$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141073.roa File: AS141073.roa (raw, json) Hash identifier: yLltkFBAwCX7N4pv6ZCeEAtvlKHEL1w6TqTUAUnSBA4= Subject key identifier: 7D:28:D9:E4:3A:AA:58:37:DB:89:68:A1:23:8E:28:F6:E0:62:26:82 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 79311B935D055CD91289C37170ABAF43BA69B6AD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141073.roa Signing time: Tue 06 May 2025 02:20:24 +0000 ROA not before: Tue 06 May 2025 02:15:24 +0000 ROA not after: Tue 05 May 2026 02:20:24 +0000 asID: 141073 IP address blocks: 103.229.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:31:1b:93:5d:05:5c:d9:12:89:c3:71:70:ab:af:43:ba:69:b6:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 6 02:15:24 2025 GMT Not After : May 5 02:20:24 2026 GMT Subject: CN=7D28D9E43AAA5837DB8968A1238E28F6E0622682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3d:3c:79:62:9b:4a:10:49:f4:80:24:bd:9a: 1e:54:90:fb:39:7a:33:18:1e:61:43:01:6d:b4:94: 85:c4:00:6d:7d:8a:c7:c9:2e:78:f7:7b:f4:88:72: 1f:e3:5e:22:f1:07:22:99:91:55:5f:d0:c9:ec:23: 78:9f:a6:a1:d9:2e:d4:3d:32:b5:b4:98:59:27:e0: 61:90:84:fd:87:b8:9a:15:2e:87:1d:82:8b:18:69: 7f:c0:0f:1d:bf:ee:e0:f0:b2:a0:8a:21:86:31:e8: 53:e0:2a:c8:58:47:9e:9f:0d:54:1c:a2:d4:a6:b1: a6:f9:f1:b7:5d:22:96:eb:29:d6:55:c0:e1:77:c1: f4:ff:25:ae:ea:fb:cf:76:50:5a:64:76:29:8d:de: 4c:ae:7c:ca:22:57:fb:f1:95:57:5f:96:0b:97:98: dc:31:82:ce:4b:46:b8:5d:7a:8a:cf:ae:bb:4b:f1: ab:42:32:52:0c:ff:a7:69:d1:d4:2a:3e:a7:60:d8: d7:16:08:3a:7a:e1:c0:86:c3:00:b8:68:94:d4:ae: fa:4c:f3:9e:cd:e1:f9:7a:ce:6c:7f:c5:b5:07:5b: ac:e7:e8:8c:c0:9e:84:a5:62:8a:95:5e:95:af:71: ac:ac:ae:b2:d2:58:4e:b0:8b:32:99:a4:af:6f:da: e2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:28:D9:E4:3A:AA:58:37:DB:89:68:A1:23:8E:28:F6:E0:62:26:82 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141073.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.229.200.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:43:d5:ec:b3:8a:5b:78:e0:5d:c8:87:f2:98:17:e7:3c:c8: 09:a2:c7:c0:a2:1a:05:12:e6:12:50:38:51:60:bb:16:33:72: 71:7f:2f:a7:5b:c7:d8:ec:16:fc:4e:eb:a6:b8:67:63:e2:80: 0e:87:a4:2b:97:74:86:b9:99:21:3c:1c:a9:2c:22:57:de:31: fb:e0:1b:17:2b:15:8d:bf:41:dd:39:54:62:64:91:70:66:89: 7f:75:95:4b:78:50:cc:55:be:9f:e2:7e:83:d9:48:b7:c0:f2: b2:e5:86:7f:7b:ec:8b:f2:d7:10:98:66:1b:19:d6:81:e2:3c: e4:d2:26:f3:32:49:8e:d0:ba:dc:66:cc:26:3d:f2:35:0f:1c: 67:7e:29:44:dd:b5:8e:94:13:6d:c3:c3:20:86:0c:b6:ce:a7: 52:e0:81:cb:42:b6:b6:6a:25:50:2b:37:77:3b:f7:c5:f9:1d: 86:15:e7:4d:b0:1c:36:c5:95:cf:0c:0f:aa:44:17:69:63:d7: c0:8b:7b:b7:4d:24:6e:b0:66:8c:26:45:d5:d3:dc:e8:69:e1: 98:33:49:17:2e:6d:c5:17:b4:8c:38:98:0f:d6:8e:f0:b9:51: bb:63:76:05:96:be:7a:bc:f7:59:93:04:ca:ad:60:da:06:9d: b1:64:a9:15 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUeTEbk10FXNkSicNxcKuvQ7pptq0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUwNjAyMTUyNFoX DTI2MDUwNTAyMjAyNFowMzExMC8GA1UEAxMoN0QyOEQ5RTQzQUFBNTgzN0RCODk2 OEExMjM4RTI4RjZFMDYyMjY4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMI9PHlim0oQSfSAJL2aHlSQ+zl6MxgeYUMBbbSUhcQAbX2Kx8kuePd79Ihy H+NeIvEHIpmRVV/QyewjeJ+modku1D0ytbSYWSfgYZCE/Ye4mhUuhx2Cixhpf8AP Hb/u4PCyoIohhjHoU+AqyFhHnp8NVByi1Kaxpvnxt10ilusp1lXA4XfB9P8lrur7 z3ZQWmR2KY3eTK58yiJX+/GVV1+WC5eY3DGCzktGuF16is+uu0vxq0IyUgz/p2nR 1Co+p2DY1xYIOnrhwIbDALholNSu+kzzns3h+XrObH/FtQdbrOfojMCehKViipVe la9xrKyustJYTrCLMpmkr2/a4l0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR9KNnk OqpYN9uJaKEjjij24GImgjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWflyDANBgkqhkiG9w0BAQsFAAOCAQEAHUPV7LOKW3jgXciH8pgX 5zzICaLHwKIaBRLmElA4UWC7FjNycX8vp1vH2OwW/E7rprhnY+KADoekK5d0hrmZ ITwcqSwiV94x++AbFysVjb9B3TlUYmSRcGaJf3WVS3hQzFW+n+J+g9lIt8DysuWG f3vsi/LXEJhmGxnWgeI85NIm8zJJjtC63GbMJj3yNQ8cZ34pRN21jpQTbcPDIIYM ts6nUuCBy0K2tmolUCs3dzv3xfkdhhXnTbAcNsWVzwwPqkQXaWPXwIt7t00kbrBm jCZF1dPc6GnhmDNJFy5txRe0jDiYD9aO8LlRu2N2BZa+erz3WZMEyq1g2gadsWSp FQ== -----END CERTIFICATE-----Generated at Tue Jun 3 23:14:00 2025 by rpki-client