$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140479.roa File: AS140479.roa (raw, json) Hash identifier: S7/XeAlsN77zj2vvsq1aYYFu3gr+ayrhZ6fnQqUc+uA= Subject key identifier: F0:09:48:65:50:0A:6A:A6:96:70:1B:BF:76:07:D5:F3:C5:A8:93:A8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5730B62A630C7D087BB146E8D8BAE0F01AB43F17 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140479.roa Signing time: Fri 13 Sep 2024 09:00:00 +0000 ROA not before: Fri 13 Sep 2024 08:55:00 +0000 ROA not after: Fri 12 Sep 2025 09:00:00 +0000 asID: 140479 IP address blocks: 103.154.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:30:b6:2a:63:0c:7d:08:7b:b1:46:e8:d8:ba:e0:f0:1a:b4:3f:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 13 08:55:00 2024 GMT Not After : Sep 12 09:00:00 2025 GMT Subject: CN=F0094865500A6AA696701BBF7607D5F3C5A893A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:46:e4:51:07:a3:1b:c3:90:bb:9a:9d:30:41: 80:1b:66:c2:48:60:f4:7a:8e:99:31:3f:13:14:e8: cc:f7:f3:72:1c:5e:20:c7:d6:3f:bf:1a:e3:4f:7d: d0:55:f4:ff:79:a7:be:a5:3b:a5:be:7a:50:f1:ea: 6a:bd:7e:50:c7:92:e8:b2:92:2e:af:e8:9e:96:5c: 29:a5:1c:b6:b4:c5:c6:9b:65:b2:69:80:06:f6:6f: 96:c5:94:d5:ca:d0:34:25:8e:90:89:1a:ee:cc:8c: c1:a0:4f:23:64:68:ce:78:b1:d4:ce:11:a7:d9:3b: 64:d9:5d:71:2c:c7:4e:44:6f:c0:2f:84:90:8a:a2: e5:45:ed:c7:90:5b:8f:04:cd:ce:95:76:58:96:48: 21:c6:a4:f3:51:51:de:3b:89:a4:ce:82:73:c6:07: 1c:fa:37:ea:2b:43:44:5b:1c:74:a6:36:85:86:55: c3:33:b5:be:be:09:a5:e5:74:24:7f:f2:45:21:1a: 1f:fc:8c:52:7e:57:05:49:51:f7:06:ec:9e:70:4b: 56:0f:70:6f:68:7c:a4:26:3e:c1:75:d3:64:5e:8d: 4f:63:b6:3b:a5:1e:8e:e2:57:7e:60:2f:36:6c:75: 21:8a:52:9a:46:bb:e2:e4:56:bb:ad:6a:f6:f6:5d: 05:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:09:48:65:50:0A:6A:A6:96:70:1B:BF:76:07:D5:F3:C5:A8:93:A8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140479.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.52.0/23 Signature Algorithm: sha256WithRSAEncryption 28:1b:5e:ca:91:b7:53:ab:f3:cb:d4:f7:f5:c6:c4:6d:e5:e6: ae:06:8d:ec:4e:c5:c1:2e:f4:cd:cf:6e:d2:dc:b7:73:8f:64: c5:54:f6:06:70:04:bb:24:0d:51:4e:32:15:5e:57:6c:b5:ba: 1a:9f:74:ca:c4:ca:da:33:5f:13:6d:ac:bc:76:47:76:25:21: 6d:6d:35:aa:ee:e5:c3:89:08:62:17:0e:a6:dc:31:90:50:1a: 98:98:1f:1c:c1:e8:f1:b4:7e:86:64:5b:87:f5:b5:6f:5c:64: e4:fc:c9:6f:13:4d:b7:c7:a2:6c:98:ae:db:df:a3:2a:45:b2: de:1d:ff:6a:25:62:ef:38:ad:be:14:2d:52:86:58:3e:87:68: c2:33:a5:bd:b8:15:e9:72:31:b5:82:af:47:a6:15:b5:eb:22: 85:d0:b4:ee:09:15:b0:01:53:d9:aa:db:62:5d:61:1e:92:46: 1a:21:c1:25:c7:9d:01:e6:f4:2c:fb:bb:f8:ee:12:d6:58:69: 99:26:33:18:02:46:a0:03:06:97:00:79:d0:2c:bf:f6:78:8a: 96:fe:b5:83:e3:79:c9:5d:bb:2a:fa:7f:56:90:e3:31:7e:41: d8:90:88:a1:43:54:68:4e:f3:cf:76:28:37:7b:05:66:60:cc: b9:85:e3:40 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVzC2KmMMfQh7sUbo2Lrg8Bq0PxcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxMzA4NTUwMFoX DTI1MDkxMjA5MDAwMFowMzExMC8GA1UEAxMoRjAwOTQ4NjU1MDBBNkFBNjk2NzAx QkJGNzYwN0Q1RjNDNUE4OTNBODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL1G5FEHoxvDkLuanTBBgBtmwkhg9HqOmTE/ExTozPfzchxeIMfWP78a4099 0FX0/3mnvqU7pb56UPHqar1+UMeS6LKSLq/onpZcKaUctrTFxptlsmmABvZvlsWU 1crQNCWOkIka7syMwaBPI2Roznix1M4Rp9k7ZNldcSzHTkRvwC+EkIqi5UXtx5Bb jwTNzpV2WJZIIcak81FR3juJpM6Cc8YHHPo36itDRFscdKY2hYZVwzO1vr4JpeV0 JH/yRSEaH/yMUn5XBUlR9wbsnnBLVg9wb2h8pCY+wXXTZF6NT2O2O6UejuJXfmAv Nmx1IYpSmka74uRWu61q9vZdBSUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTwCUhl UApqppZwG792B9XzxaiTqDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeaNDANBgkqhkiG9w0BAQsFAAOCAQEAKBteypG3U6vzy9T39cbE beXmrgaN7E7FwS70zc9u0ty3c49kxVT2BnAEuyQNUU4yFV5XbLW6Gp90ysTK2jNf E22svHZHdiUhbW01qu7lw4kIYhcOptwxkFAamJgfHMHo8bR+hmRbh/W1b1xk5PzJ bxNNt8eibJiu29+jKkWy3h3/aiVi7zitvhQtUoZYPodowjOlvbgV6XIxtYKvR6YV tesihdC07gkVsAFT2arbYl1hHpJGGiHBJcedAeb0LPu7+O4S1lhpmSYzGAJGoAMG lwB50Cy/9niKlv61g+N5yV27Kvp/VpDjMX5B2JCIoUNUaE7zz3YoN3sFZmDMuYXj QA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:27 2024 by rpki-client on console-ams.rpki-client.org