$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142319.roa File: AS142319.roa (raw, json) Hash identifier: siEIuH7yQjxfEa9OXKeTBYyS/J9w4RM7GyCV4IjWimU= Subject key identifier: 63:49:9A:E7:2B:5F:49:23:C3:71:63:E2:1A:3F:E8:49:02:79:FB:89 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3DD7D8F2F0E378E8AE27D88FB3F2C48FD488645D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142319.roa Signing time: Tue 11 Feb 2025 03:46:16 +0000 ROA not before: Tue 11 Feb 2025 03:41:16 +0000 ROA not after: Tue 10 Feb 2026 03:46:16 +0000 asID: 142319 IP address blocks: 103.26.188.0/23 maxlen: 24 103.186.35.0/24 maxlen: 24 2001:df4:c2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:d7:d8:f2:f0:e3:78:e8:ae:27:d8:8f:b3:f2:c4:8f:d4:88:64:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 11 03:41:16 2025 GMT Not After : Feb 10 03:46:16 2026 GMT Subject: CN=63499AE72B5F4923C37163E21A3FE8490279FB89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3d:d9:23:6b:05:b7:58:d4:1e:01:4a:8d:31: 5a:ea:a6:14:95:cb:88:ea:96:28:8f:85:bf:22:08: 18:98:d1:4e:13:47:ce:79:dc:f1:0c:d3:05:b1:6c: 9e:ab:03:cd:0c:98:db:b9:7b:36:00:c9:3d:b3:1d: 56:79:03:60:7e:53:6c:40:8e:7b:0b:fc:22:66:95: 33:d2:69:e0:18:e0:23:0c:6f:be:04:49:21:ba:d0: 4b:49:39:d5:be:e8:08:00:4d:5e:87:9f:9b:4b:5d: e1:ef:ea:8a:17:d0:3f:a5:9b:f8:81:27:38:11:33: cc:09:e4:16:bf:5f:23:3d:7b:1f:37:06:fa:95:ce: 52:20:07:9b:64:b6:83:b7:f9:71:d1:f3:f5:85:c3: e9:35:29:08:73:6c:83:9f:3b:61:23:20:b7:bf:c8: c7:c9:b8:fe:6d:83:17:f2:59:b5:6d:ba:a5:01:2d: 2f:83:13:23:d0:91:78:b3:39:9d:50:8a:fc:76:92: e5:cc:87:c8:17:2b:ca:af:45:3c:9e:e3:af:38:ef: 34:98:96:d1:6e:2a:34:bf:31:53:59:53:e5:f2:bd: 57:0a:d7:aa:a4:09:1f:84:00:81:04:bb:fc:83:ba: ab:33:8e:bd:55:4c:63:3c:67:f9:2e:d2:0a:28:c8: 4f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:49:9A:E7:2B:5F:49:23:C3:71:63:E2:1A:3F:E8:49:02:79:FB:89 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142319.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.26.188.0/23 103.186.35.0/24 IPv6: 2001:df4:c2c0::/48 Signature Algorithm: sha256WithRSAEncryption 85:15:3e:18:fb:52:6b:8f:5c:0a:cf:73:c1:19:7f:2f:3e:ed: 05:99:83:d7:6b:f0:be:ca:d9:b6:84:a7:6a:1d:85:fb:37:d8: af:02:f0:9b:b4:2b:2b:52:d4:3c:59:2c:97:1e:9d:b6:39:cc: f1:68:92:93:ab:d6:be:3b:91:43:49:1e:ec:dc:86:ec:35:8e: d9:e5:9d:c6:15:94:8b:82:b0:56:2a:cd:94:b9:cd:ec:d9:fa: 05:67:7f:36:38:08:61:14:c3:59:cd:df:39:80:a9:af:e4:6f: bb:2e:a9:ba:6f:32:ec:6f:6e:01:ac:b6:86:4c:85:33:3f:e4: 3b:63:3f:69:c3:35:1d:0c:8b:0e:22:aa:0a:80:c5:b5:0b:cb: c7:cd:fb:86:95:36:d8:c6:d0:d3:eb:5c:fb:89:a8:34:de:ce: af:26:3c:6e:e3:4e:33:25:b9:2a:1a:f9:57:69:d6:0d:8f:9d: 78:b3:cb:b9:53:03:6b:91:7a:16:d0:09:2c:6b:eb:50:81:4e: 2f:65:f0:69:3d:ca:68:03:e6:3e:79:e1:40:29:e3:e6:cb:87: 87:7c:e5:bb:21:ff:02:51:0c:0f:c3:f1:59:50:7c:3e:94:60: 6c:84:53:3b:9f:a4:b6:cb:11:45:2f:74:ff:a4:85:0c:96:9e: c5:25:14:77 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUPdfY8vDjeOiuJ9iPs/LEj9SIZF0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIxMTAzNDExNloX DTI2MDIxMDAzNDYxNlowMzExMC8GA1UEAxMoNjM0OTlBRTcyQjVGNDkyM0MzNzE2 M0UyMUEzRkU4NDkwMjc5RkI4OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANg92SNrBbdY1B4BSo0xWuqmFJXLiOqWKI+FvyIIGJjRThNHznnc8QzTBbFs nqsDzQyY27l7NgDJPbMdVnkDYH5TbECOewv8ImaVM9Jp4BjgIwxvvgRJIbrQS0k5 1b7oCABNXoefm0td4e/qihfQP6Wb+IEnOBEzzAnkFr9fIz17HzcG+pXOUiAHm2S2 g7f5cdHz9YXD6TUpCHNsg587YSMgt7/Ix8m4/m2DF/JZtW26pQEtL4MTI9CReLM5 nVCK/HaS5cyHyBcryq9FPJ7jrzjvNJiW0W4qNL8xU1lT5fK9VwrXqqQJH4QAgQS7 /IO6qzOOvVVMYzxn+S7SCijIT6ECAwEAAaOCAecwggHjMB0GA1UdDgQWBBRjSZrn K19JI8NxY+IaP+hJAnn7iTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMxOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAWcavAMEAGe6IzAPBAIAAjAJAwcAIAEN9MLAMA0GCSqGSIb3DQEB CwUAA4IBAQCFFT4Y+1Jrj1wKz3PBGX8vPu0FmYPXa/C+ytm2hKdqHYX7N9ivAvCb tCsrUtQ8WSyXHp22OczxaJKTq9a+O5FDSR7s3IbsNY7Z5Z3GFZSLgrBWKs2Uuc3s 2foFZ382OAhhFMNZzd85gKmv5G+7Lqm6bzLsb24BrLaGTIUzP+Q7Yz9pwzUdDIsO IqoKgMW1C8vHzfuGlTbYxtDT61z7iag03s6vJjxu404zJbkqGvlXadYNj514s8u5 UwNrkXoW0Aksa+tQgU4vZfBpPcpoA+Y+eeFAKePmy4eHfOW7If8CUQwPw/FZUHw+ lGBshFM7n6S2yxFFL3T/pIUMlp7FJRR3 -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:45 2025 by rpki-client