$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141085.roa File: AS141085.roa (raw, json) Hash identifier: sCXo3RX6RVUolKaON+ZkhiSkpRt0duZm4PMoRhYfmfY= Subject key identifier: 02:75:4E:00:9C:D5:EE:65:0F:1A:8D:C8:63:4D:A1:83:CA:18:17:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 02FDB2D58E7758BDD6C99B2E72826765B8B47F7C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141085.roa Signing time: Tue 09 Jan 2024 04:00:27 +0000 ROA not before: Tue 09 Jan 2024 03:55:27 +0000 ROA not after: Tue 07 Jan 2025 04:00:27 +0000 asID: 141085 IP address blocks: 103.156.88.0/24 maxlen: 24 2001:df4:e880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:fd:b2:d5:8e:77:58:bd:d6:c9:9b:2e:72:82:67:65:b8:b4:7f:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:27 2024 GMT Not After : Jan 7 04:00:27 2025 GMT Subject: CN=02754E009CD5EE650F1A8DC8634DA183CA18176B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:29:92:da:a3:f0:74:fa:af:2d:0a:96:b6:8d: d0:d3:ae:02:dc:15:0f:fc:86:56:72:2d:9b:cb:4e: 8c:b2:56:a7:26:39:5e:e4:65:db:cf:f2:78:1f:9d: c9:4f:f2:b0:26:4e:26:2a:ef:b2:90:0d:67:d3:51: 8b:14:c0:db:b7:19:e9:58:66:c2:b0:21:11:3e:93: 85:1c:54:61:9f:e4:c0:cb:26:b9:b1:1a:bd:ac:8e: 3a:ac:5c:c5:ad:09:4b:43:51:f5:ad:6f:fb:21:8e: db:e6:05:44:50:a8:be:f5:3e:cc:3d:f9:d3:5e:fa: c1:a6:8d:95:78:90:3d:03:a8:29:cd:94:32:0c:50: 8a:89:b2:e3:b0:00:59:9d:fc:20:86:ca:ae:30:66: bb:3b:07:e2:32:60:48:03:75:22:a6:27:3f:d5:c8: 33:91:8d:64:83:c4:ca:98:10:51:09:8f:b9:80:b8: 30:71:37:d4:b9:2f:b8:f9:36:a1:f7:be:a7:ce:97: 3c:ec:1d:ba:fe:d2:ce:45:96:5b:6d:82:ab:17:73: 52:b5:cd:2f:9a:05:02:e0:57:31:b0:e9:c0:8a:9b: f8:c5:e3:4a:25:5f:7d:0a:4c:d0:a4:1a:12:bd:7a: 67:37:60:89:71:4f:3e:31:6e:a4:0e:75:93:c5:b1: 9b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:75:4E:00:9C:D5:EE:65:0F:1A:8D:C8:63:4D:A1:83:CA:18:17:6B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141085.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.88.0/24 IPv6: 2001:df4:e880::/48 Signature Algorithm: sha256WithRSAEncryption 38:e3:83:4a:cf:38:ae:7a:5a:53:59:9f:56:a4:26:73:1a:b5: b2:d3:54:ae:d4:69:50:cf:4d:3a:fb:a9:2d:2b:7a:4d:74:ba: 94:b6:56:72:e9:c8:0e:25:af:89:0a:85:e9:62:55:7a:39:bd: 8a:13:ae:8c:f8:1b:87:c3:c0:76:4e:ab:8d:44:34:3e:a5:62: 8b:41:83:bc:08:b3:60:5e:66:51:6e:a7:fa:6e:6a:5e:40:21: ae:ae:ec:49:52:86:a4:cc:f3:da:fb:b2:00:74:a0:80:84:6c: 93:d9:1e:73:35:12:db:1e:49:26:f6:64:9d:f2:c9:a8:b7:9c: a2:19:63:e0:69:fe:c7:02:2d:89:96:fd:0f:62:cb:aa:fc:42: 6a:61:d2:53:cf:ce:67:0e:50:bf:eb:ef:62:50:7f:51:a3:37: 73:e4:f3:64:92:66:ad:23:29:0a:c7:e4:0c:e4:13:cf:ef:52: f5:0e:42:4a:7a:1c:e0:e4:22:9d:95:ab:a2:41:39:e6:9f:b0: 0f:3b:d8:2e:fb:3a:f5:94:89:22:5f:6a:35:32:f9:e3:d8:10: ab:43:35:4a:31:96:cf:3f:60:19:b8:41:bd:62:3b:39:7c:30: c2:77:56:9f:80:3a:a5:d3:15:9d:bc:d8:24:96:45:73:c3:a9: b1:bc:f8:56 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUAv2y1Y53WL3WyZsucoJnZbi0f3wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyN1oX DTI1MDEwNzA0MDAyN1owMzExMC8GA1UEAxMoMDI3NTRFMDA5Q0Q1RUU2NTBGMUE4 REM4NjM0REExODNDQTE4MTc2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKUpktqj8HT6ry0KlraN0NOuAtwVD/yGVnItm8tOjLJWpyY5XuRl28/yeB+d yU/ysCZOJirvspANZ9NRixTA27cZ6VhmwrAhET6ThRxUYZ/kwMsmubEavayOOqxc xa0JS0NR9a1v+yGO2+YFRFCovvU+zD350176waaNlXiQPQOoKc2UMgxQiomy47AA WZ38IIbKrjBmuzsH4jJgSAN1IqYnP9XIM5GNZIPEypgQUQmPuYC4MHE31LkvuPk2 ofe+p86XPOwduv7SzkWWW22CqxdzUrXNL5oFAuBXMbDpwIqb+MXjSiVffQpM0KQa Er16ZzdgiXFPPjFupA51k8Wxm3sCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQCdU4A nNXuZQ8ajchjTaGDyhgXazAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA4NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGecWDAPBAIAAjAJAwcAIAEN9OiAMA0GCSqGSIb3DQEBCwUAA4IB AQA444NKzziuelpTWZ9WpCZzGrWy01Su1GlQz006+6ktK3pNdLqUtlZy6cgOJa+J CoXpYlV6Ob2KE66M+BuHw8B2TquNRDQ+pWKLQYO8CLNgXmZRbqf6bmpeQCGuruxJ UoakzPPa+7IAdKCAhGyT2R5zNRLbHkkm9mSd8smot5yiGWPgaf7HAi2Jlv0PYsuq /EJqYdJTz85nDlC/6+9iUH9Rozdz5PNkkmatIykKx+QM5BPP71L1DkJKehzg5CKd lauiQTnmn7APO9gu+zr1lIkiX2o1Mvnj2BCrQzVKMZbPP2AZuEG9Yjs5fDDCd1af gDql0xWdvNgklkVzw6mxvPhW -----END CERTIFICATE-----Generated at Wed May 1 05:56:48 2024 by rpki-client on console-fra.rpki-client.org