$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142393.roa File: AS142393.roa (raw, json) Hash identifier: PQPlNzUK4mOIYzeziJxNm4DxjrgVu30sU3OiCZx1+eY= Subject key identifier: C0:82:76:03:E9:F9:49:85:35:3D:D7:32:BE:84:E5:0B:4E:87:B1:33 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7DCDA7EEC566AA908ECAC5ED03D78A099F63959B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142393.roa Signing time: Tue 12 Dec 2023 04:05:20 +0000 ROA not before: Tue 12 Dec 2023 04:00:20 +0000 ROA not after: Tue 10 Dec 2024 04:05:20 +0000 asID: 142393 IP address blocks: 103.146.38.0/24 maxlen: 24 103.172.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:cd:a7:ee:c5:66:aa:90:8e:ca:c5:ed:03:d7:8a:09:9f:63:95:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 12 04:00:20 2023 GMT Not After : Dec 10 04:05:20 2024 GMT Subject: CN=C0827603E9F94985353DD732BE84E50B4E87B133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3c:99:9d:d1:81:95:1e:3f:fe:4b:df:f4:7e: e2:ea:db:5e:f8:8d:9c:ee:20:ef:85:bb:79:e0:95: 45:93:80:3a:dd:6d:9e:fc:e9:53:6e:be:73:45:b0: 5d:66:69:17:66:34:ff:83:e9:64:9f:6d:4f:10:01: 87:f6:1a:c5:85:c7:76:18:db:43:dc:a2:09:49:11: 81:f7:d3:ed:6f:f6:2c:16:46:dc:8c:35:58:6a:88: 87:81:81:99:20:75:2b:81:fd:44:9e:df:54:d4:f0: 02:36:d5:60:ab:59:cb:92:ba:8d:52:3a:4b:ef:f5: 16:4f:85:06:be:27:56:5b:83:f7:14:a6:ad:5f:ad: fe:e9:5e:15:7d:96:54:94:52:ac:bd:22:3c:bc:1a: e7:6c:1c:50:70:2b:a1:64:0f:4a:89:fe:6d:33:cd: 37:e0:a9:c5:47:9a:b1:99:f4:8b:91:3a:fb:cf:76: a2:30:52:e0:dc:3c:70:33:65:59:20:cb:25:69:8f: 2a:2c:73:73:d6:73:6e:89:46:ad:8a:2d:8a:81:8b: d5:52:6a:d0:a8:85:64:34:60:0d:20:88:24:6b:e3: 61:da:8f:9a:f2:d1:49:80:17:34:b0:48:6a:4f:18: 95:0a:db:75:f4:a8:03:b9:0a:23:50:a5:48:9b:a2: 6a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:82:76:03:E9:F9:49:85:35:3D:D7:32:BE:84:E5:0B:4E:87:B1:33 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142393.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.38.0/24 103.172.42.0/24 Signature Algorithm: sha256WithRSAEncryption 35:7d:5e:5c:99:d5:66:99:96:c7:f9:27:dd:b6:45:7d:0d:4c: 07:3f:fb:34:02:35:f5:cd:f7:31:69:ea:7a:e1:bc:10:0b:56: 84:de:1d:e2:2b:12:07:83:4b:56:43:16:79:46:30:ac:93:28: 46:63:a1:1b:52:a1:96:e3:7f:98:7b:f4:a0:9e:0f:b0:87:8c: 6e:9e:75:60:2e:bc:ab:9f:30:6f:95:03:33:46:13:d7:6a:fb: 88:8d:14:df:cc:37:1a:dc:b2:2d:8f:6c:20:35:70:70:2d:b9: 4d:cd:b5:61:cd:0e:6c:bb:98:b1:bd:e9:67:e8:c5:85:87:67: e5:8b:73:57:b7:62:4f:f3:2a:9b:2d:ab:cf:14:81:e0:39:c9: e4:0b:b9:c7:c8:3c:0e:26:53:58:bd:10:ed:1a:13:2f:d0:04: ae:9b:05:cb:72:05:fa:33:a0:53:78:7e:6a:22:e4:00:33:15: 3f:61:37:1b:4d:07:af:3d:53:55:33:b9:24:1c:59:d2:58:70: ca:34:7a:1e:37:bf:4d:65:ff:c0:c3:bc:4d:e5:ef:eb:85:2c: 26:45:7c:3e:5a:9f:11:e8:e5:f8:0e:7b:dc:c5:30:01:bd:53: 0e:23:7e:ae:6e:98:10:95:48:07:cb:e8:e8:2d:02:99:91:c0: 1d:e8:96:68 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUfc2n7sVmqpCOysXtA9eKCZ9jlZswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxMjA0MDAyMFoX DTI0MTIxMDA0MDUyMFowMzExMC8GA1UEAxMoQzA4Mjc2MDNFOUY5NDk4NTM1M0RE NzMyQkU4NEU1MEI0RTg3QjEzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALo8mZ3RgZUeP/5L3/R+4urbXviNnO4g74W7eeCVRZOAOt1tnvzpU26+c0Ww XWZpF2Y0/4PpZJ9tTxABh/YaxYXHdhjbQ9yiCUkRgffT7W/2LBZG3Iw1WGqIh4GB mSB1K4H9RJ7fVNTwAjbVYKtZy5K6jVI6S+/1Fk+FBr4nVluD9xSmrV+t/uleFX2W VJRSrL0iPLwa52wcUHAroWQPSon+bTPNN+CpxUeasZn0i5E6+892ojBS4Nw8cDNl WSDLJWmPKixzc9ZzbolGrYotioGL1VJq0KiFZDRgDSCIJGvjYdqPmvLRSYAXNLBI ak8YlQrbdfSoA7kKI1ClSJuiapMCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBTAgnYD 6flJhTU91zK+hOULToexMzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM5My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGeSJgMEAGesKjANBgkqhkiG9w0BAQsFAAOCAQEANX1eXJnVZpmW x/kn3bZFfQ1MBz/7NAI19c33MWnqeuG8EAtWhN4d4isSB4NLVkMWeUYwrJMoRmOh G1KhluN/mHv0oJ4PsIeMbp51YC68q58wb5UDM0YT12r7iI0U38w3GtyyLY9sIDVw cC25Tc21Yc0ObLuYsb3pZ+jFhYdn5YtzV7diT/Mqmy2rzxSB4DnJ5Au5x8g8DiZT WL0Q7RoTL9AErpsFy3IF+jOgU3h+aiLkADMVP2E3G00Hrz1TVTO5JBxZ0lhwyjR6 Hje/TWX/wMO8TeXv64UsJkV8PlqfEejl+A573MUwAb1TDiN+rm6YEJVIB8vo6C0C mZHAHeiWaA== -----END CERTIFICATE-----Generated at Wed May 8 17:45:22 2024 by rpki-client on console-ams.rpki-client.org