$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140479.roa File: AS140479.roa (raw, json) Hash identifier: dlmL7lPqlDQlmzQT4lVyJYdPzJHbcMuek4QcOg3CaWI= Subject key identifier: 41:E9:8F:EE:4A:BB:A7:BA:DA:DE:AA:E6:8A:A8:5F:34:B5:48:88:57 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 62A30AC682A2436A570C260CB53E8CAE4C4B55B6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140479.roa Signing time: Fri 13 Oct 2023 09:00:00 +0000 ROA not before: Fri 13 Oct 2023 08:55:00 +0000 ROA not after: Fri 11 Oct 2024 09:00:00 +0000 asID: 140479 IP address blocks: 103.154.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:a3:0a:c6:82:a2:43:6a:57:0c:26:0c:b5:3e:8c:ae:4c:4b:55:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 13 08:55:00 2023 GMT Not After : Oct 11 09:00:00 2024 GMT Subject: CN=41E98FEE4ABBA7BADADEAAE68AA85F34B5488857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:76:3a:f4:c7:e0:93:d1:c4:50:0f:ec:3f:65: b6:39:55:09:e2:b3:f4:a4:9a:1c:49:be:ba:b4:9c: b2:7b:07:fc:b7:63:6d:08:14:df:77:ea:82:9b:00: bc:01:35:31:a6:3f:db:48:8c:fe:5b:a1:8b:11:29: 42:a4:2d:de:d7:b7:ae:eb:d0:1a:86:cf:44:13:e0: d9:7d:08:96:81:12:1d:85:6f:eb:57:76:16:2a:98: c0:5b:ce:80:ef:bc:fb:a7:c5:97:da:0a:9f:b9:4a: d3:99:71:2f:23:d1:ad:84:af:17:aa:87:3e:83:88: 20:1b:a2:fe:5b:68:47:b5:95:92:f8:4b:96:d6:84: 10:81:03:de:ab:5b:9b:a3:63:a0:c6:74:2c:d2:68: fa:9c:ab:b7:b6:d0:b3:62:ae:ab:6b:39:20:c6:b9: 14:69:5c:ea:63:71:bc:e1:13:ce:22:5c:6a:3a:66: 56:1f:2e:35:37:66:1f:a6:72:17:fb:e6:cc:57:e3: a9:67:27:13:ff:24:ec:70:a8:a1:6e:f7:d9:3c:61: 68:bf:eb:4d:1b:aa:45:95:85:ae:ba:46:41:2b:c3: 98:cd:47:5e:c3:00:10:5c:ba:39:af:a6:d2:33:1d: 65:ab:96:54:93:2b:c9:d2:36:f9:b7:74:27:12:e9: b6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E9:8F:EE:4A:BB:A7:BA:DA:DE:AA:E6:8A:A8:5F:34:B5:48:88:57 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140479.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.52.0/23 Signature Algorithm: sha256WithRSAEncryption 65:15:0a:62:32:a7:72:97:47:39:97:cf:21:5f:80:46:b0:d1: 5e:47:82:e8:55:46:08:61:1e:5e:81:c7:7c:70:41:d3:1f:1c: 9e:28:b5:2d:b4:7c:76:15:ca:40:17:c9:76:3d:99:5a:b3:93: e1:e3:ce:26:44:41:7d:48:5d:90:9b:22:a3:d0:0a:6c:84:12: fa:71:73:09:ce:51:7c:cf:43:3f:c8:7c:b1:de:5d:df:d9:92: 44:0b:05:e5:4d:65:a5:9b:5e:34:3c:f9:5c:e8:c9:3e:39:a5: ce:22:b9:36:c6:b6:a5:71:b4:e5:f2:27:7a:20:d7:a0:56:c9: 26:65:99:c3:58:03:cf:50:f8:5a:28:36:19:73:44:d8:8f:a1: c3:ab:2e:54:20:a9:6c:49:b4:14:a8:bb:0f:1b:0c:e0:dc:8a: fe:6a:30:5d:fe:b2:42:ee:0d:05:47:bd:e6:7d:29:a0:41:1a: f4:a5:45:2d:0f:d4:37:a5:8f:50:a7:e6:66:de:5a:a2:e6:bb: 9e:d5:52:92:c3:e8:9e:11:c6:e3:51:ef:9a:ae:62:e6:18:56: 17:7c:fa:74:d0:a5:ee:f3:ac:bd:61:f7:96:51:7a:2a:93:b6: 9f:cd:e8:00:53:92:7a:fb:7e:d0:50:21:6a:bb:32:69:69:96: 77:10:35:f7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYqMKxoKiQ2pXDCYMtT6MrkxLVbYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxMzA4NTUwMFoX DTI0MTAxMTA5MDAwMFowMzExMC8GA1UEAxMoNDFFOThGRUU0QUJCQTdCQURBREVB QUU2OEFBODVGMzRCNTQ4ODg1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOd2OvTH4JPRxFAP7D9ltjlVCeKz9KSaHEm+urScsnsH/LdjbQgU33fqgpsA vAE1MaY/20iM/luhixEpQqQt3te3ruvQGobPRBPg2X0IloESHYVv61d2FiqYwFvO gO+8+6fFl9oKn7lK05lxLyPRrYSvF6qHPoOIIBui/ltoR7WVkvhLltaEEIED3qtb m6NjoMZ0LNJo+pyrt7bQs2Kuq2s5IMa5FGlc6mNxvOETziJcajpmVh8uNTdmH6Zy F/vmzFfjqWcnE/8k7HCooW732TxhaL/rTRuqRZWFrrpGQSvDmM1HXsMAEFy6Oa+m 0jMdZauWVJMrydI2+bd0JxLptiECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRB6Y/u SrunutrequaKqF80tUiIVzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeaNDANBgkqhkiG9w0BAQsFAAOCAQEAZRUKYjKncpdHOZfPIV+A RrDRXkeC6FVGCGEeXoHHfHBB0x8cnii1LbR8dhXKQBfJdj2ZWrOT4ePOJkRBfUhd kJsio9AKbIQS+nFzCc5RfM9DP8h8sd5d39mSRAsF5U1lpZteNDz5XOjJPjmlziK5 Nsa2pXG05fIneiDXoFbJJmWZw1gDz1D4Wig2GXNE2I+hw6suVCCpbEm0FKi7DxsM 4NyK/mowXf6yQu4NBUe95n0poEEa9KVFLQ/UN6WPUKfmZt5aoua7ntVSksPonhHG 41Hvmq5i5hhWF3z6dNCl7vOsvWH3llF6KpO2n83oAFOSevt+0FAharsyaWmWdxA1 9w== -----END CERTIFICATE-----Generated at Wed May 8 04:37:56 2024 by rpki-client on console-fra.rpki-client.org