$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142385.roa File: AS142385.roa (raw, json) Hash identifier: peFnh5vSMndoERnA6nOnbTOGx0sKJkElux3pfLF/gDI= Subject key identifier: 83:92:4F:8D:F7:A4:86:86:FE:88:71:56:48:D3:47:5D:6A:DD:AC:95 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 35D55AB4E7B805CE5758E39544317648BF5F3E5D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142385.roa Signing time: Tue 09 Jan 2024 04:00:09 +0000 ROA not before: Tue 09 Jan 2024 03:55:09 +0000 ROA not after: Tue 07 Jan 2025 04:00:09 +0000 asID: 142385 IP address blocks: 103.172.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:d5:5a:b4:e7:b8:05:ce:57:58:e3:95:44:31:76:48:bf:5f:3e:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:09 2024 GMT Not After : Jan 7 04:00:09 2025 GMT Subject: CN=83924F8DF7A48686FE88715648D3475D6ADDAC95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:ad:0f:da:85:f9:79:b9:29:e3:a3:de:92:b5: fa:c3:82:ce:9c:51:d4:28:a4:aa:91:14:bd:e5:15: 1e:a1:b8:ca:83:ee:9a:6b:84:dd:b3:f3:e9:fe:b0: a3:72:ea:dd:96:81:4d:28:2a:d5:99:1a:c5:ed:d5: 27:94:74:58:88:73:2a:c0:0a:41:30:d7:1d:6b:f5: b7:cd:eb:32:2b:d4:ce:7c:df:d5:b4:99:c3:e1:be: 5c:a2:c3:5b:75:9b:3a:b5:1c:16:ea:d5:3f:7f:54: ed:99:54:14:5b:48:44:8d:ea:2a:ee:3d:d0:84:c2: 23:98:5f:35:2a:38:b5:c6:c8:a9:08:d2:9c:57:0b: 67:74:53:fe:1e:73:41:ee:3b:2e:ab:8b:44:68:57: d7:85:4e:1c:7c:b3:26:a3:d6:40:4a:14:f4:ce:93: 01:2d:ce:3a:90:cd:b5:b0:9a:f3:85:56:9b:fe:bd: 15:5a:73:3a:54:41:e3:b0:a3:77:ad:21:e3:c2:cb: 05:2e:1b:71:ac:3d:d2:2b:a8:e5:3b:61:de:e5:c4: 57:30:eb:f4:89:b2:f4:93:ce:bb:06:e2:41:58:f2: bf:64:cb:18:bd:9b:57:66:2e:71:9c:2d:29:d6:6a: d3:e4:46:85:50:c8:2e:10:85:4d:80:1e:3c:2d:c6: eb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:92:4F:8D:F7:A4:86:86:FE:88:71:56:48:D3:47:5D:6A:DD:AC:95 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142385.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.43.0/24 Signature Algorithm: sha256WithRSAEncryption 62:9a:f9:41:77:4c:ff:d4:8f:f5:0a:45:16:cc:13:62:c7:6c: b5:07:7d:75:16:55:9c:31:43:65:72:c9:a4:fd:a3:34:5d:23: 45:1f:02:20:41:8e:b9:fb:ad:81:94:7f:7f:38:37:f2:e9:8d: 2c:53:e6:38:98:eb:9e:e5:0a:0d:8a:d9:c2:65:94:ad:ac:9d: 62:3e:18:33:3b:d5:e7:2d:c3:d4:7e:78:28:77:12:f1:58:d6: a6:4b:8f:64:d2:04:2a:b1:82:28:97:87:2a:b4:66:18:e0:a5: 31:7c:e2:3d:a0:6c:df:43:ec:08:ad:5b:40:39:b5:da:ea:0c: 8c:45:62:91:21:dd:15:77:ee:59:d5:fd:76:f1:28:ee:eb:ea: d5:82:6e:22:7a:32:33:97:4e:65:ee:70:62:78:18:29:d7:57: fe:12:c9:f9:e6:14:4d:f1:ff:8a:91:33:b3:ba:2d:28:91:d8: dc:bc:54:ba:1e:32:3c:a0:85:53:cc:ca:3e:38:8f:a0:2a:b1: 22:71:a6:73:13:4e:e2:66:e7:4f:8b:0b:0e:d8:3a:8e:09:e2: fe:89:64:cb:61:85:d9:7c:9c:d2:81:f8:28:01:2a:89:4d:05: 5a:50:64:16:b5:fb:2e:e2:e3:2c:79:7c:44:1a:3f:2d:c7:b7: 4d:78:90:6d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUNdVatOe4Bc5XWOOVRDF2SL9fPl0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwOVoX DTI1MDEwNzA0MDAwOVowMzExMC8GA1UEAxMoODM5MjRGOERGN0E0ODY4NkZFODg3 MTU2NDhEMzQ3NUQ2QUREQUM5NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPqtD9qF+Xm5KeOj3pK1+sOCzpxR1CikqpEUveUVHqG4yoPummuE3bPz6f6w o3Lq3ZaBTSgq1Zkaxe3VJ5R0WIhzKsAKQTDXHWv1t83rMivUznzf1bSZw+G+XKLD W3WbOrUcFurVP39U7ZlUFFtIRI3qKu490ITCI5hfNSo4tcbIqQjSnFcLZ3RT/h5z Qe47LquLRGhX14VOHHyzJqPWQEoU9M6TAS3OOpDNtbCa84VWm/69FVpzOlRB47Cj d60h48LLBS4bcaw90iuo5Tth3uXEVzDr9Imy9JPOuwbiQVjyv2TLGL2bV2YucZwt KdZq0+RGhVDILhCFTYAePC3G63cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSDkk+N 96SGhv6IcVZI00ddat2slTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM4NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGesKzANBgkqhkiG9w0BAQsFAAOCAQEAYpr5QXdM/9SP9QpFFswT YsdstQd9dRZVnDFDZXLJpP2jNF0jRR8CIEGOufutgZR/fzg38umNLFPmOJjrnuUK DYrZwmWUraydYj4YMzvV5y3D1H54KHcS8VjWpkuPZNIEKrGCKJeHKrRmGOClMXzi PaBs30PsCK1bQDm12uoMjEVikSHdFXfuWdX9dvEo7uvq1YJuInoyM5dOZe5wYngY KddX/hLJ+eYUTfH/ipEzs7otKJHY3LxUuh4yPKCFU8zKPjiPoCqxInGmcxNO4mbn T4sLDtg6jgni/olky2GF2Xyc0oH4KAEqiU0FWlBkFrX7LuLjLHl8RBo/Lce3TXiQ bQ== -----END CERTIFICATE-----Generated at Wed May 8 09:50:38 2024 by rpki-client on console-fra.rpki-client.org