$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS141662.roa File: AS141662.roa (raw, json) Hash identifier: dsuAYaBF/5CFuqgwgRNRg8rXfurScn7ysu4W3OhFaME= Subject key identifier: E2:C6:A7:50:10:DB:C0:F9:8C:91:F1:8D:FA:DF:11:D4:A4:BF:68:D2 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0C04B726B2BAED35B8C22D78D573963800B69E79 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS141662.roa Signing time: Thu 06 Feb 2025 10:44:48 +0000 ROA not before: Thu 06 Feb 2025 10:39:48 +0000 ROA not after: Thu 05 Feb 2026 10:44:48 +0000 asID: 141662 IP address blocks: 157.66.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:04:b7:26:b2:ba:ed:35:b8:c2:2d:78:d5:73:96:38:00:b6:9e:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 6 10:39:48 2025 GMT Not After : Feb 5 10:44:48 2026 GMT Subject: CN=E2C6A75010DBC0F98C91F18DFADF11D4A4BF68D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:0b:51:28:1d:98:dc:fe:a2:f6:41:4e:36:46: 4c:4f:94:ec:7b:8b:5c:21:15:85:f8:6a:90:90:02: 86:dc:88:0d:65:1e:0d:76:4c:82:ad:54:e5:0e:e0: 83:dd:9d:2e:85:a3:f0:0b:2e:7a:f6:75:bd:59:44: bc:aa:5e:f8:34:a0:1a:be:57:01:d3:33:9d:a7:57: ba:f4:36:38:7d:9f:4d:d0:39:44:9b:f7:e0:e0:77: e2:c9:24:61:0d:ce:48:dc:b6:69:e9:1d:78:33:79: f0:a5:a9:5d:3a:c0:87:7a:f5:48:84:11:4d:e7:c4: e3:90:8a:c7:5a:a7:d9:8c:e8:6d:a0:fd:2a:de:5a: 40:b5:32:54:e5:46:4d:b8:ff:e3:18:d8:75:c5:cc: 16:02:bd:9b:8b:d9:37:c9:7a:22:fe:87:56:ed:db: b7:4a:18:f6:50:c9:49:d6:e4:b7:1a:18:72:3a:57: 81:51:55:22:8b:2e:22:75:c0:ea:3e:37:b4:f8:79: 60:20:d6:08:7a:eb:42:fd:47:02:d6:af:46:4d:20: de:af:1e:19:b1:3b:e6:c2:7c:f3:2d:09:65:d6:5a: 29:96:57:46:02:ee:fb:89:22:7f:31:b3:61:6c:d8: 72:13:f3:13:6c:f0:30:42:bd:1f:a7:04:fa:94:be: 71:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C6:A7:50:10:DB:C0:F9:8C:91:F1:8D:FA:DF:11:D4:A4:BF:68:D2 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS141662.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.138.0/24 Signature Algorithm: sha256WithRSAEncryption 05:97:6c:e9:52:46:e7:32:05:7f:97:ad:fe:0c:07:f1:b4:fb: 45:f5:6b:09:5c:86:e4:70:21:30:14:3f:66:3b:c6:88:98:d1: ea:16:bd:2e:14:c1:bd:89:01:f4:07:96:af:65:33:d8:f9:67: 8e:53:49:b4:9c:51:a5:25:2f:a1:f6:eb:53:b7:ef:bc:b6:68: 95:3b:54:0d:05:0d:a0:2e:92:18:eb:29:15:52:ce:27:0c:b3: 63:b8:97:f3:7f:5b:fd:0c:a0:8d:cd:83:80:03:23:e5:e7:14: 5f:80:88:74:23:21:fe:61:30:56:a9:c1:65:ed:92:a6:75:10: b1:24:b6:eb:34:a9:8f:9d:99:ee:28:c1:b2:a7:22:5d:40:d0: 6c:31:34:6d:61:67:a1:49:6f:1f:94:79:c0:d9:6b:f7:2b:b8: cd:f5:5e:f9:00:52:03:15:f4:de:59:3f:f4:fa:a4:11:3c:ac: 36:4b:3f:c7:32:f0:46:b4:ba:71:51:0b:91:a2:47:33:ae:56: af:74:fb:31:05:7a:a4:4e:2e:4f:8c:b7:6e:10:f8:23:2a:00: 42:dd:7d:cc:9a:43:6b:48:c5:64:f6:07:14:d6:fd:21:9f:70: 8c:29:46:7c:9f:fe:1a:15:05:89:64:ce:05:ed:1b:d8:42:77: d8:39:41:cf -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDAS3JrK67TW4wi141XOWOAC2nnkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk0OFoX DTI2MDIwNTEwNDQ0OFowMzExMC8GA1UEAxMoRTJDNkE3NTAxMERCQzBGOThDOTFG MThERkFERjExRDRBNEJGNjhEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANwLUSgdmNz+ovZBTjZGTE+U7HuLXCEVhfhqkJAChtyIDWUeDXZMgq1U5Q7g g92dLoWj8AsuevZ1vVlEvKpe+DSgGr5XAdMznadXuvQ2OH2fTdA5RJv34OB34skk YQ3OSNy2aekdeDN58KWpXTrAh3r1SIQRTefE45CKx1qn2YzobaD9Kt5aQLUyVOVG Tbj/4xjYdcXMFgK9m4vZN8l6Iv6HVu3bt0oY9lDJSdbktxoYcjpXgVFVIosuInXA 6j43tPh5YCDWCHrrQv1HAtavRk0g3q8eGbE75sJ88y0JZdZaKZZXRgLu+4kifzGz YWzYchPzE2zwMEK9H6cE+pS+cSMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTixqdQ ENvA+YyR8Y363xHUpL9o0jAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0MTY2Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJ1CijANBgkqhkiG9w0BAQsFAAOCAQEABZds6VJG5zIFf5et/gwH 8bT7RfVrCVyG5HAhMBQ/ZjvGiJjR6ha9LhTBvYkB9AeWr2Uz2PlnjlNJtJxRpSUv ofbrU7fvvLZolTtUDQUNoC6SGOspFVLOJwyzY7iX839b/Qygjc2DgAMj5ecUX4CI dCMh/mEwVqnBZe2SpnUQsSS26zSpj52Z7ijBsqciXUDQbDE0bWFnoUlvH5R5wNlr 9yu4zfVe+QBSAxX03lk/9PqkETysNks/xzLwRrS6cVELkaJHM65Wr3T7MQV6pE4u T4y3bhD4IyoAQt19zJpDa0jFZPYHFNb9IZ9wjClGfJ/+GhUFiWTOBe0b2EJ32DlB zw== -----END CERTIFICATE-----Generated at Mon Apr 7 03:36:43 2025 by rpki-client