$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140446.roa File: AS140446.roa (raw, json) Hash identifier: DV6EMZ3U0vPhjHZoV+fF0lP3vSA7gGICReYdE3FkvNc= Subject key identifier: E5:EA:99:1E:55:94:FE:08:62:66:C6:D8:4C:1B:4F:8B:38:B3:EC:E0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4FE3068B75B66AD8B9B4EFF2C2A98134EF094E2A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140446.roa Signing time: Mon 24 Jul 2023 02:04:19 +0000 ROA not before: Mon 24 Jul 2023 01:59:19 +0000 ROA not after: Mon 22 Jul 2024 02:04:19 +0000 asID: 140446 IP address blocks: 103.152.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:e3:06:8b:75:b6:6a:d8:b9:b4:ef:f2:c2:a9:81:34:ef:09:4e:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 24 01:59:19 2023 GMT Not After : Jul 22 02:04:19 2024 GMT Subject: CN=E5EA991E5594FE086266C6D84C1B4F8B38B3ECE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:3c:8d:c0:57:40:f4:a9:d8:fa:f3:34:72:13: 84:d4:b2:fa:c1:92:53:f7:60:00:d8:a6:f4:fc:17: 7f:86:48:2d:6c:ec:40:b2:b7:9c:d0:7b:ab:d4:17: ed:95:fa:4a:d4:9c:a3:da:ca:d6:8b:12:36:74:13: 9b:69:28:40:47:a3:2f:20:87:0e:2b:e2:47:b4:04: 28:5d:18:5e:cc:17:e9:09:a8:cb:45:12:53:ce:55: a7:e6:89:14:92:ea:93:07:24:5b:a0:46:b6:74:9b: 69:8e:06:50:84:70:8b:0c:96:5d:06:64:63:38:03: 0f:d5:49:97:a9:36:fc:ad:82:d6:80:73:ca:4e:3a: 71:11:3e:17:4f:68:4e:e5:c6:f4:b0:17:36:ca:ed: b7:a0:d1:e7:94:be:1a:41:ba:27:5a:02:90:9b:6e: 86:01:ef:94:ee:d4:51:46:10:d6:df:bc:13:f6:d1: 95:db:f9:b2:e9:bd:a3:df:a5:42:55:aa:79:96:86: 0d:d6:e6:79:f3:e7:f9:e8:49:25:eb:d5:f4:af:1c: 78:6c:78:dd:fd:8c:66:ba:06:5e:8b:99:83:78:00: 20:25:ee:b8:1d:4d:7d:d5:74:17:4d:9d:06:21:22: 3d:9f:56:03:ad:10:2a:fa:3c:82:fd:7f:33:79:b4: 83:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:EA:99:1E:55:94:FE:08:62:66:C6:D8:4C:1B:4F:8B:38:B3:EC:E0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140446.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.232.0/23 Signature Algorithm: sha256WithRSAEncryption 87:28:90:a0:d8:9d:ac:83:dd:33:86:14:4b:7c:69:b4:66:4d: ef:fa:e6:30:47:f8:1f:6a:a7:3c:3d:92:c2:56:d8:30:a5:59: c5:c4:9b:37:cb:83:53:67:54:1c:3f:d0:3a:1f:4b:c9:3d:a7: 6f:87:56:12:15:df:58:eb:47:75:30:ea:29:cc:0f:83:27:51: a2:43:71:9d:bf:a1:39:2e:48:2a:cb:86:ac:2f:c0:e9:50:98: 7f:c5:9d:d5:56:a5:c0:26:a3:15:03:c6:ab:0d:d3:c4:37:12: 0b:9e:27:53:8d:32:b6:1e:5f:e1:e6:1e:cb:98:97:69:ed:15: 99:35:d1:ab:52:c6:b7:50:04:98:22:2d:11:a3:c7:a1:7a:cf: 96:ff:3c:ff:a0:85:c0:1a:ee:f4:e7:e1:e4:5d:6a:d0:98:c9: 5b:f9:77:db:cd:ef:46:eb:56:c5:af:c8:51:e2:78:01:fd:c8: 0d:5e:5e:a2:82:b8:24:28:ae:a5:9d:47:69:c5:cc:69:5a:ae: 2c:e1:0c:25:4e:ac:0e:e9:d6:14:a7:53:7b:a0:fc:a3:92:bb: 59:59:49:ac:94:45:ef:d4:62:08:13:f7:52:a4:f5:ff:c4:76: e4:7d:e5:e0:fe:b6:7a:7f:dc:cc:58:e4:ed:73:a9:37:06:03: 2e:a6:fb:d5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUT+MGi3W2ati5tO/ywqmBNO8JTiowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyNDAxNTkxOVoX DTI0MDcyMjAyMDQxOVowMzExMC8GA1UEAxMoRTVFQTk5MUU1NTk0RkUwODYyNjZD NkQ4NEMxQjRGOEIzOEIzRUNFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO48jcBXQPSp2PrzNHIThNSy+sGSU/dgANim9PwXf4ZILWzsQLK3nNB7q9QX 7ZX6StSco9rK1osSNnQTm2koQEejLyCHDiviR7QEKF0YXswX6Qmoy0USU85Vp+aJ FJLqkwckW6BGtnSbaY4GUIRwiwyWXQZkYzgDD9VJl6k2/K2C1oBzyk46cRE+F09o TuXG9LAXNsrtt6DR55S+GkG6J1oCkJtuhgHvlO7UUUYQ1t+8E/bRldv5sum9o9+l QlWqeZaGDdbmefPn+ehJJevV9K8ceGx43f2MZroGXouZg3gAICXuuB1NfdV0F02d BiEiPZ9WA60QKvo8gv1/M3m0gzECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTl6pke VZT+CGJmxthMG0+LOLPs4DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ0Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeY6DANBgkqhkiG9w0BAQsFAAOCAQEAhyiQoNidrIPdM4YUS3xp tGZN7/rmMEf4H2qnPD2SwlbYMKVZxcSbN8uDU2dUHD/QOh9LyT2nb4dWEhXfWOtH dTDqKcwPgydRokNxnb+hOS5IKsuGrC/A6VCYf8Wd1ValwCajFQPGqw3TxDcSC54n U40yth5f4eYey5iXae0VmTXRq1LGt1AEmCItEaPHoXrPlv88/6CFwBru9Ofh5F1q 0JjJW/l3283vRutWxa/IUeJ4Af3IDV5eooK4JCiupZ1HacXMaVquLOEMJU6sDunW FKdTe6D8o5K7WVlJrJRF79RiCBP3UqT1/8R25H3l4P62en/czFjk7XOpNwYDLqb7 1Q== -----END CERTIFICATE-----Generated at Wed May 8 21:02:21 2024 by rpki-client on console-fra.rpki-client.org