$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142383.roa File: AS142383.roa (raw, json) Hash identifier: o7S/WdT4ao/R8Y6jtXL3oFhWCtMWPAZhTqO6iX1JqMo= Subject key identifier: F1:14:F4:78:B6:F9:4F:A3:A0:11:0B:8D:09:DC:6F:25:C7:CE:76:B7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7CD5F3BE5AE078DA69EA6AEFB3CDBC97161EB554 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142383.roa Signing time: Fri 20 Dec 2024 08:00:00 +0000 ROA not before: Fri 20 Dec 2024 07:55:00 +0000 ROA not after: Fri 19 Dec 2025 08:00:00 +0000 asID: 142383 IP address blocks: 103.172.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d5:f3:be:5a:e0:78:da:69:ea:6a:ef:b3:cd:bc:97:16:1e:b5:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 20 07:55:00 2024 GMT Not After : Dec 19 08:00:00 2025 GMT Subject: CN=F114F478B6F94FA3A0110B8D09DC6F25C7CE76B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:32:44:17:1c:5e:ca:ff:28:91:35:76:85:66: 37:63:2d:76:f3:e8:da:68:f1:76:88:cb:ee:7f:86: 83:c1:9f:b6:56:9f:0d:26:c2:d6:02:97:aa:1f:b4: 54:c0:3a:b4:a6:4a:42:c0:4b:22:8d:96:9f:93:1d: 10:f3:69:a4:7b:e1:cc:8e:a0:57:63:c7:a4:39:98: ba:c6:c7:44:4b:9b:85:62:8f:0f:d4:ae:3e:fa:46: 0b:e3:ed:e6:e9:e9:53:e8:cf:0e:bc:a2:85:d8:6c: c8:9c:1a:74:60:a3:59:39:0f:5c:1d:a1:4b:82:e6: ec:13:53:37:2b:60:56:1a:4b:e1:1c:99:18:b8:78: d6:0f:35:c4:fa:f2:16:77:7d:8e:9e:b7:fb:a9:8c: 08:42:9e:75:43:45:cf:94:16:ed:aa:69:d2:3c:c4: 5b:08:8d:4b:c7:37:15:9a:fa:35:14:32:bc:06:a2: 8a:85:ae:8b:c8:d3:0c:9e:e2:95:37:57:df:a1:32: 9c:78:42:39:30:d3:87:89:92:90:cc:98:2c:0f:c2: b2:5e:40:20:c0:05:3a:25:dd:e8:58:a5:5b:d0:19: 01:c4:84:5e:c6:c1:ff:3e:e5:f1:5b:cd:cc:cd:2a: 69:9e:f3:73:a5:2c:a3:08:68:6f:69:20:17:02:a5: 0f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:14:F4:78:B6:F9:4F:A3:A0:11:0B:8D:09:DC:6F:25:C7:CE:76:B7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142383.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.20.0/23 Signature Algorithm: sha256WithRSAEncryption 27:a0:89:41:05:fb:ed:f7:43:52:5f:a2:15:7d:2b:29:33:cb: 17:e8:9a:16:74:8b:68:66:3a:b0:c4:90:34:8d:b2:2d:36:0b: 14:fa:ec:96:01:da:f4:7b:6b:ad:13:f6:a3:1d:ba:54:dd:4e: 3c:22:35:c9:36:ab:c8:a8:2f:ab:16:f9:f5:0a:d6:19:da:7d: fb:04:f1:9f:21:38:de:f9:78:02:e7:4c:6e:2c:3d:80:07:ce: f2:36:90:cb:ee:8b:80:c9:04:78:cc:34:c9:01:ce:9e:2a:3a: ea:62:da:21:94:aa:86:37:50:bd:74:9b:58:7b:63:32:64:ab: f3:f8:11:4a:0c:f8:a5:68:44:6f:50:1d:d6:3d:4a:0a:05:fa: ed:d6:fb:2d:87:be:ab:bc:05:18:36:ff:74:8a:e1:b6:c7:3c: e6:69:4e:c8:0b:22:7f:5d:56:fb:a5:52:9d:78:4c:ee:06:8d: 66:36:08:04:b9:fc:37:e2:9e:b5:21:64:04:bb:b2:09:da:f4: ed:7b:8b:75:02:7b:1c:10:e1:8c:27:e4:89:13:6a:55:f8:a4: 3c:2b:62:86:b4:f3:b7:b3:7d:86:0e:bb:8c:f9:37:64:67:ac: fc:c4:f4:bd:06:b1:c2:c8:5b:45:db:fa:76:cd:29:4f:12:9a: a1:33:11:cd -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfNXzvlrgeNpp6mrvs828lxYetVQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIyMDA3NTUwMFoX DTI1MTIxOTA4MDAwMFowMzExMC8GA1UEAxMoRjExNEY0NzhCNkY5NEZBM0EwMTEw QjhEMDlEQzZGMjVDN0NFNzZCNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN8yRBccXsr/KJE1doVmN2MtdvPo2mjxdojL7n+Gg8GftlafDSbC1gKXqh+0 VMA6tKZKQsBLIo2Wn5MdEPNppHvhzI6gV2PHpDmYusbHREubhWKPD9SuPvpGC+Pt 5unpU+jPDryihdhsyJwadGCjWTkPXB2hS4Lm7BNTNytgVhpL4RyZGLh41g81xPry Fnd9jp63+6mMCEKedUNFz5QW7app0jzEWwiNS8c3FZr6NRQyvAaiioWui8jTDJ7i lTdX36EynHhCOTDTh4mSkMyYLA/Csl5AIMAFOiXd6FilW9AZAcSEXsbB/z7l8VvN zM0qaZ7zc6Usowhob2kgFwKlD5sCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTxFPR4 tvlPo6ARC40J3G8lx852tzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM4My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWesFDANBgkqhkiG9w0BAQsFAAOCAQEAJ6CJQQX77fdDUl+iFX0r KTPLF+iaFnSLaGY6sMSQNI2yLTYLFPrslgHa9HtrrRP2ox26VN1OPCI1yTaryKgv qxb59QrWGdp9+wTxnyE43vl4AudMbiw9gAfO8jaQy+6LgMkEeMw0yQHOnio66mLa IZSqhjdQvXSbWHtjMmSr8/gRSgz4pWhEb1Ad1j1KCgX67db7LYe+q7wFGDb/dIrh tsc85mlOyAsif11W+6VSnXhM7gaNZjYIBLn8N+KetSFkBLuyCdr07XuLdQJ7HBDh jCfkiRNqVfikPCtihrTzt7N9hg67jPk3ZGes/MT0vQaxwshbRdv6ds0pTxKaoTMR zQ== -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:41 2025 by rpki-client