$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140446.roa File: AS140446.roa (raw, json) Hash identifier: 80AQ1t497oA2I2ZALrrn/+BLRTNwc3my/rJIRJE7RZE= Subject key identifier: 04:81:94:9D:F2:AF:FB:E5:1F:D7:36:3E:73:13:BD:BF:EA:C4:39:87 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5F2CEBD2B1E147ADAACDCC1BD6E7C9E0ACDCBEEB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140446.roa Signing time: Mon 26 May 2025 03:00:00 +0000 ROA not before: Mon 26 May 2025 02:55:00 +0000 ROA not after: Mon 25 May 2026 03:00:00 +0000 asID: 140446 IP address blocks: 103.152.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:2c:eb:d2:b1:e1:47:ad:aa:cd:cc:1b:d6:e7:c9:e0:ac:dc:be:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 26 02:55:00 2025 GMT Not After : May 25 03:00:00 2026 GMT Subject: CN=0481949DF2AFFBE51FD7363E7313BDBFEAC43987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:aa:32:48:8e:67:00:89:e0:b3:ce:75:16:78: 7c:a0:92:6e:78:ff:74:5c:a8:81:12:ee:0d:26:77: 87:91:db:3d:79:b8:23:a6:25:48:0f:92:04:3d:6c: 2a:a1:ca:64:9b:45:58:12:84:2d:a0:6e:71:7f:f3: aa:45:cd:55:22:95:35:92:ad:00:eb:88:e7:34:14: 5b:25:48:9e:fb:d6:7b:8b:5c:0c:3f:59:99:9f:08: f7:2c:fc:cd:cc:e5:a1:05:2a:9e:6a:ba:09:4e:e5: 73:be:9f:f0:c9:e1:ba:42:38:c6:7a:9c:f5:8d:3b: b7:2c:27:dd:8a:f3:f9:79:27:76:97:76:5e:f6:9b: f4:da:79:0c:e6:c6:02:d1:ef:b0:46:61:aa:c9:e0: b7:0b:62:26:a2:b4:bf:df:b4:4e:3b:ce:12:a1:4e: 02:04:ed:ac:51:f3:55:9e:c5:b9:54:b7:17:58:04: 7e:9d:3e:75:55:b9:c0:9c:04:35:65:4b:ae:e1:56: fe:6f:b4:79:fe:1b:dc:89:47:49:a0:eb:28:d7:0a: 89:91:c5:13:78:de:16:24:ba:e1:92:74:2e:2b:52: 37:dd:04:7a:97:07:74:eb:40:23:52:98:49:ce:a3: fe:b7:43:85:f7:3f:64:56:da:2b:7b:28:57:d9:65: 82:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:81:94:9D:F2:AF:FB:E5:1F:D7:36:3E:73:13:BD:BF:EA:C4:39:87 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140446.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.232.0/23 Signature Algorithm: sha256WithRSAEncryption 19:61:8a:74:8e:87:af:f0:54:af:19:81:e8:c0:d8:d1:f7:ad: c7:f6:6c:82:fd:25:3d:0f:67:4b:3d:2d:07:c5:08:5d:53:cf: 48:ff:1c:bd:73:42:9a:a6:a1:9f:27:56:a2:83:09:3b:9b:9c: 17:93:33:3f:c8:e5:48:40:0c:ef:59:03:dc:bb:9f:75:c5:12: f7:3f:24:b3:44:fb:39:4a:5b:70:04:38:c3:6f:6a:e6:da:8b: 3b:f8:4e:e1:2d:38:db:f8:71:6b:c0:58:e6:bc:d7:16:2e:00: 27:f2:7f:63:ed:3d:97:cc:f6:34:cb:08:7a:17:7a:6c:d4:dc: 45:6a:49:5f:14:82:0f:db:41:40:8e:99:55:97:55:ea:c9:e3: 4d:56:69:9f:21:0d:8f:7b:53:08:22:8c:4b:00:54:40:dc:c3: 8f:75:7c:a2:23:7e:83:b5:c5:8e:86:05:9c:db:e6:79:e3:36: 87:33:d0:a1:73:9e:59:2b:0d:e4:db:6d:5d:73:e4:6a:81:9a: 37:6f:33:82:47:26:c0:04:b2:ce:d7:3b:11:ab:8a:6b:5c:80: 8f:94:e0:bd:3c:4e:6c:0f:f6:e9:fd:30:cb:77:3d:2b:bd:be: 3e:e5:95:5f:84:7a:48:4d:fa:2b:e7:d6:53:ff:76:8d:4a:e0: f4:65:0f:a7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXyzr0rHhR62qzcwb1ufJ4KzcvuswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUyNjAyNTUwMFoX DTI2MDUyNTAzMDAwMFowMzExMC8GA1UEAxMoMDQ4MTk0OURGMkFGRkJFNTFGRDcz NjNFNzMxM0JEQkZFQUM0Mzk4NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANaqMkiOZwCJ4LPOdRZ4fKCSbnj/dFyogRLuDSZ3h5HbPXm4I6YlSA+SBD1s KqHKZJtFWBKELaBucX/zqkXNVSKVNZKtAOuI5zQUWyVInvvWe4tcDD9ZmZ8I9yz8 zczloQUqnmq6CU7lc76f8MnhukI4xnqc9Y07tywn3Yrz+Xkndpd2Xvab9Np5DObG AtHvsEZhqsngtwtiJqK0v9+0TjvOEqFOAgTtrFHzVZ7FuVS3F1gEfp0+dVW5wJwE NWVLruFW/m+0ef4b3IlHSaDrKNcKiZHFE3jeFiS64ZJ0LitSN90EepcHdOtAI1KY Sc6j/rdDhfc/ZFbaK3soV9llgrkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQEgZSd 8q/75R/XNj5zE72/6sQ5hzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ0Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeY6DANBgkqhkiG9w0BAQsFAAOCAQEAGWGKdI6Hr/BUrxmB6MDY 0fetx/Zsgv0lPQ9nSz0tB8UIXVPPSP8cvXNCmqahnydWooMJO5ucF5MzP8jlSEAM 71kD3LufdcUS9z8ks0T7OUpbcAQ4w29q5tqLO/hO4S042/hxa8BY5rzXFi4AJ/J/ Y+09l8z2NMsIehd6bNTcRWpJXxSCD9tBQI6ZVZdV6snjTVZpnyENj3tTCCKMSwBU QNzDj3V8oiN+g7XFjoYFnNvmeeM2hzPQoXOeWSsN5NttXXPkaoGaN28zgkcmwASy ztc7EauKa1yAj5TgvTxObA/26f0wy3c9K72+PuWVX4R6SE36K+fWU/92jUrg9GUP pw== -----END CERTIFICATE-----Generated at Tue Jun 3 23:11:11 2025 by rpki-client