$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141091.roa File: AS141091.roa (raw, json) Hash identifier: I7ezAdgrO+rZ3v8gGr+gTTFaKwUlwEDvIisHY7ZVVZM= Subject key identifier: 43:DE:7E:82:CE:B1:60:BA:C0:3A:2D:AD:C6:F7:AE:A8:D6:85:0C:63 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 58845C59A13ECE78EF601454ECF650921C55422E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141091.roa Signing time: Tue 10 Dec 2024 05:00:10 +0000 ROA not before: Tue 10 Dec 2024 04:55:10 +0000 ROA not after: Tue 09 Dec 2025 05:00:10 +0000 asID: 141091 IP address blocks: 103.156.128.0/23 maxlen: 24 2406:87c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:84:5c:59:a1:3e:ce:78:ef:60:14:54:ec:f6:50:92:1c:55:42:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:10 2024 GMT Not After : Dec 9 05:00:10 2025 GMT Subject: CN=43DE7E82CEB160BAC03A2DADC6F7AEA8D6850C63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:17:04:d4:28:6c:a6:ec:48:30:1f:b9:99:3e: dd:59:14:2a:ab:cd:15:0c:f4:d0:98:67:09:6c:07: 12:18:c0:da:c2:80:9f:4c:f1:d0:10:25:b1:0e:2b: 4e:99:73:27:ef:07:4c:00:ae:31:8b:f5:3c:1b:49: 69:8f:92:a6:bf:ff:2a:58:52:bf:93:79:2e:a4:56: 95:06:33:5b:1f:98:61:e5:35:99:51:4e:dc:d3:02: 63:7d:cc:63:5d:69:66:70:78:e5:4d:3a:97:b0:33: c5:f6:ea:14:e3:a1:59:ef:02:82:ca:59:1e:c6:df: 22:ed:cd:28:b6:44:01:e5:34:89:a0:a3:c8:e0:7c: 1b:b2:0b:43:5e:e7:ca:3f:e5:f1:bd:d1:86:16:92: e2:35:29:80:70:f8:ef:c9:fd:af:e8:89:fd:18:f8: af:e1:d9:7b:05:95:f7:65:28:93:50:8b:29:bc:f1: aa:68:a0:75:a1:43:39:2b:b4:de:6e:1c:bd:99:f5: ba:1d:c2:f7:cc:57:d5:b0:90:9d:1c:98:b8:92:d9: 00:cb:02:5c:e7:6a:23:06:66:97:8e:36:d7:61:1e: 81:94:dc:65:0f:93:ae:b1:00:ab:f5:eb:18:d5:94: 31:87:2e:03:3d:34:45:ef:b4:be:b9:f7:8c:2c:a2: 64:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:DE:7E:82:CE:B1:60:BA:C0:3A:2D:AD:C6:F7:AE:A8:D6:85:0C:63 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141091.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.128.0/23 IPv6: 2406:87c0::/32 Signature Algorithm: sha256WithRSAEncryption 54:b2:4b:77:b2:bc:ec:39:a5:0f:56:a2:c2:8d:8a:57:a2:10: ef:50:29:7c:d3:02:aa:68:4a:2b:9f:88:d8:f3:38:30:45:8c: bb:46:22:16:44:55:0f:a1:f4:45:ec:c8:d2:af:6e:3b:ff:97: c8:6b:09:0a:9c:6e:5a:bb:da:85:02:10:dc:ed:c9:4b:ed:34: af:9f:47:d1:2c:a2:e7:f9:c4:9f:8b:8f:c2:ae:6a:88:fd:32: f3:4e:60:a1:ad:0c:3a:4f:da:11:e6:d0:9e:67:d0:42:58:7d: ed:93:86:26:5b:09:9f:e1:e8:ab:69:e3:3c:57:c3:9e:52:7b: ac:5c:e9:4c:da:e3:9f:a9:e0:65:4e:19:b7:64:1e:9d:10:5e: 28:c8:ef:50:a4:8a:38:16:dc:07:ea:08:e9:72:cc:df:4a:58: 48:2a:61:bf:8c:6a:0b:95:d9:be:bc:80:56:e6:0f:08:66:61: b0:85:13:b0:59:77:42:f3:fe:44:8c:b8:1b:78:80:bd:dc:51: a6:e5:e1:f3:e6:6f:6d:22:64:d9:1b:67:46:90:fc:f5:ec:95: 9f:c7:9d:cd:50:92:af:29:ca:58:92:fa:75:77:bc:16:4c:62: 2a:14:b2:35:0d:11:13:cc:44:8d:e5:f4:e7:12:05:88:8b:c4: e1:45:5c:87 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUWIRcWaE+znjvYBRU7PZQkhxVQi4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxMFoX DTI1MTIwOTA1MDAxMFowMzExMC8GA1UEAxMoNDNERTdFODJDRUIxNjBCQUMwM0Ey REFEQzZGN0FFQThENjg1MEM2MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALsXBNQobKbsSDAfuZk+3VkUKqvNFQz00JhnCWwHEhjA2sKAn0zx0BAlsQ4r TplzJ+8HTACuMYv1PBtJaY+Spr//KlhSv5N5LqRWlQYzWx+YYeU1mVFO3NMCY33M Y11pZnB45U06l7AzxfbqFOOhWe8CgspZHsbfIu3NKLZEAeU0iaCjyOB8G7ILQ17n yj/l8b3RhhaS4jUpgHD478n9r+iJ/Rj4r+HZewWV92Uok1CLKbzxqmigdaFDOSu0 3m4cvZn1uh3C98xX1bCQnRyYuJLZAMsCXOdqIwZml44212EegZTcZQ+TrrEAq/Xr GNWUMYcuAz00Re+0vrn3jCyiZI0CAwEAAaOCAd8wggHbMB0GA1UdDgQWBBRD3n6C zrFgusA6La3G966o1oUMYzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA5MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWecgDANBAIAAjAHAwUAJAaHwDANBgkqhkiG9w0BAQsFAAOCAQEA VLJLd7K87DmlD1aiwo2KV6IQ71ApfNMCqmhKK5+I2PM4MEWMu0YiFkRVD6H0RezI 0q9uO/+XyGsJCpxuWrvahQIQ3O3JS+00r59H0Syi5/nEn4uPwq5qiP0y805goa0M Ok/aEebQnmfQQlh97ZOGJlsJn+Hoq2njPFfDnlJ7rFzpTNrjn6ngZU4Zt2QenRBe KMjvUKSKOBbcB+oI6XLM30pYSCphv4xqC5XZvryAVuYPCGZhsIUTsFl3QvP+RIy4 G3iAvdxRpuXh8+ZvbSJk2RtnRpD89eyVn8edzVCSrynKWJL6dXe8FkxiKhSyNQ0R E8xEjeX05xIFiIvE4UVchw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:44 2025 by rpki-client