$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141073.roa File: AS141073.roa (raw, json) Hash identifier: ueyDD8yoGiGovkA11uI+NTCSh4P/osbfnp1XGyLi+j0= Subject key identifier: 3C:1B:5D:C0:94:62:F1:51:CB:94:CB:80:81:98:61:D1:AF:71:A5:A3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7BA18A81C1BF156DDDF3C6F3E061024ACE4A19C5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141073.roa Signing time: Fri 01 Mar 2024 03:00:00 +0000 ROA not before: Fri 01 Mar 2024 02:55:00 +0000 ROA not after: Fri 28 Feb 2025 03:00:00 +0000 asID: 141073 IP address blocks: 103.95.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:a1:8a:81:c1:bf:15:6d:dd:f3:c6:f3:e0:61:02:4a:ce:4a:19:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 1 02:55:00 2024 GMT Not After : Feb 28 03:00:00 2025 GMT Subject: CN=3C1B5DC09462F151CB94CB80819861D1AF71A5A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ab:3d:7d:38:6a:b1:25:89:70:24:dc:ce:be: 7e:41:05:9f:47:89:a1:de:ef:a5:7d:02:03:19:e2: 1b:57:62:2a:28:a9:a5:98:94:14:d4:99:25:4f:88: 5c:b1:9c:17:71:c0:fd:89:d7:6a:cb:40:1a:0a:b0: 4a:43:b1:cc:95:ad:13:37:c1:40:0e:b8:63:4a:8d: 58:aa:48:81:01:ec:ac:85:c0:ad:00:7e:c2:19:b4: 3e:5c:9d:c6:ab:6d:40:44:40:69:30:fb:d1:6e:df: 2c:ab:b6:db:e6:93:d0:d5:a6:4d:39:b6:c0:db:1d: b0:a4:e4:cd:fa:27:e4:ba:b6:d3:40:05:a5:bb:1c: ad:99:3f:c2:f2:54:d6:e4:aa:84:67:3b:0d:dd:ce: c4:05:5c:59:96:b9:a8:32:0e:2d:82:12:10:9f:b3: b1:59:c9:33:f1:9b:17:87:71:a1:6b:38:be:19:e6: f1:b6:3d:32:87:09:1f:63:76:a3:72:58:42:5f:22: 43:44:6d:98:d4:43:ae:d6:47:6c:70:4c:a2:0c:18: c3:96:8f:7a:5c:98:60:3a:24:bc:09:a2:84:9c:12: c3:86:49:f5:a9:e8:d2:2b:8b:c2:06:26:7e:03:2b: f3:54:ff:d5:00:62:bc:40:fc:89:41:ef:51:11:96: b4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:1B:5D:C0:94:62:F1:51:CB:94:CB:80:81:98:61:D1:AF:71:A5:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141073.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.20.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:b3:08:0e:a3:03:2a:b8:a0:ee:c6:21:a3:19:a0:cb:04:f6: b7:d8:b2:f3:90:94:7d:f7:86:74:ef:57:e5:af:f1:03:2d:30: fd:e8:56:a1:96:af:e1:24:dd:9a:ac:16:58:84:33:72:a0:9f: df:5e:f5:2f:7a:fe:f5:16:c1:42:b6:b9:47:30:02:87:ee:e7: 03:51:77:ba:2c:c2:c8:ba:40:db:2b:52:a2:a7:49:9b:a9:9e: 89:2f:8c:d7:93:b0:e5:89:52:da:16:27:e1:b6:81:2e:97:d8: 91:cb:0b:9a:ff:57:a5:1e:e8:e5:be:0c:e5:27:e2:fd:82:f2: e7:43:95:2b:7c:f4:2c:6a:00:dc:0a:ee:1d:18:fb:cf:c5:b0: 75:2b:5a:4b:d3:7d:5f:11:34:87:55:0e:55:b7:2b:07:36:74: 43:48:be:1e:c7:36:bb:84:53:f4:a3:80:1a:f9:2c:01:07:2b: 69:77:1b:61:ef:90:9b:91:cd:2f:19:2e:87:94:21:7c:5d:60: 99:0c:35:2d:6b:05:5f:f9:9c:38:66:d4:4a:2c:39:76:98:af: 1b:e8:70:bd:c3:c8:5e:d2:53:32:ef:a2:ce:4d:48:38:0c:06: 40:11:69:58:6e:fc:a5:15:9e:22:89:44:a0:76:93:8e:26:47: 5d:af:6e:92 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUe6GKgcG/FW3d88bz4GECSs5KGcUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMwMTAyNTUwMFoX DTI1MDIyODAzMDAwMFowMzExMC8GA1UEAxMoM0MxQjVEQzA5NDYyRjE1MUNCOTRD QjgwODE5ODYxRDFBRjcxQTVBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSrPX04arEliXAk3M6+fkEFn0eJod7vpX0CAxniG1diKiippZiUFNSZJU+I XLGcF3HA/YnXastAGgqwSkOxzJWtEzfBQA64Y0qNWKpIgQHsrIXArQB+whm0Plyd xqttQERAaTD70W7fLKu22+aT0NWmTTm2wNsdsKTkzfon5Lq200AFpbscrZk/wvJU 1uSqhGc7Dd3OxAVcWZa5qDIOLYISEJ+zsVnJM/GbF4dxoWs4vhnm8bY9MocJH2N2 o3JYQl8iQ0RtmNRDrtZHbHBMogwYw5aPelyYYDokvAmihJwSw4ZJ9ano0iuLwgYm fgMr81T/1QBivED8iUHvURGWtA0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ8G13A lGLxUcuUy4CBmGHRr3GlozAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdfFDANBgkqhkiG9w0BAQsFAAOCAQEAK7MIDqMDKrig7sYhoxmg ywT2t9iy85CUffeGdO9X5a/xAy0w/ehWoZav4STdmqwWWIQzcqCf3171L3r+9RbB Qra5RzACh+7nA1F3uizCyLpA2ytSoqdJm6meiS+M15Ow5YlS2hYn4baBLpfYkcsL mv9XpR7o5b4M5Sfi/YLy50OVK3z0LGoA3AruHRj7z8WwdStaS9N9XxE0h1UOVbcr BzZ0Q0i+Hsc2u4RT9KOAGvksAQcraXcbYe+Qm5HNLxkuh5QhfF1gmQw1LWsFX/mc OGbUSiw5dpivG+hwvcPIXtJTMu+izk1IOAwGQBFpWG78pRWeIolEoHaTjiZHXa9u kg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:54 2024 by rpki-client on console-fra.rpki-client.org