$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141984.roa File: AS141984.roa (raw, json) Hash identifier: +PHzRLmnQ+wd2zRtkj/H0PFkw/Cztl3dfUB1M7ueVlY= Subject key identifier: 9F:EE:2F:1A:6A:55:9E:87:09:E5:5A:75:45:00:37:0D:22:7D:2A:03 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 780F82EAFF077401B2B3FAD5111B9FCA77F47FF5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141984.roa Signing time: Tue 22 Apr 2025 08:00:00 +0000 ROA not before: Tue 22 Apr 2025 07:55:00 +0000 ROA not after: Tue 21 Apr 2026 08:00:00 +0000 asID: 141984 IP address blocks: 2400:cfa0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:0f:82:ea:ff:07:74:01:b2:b3:fa:d5:11:1b:9f:ca:77:f4:7f:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 22 07:55:00 2025 GMT Not After : Apr 21 08:00:00 2026 GMT Subject: CN=9FEE2F1A6A559E8709E55A754500370D227D2A03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:56:d9:ab:89:0e:37:52:98:2f:3c:03:af:cb: c7:5c:11:c8:38:30:7b:51:4c:77:69:90:8c:2f:22: 30:c1:18:07:ea:1d:44:b4:b1:72:a8:af:26:44:db: ce:55:65:26:72:3e:87:a4:8f:35:4e:4f:6f:96:37: 79:15:80:bc:ae:4d:59:71:e8:0a:f8:1a:fd:03:27: 79:ed:84:68:19:cc:2b:58:29:e2:55:d4:b4:46:0f: aa:ec:fc:1b:48:f3:1b:b6:e4:6b:48:40:01:5e:58: be:c6:db:4c:dd:99:5c:05:e2:8a:a7:76:4a:eb:88: a8:3d:29:fe:69:cc:c8:70:c2:9c:96:60:25:91:58: 6c:f8:dd:ba:bf:e3:8a:3a:c1:91:68:a5:6f:4b:66: 65:2f:97:d4:1c:2c:35:4c:01:5f:ed:c4:c4:00:65: c3:9d:fd:10:78:98:34:83:1b:6d:24:fa:d2:2e:8f: 83:3d:c8:6b:6e:e0:ca:b4:23:c5:95:2f:0f:83:8a: 49:e3:13:45:77:9b:8d:3c:e6:4d:cc:dc:17:e6:39: 35:e2:8b:15:f4:6f:3c:da:d3:ef:30:43:c8:da:8a: 55:21:0b:86:12:72:ed:74:83:79:ff:05:7a:dc:50: 89:a5:fc:56:38:03:18:51:b9:dc:30:03:57:c9:bc: 5e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:EE:2F:1A:6A:55:9E:87:09:E5:5A:75:45:00:37:0D:22:7D:2A:03 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141984.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:cfa0::/32 Signature Algorithm: sha256WithRSAEncryption 26:b3:38:eb:d8:bf:cd:c0:e1:cd:df:d7:d9:61:bb:c7:f2:b5: d2:55:36:4d:33:12:50:29:90:ef:18:16:41:57:13:6a:0e:c0: 76:5e:8d:7b:07:58:d5:03:e3:59:7a:05:79:7c:09:c4:26:6e: fc:10:f6:b9:25:88:ee:3e:1b:e5:85:36:6a:5b:61:1e:7d:4e: 9b:b7:b7:5e:a0:62:0f:c8:a8:b7:58:a6:14:6e:33:ae:6d:ff: 9a:3d:d4:a3:6e:77:54:f5:52:28:c1:69:ae:48:bf:cc:e2:19: c9:6d:14:00:fb:6d:57:ba:9f:ea:81:d5:c7:14:2d:7c:cc:27: 52:16:69:da:0a:dc:a4:70:d8:df:5b:71:e9:f8:5c:f2:1f:7e: cc:d5:65:26:cc:38:52:aa:e4:22:5f:1a:38:7f:a0:86:9f:be: f3:35:15:1f:06:97:95:9a:6e:be:df:61:98:05:7f:23:1c:79: 38:46:8b:c0:87:9d:2f:33:2b:39:27:73:26:83:5e:37:95:5a: 8e:77:c4:10:74:cc:65:bb:84:56:0c:76:c4:5c:83:c2:ec:03: e5:39:fe:11:e4:2d:3e:14:49:4a:46:fb:32:ff:20:db:14:0d: cb:0d:06:dc:6b:37:d8:88:ac:1d:ad:11:01:8e:90:5d:1d:d7: 72:cb:67:a4 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUeA+C6v8HdAGys/rVERufynf0f/UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQyMjA3NTUwMFoX DTI2MDQyMTA4MDAwMFowMzExMC8GA1UEAxMoOUZFRTJGMUE2QTU1OUU4NzA5RTU1 QTc1NDUwMDM3MEQyMjdEMkEwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKJW2auJDjdSmC88A6/Lx1wRyDgwe1FMd2mQjC8iMMEYB+odRLSxcqivJkTb zlVlJnI+h6SPNU5Pb5Y3eRWAvK5NWXHoCvga/QMnee2EaBnMK1gp4lXUtEYPquz8 G0jzG7bka0hAAV5YvsbbTN2ZXAXiiqd2SuuIqD0p/mnMyHDCnJZgJZFYbPjdur/j ijrBkWilb0tmZS+X1BwsNUwBX+3ExABlw539EHiYNIMbbST60i6Pgz3Ia27gyrQj xZUvD4OKSeMTRXebjTzmTczcF+Y5NeKLFfRvPNrT7zBDyNqKVSELhhJy7XSDef8F etxQiaX8VjgDGFG53DADV8m8XsMCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSf7i8a alWehwnlWnVFADcNIn0qAzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQAz6AwDQYJKoZIhvcNAQELBQADggEBACazOOvYv83A4c3f19lh u8fytdJVNk0zElApkO8YFkFXE2oOwHZejXsHWNUD41l6BXl8CcQmbvwQ9rkliO4+ G+WFNmpbYR59Tpu3t16gYg/IqLdYphRuM65t/5o91KNud1T1UijBaa5Iv8ziGclt FAD7bVe6n+qB1ccULXzMJ1IWadoK3KRw2N9bcen4XPIffszVZSbMOFKq5CJfGjh/ oIafvvM1FR8Gl5Wabr7fYZgFfyMceThGi8CHnS8zKzkncyaDXjeVWo53xBB0zGW7 hFYMdsRcg8LsA+U5/hHkLT4USUpG+zL/INsUDcsNBtxrN9iIrB2tEQGOkF0d13LL Z6Q= -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:19 2025 by rpki-client on console.sobornost.net