$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140424.roa File: AS140424.roa (raw, json) Hash identifier: z0v4oFilLXkjBFfzLFewqjnPsYPgLeKPWj8sUTmwgqo= Subject key identifier: CC:66:6B:BA:BF:EE:8A:19:54:CF:C9:9F:E6:70:8A:E2:25:AF:94:15 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5EACD3C5FC07BE2669483452107646BB17493C6F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140424.roa Signing time: Tue 18 Feb 2025 01:07:40 +0000 ROA not before: Tue 18 Feb 2025 01:02:40 +0000 ROA not after: Tue 17 Feb 2026 01:07:40 +0000 asID: 140424 IP address blocks: 103.151.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ac:d3:c5:fc:07:be:26:69:48:34:52:10:76:46:bb:17:49:3c:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 18 01:02:40 2025 GMT Not After : Feb 17 01:07:40 2026 GMT Subject: CN=CC666BBABFEE8A1954CFC99FE6708AE225AF9415 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:96:e4:65:70:a5:12:31:3f:56:27:dd:8d:42: 4c:44:6f:9e:bb:ce:19:b1:4c:7a:02:1a:73:20:9f: 60:d8:d2:04:75:25:e1:30:8e:81:9d:dd:58:eb:07: cb:e6:b3:48:1e:83:c6:23:15:53:68:d1:27:55:87: 9c:b6:fc:ae:e1:9a:69:83:b3:e9:48:4f:aa:a1:c6: 10:f7:d7:bb:72:20:ba:36:f4:e0:6e:b7:da:8d:c5: 62:dc:9d:eb:af:8d:a1:dd:7d:58:11:b3:6e:d3:72: 0a:04:c6:3a:4b:51:ab:8b:18:3b:3c:b7:bb:38:c8: b0:33:5f:b7:a3:0d:b9:4e:c0:dd:f7:03:55:d4:03: 13:be:e3:1a:c6:a7:15:03:ec:88:22:8f:a2:f8:43: 5f:8d:e1:58:97:f7:8f:52:0f:5b:6f:b8:b2:2a:e2: ea:a1:ac:62:af:1d:8c:05:0a:8b:5b:a8:b8:74:e2: 57:27:a8:91:fd:25:48:a0:33:18:d8:65:e2:73:fd: 50:b1:7e:57:67:49:54:b6:ae:91:88:a1:28:0b:c7: d7:a4:e8:fa:d1:2f:10:16:f6:31:de:0c:70:20:61: 86:c7:31:9c:ee:b7:56:01:63:94:97:7d:f5:02:ea: 71:b6:3f:fb:0c:b2:e8:75:3f:ed:13:87:39:8f:01: d6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:66:6B:BA:BF:EE:8A:19:54:CF:C9:9F:E6:70:8A:E2:25:AF:94:15 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140424.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.191.0/24 Signature Algorithm: sha256WithRSAEncryption 52:09:0b:70:b5:f3:ae:96:1e:62:3b:c1:90:62:9e:4d:ac:c4: 3d:a8:97:8d:69:6f:de:cf:1f:08:31:f5:79:6f:ad:b1:a6:98: 6d:e3:1c:0e:65:b1:fa:e5:a8:2e:21:3d:a6:55:4e:6c:12:8a: a7:88:21:97:69:af:43:d1:ca:1b:7e:84:4c:26:ba:0e:fb:3c: 4c:5f:79:7c:2e:2c:e6:95:24:21:1a:4c:3b:1b:d9:f5:28:6f: 33:b5:b2:61:8f:79:54:5e:5b:5c:9a:ff:d7:ed:93:8f:6e:16: 40:19:8a:91:64:87:ee:db:f3:73:ed:e4:a8:f5:8f:c0:69:b6: 19:64:07:f2:02:44:61:59:9b:b0:75:9c:34:f5:39:05:77:68: ac:99:4e:54:d6:2f:d5:04:b8:b2:0a:c0:96:a3:cd:4b:d1:9e: 52:9b:dc:f8:0a:88:e9:26:36:b0:7d:9a:94:83:c8:e7:3b:a7: 04:40:e0:ed:63:39:81:d9:be:2b:98:13:94:48:e9:0c:4a:73: e2:52:d6:b4:bd:e6:21:7e:5d:5a:d2:a9:b4:55:57:0c:52:34: 94:3f:97:a1:41:2a:a0:65:1d:2b:e9:92:bc:88:06:da:2d:76: bf:e3:6d:16:86:77:dc:95:e7:0e:03:a4:83:46:e6:8d:33:2e: 79:83:0b:ae -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXqzTxfwHviZpSDRSEHZGuxdJPG8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIxODAxMDI0MFoX DTI2MDIxNzAxMDc0MFowMzExMC8GA1UEAxMoQ0M2NjZCQkFCRkVFOEExOTU0Q0ZD OTlGRTY3MDhBRTIyNUFGOTQxNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK+W5GVwpRIxP1Yn3Y1CTERvnrvOGbFMegIacyCfYNjSBHUl4TCOgZ3dWOsH y+azSB6DxiMVU2jRJ1WHnLb8ruGaaYOz6UhPqqHGEPfXu3Igujb04G632o3FYtyd 66+Nod19WBGzbtNyCgTGOktRq4sYOzy3uzjIsDNft6MNuU7A3fcDVdQDE77jGsan FQPsiCKPovhDX43hWJf3j1IPW2+4siri6qGsYq8djAUKi1uouHTiVyeokf0lSKAz GNhl4nP9ULF+V2dJVLaukYihKAvH16To+tEvEBb2Md4McCBhhscxnO63VgFjlJd9 9QLqcbY/+wyy6HU/7ROHOY8B1qkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTMZmu6 v+6KGVTPyZ/mcIriJa+UFTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQyNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeXvzANBgkqhkiG9w0BAQsFAAOCAQEAUgkLcLXzrpYeYjvBkGKe TazEPaiXjWlv3s8fCDH1eW+tsaaYbeMcDmWx+uWoLiE9plVObBKKp4ghl2mvQ9HK G36ETCa6Dvs8TF95fC4s5pUkIRpMOxvZ9ShvM7WyYY95VF5bXJr/1+2Tj24WQBmK kWSH7tvzc+3kqPWPwGm2GWQH8gJEYVmbsHWcNPU5BXdorJlOVNYv1QS4sgrAlqPN S9GeUpvc+AqI6SY2sH2alIPI5zunBEDg7WM5gdm+K5gTlEjpDEpz4lLWtL3mIX5d WtKptFVXDFI0lD+XoUEqoGUdK+mSvIgG2i12v+NtFoZ33JXnDgOkg0bmjTMueYML rg== -----END CERTIFICATE-----Generated at Sat Apr 5 06:29:49 2025 by rpki-client