$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142373.roa File: AS142373.roa (raw, json) Hash identifier: eW9ZuEyxFPqjhp0G4ZPNnPiXmZDMaDipu2alqavQYzg= Subject key identifier: E1:D3:B0:B9:DD:30:E4:00:68:A8:EB:0C:03:FC:6A:8A:8F:30:2C:36 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 59A1C224B780146560119C6E5E23DAFA5C122C20 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142373.roa Signing time: Tue 09 Jan 2024 04:00:28 +0000 ROA not before: Tue 09 Jan 2024 03:55:28 +0000 ROA not after: Tue 07 Jan 2025 04:00:28 +0000 asID: 142373 IP address blocks: 103.171.82.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:a1:c2:24:b7:80:14:65:60:11:9c:6e:5e:23:da:fa:5c:12:2c:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:28 2024 GMT Not After : Jan 7 04:00:28 2025 GMT Subject: CN=E1D3B0B9DD30E40068A8EB0C03FC6A8A8F302C36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:33:d3:e1:f4:9d:57:b6:46:1c:a5:79:3e:d7: 30:68:06:46:1b:2e:92:c4:2f:6b:bf:fc:f2:d8:3e: 4c:19:66:10:81:fb:55:91:2c:0e:47:89:cf:96:f6: ab:f1:6b:cf:6e:42:37:d3:3e:2a:1a:5a:7f:b7:77: b3:5a:eb:91:9b:06:bd:32:9b:1c:6d:be:98:18:b0: c0:44:fb:92:be:62:16:ea:b0:d3:b2:b6:b5:8d:fd: 68:aa:b0:6e:75:b6:79:26:27:6f:dd:55:32:c8:db: 89:4d:09:49:85:6c:d4:ba:f4:d4:82:31:d5:fc:46: ca:ea:bd:8e:86:5b:f4:2a:ca:bf:30:9d:ea:97:91: 34:78:bc:24:88:da:18:1f:12:d4:ad:72:2f:cc:fe: e7:65:8a:2c:4c:fe:3f:27:7c:92:1a:43:36:62:39: 32:7c:e8:c0:d0:c7:20:e2:6a:b1:92:24:6c:dd:17: 5d:c6:74:77:b2:17:e8:77:05:62:5a:d2:c0:1e:0e: 27:11:f8:87:3e:03:cb:53:3c:e0:4a:4c:4a:04:a9: b5:b1:76:65:53:d9:6b:54:29:92:e1:bb:5e:43:41: 78:99:48:da:d3:da:c1:bd:1e:81:5c:1a:6e:00:0e: 54:8d:8b:f6:62:29:51:87:c9:0f:9d:5a:3e:59:81: 56:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:D3:B0:B9:DD:30:E4:00:68:A8:EB:0C:03:FC:6A:8A:8F:30:2C:36 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142373.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.82.0/23 Signature Algorithm: sha256WithRSAEncryption 12:4e:84:ff:12:5f:cc:d9:4b:46:4d:60:67:01:28:28:15:f1: 08:10:fb:71:e6:3f:b9:3a:6f:09:8f:ab:4c:c5:f0:08:9d:d6: 4f:32:fa:04:93:03:ca:91:8a:14:1c:5c:9e:4e:e1:79:8b:5b: cc:02:49:b4:b8:e9:97:53:5f:a5:2c:ca:41:21:c9:8f:f4:0d: ec:2c:a5:9d:50:ac:f8:92:cf:05:be:e9:b1:03:81:d5:71:03: e3:80:75:7c:41:80:0c:8a:90:30:27:ff:d7:80:cb:c8:dc:55: 7e:5e:2e:e4:6a:af:ec:ca:b2:18:37:01:73:a2:68:a1:51:73: 84:3f:a0:cd:33:9e:e5:f6:74:9f:99:18:1e:51:fd:6c:7e:ac: 5b:e3:7e:f3:b3:60:95:4d:c4:48:4f:37:eb:e0:80:22:96:36: 3e:c0:61:46:5e:64:b2:2f:2e:f4:08:a9:af:5f:6e:bb:b0:fc: 26:1f:03:c9:22:76:77:da:38:b9:4c:92:2c:74:5a:8c:a0:bc: f4:60:f6:af:73:4e:d1:f4:9f:7a:3f:46:d2:8c:73:d4:10:94: 7f:c2:38:e7:0b:8a:00:e7:79:a0:66:9c:ee:d1:8f:38:44:20: 75:11:b8:0d:ff:43:b9:d1:d9:29:f1:97:c1:42:f1:79:6a:53: 93:1d:bb:61 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWaHCJLeAFGVgEZxuXiPa+lwSLCAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyOFoX DTI1MDEwNzA0MDAyOFowMzExMC8GA1UEAxMoRTFEM0IwQjlERDMwRTQwMDY4QThF QjBDMDNGQzZBOEE4RjMwMkMzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMEz0+H0nVe2RhyleT7XMGgGRhsuksQva7/88tg+TBlmEIH7VZEsDkeJz5b2 q/Frz25CN9M+Khpaf7d3s1rrkZsGvTKbHG2+mBiwwET7kr5iFuqw07K2tY39aKqw bnW2eSYnb91VMsjbiU0JSYVs1Lr01IIx1fxGyuq9joZb9CrKvzCd6peRNHi8JIja GB8S1K1yL8z+52WKLEz+Pyd8khpDNmI5MnzowNDHIOJqsZIkbN0XXcZ0d7IX6HcF YlrSwB4OJxH4hz4Dy1M84EpMSgSptbF2ZVPZa1QpkuG7XkNBeJlI2tPawb0egVwa bgAOVI2L9mIpUYfJD51aPlmBVlECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTh07C5 3TDkAGio6wwD/GqKjzAsNjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWerUjANBgkqhkiG9w0BAQsFAAOCAQEAEk6E/xJfzNlLRk1gZwEo KBXxCBD7ceY/uTpvCY+rTMXwCJ3WTzL6BJMDypGKFBxcnk7heYtbzAJJtLjpl1Nf pSzKQSHJj/QN7CylnVCs+JLPBb7psQOB1XED44B1fEGADIqQMCf/14DLyNxVfl4u 5Gqv7MqyGDcBc6JooVFzhD+gzTOe5fZ0n5kYHlH9bH6sW+N+87NglU3ESE836+CA IpY2PsBhRl5ksi8u9Aipr19uu7D8Jh8DySJ2d9o4uUySLHRajKC89GD2r3NO0fSf ej9G0oxz1BCUf8I45wuKAOd5oGac7tGPOEQgdRG4Df9DudHZKfGXwULxeWpTkx27 YQ== -----END CERTIFICATE-----Generated at Sat May 4 16:47:42 2024 by rpki-client on console-ams.rpki-client.org