$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142331.roa File: AS142331.roa (raw, json) Hash identifier: MKvm+D/JPLeN+Hu7Q7uktGvitUpa5YY1bwiefAsGTW8= Subject key identifier: 50:33:E3:8D:3C:0F:31:FF:94:EF:D3:99:1D:1D:45:71:CB:32:30:50 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7E8FDA7892FAC1069996CBFAA3485005C8B78F60 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142331.roa Signing time: Thu 28 Dec 2023 04:05:51 +0000 ROA not before: Thu 28 Dec 2023 04:00:51 +0000 ROA not after: Thu 26 Dec 2024 04:05:51 +0000 asID: 142331 IP address blocks: 113.192.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:8f:da:78:92:fa:c1:06:99:96:cb:fa:a3:48:50:05:c8:b7:8f:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 28 04:00:51 2023 GMT Not After : Dec 26 04:05:51 2024 GMT Subject: CN=5033E38D3C0F31FF94EFD3991D1D4571CB323050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:25:57:a5:06:34:0f:13:82:f0:c6:c1:79:6f: 44:7b:8e:41:b7:ed:4e:a8:fd:94:f5:ce:c2:13:54: 05:8b:96:d8:a6:c5:24:3e:c4:b2:0c:91:fc:37:35: 64:4a:a1:fb:8c:11:e3:78:a3:60:ea:71:54:31:2d: 70:5f:51:20:fd:e3:3d:27:7d:68:9f:47:58:44:7d: ed:0b:42:7a:e9:b5:f3:18:d6:60:8a:2c:4b:ad:a9: 22:2d:4e:5f:56:60:a7:20:4f:8d:b5:c2:45:f8:00: ed:c4:d2:79:51:ca:b2:ba:9b:e0:cb:0a:9f:1d:f3: 1f:d1:93:86:ce:67:f2:e4:35:40:eb:18:95:d8:fa: 41:c3:66:00:05:71:02:f2:b2:d1:98:4b:34:04:1a: 94:8b:8a:b2:9b:57:82:e1:1e:d3:37:cc:65:cf:49: ca:3d:9f:85:9f:6d:e9:d1:91:a7:c5:6f:85:54:41: c1:d2:31:85:0d:cf:c5:af:a2:c3:a2:7b:3d:65:0f: ad:54:ab:c6:e6:70:d8:42:74:e6:11:34:d3:ef:53: 1b:55:34:65:97:35:0d:7a:ab:59:f8:3b:68:49:c4: 4c:30:ee:d8:a6:45:1e:22:d5:97:2d:7c:05:f9:06: ec:05:8f:1e:b7:a4:18:d9:72:14:0b:2a:9f:59:d2: 50:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:33:E3:8D:3C:0F:31:FF:94:EF:D3:99:1D:1D:45:71:CB:32:30:50 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.192.3.0/24 Signature Algorithm: sha256WithRSAEncryption 49:a2:b6:fa:2e:09:5f:fc:2c:8e:64:1c:02:8a:38:83:f9:d2: 6f:46:1e:4a:59:2e:f4:53:bf:15:4c:b3:a7:3a:aa:93:af:70: ce:56:52:11:ae:58:52:38:af:8f:90:19:99:45:b8:70:4d:ac: 06:86:c1:26:4c:34:d2:bc:40:a2:41:56:0a:32:51:c4:4b:65: fc:c8:f3:7d:ba:9e:47:3d:93:68:36:4b:1c:ee:d4:61:3d:89: d5:45:2e:0c:50:b1:1a:39:9e:94:35:88:ed:4a:dd:4b:5c:6e: dc:71:f2:79:38:d4:14:3f:a3:02:60:6f:7f:77:04:8f:d4:a4: cf:d7:c8:0c:1c:c9:60:f0:c1:96:e5:2e:78:32:2f:62:2b:74: bb:22:00:e7:c4:a2:64:4b:12:64:84:a9:9b:0e:c7:1c:28:6d: c2:25:34:b4:92:55:5f:0a:e9:36:17:82:d6:50:e0:64:6d:af: b5:37:12:76:ad:d7:85:e9:6c:2d:c7:84:53:5e:e4:7c:9e:f0: bc:bb:21:a4:7b:66:4b:9b:9f:54:17:05:3d:bc:0e:6c:5d:76: d4:e0:54:3b:60:89:0f:c9:d8:04:ca:b5:97:52:5a:81:a6:ac: 1f:10:3a:ca:19:1b:04:1d:20:9d:9b:c3:3a:7e:02:f8:66:e3: 38:9e:3a:52 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfo/aeJL6wQaZlsv6o0hQBci3j2AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIyODA0MDA1MVoX DTI0MTIyNjA0MDU1MVowMzExMC8GA1UEAxMoNTAzM0UzOEQzQzBGMzFGRjk0RUZE Mzk5MUQxRDQ1NzFDQjMyMzA1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANElV6UGNA8TgvDGwXlvRHuOQbftTqj9lPXOwhNUBYuW2KbFJD7EsgyR/Dc1 ZEqh+4wR43ijYOpxVDEtcF9RIP3jPSd9aJ9HWER97QtCeum18xjWYIosS62pIi1O X1ZgpyBPjbXCRfgA7cTSeVHKsrqb4MsKnx3zH9GThs5n8uQ1QOsYldj6QcNmAAVx AvKy0ZhLNAQalIuKsptXguEe0zfMZc9Jyj2fhZ9t6dGRp8VvhVRBwdIxhQ3Pxa+i w6J7PWUPrVSrxuZw2EJ05hE00+9TG1U0ZZc1DXqrWfg7aEnETDDu2KZFHiLVly18 BfkG7AWPHrekGNlyFAsqn1nSUEkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRQM+ON PA8x/5Tv05kdHUVxyzIwUDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHHAAzANBgkqhkiG9w0BAQsFAAOCAQEASaK2+i4JX/wsjmQcAoo4 g/nSb0YeSlku9FO/FUyzpzqqk69wzlZSEa5YUjivj5AZmUW4cE2sBobBJkw00rxA okFWCjJRxEtl/MjzfbqeRz2TaDZLHO7UYT2J1UUuDFCxGjmelDWI7UrdS1xu3HHy eTjUFD+jAmBvf3cEj9Skz9fIDBzJYPDBluUueDIvYit0uyIA58SiZEsSZISpmw7H HChtwiU0tJJVXwrpNheC1lDgZG2vtTcSdq3XhelsLceEU17kfJ7wvLshpHtmS5uf VBcFPbwObF121OBUO2CJD8nYBMq1l1JagaasHxA6yhkbBB0gnZvDOn4C+GbjOJ46 Ug== -----END CERTIFICATE-----Generated at Wed May 8 09:50:38 2024 by rpki-client on console-fra.rpki-client.org