$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141590.roa File: AS141590.roa (raw, json) Hash identifier: B1UHdLloBtpbfot2RGmuVlOwz44n7lqlloWPu67DudY= Subject key identifier: B1:5B:70:B1:4A:6C:CD:70:1B:DB:66:96:3D:38:AB:EF:C2:C9:D8:70 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1EB6A5761CB4DC9C6B3E1D219D1CF2201BBF8814 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141590.roa Signing time: Tue 09 Jan 2024 04:00:17 +0000 ROA not before: Tue 09 Jan 2024 03:55:17 +0000 ROA not after: Tue 07 Jan 2025 04:00:17 +0000 asID: 141590 IP address blocks: 103.158.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 09:07:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:b6:a5:76:1c:b4:dc:9c:6b:3e:1d:21:9d:1c:f2:20:1b:bf:88:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:17 2024 GMT Not After : Jan 7 04:00:17 2025 GMT Subject: CN=B15B70B14A6CCD701BDB66963D38ABEFC2C9D870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:9c:bb:95:00:7c:fd:27:a5:5c:b3:19:8c:46: c0:20:66:60:ce:da:f0:c3:17:7a:24:34:b1:51:67: a8:24:87:84:6e:ff:45:2c:9c:38:ae:ad:c0:05:2f: 5d:7e:44:ce:f5:89:ab:73:64:58:a8:56:18:21:0b: ef:41:a9:93:8b:93:74:bc:ee:50:1e:40:f8:52:70: 6d:df:22:70:61:52:94:86:91:e9:2c:97:9d:fc:9a: bd:c0:2d:18:34:b6:fe:44:84:19:0f:c1:ed:d2:33: 57:2d:ed:2f:f4:1b:32:d1:db:75:35:2d:b2:6b:37: 9b:91:2d:ab:75:ba:62:e5:8c:a5:e1:e6:0b:85:75: 54:1e:93:4e:ce:00:f9:41:1e:ac:fa:7a:92:41:63: 9a:df:3b:69:42:34:4a:b2:4d:54:aa:e9:c4:80:83: 02:ef:d7:9a:21:b9:25:95:e5:c4:05:94:cd:53:04: 40:60:60:99:ca:24:e0:85:d8:c4:e9:9d:6f:83:ef: 65:19:76:4e:9e:c4:d3:a9:ea:f1:27:f7:90:08:34: 36:d3:8c:89:10:28:b5:9e:24:26:9c:6f:ae:94:0c: 6d:0e:3d:13:cb:0b:79:5e:56:7a:c3:97:62:49:8f: bf:8a:4f:2d:41:1e:0c:af:59:0f:86:f6:f1:10:bd: 14:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:5B:70:B1:4A:6C:CD:70:1B:DB:66:96:3D:38:AB:EF:C2:C9:D8:70 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141590.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.22.0/23 Signature Algorithm: sha256WithRSAEncryption 14:92:bb:de:d0:71:1a:f5:98:f3:f0:7c:9e:8c:94:2b:30:aa: 81:25:63:11:5e:85:77:fe:d6:fb:ff:68:fe:5f:5c:c8:a7:e4: 90:f7:5c:a2:bf:83:b9:12:0f:8f:1d:80:02:a9:a8:dd:4c:d4: ae:1b:73:0e:64:4d:17:44:fc:50:67:c0:05:8e:6f:5f:0d:fa: 71:27:97:49:a6:17:7b:2c:dc:81:88:94:d4:05:15:b6:64:25: 2d:5e:a1:81:dc:d8:36:c7:47:37:2c:f3:17:6a:af:d7:c8:c6: 62:96:b4:89:56:f4:ee:7a:7d:6f:a3:49:1e:0b:9c:23:9b:07: 85:88:78:5e:7d:a4:56:33:a0:24:72:dc:73:fe:20:d5:b2:3d: 60:bf:ac:c4:17:6e:e8:de:c9:61:23:36:93:06:3d:2b:40:9d: 41:57:2b:2a:4a:d3:62:92:7f:3b:e5:d5:34:62:91:b0:27:72: 89:9f:de:4a:72:06:cb:73:ba:06:05:10:c9:c4:99:90:bf:f9: 41:04:67:c9:8f:1a:7e:51:26:ae:d5:80:2a:31:38:f5:0e:97: b5:8b:c3:af:39:60:f6:64:9a:52:82:34:52:cc:1f:f7:0c:1d: 9b:60:e5:38:32:9e:63:f0:7c:f2:f4:38:37:e4:53:97:2a:77: 48:5a:cc:9f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUHraldhy03JxrPh0hnRzyIBu/iBQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxN1oX DTI1MDEwNzA0MDAxN1owMzExMC8GA1UEAxMoQjE1QjcwQjE0QTZDQ0Q3MDFCREI2 Njk2M0QzOEFCRUZDMkM5RDg3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJicu5UAfP0npVyzGYxGwCBmYM7a8MMXeiQ0sVFnqCSHhG7/RSycOK6twAUv XX5EzvWJq3NkWKhWGCEL70Gpk4uTdLzuUB5A+FJwbd8icGFSlIaR6SyXnfyavcAt GDS2/kSEGQ/B7dIzVy3tL/QbMtHbdTUtsms3m5Etq3W6YuWMpeHmC4V1VB6TTs4A +UEerPp6kkFjmt87aUI0SrJNVKrpxICDAu/XmiG5JZXlxAWUzVMEQGBgmcok4IXY xOmdb4PvZRl2Tp7E06nq8Sf3kAg0NtOMiRAotZ4kJpxvrpQMbQ49E8sLeV5WesOX YkmPv4pPLUEeDK9ZD4b28RC9FDUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSxW3Cx SmzNcBvbZpY9OKvvwsnYcDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTU5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeeFjANBgkqhkiG9w0BAQsFAAOCAQEAFJK73tBxGvWY8/B8noyU KzCqgSVjEV6Fd/7W+/9o/l9cyKfkkPdcor+DuRIPjx2AAqmo3UzUrhtzDmRNF0T8 UGfABY5vXw36cSeXSaYXeyzcgYiU1AUVtmQlLV6hgdzYNsdHNyzzF2qv18jGYpa0 iVb07np9b6NJHgucI5sHhYh4Xn2kVjOgJHLcc/4g1bI9YL+sxBdu6N7JYSM2kwY9 K0CdQVcrKkrTYpJ/O+XVNGKRsCdyiZ/eSnIGy3O6BgUQycSZkL/5QQRnyY8aflEm rtWAKjE49Q6XtYvDrzlg9mSaUoI0Uswf9wwdm2DlODKeY/B88vQ4N+RTlyp3SFrM nw== -----END CERTIFICATE-----Generated at Thu May 2 05:25:40 2024 by rpki-client on console-fra.rpki-client.org