$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142311.roa File: AS142311.roa (raw, json) Hash identifier: otTFAcsdGa4QTDxDF1xTmDTjoPBzUiaoKOazR28GgbM= Subject key identifier: 6C:D4:0E:F3:E9:8A:82:5E:01:67:6A:DB:94:AA:A4:AE:2A:3A:A8:02 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 23B3605AD879B4C914E13E64000447938F8D4601 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142311.roa Signing time: Tue 09 Jan 2024 04:00:23 +0000 ROA not before: Tue 09 Jan 2024 03:55:23 +0000 ROA not after: Tue 07 Jan 2025 04:00:23 +0000 asID: 142311 IP address blocks: 103.168.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:b3:60:5a:d8:79:b4:c9:14:e1:3e:64:00:04:47:93:8f:8d:46:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:23 2024 GMT Not After : Jan 7 04:00:23 2025 GMT Subject: CN=6CD40EF3E98A825E01676ADB94AAA4AE2A3AA802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e6:3b:c7:20:f6:92:af:89:6f:81:a3:54:2c: b4:f6:09:00:9c:c7:9a:35:b0:e3:ea:a2:eb:c9:80: a6:46:90:61:06:f3:03:a2:96:83:5f:c7:32:b4:f3: 2a:7e:35:91:fd:f3:6e:2d:e4:e8:49:e1:99:8f:e7: 5d:25:6f:3a:7e:16:ed:68:bf:df:6c:08:34:35:04: 2f:53:15:e2:06:17:4c:b8:15:a0:04:fe:0f:65:62: 53:58:49:05:a6:f9:f0:12:b3:03:e5:ae:e3:e6:63: 86:cf:59:df:16:04:0d:2b:9b:11:85:20:f1:a8:75: 85:18:20:84:71:91:13:54:45:91:be:cb:a5:37:76: bc:90:3b:67:ef:72:fe:f0:fa:be:06:70:fe:3e:eb: 28:20:61:c1:dd:de:ec:1b:bc:d3:d7:95:91:ae:a6: ac:a1:4b:f8:54:59:4f:24:6e:6e:ef:91:e3:f0:71: 26:9d:8d:67:e5:ff:51:3d:4a:ae:fa:86:97:75:1d: ce:ce:a4:32:de:ed:f0:35:87:91:a4:6c:07:41:73: a0:ad:d9:57:59:a7:c5:87:77:01:ad:75:ca:99:cd: ba:32:fc:32:94:19:cf:05:11:25:31:c2:4c:5d:47: 67:a3:91:69:71:0f:f8:37:a7:e3:cf:46:fa:20:49: 54:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D4:0E:F3:E9:8A:82:5E:01:67:6A:DB:94:AA:A4:AE:2A:3A:A8:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142311.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.150.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:9f:98:ef:12:73:b1:4f:63:6b:07:75:26:76:3a:83:10:68: c2:28:6b:89:41:58:5b:be:67:f7:12:d7:74:40:0e:25:3a:08: 19:52:ad:56:8b:86:de:7d:36:f9:88:88:f3:4e:dd:4e:11:87: ab:a6:2f:ab:41:11:cb:65:3c:2a:4d:ce:6f:e0:96:a0:82:9b: 04:f6:1c:75:3a:c9:2d:2e:03:d3:bc:c7:2e:72:33:41:25:6f: 70:a2:04:e2:0a:dc:50:a3:96:6d:3a:10:f6:a1:7b:da:d0:2c: ae:08:c1:52:95:84:86:ad:ec:2a:c4:69:ef:ec:c6:96:bd:a2: d7:16:2d:8a:23:13:23:c5:9b:bb:33:aa:dd:62:d1:f8:fd:7e: b0:1e:80:4f:f1:83:78:fd:db:18:8b:aa:f5:be:34:92:b9:e4: a8:d4:76:f0:04:04:5e:5a:c3:00:7c:5c:e0:ec:4d:df:63:96: 55:d4:d0:55:a3:f4:a0:eb:40:38:44:a1:78:b1:18:17:0f:c3: 6b:e0:21:a5:c0:94:bb:81:e4:27:ca:44:21:7e:52:85:0a:d1: ce:a6:07:17:40:34:3c:69:3e:23:3d:97:88:8c:8b:76:68:70: a3:d6:89:3e:e1:61:76:2e:e2:01:40:d8:86:19:fa:fb:ce:4d: 90:a5:75:c7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUI7NgWth5tMkU4T5kAARHk4+NRgEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyM1oX DTI1MDEwNzA0MDAyM1owMzExMC8GA1UEAxMoNkNENDBFRjNFOThBODI1RTAxNjc2 QURCOTRBQUE0QUUyQTNBQTgwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMjmO8cg9pKviW+Bo1QstPYJAJzHmjWw4+qi68mApkaQYQbzA6KWg1/HMrTz Kn41kf3zbi3k6EnhmY/nXSVvOn4W7Wi/32wINDUEL1MV4gYXTLgVoAT+D2ViU1hJ Bab58BKzA+Wu4+Zjhs9Z3xYEDSubEYUg8ah1hRgghHGRE1RFkb7LpTd2vJA7Z+9y /vD6vgZw/j7rKCBhwd3e7Bu809eVka6mrKFL+FRZTyRubu+R4/BxJp2NZ+X/UT1K rvqGl3Udzs6kMt7t8DWHkaRsB0FzoK3ZV1mnxYd3Aa11ypnNujL8MpQZzwURJTHC TF1HZ6ORaXEP+Den489G+iBJVOcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRs1A7z 6YqCXgFnatuUqqSuKjqoAjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMxMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeoljANBgkqhkiG9w0BAQsFAAOCAQEAP5+Y7xJzsU9jawd1JnY6 gxBowihriUFYW75n9xLXdEAOJToIGVKtVouG3n02+YiI807dThGHq6Yvq0ERy2U8 Kk3Ob+CWoIKbBPYcdTrJLS4D07zHLnIzQSVvcKIE4grcUKOWbToQ9qF72tAsrgjB UpWEhq3sKsRp7+zGlr2i1xYtiiMTI8WbuzOq3WLR+P1+sB6AT/GDeP3bGIuq9b40 krnkqNR28AQEXlrDAHxc4OxN32OWVdTQVaP0oOtAOESheLEYFw/Da+AhpcCUu4Hk J8pEIX5ShQrRzqYHF0A0PGk+Iz2XiIyLdmhwo9aJPuFhdi7iAUDYhhn6+85NkKV1 xw== -----END CERTIFICATE-----Generated at Tue May 7 16:42:40 2024 by rpki-client on console-ams.rpki-client.org