$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140460.roa File: AS140460.roa (raw, json) Hash identifier: eo01lYD0H1A0H+btWl/jZVIaFArxptLsFF0NZY35jNM= Subject key identifier: C1:E0:15:8B:03:55:50:37:81:0B:D0:3B:37:44:A7:95:42:FB:89:BE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3A0341E6187BD6D5A484EB37F36FEC5F732B03F8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140460.roa Signing time: Tue 16 Jan 2024 09:00:00 +0000 ROA not before: Tue 16 Jan 2024 08:55:00 +0000 ROA not after: Tue 14 Jan 2025 09:00:00 +0000 asID: 140460 IP address blocks: 2406:41c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:03:41:e6:18:7b:d6:d5:a4:84:eb:37:f3:6f:ec:5f:73:2b:03:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 16 08:55:00 2024 GMT Not After : Jan 14 09:00:00 2025 GMT Subject: CN=C1E0158B03555037810BD03B3744A79542FB89BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:eb:7d:92:bf:0d:19:76:f8:64:67:fa:a9:8c: 1c:45:27:f7:84:76:70:fd:59:83:0d:3d:1c:7e:f8: 97:f2:04:62:fd:c4:21:78:eb:de:76:26:f3:62:01: 54:f5:40:dd:f2:0e:97:85:ad:0e:81:d9:db:58:6d: a2:70:b8:a1:36:9c:e7:67:b8:71:fa:12:cd:84:08: 82:5d:46:10:5f:1e:77:bd:53:fb:38:c8:0c:ab:20: fc:58:6a:52:77:8e:92:d7:ba:69:9b:18:15:da:8d: 19:22:29:42:09:92:66:25:11:55:6e:75:81:c4:b9: 45:b6:4f:43:ff:a3:1d:46:2e:b5:56:3b:40:4e:03: 9c:0e:e6:e0:db:03:14:df:34:02:5b:7f:cf:cf:51: 5d:58:5a:88:05:6a:15:a0:7a:4e:02:a0:4e:f7:e1: d7:2e:02:a8:10:82:8b:46:c8:03:bd:14:26:e7:53: e6:10:7e:ca:21:ee:47:0f:01:da:63:8a:c4:50:b8: 74:fd:5b:e8:6a:fd:3e:92:b7:2b:3f:5b:08:ee:7a: 55:40:43:24:a8:ab:c9:54:f0:d4:3b:de:ea:18:57: 0b:72:93:6c:fe:cd:2c:74:8d:ba:63:6e:03:51:f5: 19:47:28:6a:7c:2f:2b:f7:a1:8e:61:6c:eb:5c:13: 54:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:E0:15:8B:03:55:50:37:81:0B:D0:3B:37:44:A7:95:42:FB:89:BE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140460.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:41c0::/32 Signature Algorithm: sha256WithRSAEncryption 97:78:54:ae:7e:0a:55:6b:b5:72:61:f4:bb:c5:c9:57:7a:92: 37:27:5c:d2:0b:d0:6e:8c:35:94:3b:a2:cd:b9:9d:f8:27:6f: 21:96:1f:3c:5f:72:6f:10:95:f2:7b:4f:28:8e:df:e0:53:47: 8a:5b:ee:36:90:7e:ec:aa:29:80:02:4d:88:d9:44:dc:63:c4: 64:c4:28:68:8c:14:5d:14:63:ce:0e:ec:5e:d0:bf:76:9d:df: af:d2:0a:78:70:ef:2c:75:0d:7d:c9:74:6b:01:2b:8f:ad:ab: c8:9a:69:16:18:e2:60:ec:3c:99:7f:f5:cc:75:97:a1:a9:78: 27:81:01:3b:15:91:0e:f6:9f:66:d9:4a:3a:2d:96:f0:ad:9f: 32:95:5b:d7:41:73:5c:5b:0f:7d:7e:fa:8c:f7:36:5b:a0:f0: 68:0b:82:54:05:ac:71:93:01:12:e7:ce:ce:bb:dc:52:6f:d3: 42:6b:d4:c6:79:a9:3c:b1:af:07:50:6c:b6:f4:87:d2:77:78: 9d:d6:ca:de:cd:39:fe:3b:04:48:d2:0c:60:de:e0:31:3a:00: ab:86:78:70:2b:2c:b4:3d:b5:fa:80:fe:b7:73:ca:9c:c2:58: c3:ee:3d:f2:18:a5:98:90:59:f1:8d:83:af:9a:96:ce:ce:17: 8e:0c:58:dc -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUOgNB5hh71tWkhOs382/sX3MrA/gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExNjA4NTUwMFoX DTI1MDExNDA5MDAwMFowMzExMC8GA1UEAxMoQzFFMDE1OEIwMzU1NTAzNzgxMEJE MDNCMzc0NEE3OTU0MkZCODlCRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJjrfZK/DRl2+GRn+qmMHEUn94R2cP1Zgw09HH74l/IEYv3EIXjr3nYm82IB VPVA3fIOl4WtDoHZ21htonC4oTac52e4cfoSzYQIgl1GEF8ed71T+zjIDKsg/Fhq UneOkte6aZsYFdqNGSIpQgmSZiURVW51gcS5RbZPQ/+jHUYutVY7QE4DnA7m4NsD FN80Alt/z89RXVhaiAVqFaB6TgKgTvfh1y4CqBCCi0bIA70UJudT5hB+yiHuRw8B 2mOKxFC4dP1b6Gr9PpK3Kz9bCO56VUBDJKiryVTw1Dve6hhXC3KTbP7NLHSNumNu A1H1GUcoanwvK/ehjmFs61wTVF0CAwEAAaOCAdEwggHNMB0GA1UdDgQWBBTB4BWL A1VQN4EL0Ds3RKeVQvuJvjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ2MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQGQcAwDQYJKoZIhvcNAQELBQADggEBAJd4VK5+ClVrtXJh9LvF yVd6kjcnXNIL0G6MNZQ7os25nfgnbyGWHzxfcm8QlfJ7TyiO3+BTR4pb7jaQfuyq KYACTYjZRNxjxGTEKGiMFF0UY84O7F7Qv3ad36/SCnhw7yx1DX3JdGsBK4+tq8ia aRYY4mDsPJl/9cx1l6GpeCeBATsVkQ72n2bZSjotlvCtnzKVW9dBc1xbD31++oz3 Nlug8GgLglQFrHGTARLnzs673FJv00Jr1MZ5qTyxrwdQbLb0h9J3eJ3Wyt7NOf47 BEjSDGDe4DE6AKuGeHArLLQ9tfqA/rdzypzCWMPuPfIYpZiQWfGNg6+als7OF44M WNw= -----END CERTIFICATE-----Generated at Wed May 8 14:59:55 2024 by rpki-client on console-ams.rpki-client.org