$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142323.roa File: AS142323.roa (raw, json) Hash identifier: xOrSQlSABLAkFfr4JeKtQJCnIWFp71L49We+TECnots= Subject key identifier: 10:AB:51:EC:A6:23:D3:80:7A:5A:00:86:AE:FD:58:A8:DA:AA:76:E1 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 441304F104A5476FFB210BE473B280A352528102 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142323.roa Signing time: Tue 09 Jan 2024 04:00:11 +0000 ROA not before: Tue 09 Jan 2024 03:55:11 +0000 ROA not after: Tue 07 Jan 2025 04:00:11 +0000 asID: 142323 IP address blocks: 103.167.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:13:04:f1:04:a5:47:6f:fb:21:0b:e4:73:b2:80:a3:52:52:81:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:11 2024 GMT Not After : Jan 7 04:00:11 2025 GMT Subject: CN=10AB51ECA623D3807A5A0086AEFD58A8DAAA76E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:28:c6:7e:69:f3:6b:2a:75:d8:3f:37:25:46: 4d:59:2e:31:c6:53:b1:12:59:5b:d0:14:32:77:8e: 95:95:c4:19:bf:37:4c:05:46:44:43:61:b1:e4:09: 66:51:60:34:72:78:50:e7:21:32:8a:af:7a:20:5e: d6:eb:2d:3f:fc:1f:47:f1:f3:87:5f:d7:12:da:2b: 60:23:48:1a:d0:be:b9:4d:08:8c:8f:7f:6f:e6:15: cf:e8:d7:71:c5:1d:de:a6:a8:c2:77:44:1b:5b:6b: 4e:d0:d3:40:39:2d:30:42:56:d0:fd:d7:8e:fd:33: 56:a6:51:c6:30:f3:f6:09:43:0c:e9:ad:cd:18:3f: 6c:5e:5d:69:83:91:d7:0c:0e:a7:6d:c5:c0:c6:36: ad:03:13:c2:06:52:c8:1f:a1:b0:0e:4c:3e:02:2d: 7c:05:d0:0b:41:b2:21:4f:c8:de:b4:2f:91:cd:73: 50:4d:bb:71:2f:f6:c4:7a:65:1d:75:d5:fb:e4:31: 49:ea:5b:55:5d:54:ea:c6:ee:1f:ea:46:00:09:a1: 68:ef:71:b4:ce:12:28:f0:2e:94:95:f1:4b:51:ff: 67:20:1f:15:ae:0f:36:a2:d2:34:11:46:27:ce:e0: 26:49:bc:e2:34:0e:98:6c:61:33:a3:58:10:d5:f3: 5a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:AB:51:EC:A6:23:D3:80:7A:5A:00:86:AE:FD:58:A8:DA:AA:76:E1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142323.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.222.0/24 Signature Algorithm: sha256WithRSAEncryption 08:ba:ea:a6:ac:3c:59:c9:90:a0:8c:e1:e0:69:b8:c0:ad:2a: f5:ce:e2:cb:cb:bd:91:e4:7c:99:60:96:c7:1b:3b:1b:89:2a: 8d:09:58:4b:ba:59:1e:13:40:be:79:74:26:b1:2b:37:0e:cd: 31:4a:f6:3e:6b:bf:34:39:f8:24:fd:a7:f3:38:4d:6a:db:28: b9:a0:51:66:be:7e:8f:29:a7:37:bb:93:cf:81:73:93:03:aa: 2d:bf:e7:e8:85:9e:c7:1f:df:b9:f1:c9:08:5e:d7:30:03:01: 0b:b2:32:da:ef:e7:57:61:69:27:04:6a:64:0e:c5:2d:06:e1: 41:aa:1c:9d:04:75:f8:d7:24:eb:fe:15:79:0f:38:57:6f:78: 52:85:db:8e:c1:57:6e:7d:3c:46:1d:18:38:b8:ab:f3:d1:bb: 4b:cd:3a:e7:24:cb:2b:ab:9d:ef:06:5c:6c:83:4c:95:a9:41: 3a:01:18:28:dc:60:fa:f4:d3:12:24:00:cc:47:d7:c4:78:aa: 11:b2:f6:d9:15:a8:51:e2:98:2d:68:c3:7b:25:77:a5:e9:fd: ca:ba:21:ec:22:52:e5:de:ca:89:ae:88:00:22:9c:d4:aa:78: 93:78:d7:38:51:a3:58:38:4a:6c:46:1f:de:91:5d:d7:19:e3: 97:da:7a:01 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIURBME8QSlR2/7IQvkc7KAo1JSgQIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxMVoX DTI1MDEwNzA0MDAxMVowMzExMC8GA1UEAxMoMTBBQjUxRUNBNjIzRDM4MDdBNUEw MDg2QUVGRDU4QThEQUFBNzZFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQoxn5p82sqddg/NyVGTVkuMcZTsRJZW9AUMneOlZXEGb83TAVGRENhseQJ ZlFgNHJ4UOchMoqveiBe1ustP/wfR/Hzh1/XEtorYCNIGtC+uU0IjI9/b+YVz+jX ccUd3qaowndEG1trTtDTQDktMEJW0P3Xjv0zVqZRxjDz9glDDOmtzRg/bF5daYOR 1wwOp23FwMY2rQMTwgZSyB+hsA5MPgItfAXQC0GyIU/I3rQvkc1zUE27cS/2xHpl HXXV++QxSepbVV1U6sbuH+pGAAmhaO9xtM4SKPAulJXxS1H/ZyAfFa4PNqLSNBFG J87gJkm84jQOmGxhM6NYENXzWisCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQQq1Hs piPTgHpaAIau/Vio2qp24TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGen3jANBgkqhkiG9w0BAQsFAAOCAQEACLrqpqw8WcmQoIzh4Gm4 wK0q9c7iy8u9keR8mWCWxxs7G4kqjQlYS7pZHhNAvnl0JrErNw7NMUr2Pmu/NDn4 JP2n8zhNatsouaBRZr5+jymnN7uTz4FzkwOqLb/n6IWexx/fufHJCF7XMAMBC7Iy 2u/nV2FpJwRqZA7FLQbhQaocnQR1+Nck6/4VeQ84V294UoXbjsFXbn08Rh0YOLir 89G7S8065yTLK6ud7wZcbINMlalBOgEYKNxg+vTTEiQAzEfXxHiqEbL22RWoUeKY LWjDeyV3pen9yroh7CJS5d7Kia6IACKc1Kp4k3jXOFGjWDhKbEYf3pFd1xnjl9p6 AQ== -----END CERTIFICATE-----Generated at Thu May 9 00:29:15 2024 by rpki-client on console-ams.rpki-client.org