$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142342.roa File: AS142342.roa (raw, json) Hash identifier: TcUp6MU9ZLyYtXsMNQosEEq5Wt5R0QuToEKlZDUJS/Y= Subject key identifier: F7:8D:B1:45:02:35:BC:88:FC:D7:FD:6B:65:0F:A0:EC:EB:D2:D7:B4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 79C7FA3ED1754D08D28F40B9DB443ED28CC130C6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142342.roa Signing time: Fri 05 Jan 2024 06:38:10 +0000 ROA not before: Fri 05 Jan 2024 06:33:10 +0000 ROA not after: Fri 03 Jan 2025 06:38:10 +0000 asID: 142342 IP address blocks: 2001:df2:2c40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:c7:fa:3e:d1:75:4d:08:d2:8f:40:b9:db:44:3e:d2:8c:c1:30:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 5 06:33:10 2024 GMT Not After : Jan 3 06:38:10 2025 GMT Subject: CN=F78DB1450235BC88FCD7FD6B650FA0ECEBD2D7B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:44:9a:b7:62:c7:c0:15:cb:87:2b:b1:18:5f: 1a:42:b2:ef:ea:b3:72:f0:26:d3:99:9c:e1:95:ca: 53:60:40:6c:2b:50:5e:92:b7:2b:94:e7:2e:6a:33: a4:0e:fd:90:6e:5d:0c:13:7f:fc:7d:73:96:f1:fa: ed:e9:dd:ed:cd:08:ad:64:20:1d:4e:ca:0d:64:3e: 57:4b:bd:ce:4f:33:9a:99:69:4b:13:ed:57:d9:d2: 6b:4c:05:84:c2:77:7e:c8:f0:9b:13:0b:91:32:ad: 07:fa:97:55:c6:b2:64:e8:25:0f:81:95:c3:50:af: da:88:cd:1d:42:fc:7e:af:73:d5:40:f5:88:e9:4e: c0:50:c8:7e:3d:5a:c2:6f:03:8e:76:3f:3c:61:39: a6:bd:50:98:3a:dd:d1:79:5a:e4:89:51:b5:89:f8: 5a:93:07:fc:55:dd:d7:6a:37:0e:97:dd:4e:0f:56: ba:6d:bb:0c:6b:84:53:50:f7:82:c3:f2:b1:0e:40: d3:bd:27:01:29:08:53:a8:b5:3c:89:df:29:9d:ed: dc:88:56:33:43:21:09:ad:8b:98:d6:0d:43:25:b9: 0f:56:36:16:e1:71:ff:ee:ab:a3:c1:2f:ec:8f:d2: 38:4e:bf:cf:18:5b:ff:e8:8b:f8:da:f5:2c:52:ce: bc:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:8D:B1:45:02:35:BC:88:FC:D7:FD:6B:65:0F:A0:EC:EB:D2:D7:B4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142342.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:2c40::/48 Signature Algorithm: sha256WithRSAEncryption 88:3e:46:cc:4a:4a:cd:b9:dc:93:25:b3:7e:48:5b:08:7a:b5: 04:6b:59:14:c5:29:a6:65:5a:76:48:68:4e:52:10:f5:39:17: 8e:65:61:a3:cb:e8:73:1e:fc:80:42:66:36:9b:4f:8f:30:b8: 65:86:ea:85:58:56:d7:22:29:34:70:1d:e4:21:c1:cc:8d:c7: 2c:c9:ba:45:82:ef:f8:ca:19:6e:c3:42:28:60:0e:9b:e4:b9: 14:91:97:25:2f:07:81:99:80:98:b3:e2:ca:e8:f8:7f:ea:0a: 5e:e1:c0:7a:31:db:14:38:35:47:96:f7:34:00:42:42:39:44: 7c:bb:6c:ce:4b:84:bc:ce:bd:f1:6f:f8:d6:6c:48:63:74:ac: d0:41:98:85:f2:4b:53:a4:97:1d:ac:09:7b:d7:b8:3d:28:c5: 14:25:e2:5f:c5:0e:e5:45:20:cb:0e:29:22:9c:9a:cf:ce:e0: d6:16:c7:71:83:38:d1:22:ab:46:10:3d:d0:e8:54:33:4a:89: 95:2f:40:0c:e7:be:12:9a:9d:d3:ac:9a:38:61:d9:87:8f:2c: fe:64:9f:29:df:14:f8:7a:84:b1:b1:67:22:bf:87:50:d9:5f: 30:44:68:c0:44:9a:d0:74:1e:5e:53:4d:65:5a:9a:79:3b:a2: 82:f8:16:78 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUecf6PtF1TQjSj0C520Q+0ozBMMYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwNTA2MzMxMFoX DTI1MDEwMzA2MzgxMFowMzExMC8GA1UEAxMoRjc4REIxNDUwMjM1QkM4OEZDRDdG RDZCNjUwRkEwRUNFQkQyRDdCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFEmrdix8AVy4crsRhfGkKy7+qzcvAm05mc4ZXKU2BAbCtQXpK3K5TnLmoz pA79kG5dDBN//H1zlvH67end7c0IrWQgHU7KDWQ+V0u9zk8zmplpSxPtV9nSa0wF hMJ3fsjwmxMLkTKtB/qXVcayZOglD4GVw1Cv2ojNHUL8fq9z1UD1iOlOwFDIfj1a wm8DjnY/PGE5pr1QmDrd0Xla5IlRtYn4WpMH/FXd12o3DpfdTg9Wum27DGuEU1D3 gsPysQ5A070nASkIU6i1PInfKZ3t3IhWM0MhCa2LmNYNQyW5D1Y2FuFx/+6ro8Ev 7I/SOE6/zxhb/+iL+Nr1LFLOvDsCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBT3jbFF AjW8iPzX/WtlD6Ds69LXtDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM0Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfIsQDANBgkqhkiG9w0BAQsFAAOCAQEAiD5GzEpKzbnckyWz fkhbCHq1BGtZFMUppmVadkhoTlIQ9TkXjmVho8vocx78gEJmNptPjzC4ZYbqhVhW 1yIpNHAd5CHBzI3HLMm6RYLv+MoZbsNCKGAOm+S5FJGXJS8HgZmAmLPiyuj4f+oK XuHAejHbFDg1R5b3NABCQjlEfLtszkuEvM698W/41mxIY3Ss0EGYhfJLU6SXHawJ e9e4PSjFFCXiX8UO5UUgyw4pIpyaz87g1hbHcYM40SKrRhA90OhUM0qJlS9ADOe+ Epqd06yaOGHZh48s/mSfKd8U+HqEsbFnIr+HUNlfMERowESa0HQeXlNNZVqaeTui gvgWeA== -----END CERTIFICATE-----Generated at Wed May 8 07:45:27 2024 by rpki-client on console-ams.rpki-client.org