$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141092.roa File: AS141092.roa (raw, json) Hash identifier: 3AZoAC3W3Ju5JcLkEy8+3ucZO4I3nY7HpichM13hRQU= Subject key identifier: 3C:D4:23:56:35:65:B3:0D:44:51:CE:60:A1:18:80:43:8D:88:F0:06 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 09758D336597505A7B38B4D576652B6D9B2E3D3D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141092.roa Signing time: Tue 10 Dec 2024 05:00:26 +0000 ROA not before: Tue 10 Dec 2024 04:55:26 +0000 ROA not after: Tue 09 Dec 2025 05:00:26 +0000 asID: 141092 IP address blocks: 103.156.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:75:8d:33:65:97:50:5a:7b:38:b4:d5:76:65:2b:6d:9b:2e:3d:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:26 2024 GMT Not After : Dec 9 05:00:26 2025 GMT Subject: CN=3CD423563565B30D4451CE60A11880438D88F006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1d:bc:82:71:b0:41:14:5b:2e:5f:9d:fe:92: 20:94:3d:94:e1:22:2b:4e:46:cd:94:15:a0:1a:52: b8:e7:b9:ed:3c:61:41:b0:20:bb:c7:a4:71:4e:45: d6:ff:cf:c5:b1:9b:2d:29:d4:de:0a:bf:a3:07:df: 45:03:21:f4:9c:72:74:7b:39:fc:04:63:de:39:51: 19:8c:1b:71:16:cd:4f:b1:49:83:7e:23:e8:a2:40: 80:55:37:b2:ea:91:83:94:92:8b:bf:36:27:5b:49: 0f:8e:24:8c:95:38:aa:b2:ff:ba:9e:37:5c:0e:40: ea:9a:93:c5:49:fc:50:7e:7e:a2:d6:8e:58:39:58: 4a:ce:78:c3:b4:e9:65:a5:b3:78:ea:1b:5d:c9:87: 1e:1c:13:69:6c:03:1c:a3:fe:01:99:b3:4f:2f:f8: 0b:95:ec:01:64:34:1c:a4:3f:80:f2:07:81:af:5a: 99:98:26:43:88:dc:c6:eb:7c:58:ca:73:bc:46:79: 1a:76:08:59:9c:52:9d:67:b5:ff:59:b6:ad:f7:c7: 05:55:0f:1d:23:be:71:80:52:10:cc:9f:d1:3e:3a: 34:fe:58:78:da:d4:61:67:96:2a:51:41:6f:6a:cf: f3:7a:98:75:49:3f:27:fb:35:87:62:20:c3:f9:da: 66:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:D4:23:56:35:65:B3:0D:44:51:CE:60:A1:18:80:43:8D:88:F0:06 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141092.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.140.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:d1:31:6a:62:e1:1f:0f:2d:e3:e1:f5:d3:0c:38:f3:ce:82: 7d:23:87:69:7e:41:7c:5c:7c:04:62:b3:12:8a:ea:d0:22:7a: 07:82:ef:06:25:39:c0:87:4c:35:7c:a7:dd:0e:25:fb:de:9f: 84:2f:f4:50:dc:c5:29:b0:03:45:5f:e8:e6:c4:a2:bd:d3:17: 24:ce:b2:1e:f4:81:a5:1f:60:8c:d2:78:33:40:33:04:bc:6b: 1b:80:fc:2d:56:d5:4c:0f:7e:27:1e:ac:9e:2e:c8:92:27:ca: 0f:e9:3e:b5:01:16:08:4d:6d:ee:b1:96:00:58:52:b2:ee:58: 86:9e:5b:e9:b2:04:26:6b:51:a6:b3:8b:eb:ff:9b:21:f0:fc: 92:2f:8c:57:76:e4:a9:4a:64:39:48:19:8f:55:d1:bf:e3:24: 3b:17:88:aa:0e:75:9c:2a:26:ff:80:5f:e3:a4:26:34:a1:9f: f6:e3:55:ac:9f:a1:54:ab:71:fd:c0:e7:c8:81:c5:b7:5e:5a: ff:04:e4:af:f0:79:5e:ad:22:ff:c5:06:9c:c5:d4:f5:96:1f: 2b:71:bb:6c:ae:bd:ff:7f:5d:5a:d8:9f:8f:18:38:6f:d7:6f: c5:dd:0c:83:da:7c:15:71:ed:9c:b7:66:55:ac:46:3f:3f:3d: e2:ab:7e:50 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCXWNM2WXUFp7OLTVdmUrbZsuPT0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyNloX DTI1MTIwOTA1MDAyNlowMzExMC8GA1UEAxMoM0NENDIzNTYzNTY1QjMwRDQ0NTFD RTYwQTExODgwNDM4RDg4RjAwNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKodvIJxsEEUWy5fnf6SIJQ9lOEiK05GzZQVoBpSuOe57TxhQbAgu8ekcU5F 1v/PxbGbLSnU3gq/owffRQMh9JxydHs5/ARj3jlRGYwbcRbNT7FJg34j6KJAgFU3 suqRg5SSi782J1tJD44kjJU4qrL/up43XA5A6pqTxUn8UH5+otaOWDlYSs54w7Tp ZaWzeOobXcmHHhwTaWwDHKP+AZmzTy/4C5XsAWQ0HKQ/gPIHga9amZgmQ4jcxut8 WMpzvEZ5GnYIWZxSnWe1/1m2rffHBVUPHSO+cYBSEMyf0T46NP5YeNrUYWeWKlFB b2rP83qYdUk/J/s1h2Igw/naZucCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ81CNW NWWzDURRzmChGIBDjYjwBjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA5Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWecjDANBgkqhkiG9w0BAQsFAAOCAQEAatExamLhHw8t4+H10ww4 886CfSOHaX5BfFx8BGKzEorq0CJ6B4LvBiU5wIdMNXyn3Q4l+96fhC/0UNzFKbAD RV/o5sSivdMXJM6yHvSBpR9gjNJ4M0AzBLxrG4D8LVbVTA9+Jx6sni7IkifKD+k+ tQEWCE1t7rGWAFhSsu5Yhp5b6bIEJmtRprOL6/+bIfD8ki+MV3bkqUpkOUgZj1XR v+MkOxeIqg51nCom/4Bf46QmNKGf9uNVrJ+hVKtx/cDnyIHFt15a/wTkr/B5Xq0i /8UGnMXU9ZYfK3G7bK69/39dWtifjxg4b9dvxd0Mg9p8FXHtnLdmVaxGPz894qt+ UA== -----END CERTIFICATE-----Generated at Sat Apr 5 08:32:10 2025 by rpki-client