$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140416.roa File: AS140416.roa (raw, json) Hash identifier: am5vwwlbWAoe8pKICZLD8Nztl0Iaq2UXjuiPchLdQCE= Subject key identifier: 0B:88:97:9E:30:46:10:13:3D:4B:67:20:8B:05:19:D1:86:F3:C0:B9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 583E4DD1B3A548F807AA1FA437BBA21BAB879EB2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140416.roa Signing time: Tue 10 Dec 2024 05:00:12 +0000 ROA not before: Tue 10 Dec 2024 04:55:12 +0000 ROA not after: Tue 09 Dec 2025 05:00:12 +0000 asID: 140416 IP address blocks: 103.148.86.0/23 maxlen: 24 2001:df2:c880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:3e:4d:d1:b3:a5:48:f8:07:aa:1f:a4:37:bb:a2:1b:ab:87:9e:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:12 2024 GMT Not After : Dec 9 05:00:12 2025 GMT Subject: CN=0B88979E304610133D4B67208B0519D186F3C0B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:fb:49:f3:88:e2:89:5e:57:18:e9:e9:0b:b2: fd:e9:ab:6f:d5:c3:84:d2:21:8d:79:d1:4f:7b:9e: a6:93:36:da:0e:d5:de:f6:ec:8f:2f:67:9f:7b:3f: 37:1f:8e:78:b9:95:2b:b3:e0:cb:05:d3:c0:45:5e: bc:2c:d6:05:14:2e:f3:e3:e0:f2:68:f6:da:a6:22: e7:3b:0b:2c:cc:71:42:58:1f:0d:e3:55:c0:be:aa: 7b:8a:33:c5:aa:c4:de:3c:d1:bd:62:c7:40:e0:fb: 44:d3:03:60:a7:5d:a8:74:0f:83:d6:28:13:d4:c2: 37:bf:16:82:bc:2a:d5:1a:a1:7c:83:20:21:51:1b: 8e:b8:85:26:56:ad:1c:e1:c7:39:ff:c8:78:f9:29: ad:ba:6e:c1:7b:64:36:94:ed:1b:20:0c:02:e6:15: 22:8b:11:42:1c:f2:13:63:3d:e6:04:e9:ff:61:fa: 8b:f7:19:ad:82:a6:a6:ae:93:f0:ba:d4:93:9f:54: 0f:ce:5f:93:8d:86:ec:88:d3:77:0a:4b:3e:f0:9d: 1b:b0:2f:4c:12:57:8c:88:52:a7:d8:f9:1e:81:ee: b9:2a:c3:cf:9b:9c:4e:77:a3:c8:27:36:52:ce:8c: ec:70:03:37:aa:f9:6e:a3:28:78:8c:59:40:ad:36: 4d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:88:97:9E:30:46:10:13:3D:4B:67:20:8B:05:19:D1:86:F3:C0:B9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140416.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.86.0/23 IPv6: 2001:df2:c880::/48 Signature Algorithm: sha256WithRSAEncryption 98:1a:c8:5c:78:57:ec:87:c1:30:c2:7b:05:60:a4:8e:83:df: 1d:e2:6f:b3:a3:6c:89:0b:a4:90:a1:36:41:23:c5:5f:26:99: d3:37:0d:c9:55:0d:c7:31:ce:3b:ed:f9:37:6a:f1:ef:6c:24: 38:65:da:d9:15:1a:9a:48:0f:62:9a:f8:16:dc:eb:50:2f:ac: f6:31:0b:b1:4e:a8:9f:55:3f:65:32:95:58:b9:64:09:f3:84: 33:3a:9e:0d:6f:c6:b8:83:7b:ca:18:57:8b:18:b4:4c:54:f5: 3e:93:1d:0d:0a:4d:ea:c8:57:15:78:40:77:33:43:ff:11:3e: b3:4a:38:1a:c1:37:13:53:4a:34:01:6e:af:ba:75:cd:79:ec: 91:a6:bb:d0:8d:30:bf:e2:7d:03:7e:5e:fa:96:eb:62:3b:24: c5:cb:ae:1e:eb:8e:d0:b0:db:8e:ee:e8:de:a3:6c:0f:75:da: a8:60:91:73:e3:eb:e5:a4:93:52:36:3f:3b:5a:54:8d:79:4b: e6:5f:d1:15:44:a2:e1:57:ba:c6:77:c7:51:41:8b:e1:1b:73: 7a:bf:a0:27:19:99:d5:9c:42:f7:43:d6:c8:4b:2c:23:da:75: 06:a8:67:87:9a:7b:1f:d4:20:84:f0:83:61:97:6f:8e:78:9e: 98:fc:50:18 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUWD5N0bOlSPgHqh+kN7uiG6uHnrIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxMloX DTI1MTIwOTA1MDAxMlowMzExMC8GA1UEAxMoMEI4ODk3OUUzMDQ2MTAxMzNENEI2 NzIwOEIwNTE5RDE4NkYzQzBCOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOr7SfOI4oleVxjp6Quy/emrb9XDhNIhjXnRT3ueppM22g7V3vbsjy9nn3s/ Nx+OeLmVK7PgywXTwEVevCzWBRQu8+Pg8mj22qYi5zsLLMxxQlgfDeNVwL6qe4oz xarE3jzRvWLHQOD7RNMDYKddqHQPg9YoE9TCN78Wgrwq1RqhfIMgIVEbjriFJlat HOHHOf/IePkprbpuwXtkNpTtGyAMAuYVIosRQhzyE2M95gTp/2H6i/cZrYKmpq6T 8LrUk59UD85fk42G7IjTdwpLPvCdG7AvTBJXjIhSp9j5HoHuuSrDz5ucTnejyCc2 Us6M7HADN6r5bqMoeIxZQK02TccCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQLiJee MEYQEz1LZyCLBRnRhvPAuTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQxNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWeUVjAPBAIAAjAJAwcAIAEN8siAMA0GCSqGSIb3DQEBCwUAA4IB AQCYGshceFfsh8EwwnsFYKSOg98d4m+zo2yJC6SQoTZBI8VfJpnTNw3JVQ3HMc47 7fk3avHvbCQ4ZdrZFRqaSA9imvgW3OtQL6z2MQuxTqifVT9lMpVYuWQJ84QzOp4N b8a4g3vKGFeLGLRMVPU+kx0NCk3qyFcVeEB3M0P/ET6zSjgawTcTU0o0AW6vunXN eeyRprvQjTC/4n0Dfl76lutiOyTFy64e647QsNuO7ujeo2wPddqoYJFz4+vlpJNS Nj87WlSNeUvmX9EVRKLhV7rGd8dRQYvhG3N6v6AnGZnVnEL3Q9bISywj2nUGqGeH mnsf1CCE8INhl2+OeJ6Y/FAY -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:45 2025 by rpki-client