$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141966.roa File: AS141966.roa (raw, json) Hash identifier: pSOMveaVF0TTP22kc+4Uc5NmSYbJwbFdCCBgm4VOKOQ= Subject key identifier: F7:A2:6A:16:EB:4D:81:C4:EB:24:04:40:30:DD:15:B3:99:6C:07:A6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 083718E12F3AE966E8AE46DD7135B8A6E9A4154E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141966.roa Signing time: Mon 30 Sep 2024 05:00:00 +0000 ROA not before: Mon 30 Sep 2024 04:55:00 +0000 ROA not after: Mon 29 Sep 2025 05:00:00 +0000 asID: 141966 IP address blocks: 2001:df6:a380::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:37:18:e1:2f:3a:e9:66:e8:ae:46:dd:71:35:b8:a6:e9:a4:15:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 30 04:55:00 2024 GMT Not After : Sep 29 05:00:00 2025 GMT Subject: CN=F7A26A16EB4D81C4EB24044030DD15B3996C07A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:54:b3:2d:50:ad:85:21:31:d0:5a:82:08:7c: 79:2f:53:78:06:76:6a:d1:e3:6d:c4:41:48:34:e7: a1:cb:6e:52:5d:11:78:f4:21:d7:2d:93:b4:55:a5: 28:aa:52:38:db:61:3a:c6:91:38:de:49:46:d1:93: fd:c3:f1:d4:9a:2a:e1:af:25:6b:04:0c:91:66:de: 94:3f:14:39:18:02:20:c0:74:28:7b:18:1d:f2:bb: ff:82:72:fa:94:91:8a:98:22:8d:d3:43:7f:7a:6f: 36:c6:52:98:cb:5d:10:34:d3:62:37:7e:8e:15:da: 56:a5:d0:80:d6:de:08:77:16:54:2f:74:46:3a:69: 08:c4:cd:40:13:6a:57:ed:ac:01:67:1f:0e:33:bc: f3:6a:ad:3d:90:b2:be:30:d7:d7:2f:65:f1:42:6f: 06:b1:d6:e7:5e:d8:1c:53:70:19:e2:d2:21:85:14: 8c:ff:5f:e8:48:5e:52:91:4a:8d:0d:b5:d2:31:11: 52:1e:3b:25:73:d4:70:fc:01:93:db:ac:d9:6f:c1: 62:d8:8e:8b:6f:ef:c0:1d:be:ce:0a:c9:28:22:d5: a8:6b:5f:37:8d:36:c5:0e:7a:ab:6b:7f:41:7d:ef: 89:2a:0f:d0:4c:73:ee:c1:84:20:4c:c9:82:df:e5: 8f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A2:6A:16:EB:4D:81:C4:EB:24:04:40:30:DD:15:B3:99:6C:07:A6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141966.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:a380::/48 Signature Algorithm: sha256WithRSAEncryption 10:56:d7:2f:2f:9e:5d:ee:9a:7f:4e:b8:cf:d9:25:05:81:e1: 18:b8:0b:ef:71:69:62:88:da:bc:94:f2:b8:63:b8:71:fe:c4: 89:dc:20:e5:f7:06:96:ec:db:b6:09:ba:10:82:b8:0e:a8:29: 39:f6:3a:a3:3e:dd:28:85:30:74:8a:25:55:85:db:8d:27:86: e0:4e:a3:55:e9:61:69:d8:87:e3:be:c9:05:93:77:f6:e6:1a: ec:a2:f8:ac:20:be:08:c9:3c:17:d5:a8:69:fd:df:a4:46:f6: c0:fa:89:83:34:76:a7:4a:7d:ff:65:e4:23:0b:f6:51:1b:74: 58:4e:1b:3e:89:a1:f9:d2:1e:c2:a4:00:18:de:a3:b2:bf:ba: fb:25:cd:74:fb:51:3b:03:fb:73:82:0c:bc:dc:54:83:a6:35: 00:98:63:0d:33:69:ce:2e:91:aa:b8:9a:27:33:db:2f:94:ba: 0c:e9:af:bb:38:cc:63:25:e0:bf:c2:38:bb:d5:69:1a:d1:f0: 33:90:a7:1f:e3:05:e0:bd:6d:3b:40:c7:e7:13:a7:76:2e:b2: 64:2e:10:a3:b5:14:57:3c:51:ee:cc:70:ef:c0:6d:a9:6d:ef: 3d:92:5d:83:0d:09:32:75:c8:dc:20:cb:f2:09:c1:18:14:3a: d3:1d:45:d0 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUCDcY4S866WborkbdcTW4pumkFU4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkzMDA0NTUwMFoX DTI1MDkyOTA1MDAwMFowMzExMC8GA1UEAxMoRjdBMjZBMTZFQjREODFDNEVCMjQw NDQwMzBERDE1QjM5OTZDMDdBNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK9Usy1QrYUhMdBaggh8eS9TeAZ2atHjbcRBSDTnoctuUl0RePQh1y2TtFWl KKpSONthOsaRON5JRtGT/cPx1Joq4a8lawQMkWbelD8UORgCIMB0KHsYHfK7/4Jy +pSRipgijdNDf3pvNsZSmMtdEDTTYjd+jhXaVqXQgNbeCHcWVC90RjppCMTNQBNq V+2sAWcfDjO882qtPZCyvjDX1y9l8UJvBrHW517YHFNwGeLSIYUUjP9f6EheUpFK jQ210jERUh47JXPUcPwBk9us2W/BYtiOi2/vwB2+zgrJKCLVqGtfN402xQ56q2t/ QX3viSoP0Exz7sGEIEzJgt/lj70CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBT3omoW 602BxOskBEAw3RWzmWwHpjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfajgDANBgkqhkiG9w0BAQsFAAOCAQEAEFbXLy+eXe6af064 z9klBYHhGLgL73FpYojavJTyuGO4cf7Eidwg5fcGluzbtgm6EIK4DqgpOfY6oz7d KIUwdIolVYXbjSeG4E6jVelhadiH477JBZN39uYa7KL4rCC+CMk8F9Woaf3fpEb2 wPqJgzR2p0p9/2XkIwv2URt0WE4bPomh+dIewqQAGN6jsr+6+yXNdPtROwP7c4IM vNxUg6Y1AJhjDTNpzi6RqriaJzPbL5S6DOmvuzjMYyXgv8I4u9VpGtHwM5CnH+MF 4L1tO0DH5xOndi6yZC4Qo7UUVzxR7sxw78BtqW3vPZJdgw0JMnXI3CDL8gnBGBQ6 0x1F0A== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:55 2024 by rpki-client on console-fra.rpki-client.org