be:86:51:c5:3b:1d:45:4c:ba:e3:42: 87:06:cc:8e:a7:2f:6a:cc:6f:89:9a:b5:a1:92:ae: 18:73:3c:99:10:52:2c:ff:30:54:1e:4a:2a:62:59: 8c:de:4c:82:59:8f:be:01:5c:fc:0a:05:49:e5:3d: 68:60:5a:1c:9f:27:94:2f:d9:fc:ab:43:45:88:a2: 96:41:37:dd:13:94:c0:27:93:3f:79:f4:3e:0d:c3: 3c:33:91:d4:53:77:b5:ec:0a:17:ad:eb:97:fc:e0: 8e:71:2f:ad:f8:5d:03:b1:01:c3:e1:3a:5a:bf:1e: 6b:16:c6:73:e0:63:9e:e6:67:60:90:fd:2f:63:e9: d2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:0A:0D:17:AA:52:37:69:ED:66:D5:C3:8E:DC:5E:03:79:E2:8D:9C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140407.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:3fc0::/48 Signature Algorithm: sha256WithRSAEncryption 3f:db:08:f4:a1:30:f0:52:37:89:5c:c6:fc:f3:0b:3b:75:31: 9b:88:c3:f5:c6:45:08:d6:42:83:47:f0:ab:8c:e6:fa:a5:f3: 43:bb:24:74:b3:17:5b:7f:c4:c3:d8:17:a1:f9:fd:a9:fc:41: 47:3d:bd:68:3a:d0:30:82:b0:58:81:b5:a6:58:94:b2:48:0b: 25:d1:f3:e7:38:a9:65:b0:42:70:0b:03:50:97:48:5a:c0:78: 61:16:84:da:2c:e8:d4:2f:c6:a5:4a:1f:45:a5:8d:45:bd:4f: e6:39:ec:44:03:d9:bf:cf:bf:a9:8c:f5:35:a2:e9:3a:2a:c1: 76:a6:34:ef:c6:36:48:6f:2e:d0:50:2d:f7:5e:c5:8b:c0:f6: af:11:55:41:81:54:20:d6:61:09:70:51:11:92:5d:6d:7e:96: cb:fb:ba:f2:02:80:f9:b0:7a:59:f6:62:d2:73:79:22:4c:ba: c2:ed:27:91:5a:3f:76:e6:7e:0d:a5:bd:f5:3d:44:4a:f5:7b: f6:28:bc:38:b4:3b:0a:de:fa:d2:3e:7f:89:08:77:19:37:ff: b1:96:d5:e3:f5:1f:fd:ad:5c:59:57:0b:a3:30:41:37:36:b1: b2:05:f6:14:79:3b:0d:29:38:cf:97:48:ad:a6:1b:33:24:64: 10:c0:6e:b9 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUYCNScnoNni78+/ZjWFb2B39pMxUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQwNTAzNTUwMFoX DTI1MDQwNDA0MDAwMFowMzExMC8GA1UEAxMoNzIwQTBEMTdBQTUyMzc2OUVENjZE NUMzOEVEQzVFMDM3OUUyOEQ5QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYSoaDytdDeOEUaGdiuw98r8AZZuxTksfvDyA7+sggEFWZboQs23SPU/8jF j5ITMo5fj+FPjPHH5+UDJ9Mdo2QjQ39Q+KpnCKx72vvVOUpylCLVmltxnsFc2QF4 hqACGABmJGG28aHaO8Bx0qk5wT9TdrfNQOPEcc5umb6GUcU7HUVMuuNChwbMjqcv asxviZq1oZKuGHM8mRBSLP8wVB5KKmJZjN5MglmPvgFc/AoFSeU9aGBaHJ8nlC/Z /KtDRYiilkE33ROUwCeTP3n0Pg3DPDOR1FN3tewKF63rl/zgjnEvrfhdA7EBw+E6 Wr8eaxbGc+BjnuZnYJD9L2Pp0m0CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRyCg0X qlI3ae1m1cOO3F4DeeKNnDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfE/wDANBgkqhkiG9w0BAQsFAAOCAQEAP9sI9KEw8FI3iVzG /PMLO3Uxm4jD9cZFCNZCg0fwq4zm+qXzQ7skdLMXW3/Ew9gXofn9qfxBRz29aDrQ MIKwWIG1pliUskgLJdHz5zipZbBCcAsDUJdIWsB4YRaE2izo1C/GpUofRaWNRb1P 5jnsRAPZv8+/qYz1NaLpOirBdqY078Y2SG8u0FAt917Fi8D2rxFVQYFUINZhCXBR EZJdbX6Wy/u68gKA+bB6WfZi0nN5Iky6wu0nkVo/duZ+DaW99T1ESvV79ii8OLQ7 Ct760j5/iQh3GTf/sZbV4/Uf/a1cWVcLozBBNzaxsgX2FHk7DSk4z5dIraYbMyRk EMBuuQ== -----END CERTIFICATE-----Generated at Wed May 8 15:17:42 2024 by rpki-client on console-fra.rpki-client.org