$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140470.roa File: AS140470.roa (raw, json) Hash identifier: eK4yFbmV1BBkZIT2eOmGlEeHMeXQe6j07i98r3FsPaw= Subject key identifier: 01:14:B5:2C:3B:3A:0E:C5:CA:2C:1D:B6:55:FE:A4:4C:5E:AC:EF:4C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 75ADFAA90ABCD5B05406E6E140DCCB8671C46728 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140470.roa Signing time: Wed 10 Jan 2024 11:00:00 +0000 ROA not before: Wed 10 Jan 2024 10:55:00 +0000 ROA not after: Wed 08 Jan 2025 11:00:00 +0000 asID: 140470 IP address blocks: 2407:f340::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ad:fa:a9:0a:bc:d5:b0:54:06:e6:e1:40:dc:cb:86:71:c4:67:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 10 10:55:00 2024 GMT Not After : Jan 8 11:00:00 2025 GMT Subject: CN=0114B52C3B3A0EC5CA2C1DB655FEA44C5EACEF4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f4:12:89:e0:04:9b:77:22:75:a4:ae:28:6e: b4:cd:44:11:b6:10:25:bc:8b:b9:2b:1a:07:03:fa: 71:6b:01:51:92:bb:50:7e:67:8a:67:0c:8c:91:34: 7f:5e:01:09:29:fa:da:f5:1a:5a:b6:57:f4:d1:3d: 2c:38:0a:71:38:14:fe:b4:9b:2b:3b:d1:eb:70:ec: 16:79:1f:0e:28:e7:03:17:66:02:30:d2:0f:6a:7e: 8b:55:e9:be:c8:14:81:94:34:c2:c5:ab:e2:5c:7c: 8b:2f:c6:b3:92:d7:e1:d6:b3:bf:87:ac:55:a2:9d: bb:df:fc:e3:7e:c9:1b:6e:5f:ef:34:dc:76:ca:41: 42:2f:1b:92:61:4c:b3:49:ac:96:11:63:1f:9e:07: a2:f6:08:a9:ad:3e:64:3d:79:9f:2c:9a:16:44:8c: 68:29:9b:b0:06:b7:87:f5:d7:fa:03:1e:a1:13:4e: fa:a1:12:1f:54:ea:19:6a:17:5d:fc:66:5c:30:50: 73:28:3a:7e:c3:05:59:31:6b:04:82:de:02:fc:1a: bd:46:25:34:59:c7:4c:74:73:1a:04:51:9a:f1:1c: de:1f:b1:ec:49:1b:c4:c0:45:08:b7:21:56:22:f3: 9a:b9:05:d8:75:dd:0a:fc:45:99:f0:6f:df:f1:7b: 15:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:14:B5:2C:3B:3A:0E:C5:CA:2C:1D:B6:55:FE:A4:4C:5E:AC:EF:4C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140470.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:f340::/32 Signature Algorithm: sha256WithRSAEncryption 17:b0:c1:e2:33:e1:6a:4a:02:43:56:39:33:db:6b:17:42:94: ac:fe:16:6a:7c:f7:cc:6a:0b:dc:03:df:d2:fe:9a:68:96:0c: ca:8a:03:6b:33:3b:3a:cb:56:d8:76:e2:aa:e4:38:18:7b:a1: 27:bb:44:78:39:08:63:60:62:fe:b0:8f:b6:a1:80:5e:c9:91: 64:ad:f4:67:73:b4:f0:67:c4:61:43:90:62:fe:e2:ed:cd:9c: 03:d0:f0:3d:e6:66:a8:cb:bc:77:0a:68:e0:a5:74:b5:2c:8d: 35:27:ac:14:5a:e9:fb:b0:a4:ed:2c:7b:d5:5d:a6:a2:df:a8: a6:9b:e2:9f:59:75:56:3e:ea:a3:f5:1d:f5:67:5d:34:5e:24: ef:8f:3c:de:27:6f:1a:35:d9:23:f2:e4:b0:d8:70:94:6e:cc: 19:17:3c:38:cb:2e:e9:56:38:8d:0c:e8:ea:e5:c6:0f:79:22: 11:02:a2:70:57:e3:05:75:0e:78:26:53:64:73:10:26:f1:80: db:44:6f:ff:d4:7e:38:bc:53:07:00:c4:2b:f3:a5:c0:82:de: 78:d0:27:66:5e:9a:8f:08:3c:55:57:c3:88:0e:51:28:83:06: db:75:cf:54:59:db:56:fb:09:31:e4:ed:cd:46:74:cd:dc:5d: 25:b0:79:fa -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUda36qQq81bBUBubhQNzLhnHEZygwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExMDEwNTUwMFoX DTI1MDEwODExMDAwMFowMzExMC8GA1UEAxMoMDExNEI1MkMzQjNBMEVDNUNBMkMx REI2NTVGRUE0NEM1RUFDRUY0QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM70EongBJt3InWkrihutM1EEbYQJbyLuSsaBwP6cWsBUZK7UH5nimcMjJE0 f14BCSn62vUaWrZX9NE9LDgKcTgU/rSbKzvR63DsFnkfDijnAxdmAjDSD2p+i1Xp vsgUgZQ0wsWr4lx8iy/Gs5LX4dazv4esVaKdu9/8437JG25f7zTcdspBQi8bkmFM s0mslhFjH54HovYIqa0+ZD15nyyaFkSMaCmbsAa3h/XX+gMeoRNO+qESH1TqGWoX XfxmXDBQcyg6fsMFWTFrBILeAvwavUYlNFnHTHRzGgRRmvEc3h+x7EkbxMBFCLch ViLzmrkF2HXdCvxFmfBv3/F7FYkCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBQBFLUs OzoOxcosHbZV/qRMXqzvTDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ3MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQH80AwDQYJKoZIhvcNAQELBQADggEBABewweIz4WpKAkNWOTPb axdClKz+Fmp898xqC9wD39L+mmiWDMqKA2szOzrLVth24qrkOBh7oSe7RHg5CGNg Yv6wj7ahgF7JkWSt9GdztPBnxGFDkGL+4u3NnAPQ8D3mZqjLvHcKaOCldLUsjTUn rBRa6fuwpO0se9VdpqLfqKab4p9ZdVY+6qP1HfVnXTReJO+PPN4nbxo12SPy5LDY cJRuzBkXPDjLLulWOI0M6Orlxg95IhEConBX4wV1DngmU2RzECbxgNtEb//Ufji8 UwcAxCvzpcCC3njQJ2Zemo8IPFVXw4gOUSiDBtt1z1RZ21b7CTHk7c1GdM3cXSWw efo= -----END CERTIFICATE-----Generated at Wed May 8 17:45:22 2024 by rpki-client on console-ams.rpki-client.org