$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142374.roa File: AS142374.roa (raw, json) Hash identifier: qqtDxb2KE2uVw185k94PbHTyjTsYW+nzNmy/7TXLA/o= Subject key identifier: B9:44:79:6F:D9:D5:68:A7:5D:8F:04:56:02:15:E9:2B:0D:77:F8:6C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6CF04A762378F41B055785949C8ACEC7814694C3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142374.roa Signing time: Tue 10 Jun 2025 06:00:00 +0000 ROA not before: Tue 10 Jun 2025 05:55:00 +0000 ROA not after: Tue 09 Jun 2026 06:00:00 +0000 asID: 142374 IP address blocks: 2400:a060::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 11:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:f0:4a:76:23:78:f4:1b:05:57:85:94:9c:8a:ce:c7:81:46:94:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 10 05:55:00 2025 GMT Not After : Jun 9 06:00:00 2026 GMT Subject: CN=B944796FD9D568A75D8F04560215E92B0D77F86C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:13:b0:47:b8:a8:67:28:99:7f:78:02:e6:ac: 14:66:0d:26:a7:61:c7:7d:e3:6f:13:a7:76:84:e3: f5:84:32:0a:93:a1:f2:70:86:2a:ab:c2:67:ab:c1: ef:73:df:5a:6d:56:3a:14:0e:7f:8c:25:31:d9:62: e1:72:c9:2f:63:43:19:d3:a3:cc:c7:84:df:15:82: a7:2a:09:c0:50:05:a5:7f:f8:75:6b:1e:5c:dc:6b: e9:25:64:e9:91:a2:be:70:9a:ba:84:9e:9b:e5:43: 47:86:ed:00:0c:22:d0:3c:d4:65:99:be:fd:ce:f7: 18:2b:af:57:9a:61:6e:de:e3:68:c3:90:c1:17:9e: 2f:dd:0d:a0:ee:15:2e:a2:a1:ca:cf:f4:24:c0:6a: ee:73:97:e5:5a:3a:ad:9e:47:1b:97:33:a0:81:ae: 03:95:d6:26:6b:d1:65:68:68:84:28:ee:ed:9a:a0: 2b:08:43:18:85:ba:30:09:72:a7:89:9a:a6:5a:3c: 7f:2a:35:0e:28:0f:5e:24:74:2c:cb:04:d1:81:65: 14:3a:45:2e:45:f4:70:41:3f:6a:29:ec:54:d6:8e: 25:73:54:da:67:7d:50:bd:42:f4:0e:94:f2:f5:de: 20:55:e3:04:6f:8a:10:e6:f0:dd:45:a0:28:a5:6e: 2d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:44:79:6F:D9:D5:68:A7:5D:8F:04:56:02:15:E9:2B:0D:77:F8:6C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142374.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:a060::/32 Signature Algorithm: sha256WithRSAEncryption 4a:5a:23:0f:6d:3b:ee:6d:0c:83:b8:8a:4b:fa:c1:b1:95:aa: 4e:ac:ac:45:af:62:80:a0:fd:08:c9:f4:00:ea:ab:a5:73:a8: ca:0d:a7:9c:47:9f:14:dd:c7:d8:2c:ee:25:de:db:04:bf:76: a0:ee:02:31:5f:21:0c:ba:33:9c:d2:2d:bb:3f:33:ee:42:12: 83:c2:b8:a6:24:d1:53:76:84:a1:0f:55:53:f5:63:d8:bb:49: 9f:97:72:b4:02:fd:a3:a3:18:12:a9:dc:bf:08:6f:69:ed:68: 82:b1:a5:c5:45:08:f8:3d:ce:26:d2:1b:61:7f:50:77:ad:01: ea:15:0c:fc:38:a0:8a:ab:64:93:8d:56:c3:c7:a9:b5:2a:d7: 58:51:fd:22:62:84:79:f7:0d:9d:03:8f:4e:16:70:7a:c8:6d: c4:39:8c:7f:54:4f:a2:cb:c7:b2:03:99:48:9e:24:dd:ab:46: 57:be:7a:bc:86:e5:e5:1a:be:67:a2:b4:96:68:d4:9e:57:f5: 0e:1c:7f:e1:63:bc:e3:75:74:7c:72:bf:2b:56:e2:b6:5a:cb: 0c:45:ca:6f:ce:98:16:54:0b:84:f7:25:76:76:9d:8e:76:ec: bc:9a:fc:d9:04:5d:01:de:49:b9:61:9c:45:6d:f6:01:52:ca: 9b:3e:b5:3a -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUbPBKdiN49BsFV4WUnIrOx4FGlMMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYxMDA1NTUwMFoX DTI2MDYwOTA2MDAwMFowMzExMC8GA1UEAxMoQjk0NDc5NkZEOUQ1NjhBNzVEOEYw NDU2MDIxNUU5MkIwRDc3Rjg2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJgTsEe4qGcomX94AuasFGYNJqdhx33jbxOndoTj9YQyCpOh8nCGKqvCZ6vB 73PfWm1WOhQOf4wlMdli4XLJL2NDGdOjzMeE3xWCpyoJwFAFpX/4dWseXNxr6SVk 6ZGivnCauoSem+VDR4btAAwi0DzUZZm+/c73GCuvV5phbt7jaMOQwReeL90NoO4V LqKhys/0JMBq7nOX5Vo6rZ5HG5czoIGuA5XWJmvRZWhohCju7ZqgKwhDGIW6MAly p4maplo8fyo1DigPXiR0LMsE0YFlFDpFLkX0cEE/ainsVNaOJXNU2md9UL1C9A6U 8vXeIFXjBG+KEObw3UWgKKVuLRECAwEAAaOCAdEwggHNMB0GA1UdDgQWBBS5RHlv 2dVop12PBFYCFekrDXf4bDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM3NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQAoGAwDQYJKoZIhvcNAQELBQADggEBAEpaIw9tO+5tDIO4ikv6 wbGVqk6srEWvYoCg/QjJ9ADqq6VzqMoNp5xHnxTdx9gs7iXe2wS/dqDuAjFfIQy6 M5zSLbs/M+5CEoPCuKYk0VN2hKEPVVP1Y9i7SZ+XcrQC/aOjGBKp3L8Ib2ntaIKx pcVFCPg9zibSG2F/UHetAeoVDPw4oIqrZJONVsPHqbUq11hR/SJihHn3DZ0Dj04W cHrIbcQ5jH9UT6LLx7IDmUieJN2rRle+eryG5eUavmeitJZo1J5X9Q4cf+FjvON1 dHxyvytW4rZaywxFym/OmBZUC4T3JXZ2nY527Lya/NkEXQHeSblhnEVt9gFSyps+ tTo= -----END CERTIFICATE-----Generated at Sun Jun 15 19:34:25 2025 by rpki-client