$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142318.roa File: AS142318.roa (raw, json) Hash identifier: xsXe4S5lgj+ROKSo2YknuRvW1eOHKq1tX+HsVPxbmR0= Subject key identifier: 3A:80:08:82:AC:D2:B7:1B:57:AE:E7:B7:6B:AD:AE:F2:18:D6:41:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2E9D7FA578D14C430B0DCC6FAF909C8D069553BF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142318.roa Signing time: Tue 09 Jan 2024 04:00:00 +0000 ROA not before: Tue 09 Jan 2024 03:55:00 +0000 ROA not after: Tue 07 Jan 2025 04:00:00 +0000 asID: 142318 IP address blocks: 103.168.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 13:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:9d:7f:a5:78:d1:4c:43:0b:0d:cc:6f:af:90:9c:8d:06:95:53:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:00 2024 GMT Not After : Jan 7 04:00:00 2025 GMT Subject: CN=3A800882ACD2B71B57AEE7B76BADAEF218D6416B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:02:89:e0:e4:45:0a:27:91:fe:ed:67:38:9e: d6:d3:bd:11:dd:7e:c5:1b:b0:04:aa:3f:0a:f1:5d: 7d:5f:8b:a7:64:63:62:d2:fe:e8:ae:c9:54:f1:d9: 0b:89:01:5d:24:08:70:d4:3d:66:80:fd:88:d1:cf: 01:de:6d:66:08:11:94:e7:2c:4c:13:d6:f1:9c:eb: 33:15:6c:11:ca:29:68:6f:e2:58:8c:a0:b1:e6:40: 15:ed:33:57:2c:ee:f8:1b:e2:f8:88:7b:e0:43:82: 89:66:f9:e5:34:aa:2f:14:be:ce:80:46:c7:b7:1c: 4f:ac:91:88:cc:8b:b9:3e:75:48:95:de:11:c3:e8: bc:90:23:e3:4b:a9:94:65:92:e4:46:19:01:db:40: 51:bf:b0:60:b0:6c:0f:8c:a8:fd:4a:19:c4:6c:2f: 58:6f:57:aa:e5:c3:96:aa:b9:f1:26:23:5e:d9:35: fa:99:6b:c1:27:df:bf:04:56:36:28:e3:f8:70:e4: 22:6c:12:af:ab:4b:6e:e6:4e:74:6b:6d:e3:35:93: 14:f9:7e:50:d3:a3:88:75:eb:f3:a8:3d:0d:5d:e3: b1:bb:31:df:ee:aa:dc:d1:3f:63:5a:89:4c:89:14: dc:43:65:51:68:f7:f6:f9:78:ce:c0:ff:87:f8:4b: 4e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:80:08:82:AC:D2:B7:1B:57:AE:E7:B7:6B:AD:AE:F2:18:D6:41:6B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142318.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.166.0/24 Signature Algorithm: sha256WithRSAEncryption 15:5d:fa:a8:d3:f9:b7:ab:65:a4:64:82:fb:a1:9d:4f:77:95: 2e:07:6b:6e:2b:1e:72:8d:1b:d6:9c:1e:08:60:c9:0e:97:69: 4a:2a:c1:51:db:c3:7a:6b:ba:50:2b:f3:fd:2d:50:d9:9c:1d: e2:98:d4:d9:0f:44:6e:79:db:dd:67:17:b2:4c:f8:66:09:91: a6:f3:03:50:ab:bc:af:e4:db:af:f7:69:4c:d6:0c:29:ab:0a: 7b:bc:49:52:70:be:b0:93:a3:96:78:3e:a4:90:37:8e:c3:30: c7:ac:eb:ea:19:97:f8:6a:93:b8:c8:1a:2c:7f:a0:fa:fd:75: 60:06:63:39:0c:65:9f:20:b1:72:ef:c5:3e:a9:88:3e:71:f1: 14:de:ec:fe:f4:73:04:c8:e3:c2:ef:a0:3f:02:db:4a:eb:c3: b3:db:e6:bb:ff:9d:af:17:a6:35:b1:c8:bd:7d:06:20:e4:ef: bd:00:56:84:47:36:6e:32:db:15:a6:54:67:8a:0d:79:67:f2: f1:9a:37:da:c6:fb:e6:a0:70:d5:4a:22:9a:9b:b3:a9:19:af: 5b:c2:5e:8f:bf:18:4d:10:bd:5e:99:f3:5c:e8:b2:1a:4b:db: 32:cf:ea:ca:88:a4:0f:f3:3c:93:39:80:4b:06:35:87:69:e0: 37:5d:3d:f4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULp1/pXjRTEMLDcxvr5CcjQaVU78wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwMFoX DTI1MDEwNzA0MDAwMFowMzExMC8GA1UEAxMoM0E4MDA4ODJBQ0QyQjcxQjU3QUVF N0I3NkJBREFFRjIxOEQ2NDE2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANoCieDkRQonkf7tZzie1tO9Ed1+xRuwBKo/CvFdfV+Lp2RjYtL+6K7JVPHZ C4kBXSQIcNQ9ZoD9iNHPAd5tZggRlOcsTBPW8ZzrMxVsEcopaG/iWIygseZAFe0z Vyzu+Bvi+Ih74EOCiWb55TSqLxS+zoBGx7ccT6yRiMyLuT51SJXeEcPovJAj40up lGWS5EYZAdtAUb+wYLBsD4yo/UoZxGwvWG9XquXDlqq58SYjXtk1+plrwSffvwRW Nijj+HDkImwSr6tLbuZOdGtt4zWTFPl+UNOjiHXr86g9DV3jsbsx3+6q3NE/Y1qJ TIkU3ENlUWj39vl4zsD/h/hLTrcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ6gAiC rNK3G1eu57drra7yGNZBazAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMxOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeopjANBgkqhkiG9w0BAQsFAAOCAQEAFV36qNP5t6tlpGSC+6Gd T3eVLgdrbiseco0b1pweCGDJDpdpSirBUdvDemu6UCvz/S1Q2Zwd4pjU2Q9Ebnnb 3WcXskz4ZgmRpvMDUKu8r+Tbr/dpTNYMKasKe7xJUnC+sJOjlng+pJA3jsMwx6zr 6hmX+GqTuMgaLH+g+v11YAZjOQxlnyCxcu/FPqmIPnHxFN7s/vRzBMjjwu+gPwLb SuvDs9vmu/+drxemNbHIvX0GIOTvvQBWhEc2bjLbFaZUZ4oNeWfy8Zo32sb75qBw 1UoimpuzqRmvW8Jej78YTRC9XpnzXOiyGkvbMs/qyoikD/M8kzmASwY1h2ngN109 9A== -----END CERTIFICATE-----Generated at Tue May 7 11:41:07 2024 by rpki-client on console-ams.rpki-client.org