$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141085.roa File: AS141085.roa (raw, json) Hash identifier: gUWyc9zCT1/SQ47DoUwyZoVnEvR2XnGG6FX4Jl1uEIs= Subject key identifier: 54:4F:97:8B:92:D4:F5:20:A5:12:68:EC:3C:57:6F:7C:5A:A3:7B:C4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0D3486A66216FC724886AAC75193F465DE18E053 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141085.roa Signing time: Tue 10 Dec 2024 05:00:24 +0000 ROA not before: Tue 10 Dec 2024 04:55:24 +0000 ROA not after: Tue 09 Dec 2025 05:00:24 +0000 asID: 141085 IP address blocks: 103.156.88.0/24 maxlen: 24 2001:df4:e880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:34:86:a6:62:16:fc:72:48:86:aa:c7:51:93:f4:65:de:18:e0:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:24 2024 GMT Not After : Dec 9 05:00:24 2025 GMT Subject: CN=544F978B92D4F520A51268EC3C576F7C5AA37BC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:42:6a:b6:a4:41:e7:3e:bb:31:58:c4:2f:81: e6:01:06:51:ee:8a:ff:8f:47:a3:f4:29:5b:f7:b8: 62:a6:a4:d9:56:fe:d1:b6:fd:69:18:23:b7:fa:b3: a3:6a:92:13:e8:3b:39:ba:65:71:26:34:fe:4c:78: 7d:59:5e:75:16:c8:5d:27:a9:0c:43:ff:0a:d2:cc: 7a:bc:e1:d5:5a:42:a2:3f:a4:84:46:05:88:34:a7: 0d:64:12:38:25:bf:b6:21:50:a4:a1:0e:f8:a5:2f: 96:3e:a8:8a:99:c7:83:24:aa:83:ae:ab:2c:69:55: 4c:7b:e5:04:91:84:f6:14:2f:75:38:f7:ca:9a:c2: 08:3f:9c:56:a4:2b:9a:40:63:c6:1a:5b:84:b3:8d: 52:66:30:b8:09:6b:3a:d3:65:95:f0:7d:3d:55:18: 31:32:e9:eb:27:81:e1:20:75:d8:a4:b4:c8:f4:6b: 58:73:30:b3:59:7f:ca:de:48:69:84:80:b1:10:da: 95:78:5b:2f:ed:b1:dc:ff:d4:c7:ba:a7:95:35:dc: 6b:9b:2e:52:1e:c1:9b:d7:ec:1d:28:ef:2d:af:41: 5f:1d:e5:5f:14:9b:42:3d:d5:f6:25:b4:e0:56:91: 00:b6:c0:36:ff:eb:71:2a:b1:af:62:94:a3:ce:a5: 8d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:4F:97:8B:92:D4:F5:20:A5:12:68:EC:3C:57:6F:7C:5A:A3:7B:C4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141085.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.88.0/24 IPv6: 2001:df4:e880::/48 Signature Algorithm: sha256WithRSAEncryption 68:88:65:34:79:7e:b9:14:c4:ee:fb:56:c3:51:4c:aa:69:59: 96:f8:36:47:88:ed:84:a2:e1:e0:f7:4d:14:50:54:46:5f:63: 43:47:63:fd:03:c5:49:54:e6:b7:bb:0f:54:1e:4e:7c:17:2b: cf:fd:1d:a7:c8:78:4d:0e:55:6e:50:c1:ee:6b:e4:2f:fc:25: 19:02:c4:cc:cb:ee:81:ec:0e:74:b9:45:35:78:62:37:1f:04: 8e:5a:dd:0a:95:ac:40:e0:e9:5c:ea:54:14:05:d9:78:d7:5d: a3:83:23:81:7e:6d:81:11:f4:e3:08:c4:05:4b:28:4c:2e:f1: eb:47:b5:3d:f7:7e:4a:c8:40:bc:80:01:e5:b5:df:a7:71:36: f0:00:4c:7a:fc:d2:62:39:a3:2e:7d:b4:de:b0:8a:f9:5b:87: 7a:13:22:d4:1f:be:4a:e5:49:5a:8e:ec:fd:53:b8:ad:eb:91: 55:08:6d:d5:48:85:81:f1:fc:1a:ca:41:0c:0f:c2:11:50:89: d2:95:69:14:30:d5:29:0c:1a:64:92:b4:b8:e4:7b:d9:30:28: df:b3:c6:59:0b:8b:fd:ab:7e:68:a9:92:80:33:7b:47:26:56: 5c:fe:b8:15:18:c9:04:36:92:cb:de:2c:c0:2b:63:58:8f:a1: 39:7d:0f:0b -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUDTSGpmIW/HJIhqrHUZP0Zd4Y4FMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyNFoX DTI1MTIwOTA1MDAyNFowMzExMC8GA1UEAxMoNTQ0Rjk3OEI5MkQ0RjUyMEE1MTI2 OEVDM0M1NzZGN0M1QUEzN0JDNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANdCarakQec+uzFYxC+B5gEGUe6K/49Ho/QpW/e4Yqak2Vb+0bb9aRgjt/qz o2qSE+g7ObplcSY0/kx4fVledRbIXSepDEP/CtLMerzh1VpCoj+khEYFiDSnDWQS OCW/tiFQpKEO+KUvlj6oipnHgySqg66rLGlVTHvlBJGE9hQvdTj3yprCCD+cVqQr mkBjxhpbhLONUmYwuAlrOtNllfB9PVUYMTLp6yeB4SB12KS0yPRrWHMws1l/yt5I aYSAsRDalXhbL+2x3P/Ux7qnlTXca5suUh7Bm9fsHSjvLa9BXx3lXxSbQj3V9iW0 4FaRALbANv/rcSqxr2KUo86ljVECAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRUT5eL ktT1IKUSaOw8V298WqN7xDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA4NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGecWDAPBAIAAjAJAwcAIAEN9OiAMA0GCSqGSIb3DQEBCwUAA4IB AQBoiGU0eX65FMTu+1bDUUyqaVmW+DZHiO2EouHg900UUFRGX2NDR2P9A8VJVOa3 uw9UHk58FyvP/R2nyHhNDlVuUMHua+Qv/CUZAsTMy+6B7A50uUU1eGI3HwSOWt0K laxA4Olc6lQUBdl4112jgyOBfm2BEfTjCMQFSyhMLvHrR7U9935KyEC8gAHltd+n cTbwAEx6/NJiOaMufbTesIr5W4d6EyLUH75K5Ulajuz9U7it65FVCG3VSIWB8fwa ykEMD8IRUInSlWkUMNUpDBpkkrS45HvZMCjfs8ZZC4v9q35oqZKAM3tHJlZc/rgV GMkENpLL3izAK2NYj6E5fQ8L -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:24 2025 by rpki-client