$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142359.roa File: AS142359.roa (raw, json) Hash identifier: HY1ba5xkGkK5i8L1TV0wq1PZlkMQ1tYGQzsSDBEG1y4= Subject key identifier: 85:4D:D9:8E:CC:FF:4D:3F:46:C8:59:AD:4D:9E:DA:16:06:D3:FD:B3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 07DF31D9B3BA032037C84DAA2ED286A975398F8C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142359.roa Signing time: Tue 10 Dec 2024 05:00:17 +0000 ROA not before: Tue 10 Dec 2024 04:55:17 +0000 ROA not after: Tue 09 Dec 2025 05:00:17 +0000 asID: 142359 IP address blocks: 103.170.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:df:31:d9:b3:ba:03:20:37:c8:4d:aa:2e:d2:86:a9:75:39:8f:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:17 2024 GMT Not After : Dec 9 05:00:17 2025 GMT Subject: CN=854DD98ECCFF4D3F46C859AD4D9EDA1606D3FDB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:35:a1:86:11:55:7f:25:68:d2:97:17:d2:1c: 81:06:f9:e1:e3:1c:78:a8:5b:b7:8f:0b:8e:0e:db: a8:71:85:66:3d:94:ae:01:cd:04:98:4f:0f:44:63: 8e:22:a3:a7:4b:03:a3:5e:04:b8:7a:87:7e:08:cf: 91:65:85:29:52:c7:45:b6:73:5c:48:12:cf:61:1b: 2e:ec:97:dd:e3:85:6c:a5:74:54:2b:9f:f8:b8:4b: b8:d9:9a:a8:1a:9a:b3:ac:8a:78:cc:a2:90:eb:18: 5e:15:07:43:ca:04:b9:41:87:a7:d5:19:78:71:e8: 4c:da:b7:c7:07:3f:cb:4e:0b:ea:bf:10:62:f8:5d: 1d:c0:a3:1a:bb:8b:a3:c4:96:a8:e1:e0:18:30:bc: 2a:de:aa:a8:f3:9f:04:fd:b2:f5:08:ec:f3:03:13: 5e:c7:ed:39:59:75:22:1c:4d:5f:b6:c6:83:90:6a: 8a:eb:fc:c7:5c:61:aa:a6:b6:cb:19:8e:49:18:e6: e3:b0:43:af:9e:75:4e:3d:77:dd:21:bb:c3:da:1e: ea:87:d0:fd:e7:d5:ff:0b:f5:de:11:16:9f:e0:17: 31:40:69:29:24:af:2f:67:21:82:9e:08:22:52:99: ec:f6:15:72:f3:4e:8d:4b:1d:02:7a:24:38:0e:81: 95:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:4D:D9:8E:CC:FF:4D:3F:46:C8:59:AD:4D:9E:DA:16:06:D3:FD:B3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142359.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.23.0/24 Signature Algorithm: sha256WithRSAEncryption 70:3a:79:5d:dd:31:27:40:6d:31:1e:4a:3a:6f:29:e6:f9:db: 3d:88:fd:d3:14:db:10:31:b5:15:a0:79:9f:14:41:21:cb:d0: fb:97:ea:57:99:01:68:0f:fd:58:1c:86:c2:1f:92:ef:1a:b7: c8:85:88:ee:8a:38:d8:82:20:50:42:13:98:cf:6d:29:8b:a1: e9:f7:55:6f:b0:da:f1:08:f4:89:d3:fd:3c:e6:f8:46:c2:d9: 59:bd:79:99:2d:c9:5e:4e:59:f3:7c:23:cb:c7:04:d2:52:7c: c5:c2:34:31:93:5d:b7:f8:8f:2f:af:3c:ca:69:b3:36:83:0c: cc:82:d6:1a:8f:49:2b:7f:50:20:2f:28:ba:37:73:73:7b:8c: 23:ae:54:c6:5e:bb:eb:d1:7e:eb:65:e5:ea:18:c1:63:b2:05: ed:29:aa:a2:ae:34:05:6b:f1:02:4f:95:0c:aa:5e:1f:ab:8c: 7b:00:79:f5:15:a7:fc:0b:fd:07:00:cd:23:32:fd:08:4f:5f: 1e:0b:3d:02:bd:43:ce:87:6a:73:ee:11:80:7d:0e:6d:af:fb: d5:2e:9c:88:b1:06:3a:50:54:eb:8e:d7:3b:db:c3:ef:95:a3: 8e:1d:f1:8e:78:9a:56:ae:fa:f6:ab:fb:09:fe:e0:9f:8c:11: 52:f8:8a:15 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUB98x2bO6AyA3yE2qLtKGqXU5j4wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxN1oX DTI1MTIwOTA1MDAxN1owMzExMC8GA1UEAxMoODU0REQ5OEVDQ0ZGNEQzRjQ2Qzg1 OUFENEQ5RURBMTYwNkQzRkRCMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL41oYYRVX8laNKXF9IcgQb54eMceKhbt48Ljg7bqHGFZj2UrgHNBJhPD0Rj jiKjp0sDo14EuHqHfgjPkWWFKVLHRbZzXEgSz2EbLuyX3eOFbKV0VCuf+LhLuNma qBqas6yKeMyikOsYXhUHQ8oEuUGHp9UZeHHoTNq3xwc/y04L6r8QYvhdHcCjGruL o8SWqOHgGDC8Kt6qqPOfBP2y9Qjs8wMTXsftOVl1IhxNX7bGg5Bqiuv8x1xhqqa2 yxmOSRjm47BDr551Tj133SG7w9oe6ofQ/efV/wv13hEWn+AXMUBpKSSvL2chgp4I IlKZ7PYVcvNOjUsdAnokOA6BlaMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSFTdmO zP9NP0bIWa1NntoWBtP9szAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM1OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeqFzANBgkqhkiG9w0BAQsFAAOCAQEAcDp5Xd0xJ0BtMR5KOm8p 5vnbPYj90xTbEDG1FaB5nxRBIcvQ+5fqV5kBaA/9WByGwh+S7xq3yIWI7oo42IIg UEITmM9tKYuh6fdVb7Da8Qj0idP9POb4RsLZWb15mS3JXk5Z83wjy8cE0lJ8xcI0 MZNdt/iPL688ymmzNoMMzILWGo9JK39QIC8oujdzc3uMI65Uxl6769F+62Xl6hjB Y7IF7Smqoq40BWvxAk+VDKpeH6uMewB59RWn/Av9BwDNIzL9CE9fHgs9Ar1Dzodq c+4RgH0Oba/71S6ciLEGOlBU647XO9vD75Wjjh3xjniaVq769qv7Cf7gn4wRUviK FQ== -----END CERTIFICATE-----Generated at Sun Feb 16 20:53:49 2025 by rpki-client