$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142323.roa File: AS142323.roa (raw, json) Hash identifier: TIr34Vh9mdtfjQrzBnU1DXcXZSxsnnW6ULUNJOCmdpw= Subject key identifier: 50:1E:35:EA:84:11:BE:BE:87:A9:A2:5C:0C:A2:48:0B:80:B8:66:52 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5287AE47067F2F6596E6C79D6C9CDE0C0DE6D4E0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142323.roa Signing time: Tue 10 Dec 2024 05:00:09 +0000 ROA not before: Tue 10 Dec 2024 04:55:09 +0000 ROA not after: Tue 09 Dec 2025 05:00:09 +0000 asID: 142323 IP address blocks: 103.167.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:87:ae:47:06:7f:2f:65:96:e6:c7:9d:6c:9c:de:0c:0d:e6:d4:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:09 2024 GMT Not After : Dec 9 05:00:09 2025 GMT Subject: CN=501E35EA8411BEBE87A9A25C0CA2480B80B86652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b5:6c:0a:33:e6:b3:63:7e:50:7b:8e:fb:65: 0b:44:aa:c9:af:29:ae:21:03:e6:fd:91:e6:66:c0: e9:71:c5:e6:c9:8f:59:ac:67:b6:6e:63:62:a7:32: fb:2b:36:d6:54:b6:19:bf:7e:0c:62:85:17:0d:15: 07:20:be:30:b1:c9:ad:26:ca:9f:1c:ba:2e:01:e2: 6c:83:b4:25:c3:9e:46:df:5a:72:0e:18:8c:96:44: 1c:55:70:07:ee:7b:52:a5:ba:75:49:d4:b2:41:26: d2:0d:55:a5:b4:a8:44:84:f4:9e:a9:ce:63:53:9d: 11:33:d6:28:ae:88:cc:f3:f8:68:65:14:89:39:ac: be:c8:73:93:ab:6a:ac:33:86:49:50:52:28:d8:ed: c5:87:6e:75:7f:19:88:13:e0:5d:0c:2c:75:0d:19: 51:53:ae:3e:2e:75:63:3f:f1:d2:40:a1:aa:4d:71: 3e:a4:2d:63:bf:fa:90:26:15:4c:50:9e:94:50:60: 5f:9c:f9:53:fb:f3:0f:d4:f2:6f:69:3e:69:23:ee: b6:1d:c5:d7:3c:3e:e9:0f:69:8a:f5:e0:b3:51:12: 26:e2:19:53:ec:50:9a:c1:54:8b:b3:e5:8d:b9:06: de:73:37:53:79:be:c5:c7:f7:cd:ba:96:6f:46:e8: 39:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:1E:35:EA:84:11:BE:BE:87:A9:A2:5C:0C:A2:48:0B:80:B8:66:52 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142323.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.222.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:8e:3e:c5:96:cf:89:3f:3e:70:6a:e5:1c:96:5e:f5:4b:21: 1b:56:94:91:d4:20:5e:82:d9:b5:ef:af:db:a4:ba:9b:45:c2: b0:21:13:f5:53:f7:24:ee:9c:9b:70:0c:4d:08:04:36:f3:a1: 32:bb:70:b0:f6:f2:e0:4d:f1:37:b9:5f:71:0a:5e:d9:7c:ce: cc:57:2d:1c:a5:d1:27:6f:45:6c:1c:4a:73:ba:e6:51:10:53: 78:4b:3e:b5:eb:69:09:9c:c0:3c:cf:55:80:c4:5b:ef:46:0e: ee:fe:e7:f1:28:e9:e3:e2:01:e5:6b:ce:b1:14:10:df:aa:dc: 00:f4:0e:c1:70:d0:0c:23:4c:2f:85:e6:9f:1b:91:ec:97:b6: 4b:31:e0:22:e7:6a:7d:6c:a0:7d:b5:3f:a3:31:03:57:ed:48: f9:12:20:87:53:2b:13:1b:8f:a9:2a:47:a2:a9:ea:55:4c:96: 3e:a7:0e:5a:60:7a:00:33:f2:83:a2:b9:b5:8f:97:ad:d9:ef: 80:23:e1:66:a4:d4:6b:cb:94:1b:f0:89:b5:e5:f7:90:12:8d: e4:4e:92:8d:f7:db:24:c9:07:a7:64:d5:4b:5e:6e:ff:b2:24: 41:df:08:27:c4:a2:c8:16:21:45:b0:83:cc:6e:ab:03:7a:99: e5:24:cf:43 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUoeuRwZ/L2WW5sedbJzeDA3m1OAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwOVoX DTI1MTIwOTA1MDAwOVowMzExMC8GA1UEAxMoNTAxRTM1RUE4NDExQkVCRTg3QTlB MjVDMENBMjQ4MEI4MEI4NjY1MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANC1bAoz5rNjflB7jvtlC0Sqya8priED5v2R5mbA6XHF5smPWaxntm5jYqcy +ys21lS2Gb9+DGKFFw0VByC+MLHJrSbKnxy6LgHibIO0JcOeRt9acg4YjJZEHFVw B+57UqW6dUnUskEm0g1VpbSoRIT0nqnOY1OdETPWKK6IzPP4aGUUiTmsvshzk6tq rDOGSVBSKNjtxYdudX8ZiBPgXQwsdQ0ZUVOuPi51Yz/x0kChqk1xPqQtY7/6kCYV TFCelFBgX5z5U/vzD9Tyb2k+aSPuth3F1zw+6Q9pivXgs1ESJuIZU+xQmsFUi7Pl jbkG3nM3U3m+xcf3zbqWb0boOfsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRQHjXq hBG+voepolwMokgLgLhmUjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGen3jANBgkqhkiG9w0BAQsFAAOCAQEAHI4+xZbPiT8+cGrlHJZe 9UshG1aUkdQgXoLZte+v26S6m0XCsCET9VP3JO6cm3AMTQgENvOhMrtwsPby4E3x N7lfcQpe2XzOzFctHKXRJ29FbBxKc7rmURBTeEs+tetpCZzAPM9VgMRb70YO7v7n 8Sjp4+IB5WvOsRQQ36rcAPQOwXDQDCNML4XmnxuR7Je2SzHgIudqfWygfbU/ozED V+1I+RIgh1MrExuPqSpHoqnqVUyWPqcOWmB6ADPyg6K5tY+XrdnvgCPhZqTUa8uU G/CJteX3kBKN5E6SjffbJMkHp2TVS15u/7IkQd8IJ8SiyBYhRbCDzG6rA3qZ5STP Qw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:17 2025 by rpki-client