$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140423.roa File: AS140423.roa (raw, json) Hash identifier: tM3rmYUPrk7AW0uZMVs4muRPPVMhUMbbZCB8RLJyHCg= Subject key identifier: 19:35:A6:72:A5:44:FD:C1:47:07:43:A1:92:41:59:AA:E1:91:71:18 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 295EF8CDA4B42F45D54974BFA0C6ADC05E55C986 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140423.roa Signing time: Thu 29 Aug 2024 10:00:00 +0000 ROA not before: Thu 29 Aug 2024 09:55:00 +0000 ROA not after: Thu 28 Aug 2025 10:00:00 +0000 asID: 140423 IP address blocks: 2001:df1:7140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:5e:f8:cd:a4:b4:2f:45:d5:49:74:bf:a0:c6:ad:c0:5e:55:c9:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 29 09:55:00 2024 GMT Not After : Aug 28 10:00:00 2025 GMT Subject: CN=1935A672A544FDC1470743A1924159AAE1917118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c6:c3:fb:ef:cc:a4:06:de:55:ce:a9:45:05: 64:95:ea:60:f4:07:3d:0a:82:a7:de:b3:ab:c7:14: 96:f6:53:2b:cf:8e:0a:5c:d0:28:ac:50:2e:83:eb: 8a:16:bd:d4:5b:76:49:c6:d1:c0:b2:44:2a:94:3e: 66:c5:16:7e:08:39:33:89:b1:fd:16:c0:3c:31:47: e0:11:ea:88:52:71:85:48:d0:1f:b2:69:96:ed:1c: 5a:9a:12:38:f4:be:35:94:b6:65:38:19:77:94:ba: df:dd:ff:7a:a2:dc:73:33:d2:e7:bc:52:a9:9e:8a: a8:78:e1:e1:b2:fa:96:fc:82:e5:e8:88:18:e1:27: 7a:d0:42:1e:36:b8:d1:4d:28:6d:0a:4f:cf:4a:3f: e9:97:dc:b6:b2:03:54:26:be:02:6a:15:8d:fd:cb: 6c:16:7c:d1:00:29:6c:eb:85:e5:39:08:d0:89:81: 92:29:44:6f:5e:76:4f:1e:46:4d:64:73:58:18:56: 31:de:5b:14:a8:65:f5:64:88:d6:0d:a0:d9:29:a9: ad:f1:e3:88:d2:33:6c:e3:1e:15:42:61:fc:b6:38: 3f:66:0f:ed:bd:98:4e:cd:d2:5d:5a:45:68:e7:bc: fc:4f:bc:19:6e:60:b3:48:bf:56:d4:b0:d7:2a:0e: 6d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:35:A6:72:A5:44:FD:C1:47:07:43:A1:92:41:59:AA:E1:91:71:18 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140423.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:7140::/48 Signature Algorithm: sha256WithRSAEncryption 53:36:e0:9a:de:5b:e9:b8:1e:fa:37:0b:b3:ef:ea:74:e3:21: 82:4c:45:7d:b3:3d:04:5e:f2:68:a8:41:97:c0:cf:06:ec:03: 24:9b:3b:1f:60:8d:a3:65:07:7d:0a:bf:cd:4f:62:0b:10:f8: 6c:4e:52:dc:b5:f5:43:67:7b:37:9b:2a:09:af:a9:40:a8:41: 91:9c:9a:4c:48:c4:52:18:97:a0:ec:33:65:3f:5a:13:74:e2: 6c:4a:c3:96:76:64:45:77:3e:17:7e:98:7d:c0:66:d3:1c:b7: 06:a5:0e:08:d3:4d:d8:00:7b:af:2b:64:ef:61:3e:d0:41:0b: f0:08:57:dd:38:25:94:48:82:17:06:ef:8c:49:75:bb:69:0b: 10:92:f7:93:4b:e9:70:bc:3e:74:c2:a4:3e:a9:61:57:57:af: ba:db:dd:bd:4a:57:e3:00:51:03:a7:a0:05:6d:1a:9c:8c:7c: d2:6e:39:82:a8:c2:a3:fd:5a:23:d9:68:37:6d:c9:10:6a:3b: 48:8d:17:68:31:36:dc:31:26:2e:ac:74:e6:72:9b:15:5e:b4: 91:85:af:57:d7:97:11:04:00:18:bd:18:42:98:4f:92:7e:89: 4d:78:74:c6:ca:35:71:25:b9:34:54:20:a8:63:2c:48:4c:63: 8a:0b:1a:5d -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUKV74zaS0L0XVSXS/oMatwF5VyYYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgyOTA5NTUwMFoX DTI1MDgyODEwMDAwMFowMzExMC8GA1UEAxMoMTkzNUE2NzJBNTQ0RkRDMTQ3MDc0 M0ExOTI0MTU5QUFFMTkxNzExODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7Gw/vvzKQG3lXOqUUFZJXqYPQHPQqCp96zq8cUlvZTK8+OClzQKKxQLoPr iha91Ft2ScbRwLJEKpQ+ZsUWfgg5M4mx/RbAPDFH4BHqiFJxhUjQH7Jplu0cWpoS OPS+NZS2ZTgZd5S6393/eqLcczPS57xSqZ6KqHjh4bL6lvyC5eiIGOEnetBCHja4 0U0obQpPz0o/6ZfctrIDVCa+AmoVjf3LbBZ80QApbOuF5TkI0ImBkilEb152Tx5G TWRzWBhWMd5bFKhl9WSI1g2g2SmprfHjiNIzbOMeFUJh/LY4P2YP7b2YTs3SXVpF aOe8/E+8GW5gs0i/VtSw1yoObT0CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQZNaZy pUT9wUcHQ6GSQVmq4ZFxGDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfFxQDANBgkqhkiG9w0BAQsFAAOCAQEAUzbgmt5b6bge+jcL s+/qdOMhgkxFfbM9BF7yaKhBl8DPBuwDJJs7H2CNo2UHfQq/zU9iCxD4bE5S3LX1 Q2d7N5sqCa+pQKhBkZyaTEjEUhiXoOwzZT9aE3TibErDlnZkRXc+F36YfcBm0xy3 BqUOCNNN2AB7rytk72E+0EEL8AhX3TgllEiCFwbvjEl1u2kLEJL3k0vpcLw+dMKk PqlhV1evutvdvUpX4wBRA6egBW0anIx80m45gqjCo/1aI9loN23JEGo7SI0XaDE2 3DEmLqx05nKbFV60kYWvV9eXEQQAGL0YQphPkn6JTXh0xso1cSW5NFQgqGMsSExj igsaXQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:47 2024 by rpki-client on console-ams.rpki-client.org