$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142373.roa File: AS142373.roa (raw, json) Hash identifier: mThv1XspyvSb+XE5SnLTRE5MPH+xeIByhh+FNS6YNJQ= Subject key identifier: 60:00:D8:53:40:86:F3:24:39:15:54:F5:F1:7A:DE:C6:EA:A0:4F:7E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3E41DB6C8BD88606DE7B8F6A236B9CD8896928C4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142373.roa Signing time: Tue 10 Dec 2024 05:00:24 +0000 ROA not before: Tue 10 Dec 2024 04:55:24 +0000 ROA not after: Tue 09 Dec 2025 05:00:24 +0000 asID: 142373 IP address blocks: 103.171.82.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:41:db:6c:8b:d8:86:06:de:7b:8f:6a:23:6b:9c:d8:89:69:28:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 10 04:55:24 2024 GMT Not After : Dec 9 05:00:24 2025 GMT Subject: CN=6000D8534086F324391554F5F17ADEC6EAA04F7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c5:d3:d6:e9:01:c4:56:dd:e9:bf:0f:5e:44: 61:c8:40:08:84:46:bd:5d:24:03:78:18:dc:88:8f: 6b:bd:70:b6:65:b6:ad:43:a1:1b:f5:2b:ac:80:c4: 1b:9d:7c:9b:3d:35:2a:36:85:8b:f1:a6:4b:b2:10: 37:5b:99:1f:e7:0f:5b:20:8a:30:3c:0b:2c:6e:5e: 7a:cb:0b:5d:5c:d2:7b:d5:db:26:7a:8d:e9:05:19: bc:8b:ac:3d:6d:0c:ac:da:85:f2:ec:f3:f4:bb:95: 14:ca:4d:7f:1c:c1:85:3b:35:c0:25:b2:1b:31:9d: 5d:59:35:92:4e:2a:26:91:ef:7f:8a:84:31:5d:2d: 4a:6f:bf:82:43:ff:be:47:55:12:d7:7d:f1:3e:94: b8:52:7d:a3:0c:f2:b8:76:88:fc:1b:ab:af:bd:01: f2:f4:9c:42:3f:ce:71:be:ab:58:fb:19:a5:92:68: c9:28:65:77:74:c3:6f:71:2e:14:a6:7b:c2:d6:e8: b4:b7:05:6b:6d:f1:1e:3a:7e:d2:86:60:03:70:10: 96:7a:1d:f5:02:c3:67:b9:bf:8f:9e:64:4e:ca:85: d6:16:a3:72:05:3a:40:35:00:dc:d3:4c:cb:ef:3d: f7:b4:2f:b5:fc:15:6f:de:a2:49:29:4f:e6:64:8c: 1b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:00:D8:53:40:86:F3:24:39:15:54:F5:F1:7A:DE:C6:EA:A0:4F:7E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142373.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.82.0/23 Signature Algorithm: sha256WithRSAEncryption 95:b9:63:dd:74:76:c5:22:29:8b:af:0c:2f:82:c2:27:22:8b: a0:c8:a2:22:4d:f0:93:c7:86:17:d9:e5:01:09:e6:8e:1c:3b: e7:7c:4d:46:7f:08:c9:1f:82:a8:c8:73:c8:c3:04:69:43:34: 7e:e5:12:9f:d8:b2:fd:1d:5b:f0:1c:11:a0:1f:59:99:7e:8e: 9e:70:75:6e:b0:05:94:9b:76:bd:53:48:e6:8a:94:8e:4b:a4: 4e:1e:e5:01:c2:2e:dd:0a:43:f6:9a:90:60:a6:0e:1b:e2:87: 31:05:ab:19:dd:a8:a1:ca:db:47:0b:c0:ac:a7:7d:18:4b:25: 80:3e:d7:15:05:e1:81:b7:22:25:f5:42:90:02:97:85:36:89: 8e:f2:15:3a:a4:44:7c:41:4d:1d:8e:55:52:9b:a9:02:16:24: 01:81:f7:a4:06:f5:db:33:7b:63:7f:7f:fe:0c:50:fd:6f:cd: f5:0a:e1:d6:73:6b:21:e6:be:56:49:3a:0e:34:ad:52:f6:83: 48:a7:16:91:de:0d:a5:b3:72:32:3d:d3:a2:b8:48:c8:81:e2: 62:9a:d3:ba:7a:5e:b0:a6:b6:3f:56:27:23:4a:c8:1f:06:f3: 39:0f:87:85:e4:f0:ff:a7:09:58:b5:32:8e:a4:3e:ed:55:6a: be:bb:f9:74 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPkHbbIvYhgbee49qI2uc2IlpKMQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyNFoX DTI1MTIwOTA1MDAyNFowMzExMC8GA1UEAxMoNjAwMEQ4NTM0MDg2RjMyNDM5MTU1 NEY1RjE3QURFQzZFQUEwNEY3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANHF09bpAcRW3em/D15EYchACIRGvV0kA3gY3IiPa71wtmW2rUOhG/UrrIDE G518mz01KjaFi/GmS7IQN1uZH+cPWyCKMDwLLG5eessLXVzSe9XbJnqN6QUZvIus PW0MrNqF8uzz9LuVFMpNfxzBhTs1wCWyGzGdXVk1kk4qJpHvf4qEMV0tSm+/gkP/ vkdVEtd98T6UuFJ9owzyuHaI/Burr70B8vScQj/Ocb6rWPsZpZJoyShld3TDb3Eu FKZ7wtbotLcFa23xHjp+0oZgA3AQlnod9QLDZ7m/j55kTsqF1hajcgU6QDUA3NNM y+8997QvtfwVb96iSSlP5mSMG6sCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRgANhT QIbzJDkVVPXxet7G6qBPfjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWerUjANBgkqhkiG9w0BAQsFAAOCAQEAlblj3XR2xSIpi68ML4LC JyKLoMiiIk3wk8eGF9nlAQnmjhw753xNRn8IyR+CqMhzyMMEaUM0fuUSn9iy/R1b 8BwRoB9ZmX6OnnB1brAFlJt2vVNI5oqUjkukTh7lAcIu3QpD9pqQYKYOG+KHMQWr Gd2oocrbRwvArKd9GEslgD7XFQXhgbciJfVCkAKXhTaJjvIVOqREfEFNHY5VUpup AhYkAYH3pAb12zN7Y39//gxQ/W/N9Qrh1nNrIea+Vkk6DjStUvaDSKcWkd4NpbNy Mj3TorhIyIHiYprTunpesKa2P1YnI0rIHwbzOQ+HheTw/6cJWLUyjqQ+7VVqvrv5 dA== -----END CERTIFICATE-----Generated at Tue Jun 3 23:14:19 2025 by rpki-client