$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141070.roa File: AS141070.roa (raw, json) Hash identifier: ZJU3GEZd1QZZMppJoUyq6XfFAI/cJW54/qMlWRymIGs= Subject key identifier: EE:18:B5:14:00:84:6B:AB:A6:59:08:88:2A:9F:44:A9:9B:F8:04:94 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 17B7829B06634282C883A9EA622C677B23B8B459 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141070.roa Signing time: Tue 19 Sep 2023 02:42:02 +0000 ROA not before: Tue 19 Sep 2023 02:37:02 +0000 ROA not after: Tue 17 Sep 2024 02:42:02 +0000 asID: 141070 IP address blocks: 103.165.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:b7:82:9b:06:63:42:82:c8:83:a9:ea:62:2c:67:7b:23:b8:b4:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 19 02:37:02 2023 GMT Not After : Sep 17 02:42:02 2024 GMT Subject: CN=EE18B51400846BABA65908882A9F44A99BF80494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ad:68:9e:8a:b5:57:36:53:b1:56:63:92:5f: 35:56:f7:17:a2:b0:0d:9d:76:61:58:48:4c:82:17: af:98:df:e8:8e:84:d6:bb:6b:64:3d:5a:37:62:f8: ea:51:86:67:99:15:1a:24:5c:38:ea:df:93:28:d1: b3:cc:34:69:78:34:09:6f:b0:ba:3d:7a:95:04:f2: 66:57:40:38:e9:8f:c7:94:bf:78:a5:f1:0e:be:b2: 47:35:a8:fe:39:3e:2f:62:6b:7a:2a:be:d4:a0:93: 49:f9:a8:c9:a2:f3:ca:34:7b:50:0d:da:6e:4b:ba: 29:88:54:53:6e:48:ea:d7:69:a0:69:2c:25:6c:5d: f2:01:08:66:d6:47:ad:be:48:30:ce:89:14:6b:6b: 63:b6:63:08:c5:b5:cc:26:ac:7f:bb:18:65:6a:d1: 03:bb:7c:f4:ea:b6:79:ee:0a:0b:15:cf:1b:6e:27: 43:a2:99:06:fb:31:76:a3:08:58:e7:4e:a4:23:4e: 62:d3:f7:71:1e:b8:d9:f2:8f:12:db:d0:eb:1d:d4: 63:3f:0a:83:9c:cc:30:b7:47:d7:ae:14:fe:59:f9: 9c:8c:58:f0:84:d7:31:75:88:45:fe:90:65:2d:40: ea:70:8b:d5:b0:18:1c:98:0c:89:f0:5d:96:da:ae: 56:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:18:B5:14:00:84:6B:AB:A6:59:08:88:2A:9F:44:A9:9B:F8:04:94 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141070.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.249.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:0b:92:f4:71:6c:31:7b:dc:08:e4:ea:b9:24:c4:95:0c:11: bd:df:ca:f5:47:95:6c:de:9a:66:00:be:b3:e9:54:d3:0a:d8: ae:83:ae:05:7f:c7:9e:e1:46:b0:74:1f:d9:40:d3:92:dd:4b: b8:d2:6c:61:5e:de:0d:15:ca:70:8d:9b:eb:23:b7:ec:ae:5c: fd:b1:a5:ec:1f:86:f0:50:f4:ef:fd:ae:2b:32:77:98:09:18: 0a:16:e1:d9:7a:5e:44:37:35:38:0e:2b:0a:47:97:9b:70:b2: 36:af:61:64:75:19:2f:d2:14:54:4c:a0:3c:2f:92:dd:e5:0d: d1:8f:15:2d:62:89:4d:40:6c:19:92:48:85:02:1a:0a:df:3f: 69:81:8d:4c:17:9a:bb:18:b3:34:cb:3c:15:82:05:16:ba:61: c0:40:d7:25:12:54:82:01:73:d8:21:04:30:0e:56:c5:82:d1: 51:07:95:47:c9:3b:59:fc:1a:16:65:2b:21:e1:53:92:e8:fd: fb:25:67:f7:c3:7f:ed:5e:e2:72:00:a2:00:fa:17:c5:48:85: f5:30:fc:5e:13:9c:38:41:c3:d2:eb:fd:e9:d2:0f:51:1c:53: 0c:ef:09:0b:de:74:74:26:98:c3:e6:04:23:13:96:4c:96:d6: 70:69:81:fa -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUF7eCmwZjQoLIg6nqYixneyO4tFkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkxOTAyMzcwMloX DTI0MDkxNzAyNDIwMlowMzExMC8GA1UEAxMoRUUxOEI1MTQwMDg0NkJBQkE2NTkw ODg4MkE5RjQ0QTk5QkY4MDQ5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN+taJ6KtVc2U7FWY5JfNVb3F6KwDZ12YVhITIIXr5jf6I6E1rtrZD1aN2L4 6lGGZ5kVGiRcOOrfkyjRs8w0aXg0CW+wuj16lQTyZldAOOmPx5S/eKXxDr6yRzWo /jk+L2Jreiq+1KCTSfmoyaLzyjR7UA3abku6KYhUU25I6tdpoGksJWxd8gEIZtZH rb5IMM6JFGtrY7ZjCMW1zCasf7sYZWrRA7t89Oq2ee4KCxXPG24nQ6KZBvsxdqMI WOdOpCNOYtP3cR642fKPEtvQ6x3UYz8Kg5zMMLdH164U/ln5nIxY8ITXMXWIRf6Q ZS1A6nCL1bAYHJgMifBdltquVo0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTuGLUU AIRrq6ZZCIgqn0Spm/gElDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA3MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGel+TANBgkqhkiG9w0BAQsFAAOCAQEATguS9HFsMXvcCOTquSTE lQwRvd/K9UeVbN6aZgC+s+lU0wrYroOuBX/HnuFGsHQf2UDTkt1LuNJsYV7eDRXK cI2b6yO37K5c/bGl7B+G8FD07/2uKzJ3mAkYChbh2XpeRDc1OA4rCkeXm3CyNq9h ZHUZL9IUVEygPC+S3eUN0Y8VLWKJTUBsGZJIhQIaCt8/aYGNTBeauxizNMs8FYIF FrphwEDXJRJUggFz2CEEMA5WxYLRUQeVR8k7WfwaFmUrIeFTkuj9+yVn98N/7V7i cgCiAPoXxUiF9TD8XhOcOEHD0uv96dIPURxTDO8JC950dCaYw+YEIxOWTJbWcGmB +g== -----END CERTIFICATE-----Generated at Wed May 8 21:02:22 2024 by rpki-client on console-fra.rpki-client.org