$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141054.roa File: AS141054.roa (raw, json) Hash identifier: zgF/K31lU5a8Ya9vJ7Hg6ukJA3SjwdhN+8QSUZ0llHc= Subject key identifier: 59:D5:AC:DA:6D:0B:CB:C2:16:BE:6D:2C:0E:18:0E:F5:19:AC:86:3D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 44EAE64345D5067488FF43D5AFB735C8936F64A3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141054.roa Signing time: Tue 09 Jan 2024 04:00:01 +0000 ROA not before: Tue 09 Jan 2024 03:55:01 +0000 ROA not after: Tue 07 Jan 2025 04:00:01 +0000 asID: 141054 IP address blocks: 103.154.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 12:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:ea:e6:43:45:d5:06:74:88:ff:43:d5:af:b7:35:c8:93:6f:64:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:01 2024 GMT Not After : Jan 7 04:00:01 2025 GMT Subject: CN=59D5ACDA6D0BCBC216BE6D2C0E180EF519AC863D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:1d:66:79:86:35:87:3e:b3:70:32:e5:83:09: a6:7b:58:75:2d:23:b7:be:dc:ab:54:d0:68:ac:91: ac:08:7e:f8:c0:8f:b3:44:91:2f:02:55:9b:96:01: 14:36:b4:24:a4:10:39:64:08:e1:74:d5:8f:fd:47: 76:be:7a:4d:c7:fe:84:63:33:e9:d3:36:c8:9e:07: 11:bc:77:92:93:21:26:a3:7e:25:87:5f:29:2e:3b: d5:07:64:9e:8a:04:a1:6f:ff:80:50:c0:66:82:b3: 5b:9c:1d:d7:a0:4b:2d:93:d7:16:1f:5a:55:e1:9d: b3:e9:e9:ef:ad:01:c0:0f:d1:84:b3:15:50:c2:5f: 62:c3:28:4e:19:8f:07:20:a9:d5:ae:f7:82:00:b6: 4b:2a:81:64:d7:12:3e:35:61:cd:ba:6d:b3:45:d6: 69:91:2d:dd:2d:89:72:ae:c7:3f:04:80:1d:49:cb: 5f:d5:36:6b:76:f2:e2:93:1b:f9:71:90:4f:f2:89: 3f:66:aa:a0:4a:10:35:34:92:77:84:48:77:d3:44: 45:7d:da:83:94:9b:ed:ea:a7:1a:95:62:c5:41:fe: 50:36:75:07:96:9f:40:b0:3e:2c:b8:8c:05:63:ef: d1:e8:1d:8f:2d:f7:1a:1b:47:89:40:21:3e:8b:6c: 20:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:D5:AC:DA:6D:0B:CB:C2:16:BE:6D:2C:0E:18:0E:F5:19:AC:86:3D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141054.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.172.0/23 Signature Algorithm: sha256WithRSAEncryption 14:d0:d6:2b:47:6a:5d:64:85:40:3d:f7:c0:de:fa:4b:ce:f6: d5:12:4d:80:e6:b9:b6:d5:c9:f0:03:8f:43:49:c3:e1:3a:2c: c8:3e:ff:63:ae:9b:67:1b:30:62:e5:5c:4a:66:8f:2e:70:04: dc:07:1e:1f:02:f6:d2:0d:ad:0f:19:ff:82:ac:73:c5:6a:f4: 8f:d1:20:40:e6:db:4c:cc:3a:9b:06:73:8d:47:37:4a:d4:13: 76:c2:56:73:60:48:bc:24:60:b3:c6:7b:23:d2:08:c1:f9:81: ed:f0:03:2e:99:8d:b6:8e:bd:1f:10:74:1b:bc:b1:6d:4c:12: 5d:dc:37:f6:04:ee:61:6e:cc:5c:54:d3:85:19:d4:81:a9:04: 2e:89:39:c3:78:5f:d3:cf:f9:92:55:b3:70:01:6a:23:ef:9b: 8a:a8:b3:b1:39:43:c3:fc:f2:58:17:a5:b5:f9:a4:fe:56:0e: ef:b1:2b:6d:61:01:d0:2d:88:ca:cf:d0:cc:66:46:c9:d4:b3: ef:a4:02:1f:3c:93:96:84:54:0a:8a:d1:1f:f5:e6:73:68:32: 6a:dd:a4:d1:10:97:26:dc:17:0e:49:65:55:f9:c0:76:dd:77: 92:e8:16:a2:0b:ea:e3:5a:65:fb:22:fd:4b:b9:2d:51:24:ce: 03:a5:20:d4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUROrmQ0XVBnSI/0PVr7c1yJNvZKMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwMVoX DTI1MDEwNzA0MDAwMVowMzExMC8GA1UEAxMoNTlENUFDREE2RDBCQ0JDMjE2QkU2 RDJDMEUxODBFRjUxOUFDODYzRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO0dZnmGNYc+s3Ay5YMJpntYdS0jt77cq1TQaKyRrAh++MCPs0SRLwJVm5YB FDa0JKQQOWQI4XTVj/1Hdr56Tcf+hGMz6dM2yJ4HEbx3kpMhJqN+JYdfKS471Qdk nooEoW//gFDAZoKzW5wd16BLLZPXFh9aVeGds+np760BwA/RhLMVUMJfYsMoThmP ByCp1a73ggC2SyqBZNcSPjVhzbpts0XWaZEt3S2Jcq7HPwSAHUnLX9U2a3by4pMb +XGQT/KJP2aqoEoQNTSSd4RId9NERX3ag5Sb7eqnGpVixUH+UDZ1B5afQLA+LLiM BWPv0egdjy33GhtHiUAhPotsIG8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRZ1aza bQvLwha+bSwOGA71GayGPTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA1NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWearDANBgkqhkiG9w0BAQsFAAOCAQEAFNDWK0dqXWSFQD33wN76 S8721RJNgOa5ttXJ8AOPQ0nD4TosyD7/Y66bZxswYuVcSmaPLnAE3AceHwL20g2t Dxn/gqxzxWr0j9EgQObbTMw6mwZzjUc3StQTdsJWc2BIvCRgs8Z7I9IIwfmB7fAD LpmNto69HxB0G7yxbUwSXdw39gTuYW7MXFTThRnUgakELok5w3hf08/5klWzcAFq I++biqizsTlDw/zyWBeltfmk/lYO77ErbWEB0C2Iys/QzGZGydSz76QCHzyTloRU CorRH/Xmc2gyat2k0RCXJtwXDkllVfnAdt13kugWogvq41pl+yL9S7ktUSTOA6Ug 1A== -----END CERTIFICATE-----Generated at Wed May 1 07:54:37 2024 by rpki-client on console-fra.rpki-client.org