$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141086.roa File: AS141086.roa (raw, json) Hash identifier: HGsPo9JefMWSqkoYtaG899yfv9v9F7/CWbakY8RXn60= Subject key identifier: 7A:8A:E6:09:B1:B8:44:C0:77:8F:17:B5:E3:04:68:29:DD:B2:EF:68 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1F90E6D40954430B5A11DD8997B64A57F09CBB45 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141086.roa Signing time: Tue 10 Dec 2024 05:00:11 +0000 ROA not before: Tue 10 Dec 2024 04:55:11 +0000 ROA not after: Tue 09 Dec 2025 05:00:11 +0000 asID: 141086 IP address blocks: 103.156.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:90:e6:d4:09:54:43:0b:5a:11:dd:89:97:b6:4a:57:f0:9c:bb:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:11 2024 GMT Not After : Dec 9 05:00:11 2025 GMT Subject: CN=7A8AE609B1B844C0778F17B5E3046829DDB2EF68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5b:cc:34:0a:30:4c:34:a7:32:57:0e:64:92: b7:1c:13:8f:fe:38:88:11:93:e1:a2:27:ef:84:14: f3:d5:62:6b:82:02:22:76:12:2d:08:32:2d:a5:47: fa:4a:8d:f8:29:70:81:ea:24:85:38:88:31:2f:e3: b9:5c:b8:90:71:09:30:13:af:12:69:73:71:45:9b: 38:98:be:e4:f3:e4:2b:21:f4:f5:73:90:ba:5a:b7: 78:c0:5f:b4:26:f8:8a:92:93:17:34:b0:a7:f6:9b: 44:f1:83:0c:2e:59:2a:32:4e:a8:e4:60:d7:ae:0d: ba:32:e8:16:f3:92:aa:9a:09:4f:25:23:a1:c0:c3: 8a:86:d0:1f:4b:72:24:94:67:f5:a0:34:58:9a:26: 5b:15:92:4c:2d:dc:bb:f7:63:9c:84:0d:f2:c8:9d: a5:48:14:cb:70:e2:07:df:99:01:61:53:3a:c6:ae: 01:45:65:46:6e:d9:0b:49:c6:96:97:96:53:7c:f8: d6:10:47:3d:a1:56:c4:82:23:93:ca:ae:bb:f5:fd: aa:42:23:39:75:fd:15:ba:03:b4:53:f8:68:de:9b: c8:3e:21:4e:85:fd:62:f5:b8:b9:99:ca:57:6f:2d: 19:56:6b:84:54:66:e1:53:0f:4e:f4:41:e6:c3:f0: a1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8A:E6:09:B1:B8:44:C0:77:8F:17:B5:E3:04:68:29:DD:B2:EF:68 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141086.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.89.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:ff:08:10:3d:59:3b:82:84:c3:a6:3f:a6:63:9a:43:f7:87: 39:69:af:27:e6:cd:7a:b8:51:bb:83:d3:b9:ef:b8:ab:2b:11: 72:06:b4:71:6e:df:08:e1:58:09:44:5a:31:05:ac:1e:be:f7: 2b:01:fb:cc:14:80:ff:1d:72:2b:aa:37:ee:d4:eb:70:a4:a5: 41:2d:f2:a8:e4:bb:5a:10:b5:b2:5c:67:cf:2b:93:64:75:0a: a8:06:65:ea:a5:dc:5a:35:ca:8d:3a:6b:e5:9c:3c:4c:90:45: f1:05:e8:46:af:c1:d3:94:d2:84:33:15:35:95:13:5a:fb:01: 4f:f0:e1:9e:c7:ea:fd:39:33:7f:11:f5:63:36:f2:d3:43:a4: e5:f7:ec:38:32:60:f6:2b:ef:04:0e:ea:21:20:0f:1f:28:64: ef:7c:92:87:08:32:7b:2c:23:b8:05:2f:f7:90:5c:f8:89:4a: db:d7:a7:1b:48:88:f6:14:88:44:b5:73:6f:46:aa:9e:64:50: 14:62:6e:f8:15:8b:d1:f4:d8:de:ef:e6:2a:80:73:ce:1b:72: 4b:ee:1d:53:26:01:27:1f:f7:e3:95:5a:ae:65:5f:d1:63:ba: 1e:d5:9e:fc:51:4f:fb:3b:58:76:b7:b4:10:8d:c1:eb:ba:39: 4c:90:2c:be -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUH5Dm1AlUQwtaEd2Jl7ZKV/Ccu0UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxMVoX DTI1MTIwOTA1MDAxMVowMzExMC8GA1UEAxMoN0E4QUU2MDlCMUI4NDRDMDc3OEYx N0I1RTMwNDY4MjlEREIyRUY2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMpbzDQKMEw0pzJXDmSStxwTj/44iBGT4aIn74QU89Via4ICInYSLQgyLaVH +kqN+ClwgeokhTiIMS/juVy4kHEJMBOvEmlzcUWbOJi+5PPkKyH09XOQulq3eMBf tCb4ipKTFzSwp/abRPGDDC5ZKjJOqORg164NujLoFvOSqpoJTyUjocDDiobQH0ty JJRn9aA0WJomWxWSTC3cu/djnIQN8sidpUgUy3DiB9+ZAWFTOsauAUVlRm7ZC0nG lpeWU3z41hBHPaFWxIIjk8quu/X9qkIjOXX9FboDtFP4aN6byD4hToX9YvW4uZnK V28tGVZrhFRm4VMPTvRB5sPwoXkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR6iuYJ sbhEwHePF7XjBGgp3bLvaDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA4Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGecWTANBgkqhkiG9w0BAQsFAAOCAQEAbv8IED1ZO4KEw6Y/pmOa Q/eHOWmvJ+bNerhRu4PTue+4qysRcga0cW7fCOFYCURaMQWsHr73KwH7zBSA/x1y K6o37tTrcKSlQS3yqOS7WhC1slxnzyuTZHUKqAZl6qXcWjXKjTpr5Zw8TJBF8QXo Rq/B05TShDMVNZUTWvsBT/Dhnsfq/TkzfxH1Yzby00Ok5ffsODJg9ivvBA7qISAP Hyhk73yShwgyeywjuAUv95Bc+IlK29enG0iI9hSIRLVzb0aqnmRQFGJu+BWL0fTY 3u/mKoBzzhtyS+4dUyYBJx/345VarmVf0WO6HtWe/FFP+ztYdre0EI3B67o5TJAs vg== -----END CERTIFICATE-----Generated at Sun Feb 16 20:57:20 2025 by rpki-client