$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142370.roa File: AS142370.roa (raw, json) Hash identifier: 4Pc9CBTM2IApZMG/06ak4/f1xgCUHxKieWPXfV7Mp5g= Subject key identifier: 08:F1:D4:48:DA:04:BE:C5:47:BF:11:80:DE:C1:DA:2F:94:39:1F:9F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7862BC424A7BDAEEF14782C5BCE6A83CFBA87E1B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142370.roa Signing time: Mon 04 Dec 2023 04:00:00 +0000 ROA not before: Mon 04 Dec 2023 03:55:00 +0000 ROA not after: Mon 02 Dec 2024 04:00:00 +0000 asID: 142370 IP address blocks: 2001:df1:c1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:62:bc:42:4a:7b:da:ee:f1:47:82:c5:bc:e6:a8:3c:fb:a8:7e:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 4 03:55:00 2023 GMT Not After : Dec 2 04:00:00 2024 GMT Subject: CN=08F1D448DA04BEC547BF1180DEC1DA2F94391F9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cd:58:d8:ce:51:1c:ec:f3:9e:86:16:0b:6e: 37:65:26:f0:1f:f3:07:39:7f:db:9e:ec:f1:b1:74: d5:11:c3:7f:7d:3d:6a:08:c7:e6:ba:8c:ad:10:cb: b1:08:0e:3d:a1:e1:a1:e4:44:c4:e5:2a:2f:d6:23: 8f:b8:98:5c:8a:f3:5f:45:05:f5:2a:ef:70:33:5c: 0c:de:ff:72:c3:ad:9c:3e:69:66:f4:89:af:e6:ad: d6:c9:b7:45:1a:01:93:65:56:8e:96:61:2b:40:e4: 50:ee:0c:b7:ef:65:70:b5:31:80:40:b4:5c:c1:c8: c5:5b:3b:3b:3a:57:c1:ac:b7:8e:dd:80:5a:c2:6f: c4:e8:fe:ce:08:8a:bf:c4:ab:cc:1a:33:fa:9d:a8: 8e:4f:2b:0e:52:ea:4e:a5:d2:e8:74:41:c8:5e:8d: d6:db:ad:18:ac:db:0e:9c:d2:4e:f1:47:cf:f3:dc: 19:ef:c2:42:7b:17:b9:46:bf:51:ef:8b:a4:82:ca: c3:50:22:10:96:52:4d:47:90:cd:8a:9e:81:97:0b: 07:e8:0c:9d:22:83:a3:97:38:9d:b8:1f:3b:2c:72: be:d2:ad:88:6c:de:2a:87:33:a5:fe:69:5c:fd:c5: 33:29:3f:82:7b:70:55:17:e7:b9:24:54:81:72:0f: 4e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F1:D4:48:DA:04:BE:C5:47:BF:11:80:DE:C1:DA:2F:94:39:1F:9F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142370.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:c1c0::/48 Signature Algorithm: sha256WithRSAEncryption 2d:46:fa:f8:ef:d5:5d:b1:73:eb:7e:63:07:d9:6b:a3:21:a0: cf:7f:1f:d7:75:db:ea:81:4b:9d:7a:06:34:e5:0d:63:be:bc: 6a:59:ca:eb:a7:99:f2:4a:5a:a7:2b:3e:e1:38:aa:c9:c2:ef: 84:f2:de:e7:16:e9:e5:e8:be:05:e2:89:ac:bc:e6:47:25:72: 87:a6:b3:75:d5:3b:01:ab:70:2e:56:fb:cf:26:2d:ae:ce:ac: 07:6c:28:e7:3b:a2:df:92:6d:cc:7f:13:e8:9c:5f:aa:31:71: 15:21:62:6b:7a:65:a6:df:33:28:94:10:bc:2a:fd:ad:d3:91: da:41:0c:86:dc:14:b6:b7:e4:6f:fb:8c:e7:0b:da:12:20:b5: f1:81:5c:dd:a2:4d:8c:9b:16:57:a9:c1:bd:fb:9a:12:ec:81: 42:2b:d0:53:58:b1:13:bf:4d:42:8d:87:b2:ec:37:d2:30:28: 44:71:69:75:e7:90:51:a3:10:c9:ec:23:25:7d:c1:c4:36:37: 81:f1:f8:c8:7d:97:ef:3f:4f:7f:0c:5a:20:9c:d1:5c:09:01: 54:7b:6d:f3:6f:3d:7d:47:f3:b3:ea:63:c7:a7:19:ca:40:93: 33:1c:c3:a6:3b:98:22:02:f6:05:ec:f3:91:c6:51:c3:89:c0: b8:fc:44:3c -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUeGK8Qkp72u7xR4LFvOaoPPuofhswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIwNDAzNTUwMFoX DTI0MTIwMjA0MDAwMFowMzExMC8GA1UEAxMoMDhGMUQ0NDhEQTA0QkVDNTQ3QkYx MTgwREVDMURBMkY5NDM5MUY5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANTNWNjOURzs856GFgtuN2Um8B/zBzl/257s8bF01RHDf309agjH5rqMrRDL sQgOPaHhoeRExOUqL9Yjj7iYXIrzX0UF9SrvcDNcDN7/csOtnD5pZvSJr+at1sm3 RRoBk2VWjpZhK0DkUO4Mt+9lcLUxgEC0XMHIxVs7OzpXway3jt2AWsJvxOj+zgiK v8SrzBoz+p2ojk8rDlLqTqXS6HRByF6N1tutGKzbDpzSTvFHz/PcGe/CQnsXuUa/ Ue+LpILKw1AiEJZSTUeQzYqegZcLB+gMnSKDo5c4nbgfOyxyvtKtiGzeKoczpf5p XP3FMyk/gntwVRfnuSRUgXIPTn0CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQI8dRI 2gS+xUe/EYDewdovlDkfnzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM3MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfHBwDANBgkqhkiG9w0BAQsFAAOCAQEALUb6+O/VXbFz635j B9lroyGgz38f13Xb6oFLnXoGNOUNY768alnK66eZ8kpapys+4TiqycLvhPLe5xbp 5ei+BeKJrLzmRyVyh6azddU7AatwLlb7zyYtrs6sB2wo5zui35JtzH8T6JxfqjFx FSFia3plpt8zKJQQvCr9rdOR2kEMhtwUtrfkb/uM5wvaEiC18YFc3aJNjJsWV6nB vfuaEuyBQivQU1ixE79NQo2Hsuw30jAoRHFpdeeQUaMQyewjJX3BxDY3gfH4yH2X 7z9PfwxaIJzRXAkBVHtt8289fUfzs+pjx6cZykCTMxzDpjuYIgL2BezzkcZRw4nA uPxEPA== -----END CERTIFICATE-----Generated at Wed May 8 21:02:22 2024 by rpki-client on console-fra.rpki-client.org