$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142390.roa File: AS142390.roa (raw, json) Hash identifier: omV439v7ITycuUcFF1sy9vDIsAIp38moMON+BZHWoXE= Subject key identifier: C3:05:E6:17:CC:8A:AC:2B:50:ED:85:97:49:34:31:08:4F:B0:79:E6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 25F3FBC2BDF10EE973D0305B73A09AA9C4CFE95F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142390.roa Signing time: Tue 09 Jan 2024 04:00:00 +0000 ROA not before: Tue 09 Jan 2024 03:55:00 +0000 ROA not after: Tue 07 Jan 2025 04:00:00 +0000 asID: 142390 IP address blocks: 103.171.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f3:fb:c2:bd:f1:0e:e9:73:d0:30:5b:73:a0:9a:a9:c4:cf:e9:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:00 2024 GMT Not After : Jan 7 04:00:00 2025 GMT Subject: CN=C305E617CC8AAC2B50ED8597493431084FB079E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2a:3a:a1:7a:7c:f3:4a:9f:1a:26:80:6e:79: 4d:d1:a0:05:f2:ae:d9:6b:96:19:2b:24:8e:cc:48: b8:9e:4a:e4:42:af:ae:eb:4d:62:4c:e9:2c:b0:ac: 10:70:59:fd:27:39:26:5b:d2:75:1b:47:bf:be:fe: 14:05:e6:35:45:64:3a:b2:eb:7f:ad:ea:1c:5a:78: 42:76:46:1d:1c:21:a9:8e:ea:83:43:25:7c:9b:56: c2:61:b1:d8:a7:bd:41:c8:dc:8a:98:e9:85:4e:c7: fe:96:ca:9d:c8:07:ec:4a:39:84:bb:58:e4:a9:56: 57:87:1b:ed:69:cd:38:b7:f7:15:b5:56:d7:e3:1f: dd:31:59:69:3f:28:a1:21:d4:fc:71:be:cc:97:80: b7:0e:39:07:9b:c1:ae:b1:60:a2:6d:18:5f:bd:24: b4:ca:d7:36:0a:68:79:5e:6f:5b:d4:6c:3c:19:f8: 78:2d:62:61:c8:dc:0d:c8:7f:ea:44:55:14:a0:0d: a3:09:ac:96:99:00:22:ee:ff:62:a5:97:81:d2:12: 83:1a:15:63:6f:56:47:7a:50:f6:92:d1:0e:2b:47: 65:f8:81:fb:c0:9e:a2:89:99:ac:76:00:f3:9a:3e: 21:83:06:da:e2:14:5c:8d:b6:89:0c:09:f3:d2:4d: 31:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:05:E6:17:CC:8A:AC:2B:50:ED:85:97:49:34:31:08:4F:B0:79:E6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142390.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.240.0/23 Signature Algorithm: sha256WithRSAEncryption 82:ac:57:84:2e:e1:ef:ee:56:bc:0d:13:bc:0a:2b:4c:50:45: fb:ba:f9:90:dc:b3:e1:d0:ae:62:e1:72:3f:51:a8:49:b9:b4: 62:1a:7b:14:40:12:6a:70:e7:12:17:34:a7:85:c8:0b:75:b8: 52:a7:15:19:45:20:5b:eb:07:c3:77:95:85:6c:05:d5:a7:8a: 13:2b:61:a1:fc:a3:cb:da:3e:e7:ea:36:45:5a:01:37:3e:bd: 53:20:55:d8:70:e1:f1:02:0c:19:94:e0:fe:d7:a2:57:4e:30: 6c:ab:6f:c1:df:9e:41:f2:ee:68:f0:63:fa:d3:e2:b4:a0:5f: b3:2d:42:c5:b3:27:7f:22:d9:92:0f:5b:91:2d:3f:77:c2:63: c5:72:61:01:b1:37:ba:2a:1f:bf:2e:09:f5:f4:db:e0:9e:0f: 9f:76:8e:33:37:48:5b:2f:6b:af:59:78:88:2c:41:42:22:5f: 28:8c:19:3f:16:53:bc:2a:a1:49:b9:4c:5c:ca:ef:cc:a1:59: 55:b9:b2:08:ed:5c:aa:47:46:8e:05:46:8d:73:d7:71:c1:e0: 57:37:42:2d:03:79:b7:40:76:f8:bc:a3:4d:8f:69:3b:c9:33: f0:05:a6:66:f8:c1:d3:da:0b:da:14:de:fc:20:3c:bd:f5:5a: bd:1f:fd:4d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJfP7wr3xDulz0DBbc6CaqcTP6V8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwMFoX DTI1MDEwNzA0MDAwMFowMzExMC8GA1UEAxMoQzMwNUU2MTdDQzhBQUMyQjUwRUQ4 NTk3NDkzNDMxMDg0RkIwNzlFNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIqOqF6fPNKnxomgG55TdGgBfKu2WuWGSskjsxIuJ5K5EKvrutNYkzpLLCs EHBZ/Sc5JlvSdRtHv77+FAXmNUVkOrLrf63qHFp4QnZGHRwhqY7qg0MlfJtWwmGx 2Ke9QcjcipjphU7H/pbKncgH7Eo5hLtY5KlWV4cb7WnNOLf3FbVW1+Mf3TFZaT8o oSHU/HG+zJeAtw45B5vBrrFgom0YX70ktMrXNgpoeV5vW9RsPBn4eC1iYcjcDch/ 6kRVFKANowmslpkAIu7/YqWXgdISgxoVY29WR3pQ9pLRDitHZfiB+8CeoomZrHYA 85o+IYMG2uIUXI22iQwJ89JNMb0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTDBeYX zIqsK1DthZdJNDEIT7B55jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWer8DANBgkqhkiG9w0BAQsFAAOCAQEAgqxXhC7h7+5WvA0TvAor TFBF+7r5kNyz4dCuYuFyP1GoSbm0Yhp7FEASanDnEhc0p4XIC3W4UqcVGUUgW+sH w3eVhWwF1aeKEythofyjy9o+5+o2RVoBNz69UyBV2HDh8QIMGZTg/teiV04wbKtv wd+eQfLuaPBj+tPitKBfsy1CxbMnfyLZkg9bkS0/d8JjxXJhAbE3uiofvy4J9fTb 4J4Pn3aOMzdIWy9rr1l4iCxBQiJfKIwZPxZTvCqhSblMXMrvzKFZVbmyCO1cqkdG jgVGjXPXccHgVzdCLQN5t0B2+LyjTY9pO8kz8AWmZvjB09oL2hTe/CA8vfVavR/9 TQ== -----END CERTIFICATE-----Generated at Wed May 8 17:45:22 2024 by rpki-client on console-ams.rpki-client.org