$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142393.roa File: AS142393.roa (raw, json) Hash identifier: dG9tQFDdlCmOm8xv6JhYgjo5Dtnl50+l2hn19DhENq8= Subject key identifier: 5F:25:51:24:49:47:9B:58:69:64:60:F6:7E:BA:97:62:77:68:ED:C3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 11CF8DE8FC658D61BD1CE38B6077E67CCBB4B5DC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142393.roa Signing time: Tue 12 Nov 2024 05:00:00 +0000 ROA not before: Tue 12 Nov 2024 04:55:00 +0000 ROA not after: Tue 11 Nov 2025 05:00:00 +0000 asID: 142393 IP address blocks: 103.146.38.0/24 maxlen: 24 103.172.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:cf:8d:e8:fc:65:8d:61:bd:1c:e3:8b:60:77:e6:7c:cb:b4:b5:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 12 04:55:00 2024 GMT Not After : Nov 11 05:00:00 2025 GMT Subject: CN=5F25512449479B58696460F67EBA97627768EDC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:28:15:e1:60:5a:f6:c9:0c:49:be:bb:70:1f: 64:93:68:af:21:72:4e:70:93:e6:c5:ce:8f:9c:3f: 99:da:d2:eb:25:17:d7:3e:66:79:e6:c3:18:73:22: ec:6c:9f:6f:1d:aa:91:b0:24:f4:1d:ac:0b:7b:46: 02:31:47:e2:2f:ff:88:f7:8e:ed:96:98:f6:07:95: ca:2d:ab:1b:16:dd:61:a3:c9:1d:df:f2:83:67:62: 97:c1:18:db:c1:d1:d1:52:16:7c:3c:a6:50:71:f4: e0:d6:13:5c:9d:81:e0:df:be:54:28:05:54:a5:a3: a3:67:d9:05:0c:74:b5:d4:b8:fc:1f:0f:37:21:15: 19:01:ee:96:a8:da:10:f5:cd:82:46:77:f9:c7:97: 22:ef:36:cd:52:d4:3c:d8:0c:94:78:42:8b:c9:ab: 54:81:67:53:62:55:fc:95:0e:db:d5:3a:ee:93:ed: 82:b4:76:b9:df:a0:a7:9a:30:63:a8:f9:2d:ac:a7: 9d:7e:db:26:85:79:3a:d0:13:b5:fd:8f:f3:d8:0c: 84:e4:4c:1b:31:c5:1a:76:b9:b4:0e:0f:df:e6:0a: aa:0c:e5:70:8b:b9:6f:48:7a:b5:3f:f1:9e:d1:89: 9d:3e:53:97:63:58:72:b2:78:b6:3c:09:b6:6c:22: 27:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:25:51:24:49:47:9B:58:69:64:60:F6:7E:BA:97:62:77:68:ED:C3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142393.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.38.0/24 103.172.42.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:85:e2:ab:46:01:f1:9f:3c:44:64:83:e3:b8:24:35:d1:9e: 4d:07:87:7c:fb:cc:4d:2a:1b:e6:ae:6c:1c:70:29:95:33:d6: ff:e5:d7:4f:fa:cf:e5:e4:46:c4:5f:4e:b2:96:94:67:28:55: 0d:08:a8:f8:b1:ee:5a:48:9a:a8:0a:89:90:f0:50:e8:9f:e1: 8e:be:1e:e2:8b:fe:07:34:42:9c:d4:1b:b3:db:f5:1f:97:18: 60:a6:d2:7f:16:12:c6:a9:1d:60:e3:f7:6c:f2:1d:49:56:2c: 72:0a:26:e1:b5:c9:69:6a:82:79:e3:b9:87:6b:1e:bb:45:35: 29:c6:49:92:81:80:63:d0:a5:6c:6d:17:e3:e4:fd:27:a3:01: a0:66:b7:e3:17:8a:27:e0:00:d2:0e:7c:ca:7c:ef:72:ca:7f: ef:d1:f0:3e:8e:c8:e4:f4:cd:84:16:38:aa:71:82:60:2c:68: 70:26:df:ec:0a:9a:77:bb:4b:56:c0:df:37:5a:2d:37:f3:8d: da:be:f4:5c:7b:cf:f0:04:70:76:c2:bb:86:9a:bb:02:ec:d6: 51:17:55:db:e7:27:c8:b0:1c:7e:93:ea:7e:01:da:90:4c:bf: 9d:bd:8e:93:43:a5:95:af:5e:18:8b:b5:32:77:4a:ff:62:a9: 9a:83:44:ed -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUEc+N6PxljWG9HOOLYHfmfMu0tdwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExMjA0NTUwMFoX DTI1MTExMTA1MDAwMFowMzExMC8GA1UEAxMoNUYyNTUxMjQ0OTQ3OUI1ODY5NjQ2 MEY2N0VCQTk3NjI3NzY4RURDMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0oFeFgWvbJDEm+u3AfZJNoryFyTnCT5sXOj5w/mdrS6yUX1z5meebDGHMi 7Gyfbx2qkbAk9B2sC3tGAjFH4i//iPeO7ZaY9geVyi2rGxbdYaPJHd/yg2dil8EY 28HR0VIWfDymUHH04NYTXJ2B4N++VCgFVKWjo2fZBQx0tdS4/B8PNyEVGQHulqja EPXNgkZ3+ceXIu82zVLUPNgMlHhCi8mrVIFnU2JV/JUO29U67pPtgrR2ud+gp5ow Y6j5LaynnX7bJoV5OtATtf2P89gMhORMGzHFGna5tA4P3+YKqgzlcIu5b0h6tT/x ntGJnT5Tl2NYcrJ4tjwJtmwiJ6kCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBRfJVEk SUebWGlkYPZ+updid2jtwzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM5My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGeSJgMEAGesKjANBgkqhkiG9w0BAQsFAAOCAQEAHYXiq0YB8Z88 RGSD47gkNdGeTQeHfPvMTSob5q5sHHAplTPW/+XXT/rP5eRGxF9OspaUZyhVDQio +LHuWkiaqAqJkPBQ6J/hjr4e4ov+BzRCnNQbs9v1H5cYYKbSfxYSxqkdYOP3bPId SVYscgom4bXJaWqCeeO5h2seu0U1KcZJkoGAY9ClbG0X4+T9J6MBoGa34xeKJ+AA 0g58ynzvcsp/79HwPo7I5PTNhBY4qnGCYCxocCbf7Aqad7tLVsDfN1otN/ON2r70 XHvP8ARwdsK7hpq7AuzWURdV2+cnyLAcfpPqfgHakEy/nb2Ok0Olla9eGIu1MndK /2KpmoNE7Q== -----END CERTIFICATE-----Generated at Sun Feb 16 21:06:19 2025 by rpki-client