$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141060.roa File: AS141060.roa (raw, json) Hash identifier: gPEfCfJ2HOU9S9GediiVsJNoS3lUkEWBq6qO5g07/84= Subject key identifier: 6B:29:F8:27:83:0E:E8:AD:DA:97:AC:96:C6:49:02:6C:53:F4:B2:BE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7D0195E08D24B360BEB177B946C552C924544A7D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141060.roa Signing time: Tue 10 Dec 2024 05:00:08 +0000 ROA not before: Tue 10 Dec 2024 04:55:08 +0000 ROA not after: Tue 09 Dec 2025 05:00:08 +0000 asID: 141060 IP address blocks: 103.155.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:01:95:e0:8d:24:b3:60:be:b1:77:b9:46:c5:52:c9:24:54:4a:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:08 2024 GMT Not After : Dec 9 05:00:08 2025 GMT Subject: CN=6B29F827830EE8ADDA97AC96C649026C53F4B2BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:23:06:89:96:7e:bd:47:15:a0:50:b1:46:1e: a8:8f:39:45:79:35:c3:78:c2:a6:fd:74:95:44:5f: e4:43:3f:02:b3:39:50:19:cc:b8:eb:e1:ca:08:11: 8c:a2:2b:e8:e2:ca:9a:35:2e:11:c4:b6:03:10:bc: c8:e0:b7:fc:62:74:69:d3:ff:80:32:37:fb:9e:f5: 90:f6:b2:2e:b3:61:e5:5d:1e:8a:57:dd:9d:08:72: b7:ef:b3:f3:0a:03:0d:7c:13:31:5e:e3:75:22:9e: 98:98:22:3d:b4:52:d1:12:a6:af:3e:e3:e9:df:c5: db:0d:b0:a5:82:a4:58:b8:f0:01:fd:90:4f:6d:21: 9a:2b:7a:97:62:2c:1e:76:14:d8:9c:41:e5:12:5d: f7:8c:cb:1a:59:2e:05:de:b9:1b:a0:e4:c3:43:02: b0:4f:9b:43:5c:c0:4c:8d:34:13:50:81:a1:27:ab: 8b:d5:34:4f:9f:34:6c:11:00:65:45:04:d6:69:7c: aa:89:53:c6:32:74:25:85:26:7e:b0:88:40:32:0e: 38:c8:95:66:2c:ca:eb:de:ed:96:3e:63:59:b4:62: 7c:cb:ab:45:95:7c:54:8c:9e:34:fd:f1:fc:07:c7: ba:cc:a3:53:c3:3d:55:36:81:fc:aa:11:e4:0b:c0: 1b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:29:F8:27:83:0E:E8:AD:DA:97:AC:96:C6:49:02:6C:53:F4:B2:BE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141060.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.152.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:d9:76:ca:24:c6:24:f0:7d:10:ed:7f:89:32:b5:e7:8b:56: be:35:eb:7d:bc:e6:4e:7e:96:56:c2:65:f4:57:0d:a0:7e:06: cb:f6:1a:55:3c:d5:01:cf:7c:b8:25:33:09:42:51:47:f8:1e: 95:25:04:e3:32:61:5e:4a:08:f7:2b:7d:ff:7f:4e:04:53:cc: 5c:a9:41:7c:83:a8:65:b2:ac:f5:89:60:af:59:6c:e9:9e:92: b7:a7:9e:98:f0:bc:bb:df:34:f6:e9:9d:10:31:45:ff:20:7d: 8f:cb:2a:f2:b7:c6:48:1a:ec:f3:68:d5:f1:ee:a4:05:8c:8e: d9:5a:c3:c9:1f:5b:24:b5:16:42:21:06:af:c9:e6:27:a5:61: 62:5b:5f:62:e3:ab:1a:36:a7:64:54:c6:54:55:6f:f1:4e:e3: af:54:f8:47:4c:fb:fb:82:df:57:07:48:99:88:a0:de:3d:d6: d4:41:4f:63:1f:eb:d7:fa:7a:14:f2:5c:3b:80:9f:a6:33:8f: 85:89:3d:35:e9:c2:0a:52:d2:74:28:f2:a1:c0:37:3f:c4:04: 05:a2:bd:be:b3:b2:ee:c5:7c:2b:57:96:a5:c9:67:1c:5f:de: d9:0e:00:5d:9f:95:8b:21:0c:2d:b3:c9:aa:55:b7:9f:ab:87: dd:ec:96:3b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfQGV4I0ks2C+sXe5RsVSySRUSn0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwOFoX DTI1MTIwOTA1MDAwOFowMzExMC8GA1UEAxMoNkIyOUY4Mjc4MzBFRThBRERBOTdB Qzk2QzY0OTAyNkM1M0Y0QjJCRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJkjBomWfr1HFaBQsUYeqI85RXk1w3jCpv10lURf5EM/ArM5UBnMuOvhyggR jKIr6OLKmjUuEcS2AxC8yOC3/GJ0adP/gDI3+571kPayLrNh5V0eilfdnQhyt++z 8woDDXwTMV7jdSKemJgiPbRS0RKmrz7j6d/F2w2wpYKkWLjwAf2QT20hmit6l2Is HnYU2JxB5RJd94zLGlkuBd65G6Dkw0MCsE+bQ1zATI00E1CBoSeri9U0T580bBEA ZUUE1ml8qolTxjJ0JYUmfrCIQDIOOMiVZizK697tlj5jWbRifMurRZV8VIyeNP3x /AfHusyjU8M9VTaB/KoR5AvAG9kCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRrKfgn gw7ordqXrJbGSQJsU/SyvjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA2MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWebmDANBgkqhkiG9w0BAQsFAAOCAQEALtl2yiTGJPB9EO1/iTK1 54tWvjXrfbzmTn6WVsJl9FcNoH4Gy/YaVTzVAc98uCUzCUJRR/gelSUE4zJhXkoI 9yt9/39OBFPMXKlBfIOoZbKs9Ylgr1ls6Z6St6eemPC8u9809umdEDFF/yB9j8sq 8rfGSBrs82jV8e6kBYyO2VrDyR9bJLUWQiEGr8nmJ6VhYltfYuOrGjanZFTGVFVv 8U7jr1T4R0z7+4LfVwdImYig3j3W1EFPYx/r1/p6FPJcO4CfpjOPhYk9NenCClLS dCjyocA3P8QEBaK9vrOy7sV8K1eWpclnHF/e2Q4AXZ+ViyEMLbPJqlW3n6uH3eyW Ow== -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:04 2025 by rpki-client