$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142318.roa File: AS142318.roa (raw, json) Hash identifier: 4PdEzWXNZHMxpZilsNS1yvBqzbH440nhx5JSm5xvuQk= Subject key identifier: E3:4A:BA:34:20:04:02:6B:83:C3:7A:B1:56:A2:79:74:27:49:0A:E4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1B9F68FA5D3D12352365B7A8B469DB250A506AC3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142318.roa Signing time: Tue 10 Dec 2024 05:00:00 +0000 ROA not before: Tue 10 Dec 2024 04:55:00 +0000 ROA not after: Tue 09 Dec 2025 05:00:00 +0000 asID: 142318 IP address blocks: 103.168.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:9f:68:fa:5d:3d:12:35:23:65:b7:a8:b4:69:db:25:0a:50:6a:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:00 2024 GMT Not After : Dec 9 05:00:00 2025 GMT Subject: CN=E34ABA342004026B83C37AB156A2797427490AE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:10:c4:c5:07:c8:3b:1e:f1:34:3d:62:4b:ea: f5:49:04:03:1d:b9:26:4f:8c:ac:d0:28:c5:89:1e: b8:2e:97:11:75:b6:97:eb:e7:d6:72:6a:35:74:58: 31:38:2d:44:25:c2:42:31:40:59:23:03:e6:cb:d6: dd:85:62:5d:a3:e0:4a:1f:75:f6:e4:4f:f7:e5:03: af:42:39:da:3a:9e:10:80:60:3e:e2:90:c6:49:d9: 7f:70:05:e1:8a:a3:9b:98:6d:c0:73:40:a7:14:4c: 75:3b:74:c8:9a:9c:11:ca:3a:69:fd:9c:34:52:f2: 50:72:c1:69:d4:7a:a9:52:10:2b:5b:aa:d0:b9:04: 71:50:d3:ac:3b:28:3c:3d:63:c6:82:7d:dc:30:99: 21:8a:5c:88:48:3c:0c:08:92:9f:85:cb:7e:08:cd: 77:7c:f2:57:b3:a8:ea:ee:cb:9b:b3:a6:8b:07:de: 1f:3d:61:f3:79:cb:80:d4:ad:f2:70:6a:de:23:17: a9:c6:6f:2d:06:36:98:3b:4f:4f:d9:d0:bd:27:09: 69:67:5d:56:91:92:13:28:88:a8:49:2a:2b:61:a1: 88:6a:92:b6:3a:c2:2d:85:e7:fa:aa:30:d2:29:5c: 57:8d:5f:0d:a2:51:92:7d:ac:b9:73:26:57:c6:fc: 29:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:4A:BA:34:20:04:02:6B:83:C3:7A:B1:56:A2:79:74:27:49:0A:E4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142318.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.166.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:a7:ee:58:ce:f5:b9:49:bc:00:81:cd:60:00:8b:3b:1f:f8: 52:27:03:95:23:d1:07:33:25:23:7e:81:b2:39:c1:37:19:c9: 15:10:c7:b3:b3:70:8b:76:8b:6e:02:ed:5d:32:c3:cc:74:a2: 0e:4e:6b:2d:74:b9:33:20:72:1f:1d:c8:30:78:30:e0:0c:fc: 5c:29:2e:18:94:95:f6:c6:ce:37:52:48:ef:e1:c0:21:66:17: 3e:8f:40:fe:8d:49:e7:8b:3e:19:ad:e7:a7:fb:f4:6c:f8:34: 93:64:3f:cc:a9:ab:4d:b3:f1:58:88:e7:83:20:de:48:b9:38: d2:e3:d2:05:86:bc:ba:79:6b:e6:24:02:9d:76:d4:42:b6:20: 07:85:9f:8b:03:f4:d4:b0:6b:ab:80:c7:73:d0:79:16:b5:cb: 94:bc:f3:bc:e7:8e:49:f3:2f:32:9d:84:71:6d:29:b8:02:38: 90:99:b8:b1:73:57:01:45:71:e0:89:08:4c:95:df:fc:bd:f9: e7:0c:69:96:7c:6e:27:13:4d:d0:db:a8:d3:69:c2:98:64:0f: 85:2b:32:9f:1b:d5:75:be:e2:b3:7f:da:ce:fe:3f:be:77:a6: 14:45:7b:20:3b:01:e1:e3:71:a2:dd:45:a9:da:29:c2:56:72: 95:24:cc:bd -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUG59o+l09EjUjZbeotGnbJQpQasMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwMFoX DTI1MTIwOTA1MDAwMFowMzExMC8GA1UEAxMoRTM0QUJBMzQyMDA0MDI2QjgzQzM3 QUIxNTZBMjc5NzQyNzQ5MEFFNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOwQxMUHyDse8TQ9Ykvq9UkEAx25Jk+MrNAoxYkeuC6XEXW2l+vn1nJqNXRY MTgtRCXCQjFAWSMD5svW3YViXaPgSh919uRP9+UDr0I52jqeEIBgPuKQxknZf3AF 4Yqjm5htwHNApxRMdTt0yJqcEco6af2cNFLyUHLBadR6qVIQK1uq0LkEcVDTrDso PD1jxoJ93DCZIYpciEg8DAiSn4XLfgjNd3zyV7Oo6u7Lm7OmiwfeHz1h83nLgNSt 8nBq3iMXqcZvLQY2mDtPT9nQvScJaWddVpGSEyiIqEkqK2GhiGqStjrCLYXn+qow 0ilcV41fDaJRkn2suXMmV8b8KZUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTjSro0 IAQCa4PDerFWonl0J0kK5DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMxOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeopjANBgkqhkiG9w0BAQsFAAOCAQEATafuWM71uUm8AIHNYACL Ox/4UicDlSPRBzMlI36BsjnBNxnJFRDHs7Nwi3aLbgLtXTLDzHSiDk5rLXS5MyBy Hx3IMHgw4Az8XCkuGJSV9sbON1JI7+HAIWYXPo9A/o1J54s+Ga3np/v0bPg0k2Q/ zKmrTbPxWIjngyDeSLk40uPSBYa8unlr5iQCnXbUQrYgB4WfiwP01LBrq4DHc9B5 FrXLlLzzvOeOSfMvMp2EcW0puAI4kJm4sXNXAUVx4IkITJXf/L355wxplnxuJxNN 0Nuo02nCmGQPhSsynxvVdb7is3/azv4/vnemFEV7IDsB4eNxot1FqdopwlZylSTM vQ== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:47 2025 by rpki-client