$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139412.roa File: AS139412.roa (raw, json) Hash identifier: 10ddSVkmNGnfkAShB8ZxOAkGtSKjvKiTwruDP7srxY4= Subject key identifier: CB:8B:6C:F9:AE:D7:8F:7F:7B:D7:6F:28:D7:D2:E1:99:04:C8:57:30 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7CCB49039E67EC09A1C7ECB2CDBAF245C262C770 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139412.roa Signing time: Wed 23 Apr 2025 10:00:00 +0000 ROA not before: Wed 23 Apr 2025 09:55:00 +0000 ROA not after: Wed 22 Apr 2026 10:00:00 +0000 asID: 139412 IP address blocks: 103.143.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 17:46:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:cb:49:03:9e:67:ec:09:a1:c7:ec:b2:cd:ba:f2:45:c2:62:c7:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 23 09:55:00 2025 GMT Not After : Apr 22 10:00:00 2026 GMT Subject: CN=CB8B6CF9AED78F7F7BD76F28D7D2E19904C85730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:1e:77:2a:4e:c2:d8:a9:11:29:37:08:61:73: 4c:33:17:d9:c7:40:a0:57:f7:95:cb:94:ce:0e:ea: 91:bd:69:c3:d2:b4:28:a3:66:0a:15:07:09:53:7d: b0:a0:b6:8b:de:af:bb:c1:f2:8b:1d:fb:ee:7f:0e: f2:d8:7e:b6:4e:03:4c:9c:64:b7:08:df:a2:5b:ef: 04:44:3b:1f:16:27:ae:43:ea:bb:ef:cf:4a:b7:86: ae:56:93:84:9b:fc:be:e8:c1:d4:6f:4b:ca:83:1d: 53:5a:5f:8e:8a:35:70:f6:4c:f8:88:b2:1e:87:f3: dc:25:5c:61:62:6b:03:ae:3a:87:b5:ce:e2:cf:1b: 60:d1:ec:cd:2f:72:b7:41:a1:4b:c3:1a:86:65:b5: b9:87:0e:28:c4:46:0b:8f:b2:70:d3:f9:66:ff:28: 72:cb:c7:e7:06:b0:15:59:00:17:72:35:f3:8c:2f: 62:2c:57:6f:07:c5:30:e7:db:21:89:d1:cb:73:7b: 2e:05:84:4c:9f:a2:ba:20:3a:75:83:e5:df:b7:19: c7:90:e4:31:49:90:5b:04:08:b8:99:4d:e7:91:77: ee:15:0a:5a:85:8e:cf:f5:9a:eb:ea:4f:26:56:0f: 25:5a:4a:90:85:85:3f:83:49:78:63:2c:13:c3:93: 96:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:8B:6C:F9:AE:D7:8F:7F:7B:D7:6F:28:D7:D2:E1:99:04:C8:57:30 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139412.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.224.0/23 Signature Algorithm: sha256WithRSAEncryption 71:eb:9a:c1:35:6a:0e:b8:e7:e1:80:2c:21:05:1e:9f:fa:8b: 89:aa:c7:a9:ca:c7:0e:d7:10:24:d8:a4:b7:08:80:9d:40:be: e2:18:ec:a6:48:af:2b:b8:8d:82:b9:97:39:2f:ce:a3:96:6e: 56:f0:23:f5:af:df:64:2d:7c:b4:42:ea:eb:e4:7d:70:d4:83: 1a:a6:ef:a8:66:89:69:35:b1:e5:5e:31:4b:4a:78:5a:a0:8b: c4:8f:a4:d3:49:4f:97:48:f5:53:07:aa:ac:02:11:b1:78:89: f7:ea:b1:59:b0:29:f1:48:fd:82:3d:59:5c:ae:0e:88:58:5e: 8f:a4:ed:26:aa:15:54:b9:4c:df:d3:7c:07:dd:3d:b6:30:d4: 04:0c:c9:56:69:31:99:c6:73:6e:00:ab:99:d8:c2:53:03:07: 2f:67:bd:f3:f5:e7:36:4b:0d:a7:4b:d4:de:90:5f:cd:8f:20: 60:98:69:f9:13:ea:30:1c:8f:66:86:44:35:ea:0a:72:b4:4a: b7:fb:83:1f:6a:63:47:8b:f9:7b:3c:52:90:22:08:4c:7e:e4: 35:2d:32:4e:c7:37:4f:18:73:14:f4:cd:ca:ca:60:64:da:b8: 8e:1a:27:61:33:53:c9:e6:27:fd:58:b5:1d:ac:65:3c:76:61: 93:af:d2:f7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfMtJA55n7Amhx+yyzbryRcJix3AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQyMzA5NTUwMFoX DTI2MDQyMjEwMDAwMFowMzExMC8GA1UEAxMoQ0I4QjZDRjlBRUQ3OEY3RjdCRDc2 RjI4RDdEMkUxOTkwNEM4NTczMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOkedypOwtipESk3CGFzTDMX2cdAoFf3lcuUzg7qkb1pw9K0KKNmChUHCVN9 sKC2i96vu8Hyix377n8O8th+tk4DTJxktwjfolvvBEQ7HxYnrkPqu+/PSreGrlaT hJv8vujB1G9LyoMdU1pfjoo1cPZM+IiyHofz3CVcYWJrA646h7XO4s8bYNHszS9y t0GhS8MahmW1uYcOKMRGC4+ycNP5Zv8ocsvH5wawFVkAF3I184wvYixXbwfFMOfb IYnRy3N7LgWETJ+iuiA6dYPl37cZx5DkMUmQWwQIuJlN55F37hUKWoWOz/Wa6+pP JlYPJVpKkIWFP4NJeGMsE8OTlksCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTLi2z5 rtePf3vXbyjX0uGZBMhXMDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTQxMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeP4DANBgkqhkiG9w0BAQsFAAOCAQEAceuawTVqDrjn4YAsIQUe n/qLiarHqcrHDtcQJNiktwiAnUC+4hjspkivK7iNgrmXOS/Oo5ZuVvAj9a/fZC18 tELq6+R9cNSDGqbvqGaJaTWx5V4xS0p4WqCLxI+k00lPl0j1UweqrAIRsXiJ9+qx WbAp8Uj9gj1ZXK4OiFhej6TtJqoVVLlM39N8B909tjDUBAzJVmkxmcZzbgCrmdjC UwMHL2e98/XnNksNp0vU3pBfzY8gYJhp+RPqMByPZoZENeoKcrRKt/uDH2pjR4v5 ezxSkCIITH7kNS0yTsc3TxhzFPTNyspgZNq4jhonYTNTyeYn/Vi1HaxlPHZhk6/S 9w== -----END CERTIFICATE-----Generated at Wed Apr 30 10:27:42 2025 by rpki-client