$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142319.roa File: AS142319.roa (raw, json) Hash identifier: 53z9s2XJefEiWmInW6lDpxtkl/SKgvYnIPi02UYvQSs= Subject key identifier: C8:B2:A8:7D:CE:0E:72:C9:F7:6A:BD:14:87:5D:7E:6B:BD:EE:AD:11 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 08DAAA563BCE02F6CC8865DC70534062788FEE58 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142319.roa Signing time: Wed 20 Mar 2024 02:12:17 +0000 ROA not before: Wed 20 Mar 2024 02:07:17 +0000 ROA not after: Wed 19 Mar 2025 02:12:17 +0000 asID: 142319 IP address blocks: 103.26.188.0/23 maxlen: 24 103.186.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:da:aa:56:3b:ce:02:f6:cc:88:65:dc:70:53:40:62:78:8f:ee:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 20 02:07:17 2024 GMT Not After : Mar 19 02:12:17 2025 GMT Subject: CN=C8B2A87DCE0E72C9F76ABD14875D7E6BBDEEAD11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f9:35:21:ee:94:1f:d2:90:78:1d:f2:f2:20: 67:44:1f:59:96:3a:25:e8:a2:f1:50:c1:e0:ea:6e: f7:b0:d9:f6:aa:2f:ad:cf:f3:64:31:2e:89:dd:2d: d8:69:44:df:9e:d1:f0:b3:ce:bd:fc:cc:d3:18:10: fe:6a:a5:8e:ab:09:59:ca:1d:c1:c9:03:63:da:69: 40:74:be:c1:eb:40:70:aa:db:d1:70:a0:c6:60:b1: 0f:60:7d:01:d9:c3:e6:65:52:73:8f:69:5f:e9:a9: 4f:c1:c7:d9:83:c7:31:da:d2:7f:8d:a9:5c:fd:04: 18:55:25:ac:49:68:d3:ce:12:73:65:f0:96:68:65: 23:83:c1:c7:2f:a8:d9:ce:ed:2f:a9:18:7c:97:45: b3:f5:38:93:01:c3:f2:f5:84:46:93:65:ab:dd:39: 96:52:94:c2:42:e5:2b:3e:48:c7:ba:3b:f5:7f:b4: 62:d9:5c:68:63:ee:47:b8:c4:58:a3:c5:a8:7b:e0: ad:c8:a5:09:2b:f3:b7:b3:3d:13:3e:1a:1c:ca:2c: f1:9d:da:2f:b4:4f:18:f7:47:d8:cd:fa:a2:c9:8a: ff:f9:60:ab:7f:23:70:12:3f:05:39:cf:4f:34:b3: 99:11:12:2c:11:4e:c3:4c:74:b8:e0:15:0b:ec:34: 8b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B2:A8:7D:CE:0E:72:C9:F7:6A:BD:14:87:5D:7E:6B:BD:EE:AD:11 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142319.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.26.188.0/23 103.186.35.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:3e:a2:66:4e:4f:d4:fd:9e:dd:df:50:d2:68:b3:b4:19:fe: cf:b9:40:56:28:a0:04:36:fc:94:59:f2:ed:7d:33:f7:e3:d4: da:d6:8e:2f:c6:86:22:29:7e:59:12:9a:34:1f:ac:e8:ea:09: a5:3b:f9:99:c8:c4:41:40:a5:b4:62:cb:6c:34:15:58:70:66: 08:58:4e:8b:02:8e:ee:f0:05:5b:8f:d9:8c:4a:d8:06:c8:85: 31:79:14:84:25:f0:cf:e9:1c:04:4d:2e:18:26:5c:52:bd:ff: 31:86:cb:1e:4b:e8:11:eb:a3:62:6d:12:ab:b4:47:82:04:ff: 27:5d:bb:f1:13:fd:ec:dc:7d:9c:59:ec:7f:2e:5f:7c:0d:52: a3:2d:7c:02:b0:f1:7e:81:f4:3f:3d:15:49:14:7a:d9:87:81: d7:a9:e5:43:6b:96:56:3c:d4:e5:6d:f7:bb:51:4c:75:18:05: a8:02:c5:b8:8d:fd:d3:fd:74:aa:e4:9c:c4:86:83:e0:12:cf: 4d:73:eb:38:42:da:09:3d:62:95:cf:26:ee:64:e8:d2:36:15: 08:91:db:3c:09:c8:c3:75:76:35:86:35:d4:88:3b:bf:89:44: 63:62:bd:15:60:fe:56:5d:c1:1a:a4:61:98:95:14:a6:56:9a: 14:99:3b:5c -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUCNqqVjvOAvbMiGXccFNAYniP7lgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMyMDAyMDcxN1oX DTI1MDMxOTAyMTIxN1owMzExMC8GA1UEAxMoQzhCMkE4N0RDRTBFNzJDOUY3NkFC RDE0ODc1RDdFNkJCREVFQUQxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMf5NSHulB/SkHgd8vIgZ0QfWZY6Jeii8VDB4Opu97DZ9qovrc/zZDEuid0t 2GlE357R8LPOvfzM0xgQ/mqljqsJWcodwckDY9ppQHS+wetAcKrb0XCgxmCxD2B9 AdnD5mVSc49pX+mpT8HH2YPHMdrSf42pXP0EGFUlrElo084Sc2XwlmhlI4PBxy+o 2c7tL6kYfJdFs/U4kwHD8vWERpNlq905llKUwkLlKz5Ix7o79X+0YtlcaGPuR7jE WKPFqHvgrcilCSvzt7M9Ez4aHMos8Z3aL7RPGPdH2M36osmK//lgq38jcBI/BTnP TzSzmRESLBFOw0x0uOAVC+w0iwsCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBTIsqh9 zg5yyfdqvRSHXX5rve6tETAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMxOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAWcavAMEAGe6IzANBgkqhkiG9w0BAQsFAAOCAQEALT6iZk5P1P2e 3d9Q0miztBn+z7lAViigBDb8lFny7X0z9+PU2taOL8aGIil+WRKaNB+s6OoJpTv5 mcjEQUCltGLLbDQVWHBmCFhOiwKO7vAFW4/ZjErYBsiFMXkUhCXwz+kcBE0uGCZc Ur3/MYbLHkvoEeujYm0Sq7RHggT/J1278RP97Nx9nFnsfy5ffA1Soy18ArDxfoH0 Pz0VSRR62YeB16nlQ2uWVjzU5W33u1FMdRgFqALFuI390/10quScxIaD4BLPTXPr OELaCT1ilc8m7mTo0jYVCJHbPAnIw3V2NYY11Ig7v4lEY2K9FWD+Vl3BGqRhmJUU plaaFJk7XA== -----END CERTIFICATE-----Generated at Wed May 8 17:45:22 2024 by rpki-client on console-ams.rpki-client.org