$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140482.roa File: AS140482.roa (raw, json) Hash identifier: aaullGl0UCbYoCiaml4ZIbvF+flkbgn7D69YxG21hR0= Subject key identifier: A1:78:32:02:5D:4D:BC:AD:46:5B:4A:28:25:9D:31:87:4E:03:16:E3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3C5CF664BD16C9BD53B4931534B02DB3E2B061FE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140482.roa Signing time: Tue 09 Jan 2024 03:00:00 +0000 ROA not before: Tue 09 Jan 2024 02:55:00 +0000 ROA not after: Tue 07 Jan 2025 03:00:00 +0000 asID: 140482 IP address blocks: 27.112.77.0/24 maxlen: 24 103.152.140.0/23 maxlen: 24 103.231.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 00:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:5c:f6:64:bd:16:c9:bd:53:b4:93:15:34:b0:2d:b3:e2:b0:61:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 02:55:00 2024 GMT Not After : Jan 7 03:00:00 2025 GMT Subject: CN=A17832025D4DBCAD465B4A28259D31874E0316E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:69:30:f8:bd:67:bd:89:8c:12:e3:18:41:a6: 27:dd:26:e8:3d:71:d3:7c:85:c9:e7:e3:28:b2:fd: c9:02:ad:23:8f:1f:55:43:87:07:1d:15:eb:28:f9: 98:67:86:93:a0:a8:a4:32:c5:fa:03:2e:1f:30:6d: 2d:6d:0d:54:f4:c0:d4:3a:5f:c6:c3:15:19:3b:0f: 9e:98:bb:d8:6a:87:88:50:a7:4c:7b:e8:3c:e7:29: 52:60:df:90:a3:6f:09:d4:66:1d:87:f3:f2:3b:1b: 9f:a6:96:bf:eb:4a:ca:9b:f6:0e:1b:e4:84:25:5b: 69:17:b0:c9:ed:aa:26:94:e5:de:da:50:de:c2:c8: b0:f3:20:25:97:82:cb:5c:9c:cb:cd:7e:aa:37:7b: eb:dd:88:89:c2:da:a0:ed:d7:fe:ad:3e:59:e1:e9: 85:c2:d1:6e:01:7a:7a:ed:c3:9e:8c:92:7a:47:50: d4:4a:28:f3:7d:90:fb:0d:bf:60:86:89:c6:a0:3d: 7e:07:50:05:c1:f3:4d:80:83:d0:c1:8c:cf:94:30: ce:1a:a8:ef:3d:b0:18:45:96:b3:6d:57:38:c9:37: 63:3a:7f:4c:74:e3:e9:a0:e7:ce:35:c7:6c:ee:32: ac:e4:47:af:ca:fe:45:ca:d9:ad:7c:ef:f4:f5:bb: cb:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:78:32:02:5D:4D:BC:AD:46:5B:4A:28:25:9D:31:87:4E:03:16:E3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140482.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.77.0/24 103.152.140.0/23 103.231.171.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:f0:57:a1:cb:0f:65:64:8e:9f:e1:4c:e5:80:fd:fb:60:d8: 7f:92:2d:51:bb:43:11:e8:0c:32:73:75:d0:f1:0d:5a:04:42: 7b:6c:fe:92:4f:44:64:ba:97:12:7e:7a:31:05:83:fa:33:79: df:3a:f2:a3:d5:37:48:91:ea:9f:18:d0:a7:57:a1:ba:6a:c2: 5a:54:5f:cc:19:a9:12:50:bc:fe:07:ac:0f:d7:14:69:44:17: 27:f2:fe:d7:6c:e5:fb:2b:88:00:64:4b:de:42:4f:c2:3e:f8: 50:58:a4:6f:db:33:43:88:ee:6e:82:8e:d4:fc:bc:02:81:ee: 01:3c:1b:ee:95:67:39:f1:3e:95:e4:78:7a:30:25:e2:c0:ae: de:de:fe:5f:f7:66:e8:76:67:57:2c:b5:d4:28:ee:39:bb:31: 06:f8:5a:e4:c8:ad:e1:26:1e:3b:94:d7:5c:2f:aa:85:42:44: 63:66:b2:24:bd:7a:51:5d:08:f0:9c:bc:e1:dc:dd:bd:b7:94: e1:2f:b5:b6:b4:61:20:b2:3f:59:56:a7:77:d5:b7:ac:40:14: d5:1b:97:96:e1:ee:0f:f8:1b:d8:35:83:63:24:e6:f6:8b:8c: fa:2b:d8:b5:6e:cb:4a:58:1e:13:a7:70:09:53:4f:ed:c8:ae: c8:54:fa:0c -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUPFz2ZL0Wyb1TtJMVNLAts+KwYf4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAyNTUwMFoX DTI1MDEwNzAzMDAwMFowMzExMC8GA1UEAxMoQTE3ODMyMDI1RDREQkNBRDQ2NUI0 QTI4MjU5RDMxODc0RTAzMTZFMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL5pMPi9Z72JjBLjGEGmJ90m6D1x03yFyefjKLL9yQKtI48fVUOHBx0V6yj5 mGeGk6CopDLF+gMuHzBtLW0NVPTA1DpfxsMVGTsPnpi72GqHiFCnTHvoPOcpUmDf kKNvCdRmHYfz8jsbn6aWv+tKypv2DhvkhCVbaRewye2qJpTl3tpQ3sLIsPMgJZeC y1ycy81+qjd7692IicLaoO3X/q0+WeHphcLRbgF6eu3DnoySekdQ1Eoo832Q+w2/ YIaJxqA9fgdQBcHzTYCD0MGMz5Qwzhqo7z2wGEWWs21XOMk3Yzp/THTj6aDnzjXH bO4yrORHr8r+RcrZrXzv9PW7yzUCAwEAAaOCAdwwggHYMB0GA1UdDgQWBBSheDIC XU28rUZbSiglnTGHTgMW4zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ4Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEABtwTQMEAWeYjAMEAGfnqzANBgkqhkiG9w0BAQsFAAOCAQEAb/BX ocsPZWSOn+FM5YD9+2DYf5ItUbtDEegMMnN10PENWgRCe2z+kk9EZLqXEn56MQWD +jN53zryo9U3SJHqnxjQp1ehumrCWlRfzBmpElC8/gesD9cUaUQXJ/L+12zl+yuI AGRL3kJPwj74UFikb9szQ4juboKO1Py8AoHuATwb7pVnOfE+leR4ejAl4sCu3t7+ X/dm6HZnVyy11CjuObsxBvha5Mit4SYeO5TXXC+qhUJEY2ayJL16UV0I8Jy84dzd vbeU4S+1trRhILI/WVand9W3rEAU1RuXluHuD/gb2DWDYyTm9ouM+ivYtW7LSlge E6dwCVNP7ciuyFT6DA== -----END CERTIFICATE-----Generated at Thu May 2 14:31:38 2024 by rpki-client on console-fra.rpki-client.org