$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142381.roa File: AS142381.roa (raw, json) Hash identifier: ZCPmqjGxVK7syUiLXXotwVJ3GesSRBlvSV04f3SgPvA= Subject key identifier: 38:39:A4:CA:48:E7:A3:6A:BE:4E:82:9B:92:86:58:1A:46:34:DA:36 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0B94A96808B84FE639F4E7B7C147CC9FE011163F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142381.roa Signing time: Mon 28 Oct 2024 07:00:00 +0000 ROA not before: Mon 28 Oct 2024 06:55:00 +0000 ROA not after: Mon 27 Oct 2025 07:00:00 +0000 asID: 142381 IP address blocks: 103.189.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:94:a9:68:08:b8:4f:e6:39:f4:e7:b7:c1:47:cc:9f:e0:11:16:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 28 06:55:00 2024 GMT Not After : Oct 27 07:00:00 2025 GMT Subject: CN=3839A4CA48E7A36ABE4E829B9286581A4634DA36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:50:93:2e:c4:50:77:46:b4:b5:f3:24:31:a0: 51:13:08:ea:52:6d:89:90:dc:fd:d3:5c:b3:90:af: c1:91:c6:77:3f:20:cd:e9:70:11:8a:fa:4e:a4:fc: 33:6f:d2:d2:a9:59:8c:a5:52:fe:a3:e3:84:2e:96: b3:28:8c:64:40:11:7c:e0:7b:21:b3:3f:71:13:3e: 1f:92:7e:ce:9b:27:b1:09:fb:1a:f5:9a:cf:7a:03: ac:f3:6c:43:09:2d:52:c3:87:b5:5d:b2:65:cc:95: 9c:03:3c:dd:bf:71:50:5b:5e:67:32:2f:69:d3:ec: c4:a2:4e:c5:11:02:7e:18:4d:fc:d6:b6:87:3c:ff: 15:fa:bf:1e:d8:1d:28:cb:e1:8f:1b:58:33:1f:58: 3b:d3:69:16:d9:bb:7b:a7:9f:60:34:46:8c:f8:46: 6a:bb:23:d0:cd:31:5a:44:90:18:94:a6:00:3b:18: 47:0e:31:a5:ed:ac:02:b6:d7:c0:5e:e3:c0:c5:f3: 66:79:3b:c7:f0:7e:83:c3:7d:95:90:e6:e2:9c:fa: 11:c3:f6:59:f0:b6:9d:5b:bc:c7:b2:90:76:34:85: d4:f5:79:78:e5:d5:f2:58:80:de:72:0e:4d:9a:04: 76:96:c7:63:52:38:12:1f:24:e2:58:63:51:a6:4c: e6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:39:A4:CA:48:E7:A3:6A:BE:4E:82:9B:92:86:58:1A:46:34:DA:36 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142381.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.231.0/24 Signature Algorithm: sha256WithRSAEncryption 13:2a:93:52:cf:65:7c:8d:36:7b:82:10:49:79:cb:c3:d7:8c: 8e:de:aa:ea:ad:b7:55:5a:53:2a:f1:d6:a8:43:15:98:72:8a: d3:ef:e1:14:5c:e1:65:e1:01:c2:00:a8:c2:20:d1:98:4b:eb: 67:fb:05:f9:71:3a:b8:83:df:44:18:b9:76:c8:75:54:a6:8c: 9a:a9:be:18:2d:1a:e7:ed:13:be:e2:02:dc:c3:99:65:28:97: 0a:a3:e3:89:c5:9f:c1:c5:c4:7c:27:46:1d:ae:bb:c4:72:46: 95:b9:4c:1f:11:a4:79:88:d3:60:9a:9f:9e:33:69:7d:b5:f5: 81:39:9b:08:37:e0:7c:85:59:c5:00:d8:03:13:7d:8f:a4:da: 04:61:fb:ea:0e:00:d6:5a:6a:57:3f:75:52:48:be:ac:2e:03: 7b:c5:ea:d9:1b:6b:7f:cb:54:bd:f1:c0:4d:6d:22:54:98:88: a6:ee:9e:52:37:34:0f:ee:40:15:8f:a1:c3:06:f9:23:50:82: aa:51:08:69:e7:69:36:0f:5d:28:87:56:0b:c2:07:1a:c5:a3: 16:0c:ed:58:73:5b:b8:85:f8:b4:35:1d:ba:31:d0:f5:f0:39: 48:92:3b:7c:e7:01:1f:5c:94:df:ed:39:73:be:7a:b4:21:5e: a0:b4:05:72 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUC5SpaAi4T+Y59Oe3wUfMn+ARFj8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyODA2NTUwMFoX DTI1MTAyNzA3MDAwMFowMzExMC8GA1UEAxMoMzgzOUE0Q0E0OEU3QTM2QUJFNEU4 MjlCOTI4NjU4MUE0NjM0REEzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMpQky7EUHdGtLXzJDGgURMI6lJtiZDc/dNcs5CvwZHGdz8gzelwEYr6TqT8 M2/S0qlZjKVS/qPjhC6WsyiMZEARfOB7IbM/cRM+H5J+zpsnsQn7GvWaz3oDrPNs QwktUsOHtV2yZcyVnAM83b9xUFteZzIvadPsxKJOxRECfhhN/Na2hzz/Ffq/Htgd KMvhjxtYMx9YO9NpFtm7e6efYDRGjPhGarsj0M0xWkSQGJSmADsYRw4xpe2sArbX wF7jwMXzZnk7x/B+g8N9lZDm4pz6EcP2WfC2nVu8x7KQdjSF1PV5eOXV8liA3nIO TZoEdpbHY1I4Eh8k4lhjUaZM5gsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ4OaTK SOejar5OgpuShlgaRjTaNjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGe95zANBgkqhkiG9w0BAQsFAAOCAQEAEyqTUs9lfI02e4IQSXnL w9eMjt6q6q23VVpTKvHWqEMVmHKK0+/hFFzhZeEBwgCowiDRmEvrZ/sF+XE6uIPf RBi5dsh1VKaMmqm+GC0a5+0TvuIC3MOZZSiXCqPjicWfwcXEfCdGHa67xHJGlblM HxGkeYjTYJqfnjNpfbX1gTmbCDfgfIVZxQDYAxN9j6TaBGH76g4A1lpqVz91Uki+ rC4De8Xq2Rtrf8tUvfHATW0iVJiIpu6eUjc0D+5AFY+hwwb5I1CCqlEIaedpNg9d KIdWC8IHGsWjFgztWHNbuIX4tDUdujHQ9fA5SJI7fOcBH1yU3+05c756tCFeoLQF cg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:26 2024 by rpki-client on console-fra.rpki-client.org