$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141086.roa File: AS141086.roa (raw, json) Hash identifier: HIA1lp6TW0xrITaF/XYOaGo2J4NzIdTiUy7rHiSg4Dg= Subject key identifier: 6F:85:8C:04:94:0C:EA:E4:5D:90:06:05:D3:8C:AD:BC:BF:B9:3F:1E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 732793952234923BD044F58D59D5C7A8730CFC02 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141086.roa Signing time: Tue 09 Jan 2024 04:00:14 +0000 ROA not before: Tue 09 Jan 2024 03:55:14 +0000 ROA not after: Tue 07 Jan 2025 04:00:14 +0000 asID: 141086 IP address blocks: 103.156.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:27:93:95:22:34:92:3b:d0:44:f5:8d:59:d5:c7:a8:73:0c:fc:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:14 2024 GMT Not After : Jan 7 04:00:14 2025 GMT Subject: CN=6F858C04940CEAE45D900605D38CADBCBFB93F1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:bc:9e:0d:9d:bd:78:a9:94:ba:3d:ce:87:17: bc:40:a5:b8:53:19:2a:92:f4:06:5e:c2:b3:96:47: 02:2e:05:40:df:15:d0:b8:48:d0:7c:6d:7a:5b:ee: 5d:0c:a3:bc:0c:37:d1:85:89:de:ea:2d:72:cd:12: cb:84:49:06:25:06:6a:80:34:d6:d8:14:10:7d:86: 21:84:91:4d:c5:58:c2:42:ad:bb:52:b2:f8:95:a7: 41:4c:73:97:d8:b5:1c:c2:b5:c0:83:c1:eb:70:2e: 9f:aa:42:af:bf:44:7b:7e:e1:cf:23:fc:e9:67:7e: e7:71:8e:a6:1f:94:d6:82:fb:f6:f3:62:71:85:92: 93:33:3c:17:f9:1e:db:23:2b:9f:30:ca:c5:d1:c7: 66:8c:d1:1e:74:0d:46:ab:e7:b6:cf:ee:57:78:d6: 32:8c:a1:3f:3b:01:29:36:ef:43:99:c4:bd:23:eb: 93:7e:0e:94:a8:b0:27:81:6d:08:47:67:d8:26:91: 60:4c:5b:62:36:2b:a3:10:3d:31:52:c3:c0:cc:b9: 6e:e1:97:b7:d3:7d:e2:86:40:04:1e:23:cf:a5:50: 34:ab:e4:30:c5:f3:c7:d1:21:58:9f:db:e8:ff:8c: 0c:b6:5f:2d:f1:13:62:29:f3:fa:9e:6f:ff:45:90: fd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:85:8C:04:94:0C:EA:E4:5D:90:06:05:D3:8C:AD:BC:BF:B9:3F:1E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141086.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.89.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:71:1a:8e:4e:1b:df:97:ce:dc:9b:0a:22:fa:02:7a:0f:9c: 33:0c:7b:c1:26:f7:c6:e5:16:78:ff:35:7f:29:cf:1b:19:98: 47:6a:98:9f:1c:c8:a5:7d:67:01:d6:33:1e:f2:f2:c2:d9:50: de:49:9b:e2:2f:a3:72:b8:78:10:d8:8f:64:5e:69:b3:e5:4c: e0:73:51:53:52:37:ae:25:84:86:96:5d:78:b5:48:17:09:27: 9a:d8:75:96:d2:4a:6b:4b:77:63:96:37:8e:12:68:55:0e:d1: c1:f8:e3:4c:62:51:f1:54:1b:c0:90:a4:b4:b5:12:5d:d4:ce: df:78:9c:f0:61:ef:ca:77:c4:1f:10:e0:2d:66:73:60:88:51: 9f:9c:ed:c5:d4:b0:8a:b1:a9:36:d3:75:99:69:8c:a6:1f:a3: 83:ed:37:8e:e5:a7:e8:69:00:e4:d1:b3:70:61:c8:45:c9:5b: ba:09:eb:0e:5d:01:2a:58:5d:91:b6:02:da:6b:40:95:e9:2e: a4:dd:a2:5c:37:ba:39:e3:9a:d7:1d:e4:ad:1a:70:59:a3:c3: ac:cd:4d:ad:11:e8:90:f6:66:65:2c:30:69:99:28:d2:3b:9b: 74:b8:13:5f:db:a1:7b:57:ae:cf:12:27:af:52:84:6f:21:82: dc:fd:bf:6b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcyeTlSI0kjvQRPWNWdXHqHMM/AIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxNFoX DTI1MDEwNzA0MDAxNFowMzExMC8GA1UEAxMoNkY4NThDMDQ5NDBDRUFFNDVEOTAw NjA1RDM4Q0FEQkNCRkI5M0YxRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKa8ng2dvXiplLo9zocXvECluFMZKpL0Bl7Cs5ZHAi4FQN8V0LhI0Hxtelvu XQyjvAw30YWJ3uotcs0Sy4RJBiUGaoA01tgUEH2GIYSRTcVYwkKtu1Ky+JWnQUxz l9i1HMK1wIPB63Aun6pCr79Ee37hzyP86Wd+53GOph+U1oL79vNicYWSkzM8F/ke 2yMrnzDKxdHHZozRHnQNRqvnts/uV3jWMoyhPzsBKTbvQ5nEvSPrk34OlKiwJ4Ft CEdn2CaRYExbYjYroxA9MVLDwMy5buGXt9N94oZABB4jz6VQNKvkMMXzx9EhWJ/b 6P+MDLZfLfETYinz+p5v/0WQ/fcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRvhYwE lAzq5F2QBgXTjK28v7k/HjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA4Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGecWTANBgkqhkiG9w0BAQsFAAOCAQEALHEajk4b35fO3JsKIvoC eg+cMwx7wSb3xuUWeP81fynPGxmYR2qYnxzIpX1nAdYzHvLywtlQ3kmb4i+jcrh4 ENiPZF5ps+VM4HNRU1I3riWEhpZdeLVIFwknmth1ltJKa0t3Y5Y3jhJoVQ7Rwfjj TGJR8VQbwJCktLUSXdTO33ic8GHvynfEHxDgLWZzYIhRn5ztxdSwirGpNtN1mWmM ph+jg+03juWn6GkA5NGzcGHIRclbugnrDl0BKlhdkbYC2mtAlekupN2iXDe6OeOa 1x3krRpwWaPDrM1NrRHokPZmZSwwaZko0jubdLgTX9uhe1euzxInr1KEbyGC3P2/ aw== -----END CERTIFICATE-----Generated at Sat May 4 17:59:13 2024 by rpki-client on console-fra.rpki-client.org