$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140470.roa File: AS140470.roa (raw, json) Hash identifier: TRiZY9jipwaZkrdowdpvOFXSDQufaUu69xcO4S/9Kow= Subject key identifier: CE:FF:CD:F7:9B:CC:29:7E:B3:FE:FC:34:CC:33:13:B9:08:F9:1C:DE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7021102CEA72AF7939D8BDDE55D45DB3797AB61C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140470.roa Signing time: Wed 11 Dec 2024 11:00:00 +0000 ROA not before: Wed 11 Dec 2024 10:55:00 +0000 ROA not after: Wed 10 Dec 2025 11:00:00 +0000 asID: 140470 IP address blocks: 2407:f340::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:21:10:2c:ea:72:af:79:39:d8:bd:de:55:d4:5d:b3:79:7a:b6:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 11 10:55:00 2024 GMT Not After : Dec 10 11:00:00 2025 GMT Subject: CN=CEFFCDF79BCC297EB3FEFC34CC3313B908F91CDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:de:b9:cf:02:b5:b5:f2:51:45:31:ac:0f:5b: e2:44:6e:fc:a5:65:fc:a3:7f:7f:25:30:ff:ac:fc: b9:f5:9e:41:65:ba:be:b7:3a:9c:4f:d6:40:88:c0: 80:0b:8d:f0:bd:63:f8:35:e7:0e:38:d9:67:ff:3a: 63:d0:a9:0c:04:4b:4d:49:45:b4:cf:8e:6c:b9:c6: 58:1f:d5:25:ad:72:d1:68:d0:f5:02:82:d5:54:ae: 2c:b2:29:c6:35:f2:fe:09:05:b4:dc:a2:a8:39:a9: 4d:26:67:eb:49:5f:30:fd:8b:f6:59:49:6e:f3:07: aa:92:c7:9e:6f:7e:39:79:be:8f:fb:c0:b1:05:8e: 58:a5:51:60:e9:b4:12:6b:ea:f8:7d:86:43:bd:97: 55:a8:4a:0e:c7:f3:1f:f8:11:2c:a6:f0:e4:33:ca: 90:b7:14:19:91:7a:c9:91:15:3c:41:b5:a5:df:ca: d2:8d:75:56:a0:d8:5a:01:7d:a6:54:32:a6:18:21: 92:8a:02:d0:00:1d:d6:49:0c:94:42:3c:f8:ca:15: 4d:78:e1:fa:65:c2:d2:4f:8b:c6:58:85:7f:fc:34: 37:80:f3:a3:f6:13:be:58:a3:e4:35:5a:1e:f6:10: 5b:1b:76:61:75:b1:16:e9:36:70:f4:cc:bd:d7:40: 63:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:FF:CD:F7:9B:CC:29:7E:B3:FE:FC:34:CC:33:13:B9:08:F9:1C:DE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140470.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:f340::/32 Signature Algorithm: sha256WithRSAEncryption 77:bc:1b:86:45:72:aa:a3:c6:3e:44:6a:35:b9:20:e5:1d:1a: 8d:8b:24:0a:cb:57:8f:37:55:3a:53:42:c4:b8:c2:ec:9f:21: 91:99:22:77:b2:4d:1b:9e:b0:11:1f:1c:9b:a0:6d:ab:98:9b: 30:bd:d7:eb:b5:8f:c5:95:05:68:a2:5c:03:10:7f:2c:0b:21: 8f:e6:ec:c6:31:a7:c9:8a:cf:6a:ff:2e:58:af:50:cc:ca:d6: 9e:b6:0f:7e:05:21:1c:bb:ad:c5:39:ec:bd:68:7b:10:94:4f: fb:45:a2:59:b9:65:91:4c:79:49:0a:de:e4:3b:0d:50:8c:34: 9b:51:5b:0c:2a:a4:03:3f:0a:9e:1c:67:78:d8:3c:cb:ae:71: 72:68:6b:f2:58:c1:ad:17:a3:2d:18:3c:3a:65:d4:d6:79:27: 5d:b9:a8:cb:47:2f:63:89:86:fb:3f:f9:e8:27:5a:3b:4d:34: 9f:88:82:39:0a:f1:57:a1:d1:a0:fd:a0:cf:b5:f5:b0:33:a5: fa:14:75:f0:be:c0:8e:dc:a5:c6:81:8d:9b:91:37:d2:ed:1e: 44:f9:48:aa:33:7f:a9:ec:e1:b2:cb:ca:d2:8c:e2:29:49:c6: 69:a0:91:93:d6:f1:c9:24:a9:67:2d:4f:c0:2c:e0:44:04:5e: bb:59:4a:70 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUcCEQLOpyr3k52L3eVdRds3l6thwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMTEwNTUwMFoX DTI1MTIxMDExMDAwMFowMzExMC8GA1UEAxMoQ0VGRkNERjc5QkNDMjk3RUIzRkVG QzM0Q0MzMzEzQjkwOEY5MUNERTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAODeuc8CtbXyUUUxrA9b4kRu/KVl/KN/fyUw/6z8ufWeQWW6vrc6nE/WQIjA gAuN8L1j+DXnDjjZZ/86Y9CpDARLTUlFtM+ObLnGWB/VJa1y0WjQ9QKC1VSuLLIp xjXy/gkFtNyiqDmpTSZn60lfMP2L9llJbvMHqpLHnm9+OXm+j/vAsQWOWKVRYOm0 Emvq+H2GQ72XVahKDsfzH/gRLKbw5DPKkLcUGZF6yZEVPEG1pd/K0o11VqDYWgF9 plQyphghkooC0AAd1kkMlEI8+MoVTXjh+mXC0k+LxliFf/w0N4Dzo/YTvlij5DVa HvYQWxt2YXWxFuk2cPTMvddAY88CAwEAAaOCAdEwggHNMB0GA1UdDgQWBBTO/833 m8wpfrP+/DTMMxO5CPkc3jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ3MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQH80AwDQYJKoZIhvcNAQELBQADggEBAHe8G4ZFcqqjxj5EajW5 IOUdGo2LJArLV483VTpTQsS4wuyfIZGZIneyTRuesBEfHJugbauYmzC91+u1j8WV BWiiXAMQfywLIY/m7MYxp8mKz2r/LlivUMzK1p62D34FIRy7rcU57L1oexCUT/tF olm5ZZFMeUkK3uQ7DVCMNJtRWwwqpAM/Cp4cZ3jYPMuucXJoa/JYwa0Xoy0YPDpl 1NZ5J125qMtHL2OJhvs/+egnWjtNNJ+IgjkK8Veh0aD9oM+19bAzpfoUdfC+wI7c pcaBjZuRN9LtHkT5SKozf6ns4bLLytKM4ilJxmmgkZPW8ckkqWctT8As4EQEXrtZ SnA= -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:44 2025 by rpki-client