$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141058.roa File: AS141058.roa (raw, json) Hash identifier: tVR5lrVvXlx+UJ5f05Wqbufvm1qMIoNhpFNrEsfSyGg= Subject key identifier: C8:E7:1B:8A:77:D7:77:1E:2F:27:CB:7A:5B:5C:A2:FE:21:0B:0D:D7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 48FECFCB1D604D6B79038DCD6356E3747927728F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141058.roa Signing time: Fri 04 Aug 2023 10:00:00 +0000 ROA not before: Fri 04 Aug 2023 09:55:00 +0000 ROA not after: Fri 02 Aug 2024 10:00:00 +0000 asID: 141058 IP address blocks: 103.36.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:fe:cf:cb:1d:60:4d:6b:79:03:8d:cd:63:56:e3:74:79:27:72:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 4 09:55:00 2023 GMT Not After : Aug 2 10:00:00 2024 GMT Subject: CN=C8E71B8A77D7771E2F27CB7A5B5CA2FE210B0DD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:eb:41:26:c5:cf:70:be:b0:d3:63:1b:ff:b2: 4d:26:cc:05:3b:58:35:69:d7:d2:a3:da:87:27:81: 97:da:2b:03:4b:eb:e7:11:d2:a8:6f:20:cd:b3:c2: c7:9e:19:0c:04:63:d9:2c:1c:a0:7c:fa:2c:06:26: 9c:f2:4b:f8:9e:ef:37:f1:67:3a:3c:67:a4:aa:93: d5:c5:59:6e:1a:3c:17:6f:09:ea:87:32:5f:67:82: 1f:b8:4c:bd:53:fe:c9:7a:67:e5:07:51:0e:8d:43: 11:a6:ee:09:f5:62:f4:43:cc:3a:13:c0:08:48:2b: a9:15:d5:56:74:df:b8:ac:39:cf:34:8f:bb:b4:43: c1:e7:3d:a6:51:ac:22:fa:6d:b2:f7:27:74:86:61: 35:13:ac:b3:8f:d8:9a:b3:ba:85:a7:f0:ad:36:eb: 56:8c:41:c9:ce:be:1c:9d:74:f1:ac:52:46:ba:1d: 69:41:ef:31:1c:23:47:cc:23:16:ac:21:84:3f:c5: 7c:c4:91:01:aa:8c:90:ba:c6:a5:e6:b9:5a:12:3c: 58:ec:c4:f2:a5:e0:06:0f:8a:61:7c:38:9e:23:d5: 99:47:b1:f4:a3:e2:46:0e:d2:06:23:de:44:0c:67: 4b:dc:24:61:2b:12:f6:89:c0:2a:ea:a5:47:63:d4: d2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:E7:1B:8A:77:D7:77:1E:2F:27:CB:7A:5B:5C:A2:FE:21:0B:0D:D7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141058.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.36.250.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:67:c3:52:bd:29:84:6f:6e:7a:7d:da:b3:14:6a:34:27:52: 80:06:b8:63:0d:c4:a1:85:38:6c:82:88:69:46:f2:b2:20:64: ee:25:2d:9a:a4:16:de:46:56:0c:f7:93:10:b3:f0:f7:48:06: 07:ea:a0:bf:19:af:fc:82:67:94:49:e8:d9:f9:21:98:71:d2: 26:fe:60:e5:99:3b:11:7b:b5:d7:4b:7d:78:dd:5a:04:fa:40: 38:91:a0:8b:56:13:da:dc:98:ea:85:43:c2:d3:b5:06:8d:ad: 8f:7a:b5:a8:b8:f1:98:e4:b7:3c:1b:92:89:1f:81:56:c7:72: c4:6b:8c:5b:c4:65:83:80:26:ed:8d:9d:48:af:33:cc:67:53: 97:85:74:97:d2:6d:ff:e4:74:69:b4:b0:5f:5d:03:1c:57:58: d3:ac:fb:7d:6a:f5:30:6b:ee:94:93:90:56:4c:03:7d:c6:e0: 52:13:6a:54:ed:da:4f:f1:91:40:67:bd:7a:76:cd:7d:88:b3: 58:e9:f9:c8:25:6b:8a:c0:b4:cf:ea:34:80:63:77:d0:4d:1a: 10:1d:fc:60:05:f3:f9:33:fe:72:28:8d:70:d4:f7:45:2e:10: bc:7e:26:8c:2d:54:e3:25:d3:db:05:33:64:3c:f9:4b:0a:fa: 2c:02:a5:ab -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUSP7Pyx1gTWt5A43NY1bjdHknco8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwNDA5NTUwMFoX DTI0MDgwMjEwMDAwMFowMzExMC8GA1UEAxMoQzhFNzFCOEE3N0Q3NzcxRTJGMjdD QjdBNUI1Q0EyRkUyMTBCMERENzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPrQSbFz3C+sNNjG/+yTSbMBTtYNWnX0qPahyeBl9orA0vr5xHSqG8gzbPC x54ZDARj2SwcoHz6LAYmnPJL+J7vN/FnOjxnpKqT1cVZbho8F28J6ocyX2eCH7hM vVP+yXpn5QdRDo1DEabuCfVi9EPMOhPACEgrqRXVVnTfuKw5zzSPu7RDwec9plGs IvptsvcndIZhNROss4/YmrO6hafwrTbrVoxByc6+HJ108axSRrodaUHvMRwjR8wj FqwhhD/FfMSRAaqMkLrGpea5WhI8WOzE8qXgBg+KYXw4niPVmUex9KPiRg7SBiPe RAxnS9wkYSsS9onAKuqlR2PU0msCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTI5xuK d9d3Hi8ny3pbXKL+IQsN1zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA1OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGck+jANBgkqhkiG9w0BAQsFAAOCAQEAL2fDUr0phG9uen3asxRq NCdSgAa4Yw3EoYU4bIKIaUbysiBk7iUtmqQW3kZWDPeTELPw90gGB+qgvxmv/IJn lEno2fkhmHHSJv5g5Zk7EXu110t9eN1aBPpAOJGgi1YT2tyY6oVDwtO1Bo2tj3q1 qLjxmOS3PBuSiR+BVsdyxGuMW8Rlg4Am7Y2dSK8zzGdTl4V0l9Jt/+R0abSwX10D HFdY06z7fWr1MGvulJOQVkwDfcbgUhNqVO3aT/GRQGe9enbNfYizWOn5yCVrisC0 z+o0gGN30E0aEB38YAXz+TP+ciiNcNT3RS4QvH4mjC1U4yXT2wUzZDz5Swr6LAKl qw== -----END CERTIFICATE-----Generated at Thu May 9 00:29:15 2024 by rpki-client on console-ams.rpki-client.org