$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140460.roa File: AS140460.roa (raw, json) Hash identifier: +hpvBvpUTpK9k2QPdMWuQ4rCcb77fDmq9eh2cE9H9yg= Subject key identifier: 91:54:2A:F0:BA:B2:BC:35:27:9E:47:5A:BA:3C:F5:C1:CF:14:27:1D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 45FE250750FDAE90470D40B70ED96A58988D59AD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140460.roa Signing time: Tue 17 Dec 2024 10:00:00 +0000 ROA not before: Tue 17 Dec 2024 09:55:00 +0000 ROA not after: Tue 16 Dec 2025 10:00:00 +0000 asID: 140460 IP address blocks: 2406:41c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:fe:25:07:50:fd:ae:90:47:0d:40:b7:0e:d9:6a:58:98:8d:59:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 17 09:55:00 2024 GMT Not After : Dec 16 10:00:00 2025 GMT Subject: CN=91542AF0BAB2BC35279E475ABA3CF5C1CF14271D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7d:39:b9:77:02:38:e9:b1:32:f2:f3:ae:e0: e3:14:2a:92:f8:22:0e:27:07:80:76:ae:74:47:cb: cf:8b:3e:f5:48:25:4f:98:ae:94:02:e5:91:8a:de: 64:89:3f:f5:4a:4f:d1:1a:55:91:7f:35:56:be:61: 8a:86:8f:df:31:b9:3d:fb:09:03:2b:f2:38:ec:8e: 99:c3:85:8c:48:90:29:75:6c:b4:30:af:5a:53:54: db:18:11:41:1a:11:61:4f:62:ef:7e:af:dd:7e:66: c6:78:be:b2:73:83:b2:33:39:83:fe:a7:71:fb:fe: b0:56:a2:ad:0f:c7:ef:75:aa:1e:99:1a:7f:3a:e8: 30:6f:f2:8a:a9:39:33:64:55:83:64:5d:6f:24:48: fd:49:5c:4f:ae:cc:0e:ea:29:3f:0a:33:0e:18:04: f7:c3:44:63:c0:69:ae:56:d5:6f:95:62:cf:af:43: 03:44:f3:ad:64:bc:60:92:fd:96:e1:ae:99:a1:18: ce:51:dc:8d:75:23:9e:64:0b:88:3f:7b:a1:9b:42: cf:9b:2b:bd:c9:9d:d4:b5:14:58:84:df:f0:5e:d3: e1:a8:d8:3d:c5:41:c2:80:97:6d:a9:f8:1d:55:94: 64:84:99:65:5f:0b:63:aa:88:b4:84:a4:61:e6:66: 18:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:54:2A:F0:BA:B2:BC:35:27:9E:47:5A:BA:3C:F5:C1:CF:14:27:1D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140460.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:41c0::/32 Signature Algorithm: sha256WithRSAEncryption 87:2b:72:fb:18:c8:6f:f3:d5:e1:fd:06:96:c7:45:3a:9f:2b: f5:88:87:31:f5:90:12:3c:00:b5:7d:16:f9:c4:81:6f:6a:ee: 68:d9:93:b6:e6:ef:57:92:14:4b:ec:3b:cd:2d:73:d3:78:20: 61:4b:dd:f6:47:b9:50:0b:e9:6f:1c:de:5e:89:7a:4b:31:a6: 74:a9:ff:71:de:d0:7c:70:26:ce:e0:1a:36:f4:00:f5:6d:4b: cc:7b:d5:0a:16:fd:c2:3e:00:95:b3:64:0a:ad:c0:b7:d3:26: 2e:9a:36:30:4c:d3:0f:2b:8a:74:79:f4:83:1c:6b:bb:c1:a6: 3f:fd:aa:33:1a:0c:e9:e9:30:32:f2:bc:83:fd:b0:85:67:cb: 5f:93:58:3d:c6:ce:db:7f:42:1d:a6:ea:1a:ec:cd:81:76:eb: 87:d3:c8:ec:f0:ca:ce:29:81:2d:4a:43:12:9d:3d:29:21:84: f0:cd:dd:8a:2b:bd:de:45:bc:e9:4c:a3:7b:e2:44:a3:a2:c7: 3f:13:57:d7:78:7a:80:d0:e6:27:5b:5d:80:8a:be:e3:69:78: c1:11:ea:01:70:7f:09:7f:10:8d:9e:65:0b:98:5b:5e:6b:94: 33:2c:ae:e6:ad:a1:04:c0:5d:de:b0:1d:cb:77:49:65:8c:b1: 5b:70:0e:d8 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIURf4lB1D9rpBHDUC3DtlqWJiNWa0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxNzA5NTUwMFoX DTI1MTIxNjEwMDAwMFowMzExMC8GA1UEAxMoOTE1NDJBRjBCQUIyQkMzNTI3OUU0 NzVBQkEzQ0Y1QzFDRjE0MjcxRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALx9Obl3AjjpsTLy867g4xQqkvgiDicHgHaudEfLz4s+9UglT5iulALlkYre ZIk/9UpP0RpVkX81Vr5hioaP3zG5PfsJAyvyOOyOmcOFjEiQKXVstDCvWlNU2xgR QRoRYU9i736v3X5mxni+snODsjM5g/6ncfv+sFairQ/H73WqHpkafzroMG/yiqk5 M2RVg2RdbyRI/UlcT67MDuopPwozDhgE98NEY8BprlbVb5Viz69DA0TzrWS8YJL9 luGumaEYzlHcjXUjnmQLiD97oZtCz5srvcmd1LUUWITf8F7T4ajYPcVBwoCXban4 HVWUZISZZV8LY6qItISkYeZmGKUCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSRVCrw urK8NSeeR1q6PPXBzxQnHTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ2MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQGQcAwDQYJKoZIhvcNAQELBQADggEBAIcrcvsYyG/z1eH9BpbH RTqfK/WIhzH1kBI8ALV9FvnEgW9q7mjZk7bm71eSFEvsO80tc9N4IGFL3fZHuVAL 6W8c3l6JeksxpnSp/3He0HxwJs7gGjb0APVtS8x71QoW/cI+AJWzZAqtwLfTJi6a NjBM0w8rinR59IMca7vBpj/9qjMaDOnpMDLyvIP9sIVny1+TWD3Gztt/Qh2m6hrs zYF264fTyOzwys4pgS1KQxKdPSkhhPDN3Yorvd5FvOlMo3viRKOixz8TV9d4eoDQ 5idbXYCKvuNpeMER6gFwfwl/EI2eZQuYW15rlDMsruatoQTAXd6wHct3SWWMsVtw Dtg= -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:37 2025 by rpki-client