$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141674.roa File: AS141674.roa (raw, json) Hash identifier: 4qPuMs9Z3xju6fIUCEU5dNGh7jE4mIszQDcanudV038= Subject key identifier: 56:57:A6:72:18:CB:1F:23:3B:5F:4B:26:BF:91:44:5E:97:E1:E8:97 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 63451E23ABEFC72A69C3BFBF59A34597DC5551E4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141674.roa Signing time: Tue 02 Jul 2024 03:00:00 +0000 ROA not before: Tue 02 Jul 2024 02:55:00 +0000 ROA not after: Tue 01 Jul 2025 03:00:00 +0000 asID: 141674 IP address blocks: 2001:df2:38c0::/48 maxlen: 48 2001:df2:78c0::/48 maxlen: 48 2001:df2:8440::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:45:1e:23:ab:ef:c7:2a:69:c3:bf:bf:59:a3:45:97:dc:55:51:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 2 02:55:00 2024 GMT Not After : Jul 1 03:00:00 2025 GMT Subject: CN=5657A67218CB1F233B5F4B26BF91445E97E1E897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:74:98:29:f0:2b:96:a9:17:c7:1c:2b:ee:c6: f2:b3:1c:a4:99:19:37:e1:7a:73:aa:de:79:56:10: 43:94:4e:d3:91:f2:01:6b:78:cf:98:83:53:72:b6: 56:38:9f:2f:40:df:8d:61:72:83:c9:b7:17:0f:f1: df:08:fa:dd:99:af:14:a1:c6:bf:22:ae:01:9c:b4: 27:98:12:83:bb:bb:af:9a:6c:4f:75:06:55:34:e2: 31:dd:47:c9:d9:7c:4c:72:31:5e:ff:52:44:a0:df: 0f:c3:a2:e3:04:d5:64:6f:c4:92:44:93:22:2a:62: ff:15:b5:ac:35:59:70:0c:98:fc:40:ad:46:17:c0: 4b:7c:c2:cd:93:1c:b1:e3:c7:2a:d8:06:15:73:b4: 7b:fd:35:d0:9c:fb:59:cd:d6:d0:06:35:1e:2e:cd: c7:44:09:c6:a7:bd:2a:ec:cc:c9:4f:d4:79:84:1d: 61:06:73:fa:57:25:f6:0f:64:0c:0c:03:a1:ad:ad: 31:a6:de:4a:4b:9a:67:13:37:2d:ad:53:ef:aa:c4: aa:80:bc:52:63:d6:27:5d:f5:c7:6d:7c:63:74:e2: 33:49:17:12:cb:74:d4:d7:87:00:dd:54:87:33:84: f2:f5:79:94:bc:30:cf:46:5c:76:d6:40:7f:bf:9f: 29:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:57:A6:72:18:CB:1F:23:3B:5F:4B:26:BF:91:44:5E:97:E1:E8:97 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141674.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:38c0::/48 2001:df2:78c0::/48 2001:df2:8440::/48 Signature Algorithm: sha256WithRSAEncryption 9a:f3:db:43:7a:f4:c8:d3:78:a2:b1:d4:3d:e4:4d:ff:75:68: 2f:50:65:1f:5e:0f:0b:73:aa:ac:d0:45:ac:17:80:90:59:69: 1a:0d:71:da:77:90:d6:33:fc:b4:84:71:31:7d:46:a2:e0:98: 9c:d5:95:f2:25:3e:6c:ce:b8:f3:1e:46:f7:f5:39:ae:12:4b: c7:c5:76:a3:be:5d:02:03:10:54:a0:91:f9:c9:60:5c:ec:46: a9:23:70:98:42:f7:36:2f:31:73:66:96:0a:d1:2a:48:12:8e: 7b:f2:cb:9c:7c:14:b0:05:30:8d:67:cf:3c:7f:24:db:8e:07: 33:67:d3:50:82:14:10:f9:52:c6:55:c4:35:89:61:9c:af:0e: 9e:36:aa:ff:24:50:a3:e9:e1:df:4f:d9:e7:f2:2c:2f:97:90: 8f:c2:99:f3:1c:0c:8d:fd:62:d5:0d:2b:5c:3a:12:01:86:54: 89:39:f6:2d:6e:0c:a4:36:cc:f1:b0:89:6b:87:99:6d:e6:4b: ad:a9:30:39:aa:23:fb:68:eb:87:19:52:b4:7d:3c:90:7b:76: 08:46:cd:95:c0:fc:7f:8e:f9:34:ca:29:09:0d:33:ed:62:81: 27:33:d9:b3:03:ed:84:88:73:67:5b:d4:d8:70:7d:00:a5:f2: 08:12:8f:f9 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUY0UeI6vvxyppw7+/WaNFl9xVUeQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMjAyNTUwMFoX DTI1MDcwMTAzMDAwMFowMzExMC8GA1UEAxMoNTY1N0E2NzIxOENCMUYyMzNCNUY0 QjI2QkY5MTQ0NUU5N0UxRTg5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALV0mCnwK5apF8ccK+7G8rMcpJkZN+F6c6reeVYQQ5RO05HyAWt4z5iDU3K2 VjifL0DfjWFyg8m3Fw/x3wj63ZmvFKHGvyKuAZy0J5gSg7u7r5psT3UGVTTiMd1H ydl8THIxXv9SRKDfD8Oi4wTVZG/EkkSTIipi/xW1rDVZcAyY/ECtRhfAS3zCzZMc sePHKtgGFXO0e/010Jz7Wc3W0AY1Hi7Nx0QJxqe9KuzMyU/UeYQdYQZz+lcl9g9k DAwDoa2tMabeSkuaZxM3La1T76rEqoC8UmPWJ131x218Y3TiM0kXEst01NeHAN1U hzOE8vV5lLwwz0ZcdtZAf7+fKUkCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBRWV6Zy GMsfIztfSya/kURel+HolzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY3NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw IQQCAAIwGwMHACABDfI4wAMHACABDfJ4wAMHACABDfKEQDANBgkqhkiG9w0BAQsF AAOCAQEAmvPbQ3r0yNN4orHUPeRN/3VoL1BlH14PC3OqrNBFrBeAkFlpGg1x2neQ 1jP8tIRxMX1GouCYnNWV8iU+bM648x5G9/U5rhJLx8V2o75dAgMQVKCR+clgXOxG qSNwmEL3Ni8xc2aWCtEqSBKOe/LLnHwUsAUwjWfPPH8k244HM2fTUIIUEPlSxlXE NYlhnK8Onjaq/yRQo+nh30/Z5/IsL5eQj8KZ8xwMjf1i1Q0rXDoSAYZUiTn2LW4M pDbM8bCJa4eZbeZLrakwOaoj+2jrhxlStH08kHt2CEbNlcD8f475NMopCQ0z7WKB JzPZswPthIhzZ1vU2HB9AKXyCBKP+Q== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:55 2024 by rpki-client on console-fra.rpki-client.org