$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141930.roa File: AS141930.roa (raw, json) Hash identifier: ghGWvuDgC9IWaSmG5IyvCf6QZpEGH0CzyWLv6YAYekI= Subject key identifier: A5:DD:67:56:CF:9C:9E:2B:C4:CA:8D:0D:94:33:12:F2:FB:94:96:47 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2EBDD87840ECD9CC12C5145A57B35F15E06739F3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141930.roa Signing time: Tue 09 Jan 2024 04:00:15 +0000 ROA not before: Tue 09 Jan 2024 03:55:15 +0000 ROA not after: Tue 07 Jan 2025 04:00:15 +0000 asID: 141930 IP address blocks: 103.163.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 00:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:bd:d8:78:40:ec:d9:cc:12:c5:14:5a:57:b3:5f:15:e0:67:39:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:15 2024 GMT Not After : Jan 7 04:00:15 2025 GMT Subject: CN=A5DD6756CF9C9E2BC4CA8D0D943312F2FB949647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c8:58:82:1b:0c:c0:13:cf:c6:bc:39:c2:b4: d0:c1:fa:7d:4b:a5:10:86:67:73:27:f4:bc:fd:0c: 34:65:d8:04:54:0a:76:44:3b:e7:85:d3:2c:c5:05: c3:eb:42:2b:77:12:08:b0:5c:d1:0d:d1:dd:e0:32: c4:7f:09:27:4a:af:aa:c5:2e:f3:5b:a9:f6:74:f7: 68:c9:d5:13:d2:0e:30:b1:b8:ee:e4:e9:96:40:75: 26:ed:df:c2:f2:20:34:b6:12:9b:9d:62:e4:af:e1: a0:63:aa:d0:33:43:ef:bf:55:b4:a5:66:37:10:db: fb:b3:4d:87:66:c0:c5:75:4e:c4:0f:64:5c:ed:56: 2b:57:e6:93:78:fa:78:d3:92:3a:a0:0e:8a:9c:01: 07:40:21:57:4b:f9:ac:d2:c1:e5:9c:51:45:ec:0c: 5e:b3:cb:b0:bc:ad:6e:da:5c:81:c2:7d:0d:57:8f: 5b:71:2c:41:6d:88:b9:69:ee:28:4f:53:f8:5b:18: b7:c2:50:ae:4e:37:20:b9:30:4a:75:33:b7:62:3d: 32:8f:ec:4e:3d:35:ac:d8:72:5b:b3:64:db:8b:0f: 40:5a:f3:dd:fd:86:c0:b0:18:3c:8e:89:00:fa:15: 37:df:d1:3a:b7:f3:35:4c:d5:1a:a1:76:ae:26:b3: a4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:DD:67:56:CF:9C:9E:2B:C4:CA:8D:0D:94:33:12:F2:FB:94:96:47 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.110.0/23 Signature Algorithm: sha256WithRSAEncryption 01:be:fc:ba:55:da:be:d2:c5:cf:db:81:57:7e:ec:0c:06:c4: 71:6d:10:67:23:4e:d3:b6:d3:71:ff:57:24:7f:d6:7d:a9:c9: d5:db:9b:f8:1c:8b:45:fb:45:82:8f:21:95:e0:d1:e1:d7:42: ea:f5:e0:e8:4b:a2:f9:f3:0a:d4:cf:b9:64:ff:b9:dc:d5:60: 96:53:bf:32:f1:46:64:6e:c1:dc:4c:24:ee:7f:bd:a7:d0:28: ac:0f:f7:96:27:48:5c:36:06:e6:a2:b6:56:d5:d1:78:7a:c1: 1a:72:c9:1e:51:22:7b:3c:d0:71:8e:fe:e1:5c:93:e3:a8:b7: 71:07:19:8d:66:87:7b:fb:cd:76:fb:47:87:f3:b8:0a:70:80: 67:38:23:ec:46:d4:0e:62:05:d6:e7:48:65:0b:db:48:d1:6f: 7f:fd:ab:11:29:4e:e3:c8:d7:dc:5e:d3:3c:70:20:aa:16:a2: 18:c4:4c:7b:f6:ee:4b:e8:94:59:09:38:c0:53:99:e0:71:04: 2b:0d:59:31:b8:1a:b5:1f:64:7b:fb:1c:af:5c:a6:0b:ef:41: 4e:f0:98:1f:29:86:36:a9:58:a1:37:33:d4:28:ef:df:d1:82: 82:aa:a9:e3:ce:e1:f5:5a:27:4c:17:a9:39:cf:14:35:e2:da: 4e:8f:50:4e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULr3YeEDs2cwSxRRaV7NfFeBnOfMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxNVoX DTI1MDEwNzA0MDAxNVowMzExMC8GA1UEAxMoQTVERDY3NTZDRjlDOUUyQkM0Q0E4 RDBEOTQzMzEyRjJGQjk0OTY0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMbIWIIbDMATz8a8OcK00MH6fUulEIZncyf0vP0MNGXYBFQKdkQ754XTLMUF w+tCK3cSCLBc0Q3R3eAyxH8JJ0qvqsUu81up9nT3aMnVE9IOMLG47uTplkB1Ju3f wvIgNLYSm51i5K/hoGOq0DND779VtKVmNxDb+7NNh2bAxXVOxA9kXO1WK1fmk3j6 eNOSOqAOipwBB0AhV0v5rNLB5ZxRRewMXrPLsLytbtpcgcJ9DVePW3EsQW2IuWnu KE9T+FsYt8JQrk43ILkwSnUzt2I9Mo/sTj01rNhyW7Nk24sPQFrz3f2GwLAYPI6J APoVN9/ROrfzNUzVGqF2riazpJMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSl3WdW z5yeK8TKjQ2UMxLy+5SWRzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWejbjANBgkqhkiG9w0BAQsFAAOCAQEAAb78ulXavtLFz9uBV37s DAbEcW0QZyNO07bTcf9XJH/WfanJ1dub+ByLRftFgo8hleDR4ddC6vXg6Eui+fMK 1M+5ZP+53NVgllO/MvFGZG7B3Ewk7n+9p9AorA/3lidIXDYG5qK2VtXReHrBGnLJ HlEiezzQcY7+4VyT46i3cQcZjWaHe/vNdvtHh/O4CnCAZzgj7EbUDmIF1udIZQvb SNFvf/2rESlO48jX3F7TPHAgqhaiGMRMe/buS+iUWQk4wFOZ4HEEKw1ZMbgatR9k e/scr1ymC+9BTvCYHymGNqlYoTcz1Cjv39GCgqqp487h9VonTBepOc8UNeLaTo9Q Tg== -----END CERTIFICATE-----Generated at Thu May 2 17:40:07 2024 by rpki-client on console-fra.rpki-client.org