$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141984.roa File: AS141984.roa (raw, json) Hash identifier: sjd7lQ+RHVyq0dxgmj1I3ke61J01Y0edVHIJPXBl+wo= Subject key identifier: 6D:29:4D:41:DE:D5:51:8F:9E:71:23:78:87:16:2F:5A:72:FD:FB:BB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 59F90DC93D55A101E371959DA7B9E510EB151CCD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141984.roa Signing time: Tue 21 May 2024 08:00:00 +0000 ROA not before: Tue 21 May 2024 07:55:00 +0000 ROA not after: Tue 20 May 2025 08:00:00 +0000 asID: 141984 IP address blocks: 2400:cfa0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:f9:0d:c9:3d:55:a1:01:e3:71:95:9d:a7:b9:e5:10:eb:15:1c:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 21 07:55:00 2024 GMT Not After : May 20 08:00:00 2025 GMT Subject: CN=6D294D41DED5518F9E71237887162F5A72FDFBBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d1:3d:14:5b:2c:4f:31:74:d7:bd:8b:87:a7: 75:ef:4d:49:ae:f6:f2:4c:bf:75:59:fc:9f:49:5c: b5:1a:5e:28:dc:68:77:24:00:3a:24:4c:22:50:73: f0:a5:42:3d:7f:82:78:ab:f0:34:9b:47:c4:21:ee: 84:cd:33:32:7b:fc:bf:91:02:6d:2f:63:0c:0f:52: 3e:43:75:35:ca:f3:b7:7f:dd:5e:75:09:c1:a3:96: 89:d9:93:59:17:f7:2a:11:1e:0a:29:03:8c:be:8e: 42:42:95:a0:95:f4:67:ab:0d:20:b9:b4:22:ee:14: d6:27:fd:f7:6a:7b:8f:a1:8e:80:85:58:83:ad:ea: f3:74:99:35:3e:eb:88:5c:44:1e:76:c9:6f:89:19: 85:39:ba:ed:f4:9a:ed:40:e8:be:24:d4:9d:57:ea: 70:36:00:86:5f:d5:a9:1c:e6:56:e8:bb:74:f5:c2: 18:9a:25:88:b2:32:9c:51:8a:ca:e5:cb:4d:b6:1d: 09:a4:67:a0:35:7d:23:99:9c:96:e8:65:a5:3e:c6: c8:a2:db:43:59:90:ac:16:ec:fc:cf:64:9f:d4:46: 83:0d:e6:44:0e:27:2b:86:01:02:a6:c9:d0:15:4d: 48:a8:ae:64:d6:75:c2:e5:85:d0:04:f0:a9:18:27: b3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:29:4D:41:DE:D5:51:8F:9E:71:23:78:87:16:2F:5A:72:FD:FB:BB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141984.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:cfa0::/32 Signature Algorithm: sha256WithRSAEncryption 71:0a:0a:66:e5:6f:b8:a3:8f:88:ac:13:44:90:5d:d2:fb:0b: 00:a4:a7:02:82:da:c0:58:fa:9b:a5:e3:5c:26:4e:3e:3d:3e: 35:6f:7c:51:de:f4:c8:76:03:33:23:db:5e:4e:e6:59:15:f0: b3:42:91:6e:16:9e:5b:46:47:cc:d4:21:11:ca:56:03:15:a7: e8:8b:73:8b:76:dc:81:43:6f:f4:0c:e8:f5:a6:ca:5e:db:6b: fb:33:c7:a9:d9:04:b3:49:d5:5a:0f:50:bb:6e:fd:fb:97:d2: 10:6f:ba:78:37:d3:87:da:11:c4:81:73:da:c3:6b:6f:73:71: 3b:68:23:02:34:2e:2d:7e:c8:d1:84:0c:b5:85:1a:4c:40:31: 71:d7:7a:f8:8f:b7:ac:7b:88:91:c4:ec:81:f9:84:15:f3:b3: 8d:6e:23:04:d8:d9:e0:d3:f0:13:a6:d2:31:f3:bc:f3:1f:d8: e5:9c:8d:4e:31:a9:09:55:1f:bb:01:3c:b8:c4:ba:ee:f8:db: 5c:63:00:70:a2:b8:92:26:42:1a:8e:87:de:89:2a:7f:6a:cb: 7d:f2:1d:9d:dd:85:32:66:b8:92:47:5b:4a:db:1c:cd:04:3a: c6:36:b4:c2:73:2a:65:1e:8c:cd:30:ae:29:2b:a0:ba:ec:b2: 9a:04:56:0f -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUWfkNyT1VoQHjcZWdp7nlEOsVHM0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUyMTA3NTUwMFoX DTI1MDUyMDA4MDAwMFowMzExMC8GA1UEAxMoNkQyOTRENDFERUQ1NTE4RjlFNzEy Mzc4ODcxNjJGNUE3MkZERkJCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjRPRRbLE8xdNe9i4ende9NSa728ky/dVn8n0lctRpeKNxodyQAOiRMIlBz 8KVCPX+CeKvwNJtHxCHuhM0zMnv8v5ECbS9jDA9SPkN1Ncrzt3/dXnUJwaOWidmT WRf3KhEeCikDjL6OQkKVoJX0Z6sNILm0Iu4U1if992p7j6GOgIVYg63q83SZNT7r iFxEHnbJb4kZhTm67fSa7UDoviTUnVfqcDYAhl/VqRzmVui7dPXCGJoliLIynFGK yuXLTbYdCaRnoDV9I5mcluhlpT7GyKLbQ1mQrBbs/M9kn9RGgw3mRA4nK4YBAqbJ 0BVNSKiuZNZ1wuWF0ATwqRgns+kCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBRtKU1B 3tVRj55xI3iHFi9acv37uzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQAz6AwDQYJKoZIhvcNAQELBQADggEBAHEKCmblb7ijj4isE0SQ XdL7CwCkpwKC2sBY+pul41wmTj49PjVvfFHe9Mh2AzMj215O5lkV8LNCkW4WnltG R8zUIRHKVgMVp+iLc4t23IFDb/QM6PWmyl7ba/szx6nZBLNJ1VoPULtu/fuX0hBv ung304faEcSBc9rDa29zcTtoIwI0Li1+yNGEDLWFGkxAMXHXeviPt6x7iJHE7IH5 hBXzs41uIwTY2eDT8BOm0jHzvPMf2OWcjU4xqQlVH7sBPLjEuu7421xjAHCiuJIm QhqOh96JKn9qy33yHZ3dhTJmuJJHW0rbHM0EOsY2tMJzKmUejM0wrikroLrsspoE Vg8= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:25 2024 by rpki-client on console-fra.rpki-client.org