$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141966.roa File: AS141966.roa (raw, json) Hash identifier: yFavw4zT1LpowoN7uF9JNt2BOyJdYygm7rOEAL5C+yA= Subject key identifier: 2F:54:F0:6A:09:13:BD:C5:C3:DE:E5:1C:8F:33:C1:F3:F4:83:91:9E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3BB3C580C1265DDDDFE2E2ABA35CB51CAE9DBF56 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141966.roa Signing time: Mon 30 Oct 2023 05:00:00 +0000 ROA not before: Mon 30 Oct 2023 04:55:00 +0000 ROA not after: Mon 28 Oct 2024 05:00:00 +0000 asID: 141966 IP address blocks: 2001:df6:a380::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:b3:c5:80:c1:26:5d:dd:df:e2:e2:ab:a3:5c:b5:1c:ae:9d:bf:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 30 04:55:00 2023 GMT Not After : Oct 28 05:00:00 2024 GMT Subject: CN=2F54F06A0913BDC5C3DEE51C8F33C1F3F483919E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f2:66:72:67:98:01:f7:fe:c0:c4:c3:2b:5c: 28:e3:51:4c:08:11:08:5f:74:30:f3:84:6a:7f:a2: 5b:ae:c6:af:4b:74:2f:4c:f5:8a:ef:fd:1f:8f:3d: 95:03:af:1d:5c:4f:3b:fc:25:63:7a:d6:49:1b:90: e6:38:58:f0:23:81:07:e0:e2:78:82:42:54:33:2a: a3:8a:59:67:02:21:eb:77:7d:d2:87:f4:a9:6c:06: 4a:ce:b3:b9:3d:ba:5a:ff:9d:ae:98:3c:f5:ce:e7: f2:d7:2b:e6:18:4f:c0:6b:83:38:52:03:3c:9d:51: a0:60:2e:20:2d:9b:04:e4:05:22:89:f9:41:97:cf: 8c:11:3b:f8:fe:41:22:58:73:8e:62:80:15:cf:9f: 27:f3:51:cb:71:bb:2c:b8:b6:cd:79:3c:01:7d:7e: 18:87:7f:e3:12:5c:0f:bd:9e:09:3d:f1:38:41:71: 28:3b:46:51:9d:45:6a:15:f0:f5:8b:e2:fa:6a:6c: 2a:7c:05:9a:76:33:4e:0b:c4:d5:bd:b7:b5:bf:3f: 30:6c:ca:93:32:93:a1:fe:fd:1c:0a:f5:3f:f6:ea: 62:b1:ed:4d:59:f2:dc:81:d5:00:2b:1c:5a:0d:c7: 6b:2b:d8:ee:7f:16:1e:22:ae:a8:7d:3d:59:da:2f: 11:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:54:F0:6A:09:13:BD:C5:C3:DE:E5:1C:8F:33:C1:F3:F4:83:91:9E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141966.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:a380::/48 Signature Algorithm: sha256WithRSAEncryption 3e:29:a3:1d:cf:b8:1d:3f:31:7d:f4:60:0a:84:17:0d:c7:b2: ff:c8:eb:ed:e4:1b:9b:b6:c7:ad:5e:50:38:6b:ea:0f:e3:fe: e1:b6:52:c1:de:a2:4f:a2:48:58:2c:b4:96:ba:d0:39:3c:3a: 74:af:2f:a1:f1:37:05:d8:d9:1b:10:d2:d0:32:55:79:93:95: 49:d7:cd:47:bb:16:f0:fe:66:4a:71:cc:ff:85:89:29:72:81: 5c:c7:8c:a6:34:ec:f8:2d:36:6b:c3:be:c5:99:34:b9:5b:bd: 15:db:ef:01:d3:6e:53:81:1c:2a:db:73:fe:46:91:bf:5f:1c: 7a:93:e7:47:15:da:6c:b2:42:2f:74:e4:7a:72:77:84:e5:da: 02:9e:ed:71:68:6a:47:38:54:b6:94:91:52:fd:83:6f:83:ad: 90:08:f9:7f:22:d9:59:d5:e1:03:ac:64:7a:3d:7a:c9:41:62: cf:03:dd:6d:7c:ae:68:ef:e4:e5:20:b5:15:b1:8f:88:eb:3f: 21:56:01:c2:67:59:3c:c3:0a:3f:b9:47:79:26:0d:59:e0:e6: 09:3c:e7:c1:30:92:1f:ff:8a:4e:66:ca:9f:91:9d:0f:90:09: dc:af:e3:3b:72:8f:f9:19:41:bc:69:78:7a:47:59:49:7f:70: 7b:15:fa:bf -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUO7PFgMEmXd3f4uKro1y1HK6dv1YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAzMDA0NTUwMFoX DTI0MTAyODA1MDAwMFowMzExMC8GA1UEAxMoMkY1NEYwNkEwOTEzQkRDNUMzREVF NTFDOEYzM0MxRjNGNDgzOTE5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALvyZnJnmAH3/sDEwytcKONRTAgRCF90MPOEan+iW67Gr0t0L0z1iu/9H489 lQOvHVxPO/wlY3rWSRuQ5jhY8COBB+DieIJCVDMqo4pZZwIh63d90of0qWwGSs6z uT26Wv+drpg89c7n8tcr5hhPwGuDOFIDPJ1RoGAuIC2bBOQFIon5QZfPjBE7+P5B IlhzjmKAFc+fJ/NRy3G7LLi2zXk8AX1+GId/4xJcD72eCT3xOEFxKDtGUZ1FahXw 9Yvi+mpsKnwFmnYzTgvE1b23tb8/MGzKkzKTof79HAr1P/bqYrHtTVny3IHVACsc Wg3HayvY7n8WHiKuqH09WdovEZECAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQvVPBq CRO9xcPe5RyPM8Hz9IORnjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfajgDANBgkqhkiG9w0BAQsFAAOCAQEAPimjHc+4HT8xffRg CoQXDcey/8jr7eQbm7bHrV5QOGvqD+P+4bZSwd6iT6JIWCy0lrrQOTw6dK8vofE3 BdjZGxDS0DJVeZOVSdfNR7sW8P5mSnHM/4WJKXKBXMeMpjTs+C02a8O+xZk0uVu9 FdvvAdNuU4EcKttz/kaRv18cepPnRxXabLJCL3TkenJ3hOXaAp7tcWhqRzhUtpSR Uv2Db4OtkAj5fyLZWdXhA6xkej16yUFizwPdbXyuaO/k5SC1FbGPiOs/IVYBwmdZ PMMKP7lHeSYNWeDmCTznwTCSH/+KTmbKn5GdD5AJ3K/jO3KP+RlBvGl4ekdZSX9w exX6vw== -----END CERTIFICATE-----Generated at Wed May 8 17:45:22 2024 by rpki-client on console-ams.rpki-client.org