$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141091.roa File: AS141091.roa (raw, json) Hash identifier: UuKF9rnMavK9Z8fEi31QTog0bUqL/x0BFwNtSwP8d9M= Subject key identifier: 73:BB:2E:EA:0C:72:26:BF:CD:CA:7E:F6:6A:E7:D2:01:2F:3E:FC:7E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7FDDA7E36F026FE95FC8A571ED634B2D2ABB3C88 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141091.roa Signing time: Tue 09 Jan 2024 04:00:13 +0000 ROA not before: Tue 09 Jan 2024 03:55:13 +0000 ROA not after: Tue 07 Jan 2025 04:00:13 +0000 asID: 141091 IP address blocks: 103.156.128.0/23 maxlen: 24 2406:87c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:dd:a7:e3:6f:02:6f:e9:5f:c8:a5:71:ed:63:4b:2d:2a:bb:3c:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:13 2024 GMT Not After : Jan 7 04:00:13 2025 GMT Subject: CN=73BB2EEA0C7226BFCDCA7EF66AE7D2012F3EFC7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:27:dd:e6:1e:bb:67:9d:8b:33:ae:02:4b:9c: f9:97:fd:b4:c2:dd:8e:36:5f:80:03:c1:77:c2:f6: 1d:dc:d5:bb:ea:7a:45:a5:4d:34:21:8c:57:4d:aa: 85:bb:f5:6a:7e:7f:f1:c2:d4:2d:41:f3:a7:7e:ff: de:03:be:dd:3b:34:d5:33:bf:e2:e0:e3:79:66:dc: 5f:0e:cb:60:66:eb:ed:b9:f1:d3:8c:7a:eb:6d:c4: 28:ee:6f:97:b1:57:a6:42:bf:c5:57:71:ab:13:e6: b3:64:df:9b:37:fb:21:75:60:98:36:dd:1b:39:26: 8c:86:4c:33:5f:fb:28:53:19:07:76:2b:4d:38:31: b1:6b:17:70:aa:a4:2b:ba:3c:51:c7:66:7f:ef:45: 89:56:5f:a8:ff:57:c5:ee:66:8e:8e:e3:1f:f6:27: a8:1d:e6:04:34:bc:16:54:97:21:e2:f5:82:ac:c1: c6:d6:d0:c6:36:6c:32:11:73:4a:4c:d6:4f:89:ab: 74:23:17:6a:9f:ef:a4:0f:80:35:97:d6:0b:30:8c: 85:32:9b:a2:ba:05:e1:ce:8c:a8:4e:29:1b:f5:ed: cb:89:10:5f:a2:10:c4:08:11:9e:3b:cf:cb:12:ea: f6:6e:94:c6:3d:1a:c1:f9:c1:88:d1:e8:06:74:99: cc:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:BB:2E:EA:0C:72:26:BF:CD:CA:7E:F6:6A:E7:D2:01:2F:3E:FC:7E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141091.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.128.0/23 IPv6: 2406:87c0::/32 Signature Algorithm: sha256WithRSAEncryption 8e:5b:82:6c:ea:78:fe:f5:f5:ec:51:ff:dc:5b:97:9c:e3:86: 56:f1:c1:c0:06:d0:51:0b:03:45:30:b1:94:0e:b3:f1:5d:67: 80:5e:40:3b:26:3b:7d:85:d8:d4:c4:91:28:d7:a2:94:fd:68: 26:f8:fd:50:75:16:07:83:28:36:ad:4e:eb:d2:ae:e7:0e:15: 3a:f8:c9:6c:c6:7f:c6:e4:8f:b2:f4:12:e3:2a:5a:12:56:b7: d4:6e:c7:ae:17:4f:da:72:87:54:57:e6:29:19:08:88:85:7b: 15:5a:41:7c:5a:da:a9:08:69:54:3e:3a:d2:26:92:63:5e:1c: f8:f7:6f:37:a0:7e:94:ec:54:5f:6f:97:eb:ee:a0:a9:6b:4f: 5b:b5:5c:97:96:10:4a:4c:0d:9f:de:26:2c:23:5e:70:b8:6a: 97:7c:56:d4:c1:ca:f0:3b:ea:26:43:f8:e2:82:a3:e9:f0:7f: 56:d9:1e:17:89:12:4a:32:91:c1:6d:2b:99:08:19:27:f8:44: bf:9f:a5:27:ef:b5:f7:26:22:28:77:3d:2b:91:91:e0:2e:9e: 94:51:d5:64:ee:4d:9e:b5:0f:9d:15:14:b5:15:59:b9:34:90: 92:30:d0:e5:ee:ff:e3:33:fe:b0:69:b1:f0:f6:24:ae:df:cc: 20:dc:ae:9d -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUf92n428Cb+lfyKVx7WNLLSq7PIgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxM1oX DTI1MDEwNzA0MDAxM1owMzExMC8GA1UEAxMoNzNCQjJFRUEwQzcyMjZCRkNEQ0E3 RUY2NkFFN0QyMDEyRjNFRkM3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM4n3eYeu2edizOuAkuc+Zf9tMLdjjZfgAPBd8L2HdzVu+p6RaVNNCGMV02q hbv1an5/8cLULUHzp37/3gO+3Ts01TO/4uDjeWbcXw7LYGbr7bnx04x6623EKO5v l7FXpkK/xVdxqxPms2Tfmzf7IXVgmDbdGzkmjIZMM1/7KFMZB3YrTTgxsWsXcKqk K7o8Ucdmf+9FiVZfqP9Xxe5mjo7jH/YnqB3mBDS8FlSXIeL1gqzBxtbQxjZsMhFz SkzWT4mrdCMXap/vpA+ANZfWCzCMhTKboroF4c6MqE4pG/Xty4kQX6IQxAgRnjvP yxLq9m6Uxj0awfnBiNHoBnSZzDECAwEAAaOCAd8wggHbMB0GA1UdDgQWBBRzuy7q DHImv83KfvZq59IBLz78fjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA5MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWecgDANBAIAAjAHAwUAJAaHwDANBgkqhkiG9w0BAQsFAAOCAQEA jluCbOp4/vX17FH/3FuXnOOGVvHBwAbQUQsDRTCxlA6z8V1ngF5AOyY7fYXY1MSR KNeilP1oJvj9UHUWB4MoNq1O69Ku5w4VOvjJbMZ/xuSPsvQS4ypaEla31G7HrhdP 2nKHVFfmKRkIiIV7FVpBfFraqQhpVD460iaSY14c+PdvN6B+lOxUX2+X6+6gqWtP W7Vcl5YQSkwNn94mLCNecLhql3xW1MHK8DvqJkP44oKj6fB/VtkeF4kSSjKRwW0r mQgZJ/hEv5+lJ++19yYiKHc9K5GR4C6elFHVZO5NnrUPnRUUtRVZuTSQkjDQ5e7/ 4zP+sGmx8PYkrt/MINyunQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:47 2024 by rpki-client on console-ams.rpki-client.org