$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141613.roa File: AS141613.roa (raw, json) Hash identifier: FYh+yGdu1qCV/xAFcHT20tA3BEF0FHkk5YdlgThw0bI= Subject key identifier: 89:89:F1:30:67:53:A2:78:AF:02:C4:4C:28:92:BD:A6:FB:8E:F7:E4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 202741FF89211038D2DDF14A7DE5FCFD05877FCA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141613.roa Signing time: Wed 15 Nov 2023 07:00:00 +0000 ROA not before: Wed 15 Nov 2023 06:55:00 +0000 ROA not after: Wed 13 Nov 2024 07:00:00 +0000 asID: 141613 IP address blocks: 2001:df1:9d40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:27:41:ff:89:21:10:38:d2:dd:f1:4a:7d:e5:fc:fd:05:87:7f:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 15 06:55:00 2023 GMT Not After : Nov 13 07:00:00 2024 GMT Subject: CN=8989F1306753A278AF02C44C2892BDA6FB8EF7E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8b:15:3d:12:b6:6c:43:a4:00:24:95:7b:93: 70:89:dd:0e:ba:11:b5:3e:d3:37:60:8d:7b:65:57: 5a:d2:13:4f:b0:c4:07:d2:0a:05:3a:1a:02:ac:6b: 30:b1:47:a6:05:95:b8:1e:d3:5f:24:7b:ce:b1:a4: 66:e9:00:1b:13:0d:ec:34:49:2c:52:29:dc:49:4e: c6:71:93:69:16:5e:25:bd:2d:fd:84:0b:52:41:99: b6:6e:90:e2:66:b8:2d:99:55:46:12:12:20:0e:74: 54:a6:a8:a2:fb:ad:95:77:a7:ea:35:bb:ac:57:a0: 6a:c6:14:56:d3:30:c7:c1:48:38:77:be:56:75:05: b2:32:14:30:eb:eb:e9:e1:25:f4:06:46:f2:b6:01: 63:51:4e:a7:38:c8:4b:3a:3d:00:a3:25:f0:19:b9: e2:13:e5:77:2d:31:28:7e:ad:d2:d7:3c:de:35:04: 75:01:dd:40:bc:ab:ab:49:b1:9f:12:1e:65:90:3b: 0f:a9:1d:02:3b:8d:5f:31:cf:e1:af:35:e9:1d:a6: 05:ad:ed:d8:62:78:01:4b:6f:77:3e:f7:cf:cc:0a: 10:23:39:d7:48:11:93:da:3d:86:b8:7a:7c:5c:4c: 27:ba:3d:b7:d7:a7:ff:24:28:66:84:f6:5c:52:1e: 81:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:89:F1:30:67:53:A2:78:AF:02:C4:4C:28:92:BD:A6:FB:8E:F7:E4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141613.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:9d40::/48 Signature Algorithm: sha256WithRSAEncryption 9b:47:d4:1e:a0:a8:64:5b:48:5b:24:24:65:c4:d6:1f:42:b6: 22:42:69:64:65:7b:1a:9b:e5:bb:d9:ff:65:4d:6a:b3:af:9a: c4:a4:e1:c9:24:9b:f7:2d:a7:86:89:4f:6f:cd:f4:f3:e3:87: 80:a8:5d:2a:23:2a:c1:9d:e3:c4:22:94:2d:ca:bd:e6:00:99: 0a:81:d4:c3:3b:7c:62:42:03:a7:f4:69:18:72:68:fa:4b:07: ce:7d:a7:c0:42:9f:a6:f7:57:ad:55:b1:2b:37:65:bf:5c:ae: 1b:99:04:64:54:eb:8a:6c:25:cf:c5:67:f1:51:59:f0:a2:3c: 6b:3d:b3:6f:3c:56:12:24:48:88:a7:5c:89:2f:a0:57:a4:bd: ae:1b:bb:bf:ba:15:db:6a:03:9d:2c:aa:80:12:7d:1e:4e:3f: 67:ce:66:19:60:21:40:89:63:01:ad:54:c7:2b:77:0a:b0:e0: d9:76:3a:6e:63:e6:c2:04:c5:72:0e:81:71:b9:84:0f:c3:f6: e8:34:d5:e6:de:a4:2a:5c:27:35:72:a2:86:70:37:71:fc:f9: 55:cf:83:b8:93:fd:e5:d9:53:d5:e9:1d:6b:55:28:e4:ab:03: f6:e0:fa:6a:0e:e4:b8:7b:6d:da:75:4e:78:41:ee:a1:bb:78: 93:f3:5e:3b -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUICdB/4khEDjS3fFKfeX8/QWHf8owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNTA2NTUwMFoX DTI0MTExMzA3MDAwMFowMzExMC8GA1UEAxMoODk4OUYxMzA2NzUzQTI3OEFGMDJD NDRDMjg5MkJEQTZGQjhFRjdFNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWLFT0StmxDpAAklXuTcIndDroRtT7TN2CNe2VXWtITT7DEB9IKBToaAqxr MLFHpgWVuB7TXyR7zrGkZukAGxMN7DRJLFIp3ElOxnGTaRZeJb0t/YQLUkGZtm6Q 4ma4LZlVRhISIA50VKaoovutlXen6jW7rFegasYUVtMwx8FIOHe+VnUFsjIUMOvr 6eEl9AZG8rYBY1FOpzjISzo9AKMl8Bm54hPldy0xKH6t0tc83jUEdQHdQLyrq0mx nxIeZZA7D6kdAjuNXzHP4a816R2mBa3t2GJ4AUtvdz73z8wKECM510gRk9o9hrh6 fFxMJ7o9t9en/yQoZoT2XFIegS0CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSJifEw Z1OieK8CxEwokr2m+4735DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTYxMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfGdQDANBgkqhkiG9w0BAQsFAAOCAQEAm0fUHqCoZFtIWyQk ZcTWH0K2IkJpZGV7Gpvlu9n/ZU1qs6+axKThySSb9y2nholPb8308+OHgKhdKiMq wZ3jxCKULcq95gCZCoHUwzt8YkIDp/RpGHJo+ksHzn2nwEKfpvdXrVWxKzdlv1yu G5kEZFTrimwlz8Vn8VFZ8KI8az2zbzxWEiRIiKdciS+gV6S9rhu7v7oV22oDnSyq gBJ9Hk4/Z85mGWAhQIljAa1Uxyt3CrDg2XY6bmPmwgTFcg6BcbmED8P26DTV5t6k KlwnNXKihnA3cfz5Vc+DuJP95dlT1ekda1Uo5KsD9uD6ag7kuHtt2nVOeEHuobt4 k/NeOw== -----END CERTIFICATE-----Generated at Thu May 9 00:37:06 2024 by rpki-client on console-fra.rpki-client.org