$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142364.roa File: AS142364.roa (raw, json) Hash identifier: fwzbOpwyG4n/U8kmL1dlf4QhM7lcCFQxxVgNuiQnprM= Subject key identifier: A7:54:93:BD:07:23:5D:42:AC:DA:BC:4B:C5:2C:19:FA:2B:4C:62:88 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7885F3B19FC0635D16E165091B317ABA53100AF5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142364.roa Signing time: Tue 21 Jan 2025 03:00:00 +0000 ROA not before: Tue 21 Jan 2025 02:55:00 +0000 ROA not after: Tue 20 Jan 2026 03:00:00 +0000 asID: 142364 IP address blocks: 2407:c6c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:85:f3:b1:9f:c0:63:5d:16:e1:65:09:1b:31:7a:ba:53:10:0a:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 21 02:55:00 2025 GMT Not After : Jan 20 03:00:00 2026 GMT Subject: CN=A75493BD07235D42ACDABC4BC52C19FA2B4C6288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6c:68:b0:18:49:32:4a:41:8b:71:d2:e8:c4: 7e:90:ee:6c:89:70:ef:03:db:58:c2:d8:4e:18:ca: 54:76:b0:0a:3d:23:eb:00:47:c1:04:cd:1b:85:4a: 83:38:32:6e:48:55:ec:a9:dc:32:d8:0c:23:9b:ab: f7:97:9a:b8:cd:f6:97:11:c4:1d:df:fd:5a:78:c8: e5:36:f4:34:14:a2:47:30:5e:a3:5c:49:51:6d:55: 84:1b:51:4f:92:a4:63:a5:b9:b3:bc:9a:59:b9:79: 0a:3c:4e:7a:91:69:e5:00:92:74:03:3d:85:25:32: ca:7b:dc:b4:1c:d6:20:55:d9:ba:c2:a3:7d:9a:85: 0d:e8:07:be:e9:6e:fd:60:d2:d4:69:42:44:e9:00: f4:fc:b2:93:f9:e5:77:19:97:df:de:3a:14:d5:aa: 0b:76:5f:7a:9c:9d:2d:f9:78:47:f9:28:a5:46:72: 6e:ba:53:ba:3a:4a:ec:9b:70:23:02:82:1d:6d:db: f7:84:ec:51:92:f2:12:f4:7c:08:83:90:ef:76:e9: 9d:5e:06:96:23:16:fc:04:7d:f5:32:b1:46:a1:20: 9e:0b:41:db:8a:94:3b:54:ed:8a:66:de:79:f0:b6: 2f:ee:1b:48:6b:60:96:f6:44:0a:f6:1f:ea:cd:63: 7c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:54:93:BD:07:23:5D:42:AC:DA:BC:4B:C5:2C:19:FA:2B:4C:62:88 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142364.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:c6c0::/32 Signature Algorithm: sha256WithRSAEncryption 75:61:f5:a9:eb:38:98:03:30:e5:91:aa:0e:ac:53:cd:a0:83: 19:71:d8:e4:c2:1d:3f:7d:b8:34:98:a8:fa:15:f7:55:3f:01: 43:6f:18:25:2c:13:db:9d:c7:9b:1f:08:ad:85:59:3c:c7:27: 42:37:b7:39:67:41:09:7c:94:04:0c:03:b8:24:ee:83:ec:bc: b0:93:16:e2:a1:ee:21:ce:05:c9:0a:21:6f:f7:c1:69:b7:d1: 44:59:7f:9f:96:68:bc:5d:b8:ab:43:ca:bb:c0:97:11:42:4f: 9f:30:e5:f5:4f:7d:c6:e6:6e:45:79:f2:e4:65:dd:03:12:50: 68:05:f0:31:ef:4c:96:7f:4a:69:ba:d3:67:a7:c4:e8:44:77: 6b:5a:6c:73:16:69:dd:91:00:1f:66:2c:c7:28:88:c1:c5:ff: 48:7e:d6:1a:38:bb:3f:23:ce:a6:f5:02:88:db:00:39:8f:77: 85:0e:15:52:7b:93:ce:6a:af:42:ca:97:5c:c2:58:19:d7:5e: 46:57:b0:1e:2c:f2:30:b6:e4:7d:a7:aa:73:aa:bb:be:3f:1a: fd:21:d4:56:63:8f:43:08:4a:41:81:2b:40:64:00:54:8a:e5: 02:22:8d:17:92:04:7d:48:24:2f:32:cd:51:e2:6d:62:b3:03: 2c:bb:fc:79 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUeIXzsZ/AY10W4WUJGzF6ulMQCvUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEyMTAyNTUwMFoX DTI2MDEyMDAzMDAwMFowMzExMC8GA1UEAxMoQTc1NDkzQkQwNzIzNUQ0MkFDREFC QzRCQzUyQzE5RkEyQjRDNjI4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALxsaLAYSTJKQYtx0ujEfpDubIlw7wPbWMLYThjKVHawCj0j6wBHwQTNG4VK gzgybkhV7KncMtgMI5ur95eauM32lxHEHd/9WnjI5Tb0NBSiRzBeo1xJUW1VhBtR T5KkY6W5s7yaWbl5CjxOepFp5QCSdAM9hSUyynvctBzWIFXZusKjfZqFDegHvulu /WDS1GlCROkA9Pyyk/nldxmX3946FNWqC3ZfepydLfl4R/kopUZybrpTujpK7Jtw IwKCHW3b94TsUZLyEvR8CIOQ73bpnV4GliMW/AR99TKxRqEgngtB24qUO1Ttimbe efC2L+4bSGtglvZECvYf6s1jfNsCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSnVJO9 ByNdQqzavEvFLBn6K0xiiDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQHxsAwDQYJKoZIhvcNAQELBQADggEBAHVh9anrOJgDMOWRqg6s U82ggxlx2OTCHT99uDSYqPoV91U/AUNvGCUsE9udx5sfCK2FWTzHJ0I3tzlnQQl8 lAQMA7gk7oPsvLCTFuKh7iHOBckKIW/3wWm30URZf5+WaLxduKtDyrvAlxFCT58w 5fVPfcbmbkV58uRl3QMSUGgF8DHvTJZ/Smm602enxOhEd2tabHMWad2RAB9mLMco iMHF/0h+1ho4uz8jzqb1AojbADmPd4UOFVJ7k85qr0LKl1zCWBnXXkZXsB4s8jC2 5H2nqnOqu74/Gv0h1FZjj0MISkGBK0BkAFSK5QIijReSBH1IJC8yzVHibWKzAyy7 /Hk= -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:39 2025 by rpki-client