$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142311.roa File: AS142311.roa (raw, json) Hash identifier: OQs6Glajp+79GD3Unu3hmWc6kuk2H8nCNQ1P7Uu8oa8= Subject key identifier: 1F:69:81:58:13:FB:9F:91:D0:62:83:A7:DF:39:B2:E1:77:47:4E:81 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 474FCD1901D55AD1D89BA15D36CC948A300E2D2B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142311.roa Signing time: Tue 10 Dec 2024 05:00:19 +0000 ROA not before: Tue 10 Dec 2024 04:55:19 +0000 ROA not after: Tue 09 Dec 2025 05:00:19 +0000 asID: 142311 IP address blocks: 103.168.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:4f:cd:19:01:d5:5a:d1:d8:9b:a1:5d:36:cc:94:8a:30:0e:2d:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:19 2024 GMT Not After : Dec 9 05:00:19 2025 GMT Subject: CN=1F69815813FB9F91D06283A7DF39B2E177474E81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:48:aa:10:5a:18:22:60:4d:d2:7a:17:a5:e7: 6d:8d:d8:1c:50:87:60:0b:f0:10:12:40:b3:55:e4: 4b:81:dc:10:41:b1:d8:53:a9:11:6f:ac:d5:78:e6: 67:02:ea:5e:ae:ce:c6:77:de:fa:e7:40:ca:d4:c7: 7f:5b:bf:88:9f:a6:34:89:01:18:ee:56:cf:63:0a: 20:d0:2b:47:8e:00:a9:58:db:56:a1:e2:9f:60:46: 1d:94:9e:08:51:65:fe:4c:ed:ea:7c:eb:4d:f3:b0: 97:7a:fd:c3:eb:90:7c:f6:2b:ce:21:5d:f6:8c:e2: d9:d2:72:14:2e:4b:b8:af:47:a6:09:ff:e5:80:82: ee:ae:84:1e:fa:90:45:18:4a:f9:b0:2c:4c:ff:cf: 5e:e5:f2:d4:d1:03:a9:5e:79:3c:b3:bb:f0:2e:ee: 56:ed:32:f2:39:18:64:08:57:fe:92:35:41:aa:4a: 18:d0:dc:54:cf:08:59:2f:d4:49:31:c5:58:f8:9d: 3d:e6:b1:5e:01:0b:ef:48:a1:ba:b0:bd:19:f6:01: a3:1a:2e:b3:06:68:b4:88:93:f2:d7:6b:fb:6a:f2: ca:ad:a8:01:0c:4e:15:5e:87:a4:94:44:80:ad:4e: c1:41:d8:2a:94:04:b7:d6:3d:c6:d1:38:aa:01:1c: 0c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:69:81:58:13:FB:9F:91:D0:62:83:A7:DF:39:B2:E1:77:47:4E:81 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142311.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.150.0/23 Signature Algorithm: sha256WithRSAEncryption 52:50:d5:ec:04:52:ff:79:8e:fe:08:66:f1:80:e8:62:4c:25: 2d:97:99:41:69:70:98:86:fe:da:e7:6b:62:70:24:57:52:88: be:f4:91:dc:51:1f:76:02:3d:24:0a:f4:00:63:07:1a:b6:05: 96:0f:d3:fc:f9:8c:2d:14:ac:52:9e:2d:8e:c7:b4:b1:ec:b7: 6c:51:98:e5:69:17:4b:02:32:66:67:0b:52:8a:2a:1c:e4:44: 15:d5:f1:3f:08:03:e8:67:ff:3b:63:e8:f0:45:51:79:65:11: 02:d3:5d:9c:79:f2:06:c0:08:d3:0b:c2:60:3a:57:05:1b:fb: 32:fa:21:c4:40:ae:f9:89:9d:4d:6a:a3:57:dc:e4:9b:3d:22: 97:64:24:6e:94:75:96:d7:41:01:98:3f:f0:ca:2d:68:22:fb: 37:d9:a6:ee:89:4e:44:5b:aa:5d:c7:97:51:00:e9:d9:3c:15: 81:a0:93:4d:e0:c8:39:7d:b9:dd:91:e0:bc:fc:3f:37:4f:6e: 66:c6:e7:67:68:73:54:ad:61:48:d9:7f:fd:f4:f6:ff:1b:cc: 62:4d:85:19:f2:b3:3d:70:21:0f:c9:71:99:a7:ac:c1:7c:f0: d8:ff:b9:e7:e2:a0:99:32:c6:cd:8a:ad:c1:8e:60:e0:7a:6b: c8:17:46:6b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUR0/NGQHVWtHYm6FdNsyUijAOLSswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxOVoX DTI1MTIwOTA1MDAxOVowMzExMC8GA1UEAxMoMUY2OTgxNTgxM0ZCOUY5MUQwNjI4 M0E3REYzOUIyRTE3NzQ3NEU4MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMlIqhBaGCJgTdJ6F6XnbY3YHFCHYAvwEBJAs1XkS4HcEEGx2FOpEW+s1Xjm ZwLqXq7Oxnfe+udAytTHf1u/iJ+mNIkBGO5Wz2MKINArR44AqVjbVqHin2BGHZSe CFFl/kzt6nzrTfOwl3r9w+uQfPYrziFd9ozi2dJyFC5LuK9Hpgn/5YCC7q6EHvqQ RRhK+bAsTP/PXuXy1NEDqV55PLO78C7uVu0y8jkYZAhX/pI1QapKGNDcVM8IWS/U STHFWPidPeaxXgEL70ihurC9GfYBoxouswZotIiT8tdr+2ryyq2oAQxOFV6HpJRE gK1OwUHYKpQEt9Y9xtE4qgEcDEsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQfaYFY E/ufkdBig6ffObLhd0dOgTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMxMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeoljANBgkqhkiG9w0BAQsFAAOCAQEAUlDV7ARS/3mO/ghm8YDo YkwlLZeZQWlwmIb+2udrYnAkV1KIvvSR3FEfdgI9JAr0AGMHGrYFlg/T/PmMLRSs Up4tjse0sey3bFGY5WkXSwIyZmcLUooqHOREFdXxPwgD6Gf/O2Po8EVReWURAtNd nHnyBsAI0wvCYDpXBRv7MvohxECu+YmdTWqjV9zkmz0il2QkbpR1ltdBAZg/8Mot aCL7N9mm7olORFuqXceXUQDp2TwVgaCTTeDIOX253ZHgvPw/N09uZsbnZ2hzVK1h SNl//fT2/xvMYk2FGfKzPXAhD8lxmaeswXzw2P+55+KgmTLGzYqtwY5g4HpryBdG aw== -----END CERTIFICATE-----Generated at Sun Feb 16 20:47:42 2025 by rpki-client