$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141058.roa File: AS141058.roa (raw, json) Hash identifier: zfGGhPuitFms4lvQWkf/0Qk1B0EYnfV7UcErTv73Nyo= Subject key identifier: CE:B5:53:E0:88:32:2E:55:6A:C5:DA:70:42:9F:BC:1C:8D:4E:C5:F8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 605669C749757BB60634FABAD2BE7C86FC5A2A0C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141058.roa Signing time: Fri 05 Jul 2024 10:00:00 +0000 ROA not before: Fri 05 Jul 2024 09:55:00 +0000 ROA not after: Fri 04 Jul 2025 10:00:00 +0000 asID: 141058 IP address blocks: 103.36.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:56:69:c7:49:75:7b:b6:06:34:fa:ba:d2:be:7c:86:fc:5a:2a:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 5 09:55:00 2024 GMT Not After : Jul 4 10:00:00 2025 GMT Subject: CN=CEB553E088322E556AC5DA70429FBC1C8D4EC5F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4a:13:9f:01:36:c2:16:d1:f8:a2:8f:1c:b1: 5f:0d:75:71:f0:99:eb:ab:28:93:fa:26:f3:53:a3: e9:4d:40:e3:35:bd:4d:aa:63:34:04:ed:3e:a8:8e: af:bb:af:55:a7:c1:26:cb:48:65:29:77:3c:16:8b: 58:bd:97:62:38:72:02:86:38:36:7d:18:9f:15:e2: ec:7e:fa:5b:d6:6a:6d:e3:59:fe:ed:0f:2c:3f:38: 61:3e:a7:99:9f:12:f6:f4:55:22:75:31:ba:ef:d8: 49:f4:68:b4:2e:14:85:75:34:1e:9a:36:e5:3c:60: 11:5c:37:d8:fd:c8:14:a6:44:94:04:3b:9d:e5:6a: e1:7f:9a:6e:af:1a:72:a3:4b:02:ed:2a:b1:cb:be: a6:d8:c2:6a:be:02:85:5b:d8:82:45:72:a6:3a:af: 20:0f:c4:0a:39:74:ff:5f:0e:96:85:4a:d9:f4:68: 13:b8:ab:b2:22:4b:63:42:e2:25:aa:a5:78:36:88: 9c:75:44:5b:eb:dc:1f:ff:d2:e6:59:84:60:c2:a5: 73:6f:a5:05:eb:23:c9:8d:06:64:f7:af:e9:c8:85: 0b:bc:2e:2c:08:4c:09:5b:4b:cf:12:1a:03:dd:03: 2f:60:8c:61:f7:52:09:fb:19:23:70:bc:0a:78:40: 0e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B5:53:E0:88:32:2E:55:6A:C5:DA:70:42:9F:BC:1C:8D:4E:C5:F8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141058.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.36.250.0/24 Signature Algorithm: sha256WithRSAEncryption 46:a3:df:7d:b8:30:f7:a0:df:54:2f:4f:d7:cb:24:72:0f:48: db:5e:8c:8b:39:ed:c5:00:a5:92:76:34:c2:a7:18:0a:fa:7a: 07:42:44:5a:38:17:ff:3c:bd:62:ad:da:e8:a4:e3:5b:46:e5: e2:3b:53:1b:d6:81:0f:dc:fc:32:84:09:34:46:aa:a4:02:8e: bc:18:a6:93:72:25:2f:99:8d:57:fc:d6:9a:aa:ae:5d:6e:7f: 68:5a:aa:27:66:b8:32:94:fa:44:fc:bf:65:db:96:f7:7a:79: b3:e5:fd:39:62:4e:8d:23:c8:10:fa:13:28:e7:67:fb:14:78: d3:e3:5c:e1:d5:6a:0a:73:8a:98:8f:4d:64:3d:a3:60:ca:83: 0a:56:4d:70:60:e5:a0:9a:35:30:7d:9f:b3:a1:5d:69:10:61: 8f:6e:4f:ca:fd:a1:fa:c7:16:1c:3d:68:ad:e8:59:52:45:43: 4b:d3:7f:90:d2:9d:c3:98:57:2d:20:e5:43:ce:1b:0d:a8:97: d1:b1:dc:79:df:99:a0:c2:9e:00:c4:02:e0:d3:17:08:b6:a2: 11:27:63:4c:dc:14:00:52:1f:5a:a1:9c:e3:97:07:23:45:50: 3b:70:f1:88:26:c2:f7:b1:17:a6:ab:81:d8:6c:e8:d1:8d:89: ab:fd:77:15 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYFZpx0l1e7YGNPq60r58hvxaKgwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwNTA5NTUwMFoX DTI1MDcwNDEwMDAwMFowMzExMC8GA1UEAxMoQ0VCNTUzRTA4ODMyMkU1NTZBQzVE QTcwNDI5RkJDMUM4RDRFQzVGODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALpKE58BNsIW0fiijxyxXw11cfCZ66sok/om81Oj6U1A4zW9TapjNATtPqiO r7uvVafBJstIZSl3PBaLWL2XYjhyAoY4Nn0YnxXi7H76W9ZqbeNZ/u0PLD84YT6n mZ8S9vRVInUxuu/YSfRotC4UhXU0Hpo25TxgEVw32P3IFKZElAQ7neVq4X+abq8a cqNLAu0qscu+ptjCar4ChVvYgkVypjqvIA/ECjl0/18OloVK2fRoE7irsiJLY0Li JaqleDaInHVEW+vcH//S5lmEYMKlc2+lBesjyY0GZPev6ciFC7wuLAhMCVtLzxIa A90DL2CMYfdSCfsZI3C8CnhADi0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTOtVPg iDIuVWrF2nBCn7wcjU7F+DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA1OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGck+jANBgkqhkiG9w0BAQsFAAOCAQEARqPffbgw96DfVC9P18sk cg9I216MizntxQClknY0wqcYCvp6B0JEWjgX/zy9Yq3a6KTjW0bl4jtTG9aBD9z8 MoQJNEaqpAKOvBimk3IlL5mNV/zWmqquXW5/aFqqJ2a4MpT6RPy/ZduW93p5s+X9 OWJOjSPIEPoTKOdn+xR40+Nc4dVqCnOKmI9NZD2jYMqDClZNcGDloJo1MH2fs6Fd aRBhj25Pyv2h+scWHD1orehZUkVDS9N/kNKdw5hXLSDlQ84bDaiX0bHced+ZoMKe AMQC4NMXCLaiESdjTNwUAFIfWqGc45cHI0VQO3DxiCbC97EXpquB2Gzo0Y2Jq/13 FQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:24 2024 by rpki-client on console-fra.rpki-client.org