$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141984.roa File: AS141984.roa (raw, json) Hash identifier: kAJxcfpVgL7/lMoDLevynaMU3ayfEbnjW7iCmGvju/o= Subject key identifier: DF:FF:B9:F6:D6:66:60:55:80:11:3B:69:2F:52:9C:92:A2:8C:54:32 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4CBB165E728793DF1544325487B44EA8CBBBD11B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141984.roa Signing time: Tue 20 Jun 2023 07:58:46 +0000 ROA not before: Tue 20 Jun 2023 07:53:46 +0000 ROA not after: Tue 18 Jun 2024 07:58:46 +0000 asID: 141984 IP address blocks: 2400:cfa0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:bb:16:5e:72:87:93:df:15:44:32:54:87:b4:4e:a8:cb:bb:d1:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 20 07:53:46 2023 GMT Not After : Jun 18 07:58:46 2024 GMT Subject: CN=DFFFB9F6D666605580113B692F529C92A28C5432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:94:5a:f2:a7:f8:03:e2:86:36:b7:bf:bd:bd: ad:bf:36:a8:05:30:a1:32:25:cf:29:5c:0f:d1:35: 3e:50:a4:5d:00:82:be:47:2d:3a:58:0b:6a:54:8f: d6:99:6c:a5:f3:68:48:5b:59:d8:9f:dc:12:82:c1: b1:d2:a4:2c:a0:cf:c5:97:b9:c7:52:2c:3a:fa:bb: fb:75:d5:d5:46:3a:4d:78:90:ca:b4:99:49:f9:9a: 99:83:e2:57:34:c0:8e:ae:4f:ac:c6:44:53:2c:98: b0:80:e8:cc:e4:fb:29:27:f6:69:0f:ab:70:bc:c3: 8e:6c:36:5b:4c:45:8b:f6:22:90:6e:30:12:9e:c1: cf:b9:e3:27:33:59:e2:dd:e2:8f:6f:a2:02:f9:e4: ac:12:55:f0:5a:69:ec:98:16:6c:71:89:e1:16:f2: 4f:f8:ac:05:1c:8f:5a:7e:d2:90:d1:b3:a7:48:3b: 5a:7b:2a:a7:66:81:b2:9e:5f:9e:42:71:88:0d:fa: ae:20:1b:d6:c9:42:d6:4f:72:66:70:ae:fb:ac:ca: 11:0b:b3:9b:c6:7a:1e:67:c6:c2:5e:7c:b8:e9:b3: f3:90:c6:7e:cf:42:ac:73:9c:fb:6c:24:b2:06:d3: a6:4d:8f:4a:0b:5d:0e:dc:a5:cd:cc:d4:a5:ec:30: 5c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:FF:B9:F6:D6:66:60:55:80:11:3B:69:2F:52:9C:92:A2:8C:54:32 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141984.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:cfa0::/32 Signature Algorithm: sha256WithRSAEncryption 4f:75:c2:d7:85:39:6d:08:53:00:c2:d0:75:e7:97:19:c7:2c: 36:e7:4e:2c:dc:29:26:82:55:e0:0f:72:46:dc:33:5c:02:3b: cb:01:d6:20:fb:0d:84:59:60:ff:d9:1d:05:f5:f0:a6:c5:94: f2:ee:57:e5:bf:4e:03:83:33:b2:a1:e9:5a:40:aa:cd:a4:95: 97:14:a7:fb:87:ae:ce:fe:ae:8a:59:9d:fc:71:15:3e:b1:a9: 33:38:23:43:09:bd:f5:91:6a:af:89:df:03:04:52:9c:68:a9: de:8f:13:63:a6:33:f7:d3:0f:55:41:35:16:4b:70:af:14:3d: e5:28:e6:25:00:ad:41:f4:eb:a9:d2:6f:43:51:3b:fb:af:78: 22:9f:86:b3:e4:4d:f5:69:f6:1c:d2:0b:65:d9:6f:68:f1:b8: 85:e6:84:52:69:d0:58:13:35:df:9c:aa:f2:bf:35:4e:a1:5d: 37:29:a6:d8:d1:ff:78:1b:0d:56:48:e0:43:34:8b:d3:83:a6: 26:97:1d:0e:9c:cb:9d:28:d0:6d:90:f2:a5:20:99:f2:36:22: bb:30:c9:68:1d:fa:b2:bb:da:6d:4a:cf:67:60:06:99:e0:52: 98:55:3d:49:b5:1a:83:1d:18:26:35:c6:c6:9a:fe:5e:78:ee: 82:ab:8a:74 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUTLsWXnKHk98VRDJUh7ROqMu70RswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYyMDA3NTM0NloX DTI0MDYxODA3NTg0NlowMzExMC8GA1UEAxMoREZGRkI5RjZENjY2NjA1NTgwMTEz QjY5MkY1MjlDOTJBMjhDNTQzMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGUWvKn+APihja3v729rb82qAUwoTIlzylcD9E1PlCkXQCCvkctOlgLalSP 1plspfNoSFtZ2J/cEoLBsdKkLKDPxZe5x1IsOvq7+3XV1UY6TXiQyrSZSfmamYPi VzTAjq5PrMZEUyyYsIDozOT7KSf2aQ+rcLzDjmw2W0xFi/YikG4wEp7Bz7njJzNZ 4t3ij2+iAvnkrBJV8Fpp7JgWbHGJ4RbyT/isBRyPWn7SkNGzp0g7Wnsqp2aBsp5f nkJxiA36riAb1slC1k9yZnCu+6zKEQuzm8Z6HmfGwl58uOmz85DGfs9CrHOc+2wk sgbTpk2PSgtdDtylzczUpewwXOcCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBTf/7n2 1mZgVYARO2kvUpySooxUMjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQAz6AwDQYJKoZIhvcNAQELBQADggEBAE91wteFOW0IUwDC0HXn lxnHLDbnTizcKSaCVeAPckbcM1wCO8sB1iD7DYRZYP/ZHQX18KbFlPLuV+W/TgOD M7Kh6VpAqs2klZcUp/uHrs7+ropZnfxxFT6xqTM4I0MJvfWRaq+J3wMEUpxoqd6P E2OmM/fTD1VBNRZLcK8UPeUo5iUArUH066nSb0NRO/uveCKfhrPkTfVp9hzSC2XZ b2jxuIXmhFJp0FgTNd+cqvK/NU6hXTcpptjR/3gbDVZI4EM0i9ODpiaXHQ6cy50o 0G2Q8qUgmfI2IrswyWgd+rK72m1Kz2dgBpngUphVPUm1GoMdGCY1xsaa/l547oKr inQ= -----END CERTIFICATE-----Generated at Wed May 8 17:45:22 2024 by rpki-client on console-ams.rpki-client.org