$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142364.roa File: AS142364.roa (raw, json) Hash identifier: YK6vBexg7p4hCq782m5RBEF0KW9QYkHwkQ1eLtYsrjs= Subject key identifier: 3D:18:A5:B5:53:FA:7A:62:0C:BC:CB:CA:7E:C6:44:FF:B5:4B:03:06 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 282BF851BC5BA0260E7424312AEBEB2E3BDC810C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142364.roa Signing time: Tue 20 Feb 2024 03:00:00 +0000 ROA not before: Tue 20 Feb 2024 02:55:00 +0000 ROA not after: Tue 18 Feb 2025 03:00:00 +0000 asID: 142364 IP address blocks: 2407:c6c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:2b:f8:51:bc:5b:a0:26:0e:74:24:31:2a:eb:eb:2e:3b:dc:81:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 20 02:55:00 2024 GMT Not After : Feb 18 03:00:00 2025 GMT Subject: CN=3D18A5B553FA7A620CBCCBCA7EC644FFB54B0306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b9:21:4c:e7:06:64:0d:de:2c:75:7a:5a:09: d7:3e:66:cb:2e:3e:9c:15:aa:53:db:cc:a9:ba:d6: 68:c9:1a:6e:2d:33:b3:16:6a:51:bf:78:2a:64:e6: 86:87:63:b3:62:e2:7a:41:80:64:5f:ef:0d:af:23: 27:e9:49:23:2f:21:01:ad:7c:dc:e7:c7:03:74:ac: cd:4c:6b:61:85:b4:92:04:a4:58:0c:29:3e:45:3c: ee:5c:ff:8c:c2:53:40:9d:d8:23:53:ca:3a:03:8c: 61:ed:4f:e2:ad:43:9f:2a:15:f6:66:94:7f:b6:f6: 35:e7:91:89:14:66:f6:e3:31:4f:a5:06:36:49:80: ce:39:69:b9:03:3e:c0:62:fc:aa:92:91:eb:68:67: de:05:47:a2:32:52:c3:ac:2b:7f:a6:55:c4:a6:8e: 58:86:59:9c:53:9a:ab:65:80:03:04:83:0b:4c:b1: 51:14:d2:be:1d:89:98:65:17:53:33:78:f4:a0:e6: e6:e1:f0:e6:2a:76:fa:1b:bd:60:49:a5:b1:85:0e: d5:30:b2:aa:1d:8f:c7:85:a9:f1:c3:a9:49:df:ad: db:fe:5a:4a:6e:4e:0c:6f:dc:d9:dd:86:f5:f7:ba: f3:6c:3d:2b:bb:0b:34:34:e2:b9:6c:84:42:a9:ad: 8b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:18:A5:B5:53:FA:7A:62:0C:BC:CB:CA:7E:C6:44:FF:B5:4B:03:06 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142364.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:c6c0::/32 Signature Algorithm: sha256WithRSAEncryption 59:20:7b:87:0b:e7:9a:a9:48:70:a9:4c:d1:88:82:9c:44:bc: 9f:1f:32:b5:6c:8a:14:cd:52:1a:f8:1c:0d:6a:ed:30:f4:ca: 11:dc:2d:e1:dc:2c:9e:f0:80:15:6e:42:18:68:05:d6:81:cd: 1f:ce:f9:f9:5c:e1:6f:d0:85:e4:d4:67:99:02:ef:64:2a:be: 75:40:ad:fc:18:49:34:11:8c:1c:8a:6a:b9:11:ea:a0:aa:ea: 90:33:60:be:f3:39:6e:af:f9:5b:f4:de:76:b5:77:22:b2:fc: 48:e5:09:ad:c0:37:3f:4a:81:4a:b5:a3:29:13:55:a3:d1:7f: 57:93:02:ad:56:5b:4a:40:c7:63:5c:56:7e:56:96:bb:78:f4: bd:8a:7e:a0:af:d4:49:83:73:be:81:15:a0:02:9d:eb:8e:de: 01:1a:04:ef:5c:69:3c:ac:fe:c9:f2:c3:4d:75:25:55:ff:5d: 54:61:76:df:c7:01:8f:10:66:53:5f:28:93:f2:4f:87:d5:c7: fc:f2:29:45:d5:f0:f3:06:77:c3:74:8e:2c:58:60:80:5b:cd: 7a:40:3f:48:76:bf:d1:e6:91:0b:3e:f7:ca:e6:30:c4:9d:cf: 65:06:60:45:5b:74:3b:1a:45:70:39:7b:87:02:64:60:a7:f8: b9:4b:5d:7c -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUKCv4UbxboCYOdCQxKuvrLjvcgQwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIyMDAyNTUwMFoX DTI1MDIxODAzMDAwMFowMzExMC8GA1UEAxMoM0QxOEE1QjU1M0ZBN0E2MjBDQkND QkNBN0VDNjQ0RkZCNTRCMDMwNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMy5IUznBmQN3ix1eloJ1z5myy4+nBWqU9vMqbrWaMkabi0zsxZqUb94KmTm hodjs2LiekGAZF/vDa8jJ+lJIy8hAa183OfHA3SszUxrYYW0kgSkWAwpPkU87lz/ jMJTQJ3YI1PKOgOMYe1P4q1DnyoV9maUf7b2NeeRiRRm9uMxT6UGNkmAzjlpuQM+ wGL8qpKR62hn3gVHojJSw6wrf6ZVxKaOWIZZnFOaq2WAAwSDC0yxURTSvh2JmGUX UzN49KDm5uHw5ip2+hu9YEmlsYUO1TCyqh2Px4Wp8cOpSd+t2/5aSm5ODG/c2d2G 9fe682w9K7sLNDTiuWyEQqmti+MCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBQ9GKW1 U/p6Ygy8y8p+xkT/tUsDBjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQHxsAwDQYJKoZIhvcNAQELBQADggEBAFkge4cL55qpSHCpTNGI gpxEvJ8fMrVsihTNUhr4HA1q7TD0yhHcLeHcLJ7wgBVuQhhoBdaBzR/O+flc4W/Q heTUZ5kC72QqvnVArfwYSTQRjByKarkR6qCq6pAzYL7zOW6v+Vv03na1dyKy/Ejl Ca3ANz9KgUq1oykTVaPRf1eTAq1WW0pAx2NcVn5Wlrt49L2KfqCv1EmDc76BFaAC neuO3gEaBO9caTys/snyw011JVX/XVRhdt/HAY8QZlNfKJPyT4fVx/zyKUXV8PMG d8N0jixYYIBbzXpAP0h2v9HmkQs+98rmMMSdz2UGYEVbdDsaRXA5e4cCZGCn+LlL XXw= -----END CERTIFICATE-----Generated at Tue May 7 16:42:40 2024 by rpki-client on console-ams.rpki-client.org