$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141061.roa File: AS141061.roa (raw, json) Hash identifier: HdUSXWeTjgO5NGpfIKsae0JPxspHtR5KKfCvK+7CYRA= Subject key identifier: 41:19:CD:4F:6F:4D:76:A1:C0:F5:B2:73:1A:78:1E:4A:AA:46:F7:1E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3F0C2FC9C0160D46B6D010D9B5B4B97FD0C025C6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141061.roa Signing time: Tue 09 Jan 2024 04:00:05 +0000 ROA not before: Tue 09 Jan 2024 03:55:05 +0000 ROA not after: Tue 07 Jan 2025 04:00:05 +0000 asID: 141061 IP address blocks: 103.155.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:0c:2f:c9:c0:16:0d:46:b6:d0:10:d9:b5:b4:b9:7f:d0:c0:25:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:05 2024 GMT Not After : Jan 7 04:00:05 2025 GMT Subject: CN=4119CD4F6F4D76A1C0F5B2731A781E4AAA46F71E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6e:4b:4a:c4:ec:cd:51:47:54:1c:f2:42:b6: 79:07:91:f2:bd:5e:8b:60:05:10:df:14:9d:6b:c9: 96:17:69:e6:15:7e:63:98:2e:2c:37:a6:cf:6e:af: 45:ad:0d:0b:25:e1:e5:fe:e0:02:14:a3:58:b4:bc: 45:d2:24:40:d0:92:c4:05:22:c0:b2:5b:a9:55:66: 06:d6:25:26:ee:46:43:73:3d:4d:ca:18:37:c8:4a: 32:a5:96:ea:07:a0:19:f6:e6:7c:96:ec:3c:41:47: 06:3f:8a:8a:ea:8d:5a:bf:ae:b6:d5:ac:dc:32:f6: cb:63:9c:f8:fa:31:4b:d9:cd:88:55:90:0c:16:b9: 1a:c7:12:17:28:5f:5f:31:05:b1:5e:ce:9e:7c:ed: c0:b3:57:31:f0:0a:7d:f6:d1:4e:e0:dd:38:b1:c4: 87:00:c3:8d:7d:ef:7a:8e:8f:9a:94:8d:83:18:8e: c4:bc:35:d9:9d:54:5c:b5:71:38:f0:bf:a7:df:c5: 39:c7:8a:f7:3b:32:0d:24:10:6e:1f:c9:17:83:5e: 02:75:3a:f0:3a:cf:5a:8a:93:02:44:09:79:fb:a1: c3:51:93:60:25:03:6b:11:6c:9f:28:80:05:25:bf: 7b:57:00:9e:15:f4:5d:a0:fd:27:a8:95:d6:59:84: c3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:19:CD:4F:6F:4D:76:A1:C0:F5:B2:73:1A:78:1E:4A:AA:46:F7:1E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141061.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.144.0/24 Signature Algorithm: sha256WithRSAEncryption 10:a1:9b:e4:82:94:cf:3b:c6:a7:5a:77:1b:6c:cd:01:11:a4: a0:64:15:6e:df:3b:8f:88:87:7c:f7:ba:0f:a0:0b:dc:ec:c7: b2:b3:5d:05:55:24:f0:e1:35:ad:dd:af:06:8d:e4:a1:07:1a: 81:80:55:9a:a3:e2:86:3c:b0:09:41:6d:51:39:f2:71:72:6c: 78:43:e7:85:8c:11:d0:ac:36:31:5a:1d:f4:33:d3:06:6c:de: 0c:d6:bd:2f:1a:d2:bd:69:07:e0:fe:51:43:e1:36:9b:c8:f0: 9e:4f:61:df:0a:0a:ee:d8:69:8d:90:4a:0b:df:f4:54:d5:67: a0:90:47:b1:d5:f3:41:68:54:ff:0f:62:a3:ce:29:13:4c:6e: b5:95:e3:e0:a2:83:85:fc:f7:ea:75:bd:23:d2:08:2d:bf:bc: b9:50:c2:83:17:8b:73:17:1d:db:68:1f:c6:fe:a3:a1:c7:c4: e4:65:a7:53:e0:fe:89:d8:89:9d:dd:30:92:1b:7c:dd:25:67: 92:5a:c6:5c:a2:87:33:6a:39:51:01:57:f0:ad:48:50:b5:eb: 36:e6:c1:d7:ec:dc:29:de:2c:30:76:b3:9d:46:8a:42:32:90: d1:96:d1:50:03:c5:91:be:38:05:c2:b1:5f:74:52:92:38:a6: 70:94:05:34 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPwwvycAWDUa20BDZtbS5f9DAJcYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwNVoX DTI1MDEwNzA0MDAwNVowMzExMC8GA1UEAxMoNDExOUNENEY2RjRENzZBMUMwRjVC MjczMUE3ODFFNEFBQTQ2RjcxRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN9uS0rE7M1RR1Qc8kK2eQeR8r1ei2AFEN8UnWvJlhdp5hV+Y5guLDemz26v Ra0NCyXh5f7gAhSjWLS8RdIkQNCSxAUiwLJbqVVmBtYlJu5GQ3M9TcoYN8hKMqWW 6gegGfbmfJbsPEFHBj+KiuqNWr+uttWs3DL2y2Oc+PoxS9nNiFWQDBa5GscSFyhf XzEFsV7OnnztwLNXMfAKffbRTuDdOLHEhwDDjX3veo6PmpSNgxiOxLw12Z1UXLVx OPC/p9/FOceK9zsyDSQQbh/JF4NeAnU68DrPWoqTAkQJefuhw1GTYCUDaxFsnyiA BSW/e1cAnhX0XaD9J6iV1lmEwycCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRBGc1P b012ocD1snMaeB5Kqkb3HjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA2MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGebkDANBgkqhkiG9w0BAQsFAAOCAQEAEKGb5IKUzzvGp1p3G2zN ARGkoGQVbt87j4iHfPe6D6AL3OzHsrNdBVUk8OE1rd2vBo3koQcagYBVmqPihjyw CUFtUTnycXJseEPnhYwR0Kw2MVod9DPTBmzeDNa9LxrSvWkH4P5RQ+E2m8jwnk9h 3woK7thpjZBKC9/0VNVnoJBHsdXzQWhU/w9io84pE0xutZXj4KKDhfz36nW9I9II Lb+8uVDCgxeLcxcd22gfxv6jocfE5GWnU+D+idiJnd0wkht83SVnklrGXKKHM2o5 UQFX8K1IULXrNubB1+zcKd4sMHaznUaKQjKQ0ZbRUAPFkb44BcKxX3RSkjimcJQF NA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:47 2024 by rpki-client on console-ams.rpki-client.org