$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142359.roa File: AS142359.roa (raw, json) Hash identifier: oO7Vy3B0STdNgXvhR7b1DlOw6d32g/t4VRW2gvToHTc= Subject key identifier: 4E:8B:49:A4:A6:2C:C2:60:19:DA:A8:F1:F5:E7:46:22:2C:52:30:C5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4FBB6958ABBA866073D6D2BC6609E3CEECCB7BA2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142359.roa Signing time: Tue 09 Jan 2024 04:00:21 +0000 ROA not before: Tue 09 Jan 2024 03:55:21 +0000 ROA not after: Tue 07 Jan 2025 04:00:21 +0000 asID: 142359 IP address blocks: 103.170.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:bb:69:58:ab:ba:86:60:73:d6:d2:bc:66:09:e3:ce:ec:cb:7b:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:21 2024 GMT Not After : Jan 7 04:00:21 2025 GMT Subject: CN=4E8B49A4A62CC26019DAA8F1F5E746222C5230C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:89:cd:9d:a4:6b:43:b1:87:27:9b:7e:3d:80: 92:cf:0c:e4:f3:de:34:a3:72:31:53:fc:e4:5e:1d: b9:9e:a5:28:2b:6e:b4:09:68:4d:a9:3a:2b:6e:07: 4e:81:38:33:92:a7:24:f7:98:00:1e:02:7e:59:ba: 2c:ea:53:2e:d8:01:90:ff:5e:15:38:30:4f:1a:13: e7:fb:7e:06:22:eb:58:08:71:6c:45:7a:a8:da:f4: a3:93:0a:c8:1f:98:08:fd:e1:f8:3e:ef:f4:98:45: fb:1a:5d:eb:3a:43:19:16:0f:10:3b:21:34:c6:65: 00:b4:b1:3d:9c:50:73:bd:a4:e5:f8:6c:68:c2:bb: cc:f2:a2:b1:58:1d:4d:a5:ab:5c:67:0f:84:a3:da: a5:ea:84:26:59:4a:bd:41:6c:65:e1:fe:f5:d5:94: e9:85:7e:30:7d:cc:53:9d:6d:c9:6c:13:7d:38:9c: 1f:9b:66:bb:a8:8e:79:f7:7a:64:25:48:32:31:0e: ea:64:77:ed:20:34:f3:d7:8b:a9:ae:10:c7:53:56: 50:3f:5a:ff:d3:76:03:f1:0d:e0:04:58:fa:ae:b2: 58:ac:b3:b6:a8:bc:36:60:a7:78:84:42:bd:29:d5: c4:c1:6f:6a:7e:f3:72:74:ea:cc:0f:96:37:6e:13: 5b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:8B:49:A4:A6:2C:C2:60:19:DA:A8:F1:F5:E7:46:22:2C:52:30:C5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142359.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.23.0/24 Signature Algorithm: sha256WithRSAEncryption 01:b6:bf:d7:13:3a:a0:85:27:51:75:0d:0b:56:6e:c7:fe:c1: 0b:99:59:67:1c:0a:4a:23:da:53:36:49:0a:f3:3c:d7:91:ae: cf:2a:c5:1d:cc:22:fb:23:60:b8:49:77:30:0e:bc:06:f4:1e: 04:26:12:a6:b8:17:1c:36:50:22:c0:de:27:39:5c:68:25:15: 14:56:62:bf:e2:ef:d6:bc:4f:8d:50:c7:5d:1a:90:6b:8f:27: 0e:24:ea:dc:b9:bc:ac:f3:a7:f7:01:d7:5c:b0:ea:06:8a:a4: 75:4d:28:47:ba:90:a8:df:5f:d1:34:bb:98:81:b5:1d:d4:39: ac:12:78:4b:4b:e5:b4:cf:b3:51:e0:ce:ab:8a:2a:44:4f:56: 1a:59:ac:6c:f1:b7:9e:af:b5:b6:f0:04:20:cc:8b:c1:a6:41: 2a:f8:32:9d:3b:74:e3:b9:ea:37:0b:83:10:f4:c6:f2:dd:c3: 12:74:f8:7d:9d:8f:ff:4e:49:29:61:34:40:1a:7a:0e:2a:4b: a6:39:05:45:f3:02:55:4e:72:3d:65:f9:0f:28:46:0f:d2:ea: 4f:98:9b:06:cc:e2:9b:45:78:5e:ac:ff:1d:55:f4:1c:6b:0c: bd:0d:3f:e4:5a:6b:2e:fc:e9:8b:5e:bc:72:d6:37:3a:57:36: d1:1b:15:6d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUT7tpWKu6hmBz1tK8ZgnjzuzLe6IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyMVoX DTI1MDEwNzA0MDAyMVowMzExMC8GA1UEAxMoNEU4QjQ5QTRBNjJDQzI2MDE5REFB OEYxRjVFNzQ2MjIyQzUyMzBDNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN+JzZ2ka0Oxhyebfj2Aks8M5PPeNKNyMVP85F4duZ6lKCtutAloTak6K24H ToE4M5KnJPeYAB4Cflm6LOpTLtgBkP9eFTgwTxoT5/t+BiLrWAhxbEV6qNr0o5MK yB+YCP3h+D7v9JhF+xpd6zpDGRYPEDshNMZlALSxPZxQc72k5fhsaMK7zPKisVgd TaWrXGcPhKPapeqEJllKvUFsZeH+9dWU6YV+MH3MU51tyWwTfTicH5tmu6iOefd6 ZCVIMjEO6mR37SA089eLqa4Qx1NWUD9a/9N2A/EN4ARY+q6yWKyztqi8NmCneIRC vSnVxMFvan7zcnTqzA+WN24TW8UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBROi0mk pizCYBnaqPH150YiLFIwxTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM1OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeqFzANBgkqhkiG9w0BAQsFAAOCAQEAAba/1xM6oIUnUXUNC1Zu x/7BC5lZZxwKSiPaUzZJCvM815GuzyrFHcwi+yNguEl3MA68BvQeBCYSprgXHDZQ IsDeJzlcaCUVFFZiv+Lv1rxPjVDHXRqQa48nDiTq3Lm8rPOn9wHXXLDqBoqkdU0o R7qQqN9f0TS7mIG1HdQ5rBJ4S0vltM+zUeDOq4oqRE9WGlmsbPG3nq+1tvAEIMyL waZBKvgynTt047nqNwuDEPTG8t3DEnT4fZ2P/05JKWE0QBp6DipLpjkFRfMCVU5y PWX5DyhGD9LqT5ibBszim0V4Xqz/HVX0HGsMvQ0/5FprLvzpi168ctY3Olc20RsV bQ== -----END CERTIFICATE-----Generated at Tue Apr 30 03:31:00 2024 by rpki-client on console-fra.rpki-client.org