$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142381.roa File: AS142381.roa (raw, json) Hash identifier: YyeFI7sBV8Ms+yPBd6bMqf7TSqj114FdHxZqTtTndmg= Subject key identifier: 58:7E:56:CF:A9:E2:3B:7C:D5:15:A7:08:54:F1:BD:4A:3B:9F:D6:0A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1C7C00EDEB8C2F4521FB204B88ABE1829989874A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142381.roa Signing time: Mon 27 Nov 2023 07:00:00 +0000 ROA not before: Mon 27 Nov 2023 06:55:00 +0000 ROA not after: Mon 25 Nov 2024 07:00:00 +0000 asID: 142381 IP address blocks: 103.189.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:7c:00:ed:eb:8c:2f:45:21:fb:20:4b:88:ab:e1:82:99:89:87:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 27 06:55:00 2023 GMT Not After : Nov 25 07:00:00 2024 GMT Subject: CN=587E56CFA9E23B7CD515A70854F1BD4A3B9FD60A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7f:44:9e:3e:b7:44:54:97:47:4d:8e:76:7e: e9:6b:21:5d:80:0c:50:c0:df:27:6f:27:29:59:eb: bf:02:97:7b:1f:fc:97:20:6e:9a:54:05:32:e6:2e: fb:32:a3:7c:a9:47:94:9e:6d:7c:17:15:2a:16:0e: f8:0a:3b:af:0d:77:9b:ab:12:91:2a:19:ac:ee:c4: 3c:d3:1f:45:66:a7:fd:88:41:d6:a6:3d:f0:53:cf: 81:a5:ce:f9:cc:36:60:3f:48:e5:af:71:8f:cb:fa: 99:9f:41:33:54:0b:35:2c:c4:83:98:75:55:9c:b3: 5c:49:39:9b:21:ba:7d:3e:5f:e2:d8:c7:79:64:90: 3b:b2:3d:cf:97:c5:fc:bf:6f:0a:2b:fe:36:af:67: 6f:e6:54:bb:06:0b:7a:de:a8:91:ee:f2:76:03:a9: 5d:76:63:48:53:5c:14:a5:5f:54:f7:a7:a0:07:9d: 2a:26:71:b8:9f:be:08:7f:7e:04:57:7e:35:fd:47: 36:c6:00:1a:83:7d:2b:72:12:51:03:e1:c1:64:18: 5c:39:2a:89:d2:77:6e:41:ae:bb:c1:18:bb:e8:c0: ee:9a:9c:7e:38:1c:b1:f2:c5:2e:d4:23:13:30:bb: f5:65:6a:14:af:23:01:69:83:95:29:30:f2:79:e0: 47:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:7E:56:CF:A9:E2:3B:7C:D5:15:A7:08:54:F1:BD:4A:3B:9F:D6:0A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142381.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.231.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:36:ec:59:35:24:5a:3c:fd:5a:80:d5:9e:fc:a4:b6:76:53: 72:63:27:fd:cb:a4:25:ed:26:78:ce:2e:a3:35:6c:c0:9a:ac: 81:24:67:e0:fc:e1:e8:39:aa:4c:81:0d:e1:96:18:f4:2a:8b: 1c:bc:80:0f:7d:28:1e:f0:e1:19:7e:11:fa:50:06:b1:58:8d: 14:a1:3f:31:3d:8e:cc:61:60:d6:e8:e3:c0:fa:dd:58:75:02: d9:37:0c:e7:8f:30:cd:73:e8:d6:78:d7:f4:c5:af:19:92:85: b0:73:e9:53:8b:75:de:9a:84:60:b1:5f:50:9a:fe:c1:94:fb: 4f:3d:8a:a7:29:f7:7f:f1:fd:ca:ac:0a:ea:64:0c:8a:bd:75: e2:80:2e:28:24:93:91:3c:73:13:d6:21:82:a7:6c:ed:2b:4a: 36:54:22:fe:95:cf:3e:e1:ac:ad:1c:93:b9:ba:5d:83:1f:b0: 31:81:1f:a1:f1:e6:85:bc:a6:b3:96:3f:8e:10:dc:30:a0:9a: da:93:48:6c:56:11:5f:12:ad:a1:7d:4a:07:88:36:8c:81:7d: 42:2a:af:bd:e2:d3:71:51:46:67:06:25:a5:1b:c3:51:7c:0f: cb:30:45:e1:dd:c1:37:4f:27:9f:92:c3:fe:ad:99:66:1c:64: 77:d4:ff:ae -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUHHwA7euML0Uh+yBLiKvhgpmJh0owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyNzA2NTUwMFoX DTI0MTEyNTA3MDAwMFowMzExMC8GA1UEAxMoNTg3RTU2Q0ZBOUUyM0I3Q0Q1MTVB NzA4NTRGMUJENEEzQjlGRDYwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOd/RJ4+t0RUl0dNjnZ+6WshXYAMUMDfJ28nKVnrvwKXex/8lyBumlQFMuYu +zKjfKlHlJ5tfBcVKhYO+Ao7rw13m6sSkSoZrO7EPNMfRWan/YhB1qY98FPPgaXO +cw2YD9I5a9xj8v6mZ9BM1QLNSzEg5h1VZyzXEk5myG6fT5f4tjHeWSQO7I9z5fF /L9vCiv+Nq9nb+ZUuwYLet6oke7ydgOpXXZjSFNcFKVfVPenoAedKiZxuJ++CH9+ BFd+Nf1HNsYAGoN9K3ISUQPhwWQYXDkqidJ3bkGuu8EYu+jA7pqcfjgcsfLFLtQj EzC79WVqFK8jAWmDlSkw8nngR0ECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRYflbP qeI7fNUVpwhU8b1KO5/WCjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGe95zANBgkqhkiG9w0BAQsFAAOCAQEACzbsWTUkWjz9WoDVnvyk tnZTcmMn/cukJe0meM4uozVswJqsgSRn4Pzh6DmqTIEN4ZYY9CqLHLyAD30oHvDh GX4R+lAGsViNFKE/MT2OzGFg1ujjwPrdWHUC2TcM548wzXPo1njX9MWvGZKFsHPp U4t13pqEYLFfUJr+wZT7Tz2Kpyn3f/H9yqwK6mQMir114oAuKCSTkTxzE9Yhgqds 7StKNlQi/pXPPuGsrRyTubpdgx+wMYEfofHmhbyms5Y/jhDcMKCa2pNIbFYRXxKt oX1KB4g2jIF9QiqvveLTcVFGZwYlpRvDUXwPyzBF4d3BN08nn5LD/q2ZZhxkd9T/ rg== -----END CERTIFICATE-----Generated at Thu May 9 00:29:15 2024 by rpki-client on console-ams.rpki-client.org