$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140482.roa File: AS140482.roa (raw, json) Hash identifier: tZzQxa300CU1QzMW0DT5anVJtbVkKeNYhwBW6fEe7FQ= Subject key identifier: AC:58:E0:CB:2A:B4:D6:CC:35:DE:EC:2B:3B:7E:34:A0:89:D6:C3:BC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 59570BEDC0E22AA9DA425CBDA83ED1A386A63739 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140482.roa Signing time: Mon 13 May 2024 06:38:22 +0000 ROA not before: Mon 13 May 2024 06:33:22 +0000 ROA not after: Mon 12 May 2025 06:38:22 +0000 asID: 140482 IP address blocks: 27.112.77.0/24 maxlen: 24 103.22.136.0/22 maxlen: 24 103.152.140.0/23 maxlen: 24 103.231.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:57:0b:ed:c0:e2:2a:a9:da:42:5c:bd:a8:3e:d1:a3:86:a6:37:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 13 06:33:22 2024 GMT Not After : May 12 06:38:22 2025 GMT Subject: CN=AC58E0CB2AB4D6CC35DEEC2B3B7E34A089D6C3BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d0:d6:48:a7:78:aa:de:6b:2e:b5:59:3b:a9: fd:e1:90:7d:4a:ce:ec:40:c1:e1:85:96:5f:18:ba: 64:52:49:10:64:c9:89:9f:cf:81:55:83:6b:a8:6f: 29:b6:89:94:2d:93:a1:de:e0:05:ab:58:12:c9:24: 25:c2:aa:e8:cb:a9:92:63:4a:68:9b:9e:27:4c:d1: 65:42:80:2f:e2:49:e4:f9:d1:50:00:f8:57:76:fe: 51:2a:57:ad:1c:72:73:68:cc:0b:b5:0c:b2:1c:f6: c4:77:0e:21:6b:0e:ee:24:48:87:97:0a:61:a0:13: fe:90:7c:ba:b3:91:fb:71:b5:9a:69:51:76:8b:ce: 27:3f:e9:c8:e3:65:0b:d3:44:d9:23:cc:02:3c:ab: 06:4e:43:8a:62:05:7a:b8:8e:f2:b5:3f:02:7b:a1: 88:58:ff:fa:4d:79:9d:49:40:32:07:be:90:96:eb: 43:63:2d:13:9f:a0:3f:97:31:33:d6:8c:e7:ac:8b: 46:ff:9f:e0:3d:b9:e1:0d:0c:46:1a:43:bb:bd:d1: 44:78:7b:32:91:cf:47:8e:85:27:20:74:a3:82:5d: 40:55:d7:1b:c0:af:c8:3c:00:02:c2:c9:49:45:81: 0f:e8:0b:22:e6:5e:f7:6a:a5:61:2f:83:97:57:cc: 81:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:58:E0:CB:2A:B4:D6:CC:35:DE:EC:2B:3B:7E:34:A0:89:D6:C3:BC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140482.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.77.0/24 103.22.136.0/22 103.152.140.0/23 103.231.171.0/24 Signature Algorithm: sha256WithRSAEncryption 65:fb:ae:21:fb:bd:35:a6:50:12:ca:71:93:59:a1:df:df:63: fc:ed:b6:8c:e5:56:ce:61:23:d7:56:29:9f:14:7e:3e:28:c9: a5:46:62:1d:c8:52:74:e4:01:7d:bd:b0:4d:91:db:cd:60:24: 5a:06:a3:cb:d8:8d:f7:1d:6d:80:b0:ef:10:3f:bc:bd:b9:fe: 05:7d:64:90:6a:3e:90:68:f8:f8:c1:f4:e0:1a:35:78:df:e3: 16:45:79:0d:ce:80:0c:0e:48:ac:b7:6c:2d:ff:8b:b3:95:db: 30:14:dc:8a:0c:bc:7a:ce:ce:1a:85:c4:f2:31:51:80:37:98: 2a:f9:6e:d9:ee:64:a2:40:b4:97:5f:fd:2c:a0:cc:9c:9d:34: a0:c7:e8:e4:ee:68:0d:a6:0e:22:39:ed:c5:45:50:49:30:43: ba:e1:02:70:68:71:80:e8:80:1b:24:dd:db:f1:2a:7d:46:a4: 34:2e:82:cd:c7:65:0b:94:a7:6b:9b:23:c4:ba:a8:ce:9e:01: 9d:fe:89:87:57:9f:87:43:c0:97:81:00:e3:44:e5:fb:a4:25: 4a:4b:2b:e5:75:fd:74:23:c3:d2:06:95:d9:cf:b2:93:0e:aa: 08:bc:32:c0:ce:e0:df:a0:87:a7:c1:83:93:d0:f1:0e:c4:13: a5:06:aa:0e -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgIUWVcL7cDiKqnaQly9qD7Ro4amNzkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUxMzA2MzMyMloX DTI1MDUxMjA2MzgyMlowMzExMC8GA1UEAxMoQUM1OEUwQ0IyQUI0RDZDQzM1REVF QzJCM0I3RTM0QTA4OUQ2QzNCQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANTQ1kineKreay61WTup/eGQfUrO7EDB4YWWXxi6ZFJJEGTJiZ/PgVWDa6hv KbaJlC2Tod7gBatYEskkJcKq6MupkmNKaJueJ0zRZUKAL+JJ5PnRUAD4V3b+USpX rRxyc2jMC7UMshz2xHcOIWsO7iRIh5cKYaAT/pB8urOR+3G1mmlRdovOJz/pyONl C9NE2SPMAjyrBk5DimIFeriO8rU/AnuhiFj/+k15nUlAMge+kJbrQ2MtE5+gP5cx M9aM56yLRv+f4D254Q0MRhpDu73RRHh7MpHPR46FJyB0o4JdQFXXG8CvyDwAAsLJ SUWBD+gLIuZe92qlYS+Dl1fMgW0CAwEAAaOCAeIwggHeMB0GA1UdDgQWBBSsWODL KrTWzDXe7Cs7fjSgidbDvDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ4Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAxBggrBgEFBQcBBwEB/wQiMCAw HgQCAAEwGAMEABtwTQMEAmcWiAMEAWeYjAMEAGfnqzANBgkqhkiG9w0BAQsFAAOC AQEAZfuuIfu9NaZQEspxk1mh399j/O22jOVWzmEj11YpnxR+PijJpUZiHchSdOQB fb2wTZHbzWAkWgajy9iN9x1tgLDvED+8vbn+BX1kkGo+kGj4+MH04Bo1eN/jFkV5 Dc6ADA5IrLdsLf+Ls5XbMBTcigy8es7OGoXE8jFRgDeYKvlu2e5kokC0l1/9LKDM nJ00oMfo5O5oDaYOIjntxUVQSTBDuuECcGhxgOiAGyTd2/EqfUakNC6CzcdlC5Sn a5sjxLqozp4Bnf6Jh1efh0PAl4EA40Tl+6QlSksr5XX9dCPD0gaV2c+ykw6qCLwy wM7g36CHp8GDk9DxDsQTpQaqDg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:24 2024 by rpki-client on console-fra.rpki-client.org