$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141674.roa File: AS141674.roa (raw, json) Hash identifier: eX/CkMOveiK3VYgjsCa0I27clMxnfRzjQ+/nlo+7oZ8= Subject key identifier: FE:84:BB:E9:75:6A:47:01:30:F2:22:EA:E6:D7:93:76:D9:F0:14:71 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5C3FFB620BCC922E9F033F23BF1A3684EDCA61B7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141674.roa Signing time: Tue 01 Aug 2023 02:53:21 +0000 ROA not before: Tue 01 Aug 2023 02:48:21 +0000 ROA not after: Tue 30 Jul 2024 02:53:21 +0000 asID: 141674 IP address blocks: 2001:df2:38c0::/48 maxlen: 48 2001:df2:78c0::/48 maxlen: 48 2001:df2:8440::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:3f:fb:62:0b:cc:92:2e:9f:03:3f:23:bf:1a:36:84:ed:ca:61:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 1 02:48:21 2023 GMT Not After : Jul 30 02:53:21 2024 GMT Subject: CN=FE84BBE9756A470130F222EAE6D79376D9F01471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7c:b1:b5:0a:ae:55:22:72:1a:0d:24:1c:dd: e2:a6:16:96:d2:f3:bb:1e:52:b6:21:86:6f:11:d7: 65:93:e8:1e:9a:c6:67:68:ab:56:e6:e7:e4:7f:ed: 88:98:bc:6a:6f:40:b0:7a:92:94:d9:c2:f5:a6:ea: a9:88:4e:16:6f:2c:d7:8a:90:85:c2:8f:3f:f3:ce: 1a:6a:19:2e:0b:75:07:a6:af:52:8e:b6:83:ff:bf: f7:32:df:a0:11:09:29:0d:13:fb:e9:fa:cb:5b:68: 9a:c2:25:ce:b7:44:f5:40:04:bb:de:b4:71:19:d5: 98:bc:ac:76:6b:24:c5:a8:a1:e6:2e:85:31:42:85: 61:76:08:3b:6f:11:db:62:15:80:62:d3:32:99:63: ef:e5:e5:cd:83:48:15:b2:11:7e:8a:2b:1b:84:af: 3f:d9:ab:dd:75:d8:fb:74:af:5f:b6:b5:de:d9:11: 3d:93:c1:c8:68:c5:14:dc:d6:9a:73:2b:46:94:c8: 7b:10:ee:cc:34:b8:c1:af:91:88:b9:ab:ab:65:68: 95:59:c3:f3:2d:13:fc:2d:ab:d5:86:61:a8:69:25: b0:b8:72:70:a0:30:0d:e0:fc:7d:5a:8e:b1:ed:bc: 6b:ed:9e:23:86:5e:06:cd:26:25:ad:08:b2:26:74: a6:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:84:BB:E9:75:6A:47:01:30:F2:22:EA:E6:D7:93:76:D9:F0:14:71 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141674.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:38c0::/48 2001:df2:78c0::/48 2001:df2:8440::/48 Signature Algorithm: sha256WithRSAEncryption 24:cb:22:f6:11:da:2b:78:b4:61:50:f6:1f:ea:f6:3f:11:49: c5:f7:6c:00:df:c9:1d:80:fe:c0:77:22:54:b1:37:b2:d2:28: d9:9c:c5:96:a9:04:4e:3c:ef:20:27:88:9c:7a:3d:03:bc:c6: d3:77:be:9b:a8:b3:8f:b5:57:09:82:18:8d:62:a8:a2:9e:07: 01:84:56:b5:44:ab:69:34:a0:2f:4f:c3:21:f3:08:66:24:c8: 09:2d:a3:ee:72:b1:cd:a4:d4:f0:97:4e:95:2a:89:ab:8d:4c: 47:58:bd:e6:a6:89:fe:3c:eb:55:23:cc:fb:68:5c:4f:b2:d1: 4a:94:68:e5:f7:17:20:89:cc:29:f8:63:23:13:d8:21:4f:5b: 1a:05:e3:de:62:62:80:cd:36:07:e3:56:f6:cb:fb:5b:b1:af: c4:7f:c9:e6:3b:30:66:7f:2b:3c:70:97:36:13:c5:15:bd:31: 6c:8a:7f:23:57:87:c1:d7:20:4a:36:c2:88:0e:9c:39:46:b9: 2c:7e:ae:a6:58:15:d0:4c:bc:c0:a4:9f:04:a2:f4:8d:47:3c: 7f:a1:03:5b:5c:7e:5c:c9:41:9b:c9:b0:b1:4b:9c:59:49:de: 86:ee:17:e6:03:52:ce:2b:36:25:d7:5e:7f:2d:a3:d3:5b:2d: ed:00:5f:41 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUXD/7YgvMki6fAz8jvxo2hO3KYbcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwMTAyNDgyMVoX DTI0MDczMDAyNTMyMVowMzExMC8GA1UEAxMoRkU4NEJCRTk3NTZBNDcwMTMwRjIy MkVBRTZENzkzNzZEOUYwMTQ3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK58sbUKrlUichoNJBzd4qYWltLzux5StiGGbxHXZZPoHprGZ2irVubn5H/t iJi8am9AsHqSlNnC9abqqYhOFm8s14qQhcKPP/POGmoZLgt1B6avUo62g/+/9zLf oBEJKQ0T++n6y1tomsIlzrdE9UAEu960cRnVmLysdmskxaih5i6FMUKFYXYIO28R 22IVgGLTMplj7+XlzYNIFbIRfoorG4SvP9mr3XXY+3SvX7a13tkRPZPByGjFFNzW mnMrRpTIexDuzDS4wa+RiLmrq2VolVnD8y0T/C2r1YZhqGklsLhycKAwDeD8fVqO se28a+2eI4ZeBs0mJa0IsiZ0psUCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBT+hLvp dWpHATDyIurm15N22fAUcTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY3NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw IQQCAAIwGwMHACABDfI4wAMHACABDfJ4wAMHACABDfKEQDANBgkqhkiG9w0BAQsF AAOCAQEAJMsi9hHaK3i0YVD2H+r2PxFJxfdsAN/JHYD+wHciVLE3stIo2ZzFlqkE TjzvICeInHo9A7zG03e+m6izj7VXCYIYjWKoop4HAYRWtUSraTSgL0/DIfMIZiTI CS2j7nKxzaTU8JdOlSqJq41MR1i95qaJ/jzrVSPM+2hcT7LRSpRo5fcXIInMKfhj IxPYIU9bGgXj3mJigM02B+NW9sv7W7GvxH/J5jswZn8rPHCXNhPFFb0xbIp/I1eH wdcgSjbCiA6cOUa5LH6uplgV0Ey8wKSfBKL0jUc8f6EDW1x+XMlBm8mwsUucWUne hu4X5gNSzis2Jddefy2j01st7QBfQQ== -----END CERTIFICATE-----Generated at Wed May 8 17:45:22 2024 by rpki-client on console-ams.rpki-client.org