$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140416.roa File: AS140416.roa (raw, json) Hash identifier: Y3x3gW02AQNq16rPKwd4shiHzzdbPPNYqdKY099kxjM= Subject key identifier: DE:95:30:F1:05:90:03:6F:08:E2:98:B7:14:A3:33:3E:B2:7A:9A:E1 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 33ED60E2AE71A330DCB4B288A73669183493779C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140416.roa Signing time: Tue 09 Jan 2024 04:00:16 +0000 ROA not before: Tue 09 Jan 2024 03:55:16 +0000 ROA not after: Tue 07 Jan 2025 04:00:16 +0000 asID: 140416 IP address blocks: 103.148.86.0/23 maxlen: 24 2001:df2:c880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:ed:60:e2:ae:71:a3:30:dc:b4:b2:88:a7:36:69:18:34:93:77:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:16 2024 GMT Not After : Jan 7 04:00:16 2025 GMT Subject: CN=DE9530F10590036F08E298B714A3333EB27A9AE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:87:54:20:67:e4:b4:10:57:9e:22:e0:09:f7: 04:6e:0a:55:16:27:1b:4b:32:10:bf:08:f2:c2:ca: 5c:64:4e:2f:0b:80:6f:fc:5c:29:7b:1f:65:e4:ef: 5c:8c:0d:19:b4:32:c9:bd:05:37:8d:f9:44:2a:e6: ef:72:08:f6:19:96:5f:dd:81:ce:ad:0d:e0:9d:f9: 2f:db:91:51:c2:6a:f8:35:23:69:39:86:c6:2f:e2: 0d:69:51:5f:a0:e8:00:3c:a0:b8:ba:2a:ab:a4:89: ae:2e:f6:71:f5:c8:80:21:cf:75:28:04:5d:aa:fb: 78:05:3a:68:1d:df:c6:16:70:fa:e7:42:ba:35:65: 11:69:2f:c0:93:23:69:d8:8d:3a:99:a9:c6:fa:2e: 1c:ee:50:16:1e:20:2b:24:a0:89:8a:4b:df:cd:01: 63:0e:0e:ac:08:24:d7:85:2d:26:2b:c1:e4:4c:35: c9:6d:58:46:65:7f:12:99:12:b5:54:fd:8e:54:b6: 10:46:78:af:2c:cd:26:05:06:0d:67:1b:25:79:b4: 28:4f:83:d3:97:6a:7b:b0:cc:0a:da:b3:b6:76:d7: 63:e0:a6:d5:11:36:dc:86:4f:49:c5:c6:39:13:5e: 0c:35:5f:37:2e:c1:c2:eb:d4:74:e8:bc:c9:02:c2: ea:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:95:30:F1:05:90:03:6F:08:E2:98:B7:14:A3:33:3E:B2:7A:9A:E1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140416.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.86.0/23 IPv6: 2001:df2:c880::/48 Signature Algorithm: sha256WithRSAEncryption 53:f3:02:2f:81:1c:d4:88:ce:8c:8b:50:bd:bc:bc:e3:dc:11: 0f:d3:b1:6d:a3:cc:7e:5d:c3:fe:b3:d6:7c:33:a0:a7:31:72: 2d:11:2a:24:1d:41:d0:57:e3:33:71:90:56:98:e1:45:f6:df: 07:d4:ff:12:cb:2d:a0:86:8e:73:d6:fe:79:43:2c:78:c0:99: 56:15:0c:84:e2:e8:79:0b:24:64:af:c1:e7:1f:69:ec:54:a5: 67:a6:50:fa:aa:a2:84:cc:0e:04:72:e8:bf:f7:bc:89:34:2c: 2b:b7:e3:12:c5:aa:82:83:43:64:ed:c4:9b:17:78:5a:01:57: a6:0c:17:a8:38:a0:23:81:44:b0:a8:5b:84:96:53:06:61:2e: e3:05:aa:88:63:c7:b7:d6:57:c9:ff:3e:ed:e0:ec:5e:5d:48: f1:a3:9f:a4:b5:2c:b1:d9:be:23:0d:7b:6c:b2:06:6a:db:44: 09:11:30:86:f4:53:ba:a8:1f:80:98:5a:b5:4e:d0:a3:16:38: 50:f8:73:ce:4f:84:26:a9:87:ac:ad:e6:4b:e3:27:47:7f:05: 60:11:77:8a:83:32:f6:21:4f:d9:04:8a:80:55:e8:47:10:df: 2d:c7:3f:38:3e:e9:bf:81:80:a4:b0:c2:c2:09:65:7a:53:e1: c2:81:fe:6a -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUM+1g4q5xozDctLKIpzZpGDSTd5wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxNloX DTI1MDEwNzA0MDAxNlowMzExMC8GA1UEAxMoREU5NTMwRjEwNTkwMDM2RjA4RTI5 OEI3MTRBMzMzM0VCMjdBOUFFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANyHVCBn5LQQV54i4An3BG4KVRYnG0syEL8I8sLKXGROLwuAb/xcKXsfZeTv XIwNGbQyyb0FN435RCrm73II9hmWX92Bzq0N4J35L9uRUcJq+DUjaTmGxi/iDWlR X6DoADyguLoqq6SJri72cfXIgCHPdSgEXar7eAU6aB3fxhZw+udCujVlEWkvwJMj adiNOpmpxvouHO5QFh4gKySgiYpL380BYw4OrAgk14UtJivB5Ew1yW1YRmV/EpkS tVT9jlS2EEZ4ryzNJgUGDWcbJXm0KE+D05dqe7DMCtqztnbXY+Cm1RE23IZPScXG ORNeDDVfNy7BwuvUdOi8yQLC6k0CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBTelTDx BZADbwjimLcUozM+snqa4TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQxNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWeUVjAPBAIAAjAJAwcAIAEN8siAMA0GCSqGSIb3DQEBCwUAA4IB AQBT8wIvgRzUiM6Mi1C9vLzj3BEP07Fto8x+XcP+s9Z8M6CnMXItESokHUHQV+Mz cZBWmOFF9t8H1P8Syy2gho5z1v55Qyx4wJlWFQyE4uh5CyRkr8HnH2nsVKVnplD6 qqKEzA4Ecui/97yJNCwrt+MSxaqCg0Nk7cSbF3haAVemDBeoOKAjgUSwqFuEllMG YS7jBaqIY8e31lfJ/z7t4OxeXUjxo5+ktSyx2b4jDXtssgZq20QJETCG9FO6qB+A mFq1TtCjFjhQ+HPOT4QmqYesreZL4ydHfwVgEXeKgzL2IU/ZBIqAVehHEN8txz84 Pum/gYCksMLCCWV6U+HCgf5q -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:24 2024 by rpki-client on console-fra.rpki-client.org