$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142347.roa File: AS142347.roa (raw, json) Hash identifier: sBwww/ABjoCFJfjKYyOFv2CR/Le23HwJ1AXHPlK51vg= Subject key identifier: E2:D3:32:57:19:69:9C:4A:B9:B6:27:B6:AC:4A:F3:9C:6C:BC:21:09 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 034A5774F4ACFF29DB1ECFDE11DC34309E523D57 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142347.roa Signing time: Thu 15 May 2025 10:12:00 +0000 ROA not before: Thu 15 May 2025 10:07:00 +0000 ROA not after: Thu 14 May 2026 10:12:00 +0000 asID: 142347 IP address blocks: 160.25.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 01:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:4a:57:74:f4:ac:ff:29:db:1e:cf:de:11:dc:34:30:9e:52:3d:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 15 10:07:00 2025 GMT Not After : May 14 10:12:00 2026 GMT Subject: CN=E2D3325719699C4AB9B627B6AC4AF39C6CBC2109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d6:fa:0b:9e:58:68:8e:93:dd:2e:07:be:f9: 90:39:35:81:ac:d9:19:01:a1:a6:7f:3b:f7:85:33: fd:44:e4:1b:7e:75:a2:41:49:dc:bd:43:91:b9:4b: 66:c4:e8:0f:27:77:04:c8:bb:bf:9e:9f:70:c3:ed: 00:6b:0d:2a:cf:c6:b5:87:55:e4:56:fc:7e:70:59: 92:eb:b0:92:db:63:ce:f6:6f:24:ea:8f:02:f9:1c: 7c:1e:2d:e9:9e:87:76:9e:b9:d8:a8:92:49:a2:bf: 2b:31:81:67:fd:ed:81:66:dc:59:56:a9:0c:fd:b7: 3e:f3:70:ad:bf:13:e1:22:6c:67:7e:b7:b1:cf:6a: c2:f5:ac:66:cf:7c:55:0d:a3:39:fc:6d:5f:ac:e5: 9f:67:0b:d5:ba:14:16:50:6e:55:ec:d5:e2:67:6e: 4e:fb:fb:db:63:61:79:32:c9:4d:c6:0d:b2:53:ef: f5:4b:ed:d9:71:81:56:7a:c9:39:5f:55:d2:8a:3c: 3f:1d:3c:cd:34:94:30:b0:2b:10:09:c3:89:b8:10: e0:c8:98:7e:0b:38:47:b7:c0:d2:2f:10:78:0e:ec: 85:47:31:20:f1:75:f2:42:5d:6c:71:cd:41:e2:4c: 3f:9a:d8:b4:2f:2f:c9:cc:7c:c9:dd:5f:0b:e1:c3: 0a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:D3:32:57:19:69:9C:4A:B9:B6:27:B6:AC:4A:F3:9C:6C:BC:21:09 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142347.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.242.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:6e:ea:e5:ff:49:b0:34:3f:be:ee:7d:b4:d0:07:81:f6:31: 8d:10:0c:6a:de:a1:42:f9:89:d5:4d:d4:83:da:c4:c1:64:5a: 4b:29:b8:24:7b:d3:5d:5f:35:c4:a8:6d:72:9c:0a:2f:a7:b1: 36:aa:40:c7:42:4b:dc:ce:2c:72:2b:87:4b:77:ea:46:84:a9: 45:df:18:88:a5:a1:13:46:fc:9c:65:9b:11:29:a6:c0:d8:24: 21:e1:32:fc:14:66:71:f5:99:98:7b:35:7f:06:e8:3c:c8:4c: ad:eb:2b:79:e8:d4:4e:10:ad:7a:8f:1e:3b:1b:97:bb:0c:2a: 13:3f:39:72:ea:6c:19:67:74:81:a9:cc:cf:ff:74:36:3c:44: ce:96:2b:10:7d:99:07:18:d3:d0:4f:5d:a6:4d:64:17:9f:2c: bb:66:ba:7d:ef:fd:60:78:da:c1:e8:31:c8:53:a6:5b:4f:67: 31:83:af:58:96:54:35:e6:e2:74:72:58:ed:17:b7:b9:7a:b4: b9:12:eb:9a:46:e9:08:46:d8:d2:fe:9c:72:80:ab:d8:bf:2d: ce:d7:ed:c4:15:4f:6e:9e:e8:b7:ee:02:a2:84:85:e9:70:f9: 66:26:f3:35:55:b9:fc:f6:9c:61:90:61:b4:9b:46:cc:09:05: 8c:57:b3:1f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUA0pXdPSs/ynbHs/eEdw0MJ5SPVcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDUxNTEwMDcwMFoX DTI2MDUxNDEwMTIwMFowMzExMC8GA1UEAxMoRTJEMzMyNTcxOTY5OUM0QUI5QjYy N0I2QUM0QUYzOUM2Q0JDMjEwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMTW+gueWGiOk90uB775kDk1gazZGQGhpn8794Uz/UTkG351okFJ3L1DkblL ZsToDyd3BMi7v56fcMPtAGsNKs/GtYdV5Fb8fnBZkuuwkttjzvZvJOqPAvkcfB4t 6Z6Hdp652KiSSaK/KzGBZ/3tgWbcWVapDP23PvNwrb8T4SJsZ363sc9qwvWsZs98 VQ2jOfxtX6zln2cL1boUFlBuVezV4mduTvv722NheTLJTcYNslPv9Uvt2XGBVnrJ OV9V0oo8Px08zTSUMLArEAnDibgQ4MiYfgs4R7fA0i8QeA7shUcxIPF18kJdbHHN QeJMP5rYtC8vycx8yd1fC+HDCp8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTi0zJX GWmcSrm2J7asSvOcbLwhCTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0MjM0Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaAZ8jANBgkqhkiG9w0BAQsFAAOCAQEAP27q5f9JsDQ/vu59tNAH gfYxjRAMat6hQvmJ1U3Ug9rEwWRaSym4JHvTXV81xKhtcpwKL6exNqpAx0JL3M4s ciuHS3fqRoSpRd8YiKWhE0b8nGWbESmmwNgkIeEy/BRmcfWZmHs1fwboPMhMresr eejUThCteo8eOxuXuwwqEz85cupsGWd0ganMz/90NjxEzpYrEH2ZBxjT0E9dpk1k F58su2a6fe/9YHjawegxyFOmW09nMYOvWJZUNebidHJY7Re3uXq0uRLrmkbpCEbY 0v6ccoCr2L8tztftxBVPbp7ot+4CooSF6XD5ZibzNVW5/PacYZBhtJtGzAkFjFez Hw== -----END CERTIFICATE-----Generated at Fri Jun 6 04:57:52 2025 by rpki-client