$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141054.roa File: AS141054.roa (raw, json) Hash identifier: XQSnouFqerzfBfiSd+YJKYiV5dQYbG3yr7qRlMaLRD0= Subject key identifier: C4:CC:F3:52:D5:BF:82:95:9E:8B:49:24:A9:96:0D:59:92:9C:D3:8F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1001744D7E715021EC893C7BD6DBD53C4D51EB66 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141054.roa Signing time: Tue 10 Dec 2024 05:00:00 +0000 ROA not before: Tue 10 Dec 2024 04:55:00 +0000 ROA not after: Tue 09 Dec 2025 05:00:00 +0000 asID: 141054 IP address blocks: 103.154.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:01:74:4d:7e:71:50:21:ec:89:3c:7b:d6:db:d5:3c:4d:51:eb:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:00 2024 GMT Not After : Dec 9 05:00:00 2025 GMT Subject: CN=C4CCF352D5BF82959E8B4924A9960D59929CD38F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8f:be:cf:8e:ed:c4:e8:a4:01:31:5a:c9:04: 6b:86:ec:45:ad:cf:10:06:c6:15:10:ed:49:64:ab: 37:7c:b3:64:e7:fd:fd:18:e4:2d:5c:0e:3c:9a:84: 61:03:1c:07:7e:1f:eb:16:14:61:30:14:33:28:9c: a5:03:70:ff:df:6b:dc:62:86:74:14:6f:aa:c2:dc: 32:8a:7d:45:a6:1f:1f:96:11:26:15:1b:62:93:a8: a9:10:23:d1:f0:3a:fb:85:a6:bd:13:ec:45:53:50: 4d:61:1a:2e:a5:04:9e:94:11:06:e0:b1:89:d9:6d: 49:cf:50:f2:eb:4c:18:0a:c8:0f:9d:7c:d3:96:06: 6b:84:2a:88:ee:e1:b9:80:50:3f:8b:94:e3:7f:68: 9d:ac:c4:c8:b7:2e:d1:35:f7:02:27:5b:89:fb:86: c4:a2:11:8c:2e:93:e2:6b:6a:63:97:0d:bb:93:05: b3:ea:57:6f:0f:19:64:e4:47:60:81:31:b0:68:b7: 83:0e:a4:e1:9c:2c:7a:bc:a0:6b:28:45:35:4c:22: f9:0a:49:c9:4c:ac:5b:95:8d:d7:5d:ef:48:23:8b: 89:c6:90:02:55:2c:af:ba:db:30:b9:69:ee:a6:f3: 7a:5b:9b:21:55:6b:9a:6a:d4:ac:f2:43:f8:f4:92: c1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:CC:F3:52:D5:BF:82:95:9E:8B:49:24:A9:96:0D:59:92:9C:D3:8F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141054.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.172.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:d1:28:30:d8:16:89:fc:1f:3c:da:7f:55:9c:df:12:5c:60: 5c:b6:b8:25:ae:18:ef:64:16:c9:aa:34:2b:96:7e:69:f8:f2: 43:6f:5d:b1:a2:46:31:62:8e:37:c8:24:fd:a9:cb:5a:4f:56: aa:a4:5f:46:06:16:32:fa:0b:af:70:92:4f:72:b3:33:7d:3e: d7:60:cf:79:1f:b5:b8:83:0f:3c:8e:0b:cc:1e:c2:c1:95:09: 17:4b:9e:cc:d7:94:d5:a7:bb:82:8c:cc:45:41:67:d6:a8:06: 39:ac:4f:ba:f7:f5:e6:71:24:8c:12:9a:f8:e7:62:a2:71:c1: 5b:91:1f:4b:4e:54:6e:72:be:ae:47:45:dd:cb:4a:9b:f0:98: a1:2f:11:2c:b4:f6:d0:9a:95:01:80:81:47:b4:bf:18:7e:80: 19:e6:4b:c7:a4:55:af:29:9b:f7:2a:15:d5:61:da:43:18:97: 28:87:f0:79:94:cc:42:61:1e:7b:09:a2:7e:70:9f:d4:07:1e: 2b:82:80:a5:71:42:35:5a:41:b2:fa:0b:17:cb:0b:83:75:d2: 49:4a:44:90:9f:d2:ef:9f:0e:b0:35:a5:f4:a2:d9:4e:95:f7: 13:98:ac:d7:98:5c:e4:e0:4e:bf:74:68:b5:27:26:10:93:5e: 82:17:e8:55 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUEAF0TX5xUCHsiTx71tvVPE1R62YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwMFoX DTI1MTIwOTA1MDAwMFowMzExMC8GA1UEAxMoQzRDQ0YzNTJENUJGODI5NTlFOEI0 OTI0QTk5NjBENTk5MjlDRDM4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL+Pvs+O7cTopAExWskEa4bsRa3PEAbGFRDtSWSrN3yzZOf9/RjkLVwOPJqE YQMcB34f6xYUYTAUMyicpQNw/99r3GKGdBRvqsLcMop9RaYfH5YRJhUbYpOoqRAj 0fA6+4WmvRPsRVNQTWEaLqUEnpQRBuCxidltSc9Q8utMGArID51805YGa4QqiO7h uYBQP4uU439onazEyLcu0TX3AidbifuGxKIRjC6T4mtqY5cNu5MFs+pXbw8ZZORH YIExsGi3gw6k4ZwserygayhFNUwi+QpJyUysW5WN113vSCOLicaQAlUsr7rbMLlp 7qbzelubIVVrmmrUrPJD+PSSwdECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTEzPNS 1b+ClZ6LSSSplg1ZkpzTjzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA1NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWearDANBgkqhkiG9w0BAQsFAAOCAQEAitEoMNgWifwfPNp/VZzf ElxgXLa4Ja4Y72QWyao0K5Z+afjyQ29dsaJGMWKON8gk/anLWk9WqqRfRgYWMvoL r3CST3KzM30+12DPeR+1uIMPPI4LzB7CwZUJF0uezNeU1ae7gozMRUFn1qgGOaxP uvf15nEkjBKa+OdionHBW5EfS05UbnK+rkdF3ctKm/CYoS8RLLT20JqVAYCBR7S/ GH6AGeZLx6RVrymb9yoV1WHaQxiXKIfweZTMQmEeewmifnCf1AceK4KApXFCNVpB svoLF8sLg3XSSUpEkJ/S758OsDWl9KLZTpX3E5is15hc5OBOv3RotScmEJNeghfo VQ== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:23 2025 by rpki-client