$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140467.roa File: AS140467.roa (raw, json) Hash identifier: wDUG5IIz5BwwtSlMuq+IZ4U/TZF7Xf+KfQd5OXdhsG8= Subject key identifier: 5D:5F:53:13:3D:6E:22:67:D3:03:EC:B9:94:B4:5D:19:FA:32:30:95 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6DBB7DB0225C122D05800E4702E4265DD41D5DA9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140467.roa Signing time: Mon 20 May 2024 05:00:00 +0000 ROA not before: Mon 20 May 2024 04:55:00 +0000 ROA not after: Mon 19 May 2025 05:00:00 +0000 asID: 140467 IP address blocks: 103.153.150.0/24 maxlen: 24 103.235.65.0/24 maxlen: 24 2406:4640::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:bb:7d:b0:22:5c:12:2d:05:80:0e:47:02:e4:26:5d:d4:1d:5d:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 20 04:55:00 2024 GMT Not After : May 19 05:00:00 2025 GMT Subject: CN=5D5F53133D6E2267D303ECB994B45D19FA323095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:7d:87:5d:c4:ed:d9:96:30:0d:69:7b:c6:58: 97:79:5a:1c:8c:e2:03:3b:40:f2:73:2d:e6:ca:32: a8:b3:62:60:f1:9c:e0:33:6f:70:b1:85:de:71:e6: ce:46:86:21:e1:dd:e3:27:06:05:4a:7c:dc:ce:9f: 07:4f:1f:88:7e:bc:32:49:ec:76:0d:9b:aa:40:b6: 5a:91:e8:3a:fd:ba:e4:f8:c1:f1:79:f9:5b:3e:f5: 02:1f:ce:98:65:64:2b:44:34:af:4f:f7:d5:5b:6d: 9f:29:df:59:ef:1a:4e:e8:c8:09:78:c4:7d:d7:fd: a5:a7:7c:e3:73:ea:65:fa:52:08:9e:f3:1e:03:b4: 69:c8:56:b6:1c:a4:7d:57:b8:ee:b1:df:76:40:e2: 97:d9:c1:7e:23:7c:7d:2e:b0:c3:1e:b9:0b:44:2a: b5:e4:97:33:89:56:2c:39:35:de:65:5a:63:d5:da: 02:67:d2:5f:54:4c:53:a0:6d:3c:d2:ed:af:85:ec: 28:fe:c6:6c:86:ec:6b:15:f3:2a:6f:57:a9:f7:93: 66:2e:53:9a:ef:df:d3:f4:37:8b:d6:92:d4:3f:4b: bb:e6:6b:d0:88:f1:0c:03:2f:5a:01:cc:73:97:9c: 0c:f9:49:d1:7f:fe:68:26:ff:9c:4e:e2:8f:28:7b: d1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:5F:53:13:3D:6E:22:67:D3:03:EC:B9:94:B4:5D:19:FA:32:30:95 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140467.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.150.0/24 103.235.65.0/24 IPv6: 2406:4640::/32 Signature Algorithm: sha256WithRSAEncryption 81:8f:07:38:a2:09:e8:7a:2b:71:4a:0a:77:cc:3d:2d:77:93: 72:bd:37:c0:67:c3:4e:9c:97:78:6e:d5:ec:6e:e8:82:cb:40: 79:d5:a1:e0:9a:b3:df:20:2b:27:55:5d:d6:93:c5:33:3f:0c: ef:a6:43:36:8b:a8:a0:4a:d2:ca:f0:a0:06:eb:75:2e:ac:3e: 5c:6d:ed:59:f4:cb:06:2e:e9:bc:b5:f5:e2:13:5d:f0:35:0e: 90:18:1b:fe:af:14:3d:ab:61:1b:8c:5b:83:77:8f:e7:8d:aa: a5:f0:e1:27:de:07:d7:8a:87:c3:9e:5d:34:10:23:6d:2a:7e: 4d:9e:a1:1c:c7:c2:50:c1:14:ff:b9:52:99:65:be:69:2f:b5: af:98:0c:74:56:6d:0d:c2:b1:12:be:e5:0a:70:3a:79:41:01: 7a:a6:71:16:4e:ce:12:d1:1b:1d:ea:8c:15:d3:9c:ff:e2:49: f8:d1:d7:a4:f1:c0:9b:12:d1:c0:d9:14:ef:bd:80:e2:18:b2: fb:4b:59:8b:f0:f9:95:34:a4:de:67:db:50:2d:0f:7e:bb:a4: bf:bf:2c:8b:e7:ab:31:98:ee:6f:d2:d0:b2:95:7e:3a:0d:de: 40:77:99:c7:fd:a3:ec:ed:e2:6d:ea:3a:8a:04:b3:b4:0b:e5: 55:52:2e:12 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUbbt9sCJcEi0FgA5HAuQmXdQdXakwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUyMDA0NTUwMFoX DTI1MDUxOTA1MDAwMFowMzExMC8GA1UEAxMoNUQ1RjUzMTMzRDZFMjI2N0QzMDNF Q0I5OTRCNDVEMTlGQTMyMzA5NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPV9h13E7dmWMA1pe8ZYl3laHIziAztA8nMt5soyqLNiYPGc4DNvcLGF3nHm zkaGIeHd4ycGBUp83M6fB08fiH68Mknsdg2bqkC2WpHoOv265PjB8Xn5Wz71Ah/O mGVkK0Q0r0/31VttnynfWe8aTujICXjEfdf9pad843PqZfpSCJ7zHgO0achWthyk fVe47rHfdkDil9nBfiN8fS6wwx65C0QqteSXM4lWLDk13mVaY9XaAmfSX1RMU6Bt PNLtr4XsKP7GbIbsaxXzKm9XqfeTZi5Tmu/f0/Q3i9aS1D9Lu+Zr0IjxDAMvWgHM c5ecDPlJ0X/+aCb/nE7ijyh70Z0CAwEAAaOCAeUwggHhMB0GA1UdDgQWBBRdX1MT PW4iZ9MD7LmUtF0Z+jIwlTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ2Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAGeZlgMEAGfrQTANBAIAAjAHAwUAJAZGQDANBgkqhkiG9w0BAQsF AAOCAQEAgY8HOKIJ6HorcUoKd8w9LXeTcr03wGfDTpyXeG7V7G7ogstAedWh4Jqz 3yArJ1Vd1pPFMz8M76ZDNouooErSyvCgBut1Lqw+XG3tWfTLBi7pvLX14hNd8DUO kBgb/q8UPathG4xbg3eP542qpfDhJ94H14qHw55dNBAjbSp+TZ6hHMfCUMEU/7lS mWW+aS+1r5gMdFZtDcKxEr7lCnA6eUEBeqZxFk7OEtEbHeqMFdOc/+JJ+NHXpPHA mxLRwNkU772A4hiy+0tZi/D5lTSk3mfbUC0Pfrukv78si+erMZjub9LQspV+Og3e QHeZx/2j7O3ibeo6igSztAvlVVIuEg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:47 2024 by rpki-client on console-ams.rpki-client.org