$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141092.roa File: AS141092.roa (raw, json) Hash identifier: ICEG9WJFII+UBxXTHJOW7aynd+AbmoZu63t5VgeW6nM= Subject key identifier: 90:DD:07:2D:59:A7:58:BC:DB:D1:03:C5:90:F6:9F:7B:DB:8D:C9:9C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 73922B380B969616A5CD72A0C11B167D42F67C03 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141092.roa Signing time: Tue 09 Jan 2024 04:00:29 +0000 ROA not before: Tue 09 Jan 2024 03:55:29 +0000 ROA not after: Tue 07 Jan 2025 04:00:29 +0000 asID: 141092 IP address blocks: 103.156.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:92:2b:38:0b:96:96:16:a5:cd:72:a0:c1:1b:16:7d:42:f6:7c:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:29 2024 GMT Not After : Jan 7 04:00:29 2025 GMT Subject: CN=90DD072D59A758BCDBD103C590F69F7BDB8DC99C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e0:7b:b9:e2:c0:4d:ea:fa:0f:fc:c2:0e:2a: a7:f5:9c:03:13:fb:3d:75:14:68:48:a6:5b:6f:4a: 2e:23:aa:fa:b7:44:db:e6:b0:1c:f5:2b:eb:31:15: 8e:35:9b:8e:01:b6:bf:27:df:57:87:f0:ab:24:ea: 43:7d:d4:4e:1c:61:00:04:76:d3:ff:91:92:50:e5: e0:9e:2e:3a:6b:24:d7:d8:42:74:26:36:28:9e:c2: 9b:27:3d:d8:70:a7:67:e1:3e:d5:3f:c0:15:ce:17: a4:64:49:1f:ec:5e:f2:1b:e2:7b:47:68:b0:ce:e7: f4:90:f9:ba:1e:3c:ae:23:e0:1b:b3:a1:f7:ca:be: 6c:97:f4:87:6d:08:7f:e1:bc:9c:64:3e:4e:8d:8f: fa:90:38:fb:8e:3a:69:3d:6a:81:3c:3d:1d:64:f5: 3e:bc:6b:8b:9e:87:9d:3c:72:2d:da:f8:5b:7d:dd: 44:89:98:4c:37:d3:58:c7:b9:09:e6:18:df:80:f2: 74:d5:51:37:16:49:c5:6e:7c:2c:98:d2:ff:f9:d6: d1:f6:63:81:60:68:b4:1d:2d:48:cb:55:5f:99:4d: 38:54:89:98:62:08:2b:e4:45:e6:38:ce:24:d1:95: 51:7c:54:ba:e0:d5:76:93:13:0a:44:54:b6:7a:bb: 5e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:DD:07:2D:59:A7:58:BC:DB:D1:03:C5:90:F6:9F:7B:DB:8D:C9:9C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141092.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.140.0/23 Signature Algorithm: sha256WithRSAEncryption 12:e1:51:13:49:25:bb:dd:ea:87:07:35:88:10:91:e6:f1:48: 95:32:d2:13:ea:76:54:f6:af:a8:95:cb:03:f4:3a:d3:5a:b4: f7:5d:a6:c1:d0:ba:5f:cf:aa:25:a0:a6:18:0e:6d:cc:59:68: 2f:55:8d:3d:86:b4:63:9f:f6:19:7b:ca:c2:5c:a3:b5:45:be: 0b:5a:6d:e6:c4:64:d1:41:b4:8b:02:f1:6d:64:11:cd:bc:91: df:b1:1f:c4:81:13:58:80:6a:8e:bb:3c:e9:2d:b3:72:57:d1: ce:61:c4:65:a3:b6:0b:09:36:b4:8d:94:2d:46:37:f5:96:9a: 97:e0:55:8a:7b:dd:34:54:bb:c4:a7:58:eb:e3:96:cb:ad:9e: 88:08:f0:17:19:7d:f2:65:d1:87:ba:fb:d2:2a:1c:8a:0d:29: a7:58:b5:72:cd:46:f4:3c:18:9c:47:04:bd:b1:a4:bc:35:d4: aa:53:5b:21:1f:a4:f4:a6:d1:04:45:a2:7c:16:ba:28:f2:b0: 37:85:3e:2d:52:26:b5:3a:38:ce:b0:9b:02:2a:bf:bf:47:5f: 13:1a:8f:ed:cc:ae:47:a6:6e:d7:92:38:eb:13:89:24:b8:cb: 10:e1:0e:63:6e:02:5b:02:a7:e7:69:e9:a0:e0:12:06:1f:ea: eb:b4:32:1d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUc5IrOAuWlhalzXKgwRsWfUL2fAMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyOVoX DTI1MDEwNzA0MDAyOVowMzExMC8GA1UEAxMoOTBERDA3MkQ1OUE3NThCQ0RCRDEw M0M1OTBGNjlGN0JEQjhEQzk5QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANvge7niwE3q+g/8wg4qp/WcAxP7PXUUaEimW29KLiOq+rdE2+awHPUr6zEV jjWbjgG2vyffV4fwqyTqQ33UThxhAAR20/+RklDl4J4uOmsk19hCdCY2KJ7Cmyc9 2HCnZ+E+1T/AFc4XpGRJH+xe8hvie0dosM7n9JD5uh48riPgG7Oh98q+bJf0h20I f+G8nGQ+To2P+pA4+446aT1qgTw9HWT1Prxri56HnTxyLdr4W33dRImYTDfTWMe5 CeYY34DydNVRNxZJxW58LJjS//nW0fZjgWBotB0tSMtVX5lNOFSJmGIIK+RF5jjO JNGVUXxUuuDVdpMTCkRUtnq7XgcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSQ3Qct WadYvNvRA8WQ9p97243JnDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA5Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWecjDANBgkqhkiG9w0BAQsFAAOCAQEAEuFRE0klu93qhwc1iBCR 5vFIlTLSE+p2VPavqJXLA/Q601q0912mwdC6X8+qJaCmGA5tzFloL1WNPYa0Y5/2 GXvKwlyjtUW+C1pt5sRk0UG0iwLxbWQRzbyR37EfxIETWIBqjrs86S2zclfRzmHE ZaO2Cwk2tI2ULUY39Zaal+BVinvdNFS7xKdY6+OWy62eiAjwFxl98mXRh7r70ioc ig0pp1i1cs1G9DwYnEcEvbGkvDXUqlNbIR+k9KbRBEWifBa6KPKwN4U+LVImtTo4 zrCbAiq/v0dfExqP7cyuR6Zu15I46xOJJLjLEOEOY24CWwKn52npoOASBh/q67Qy HQ== -----END CERTIFICATE-----Generated at Thu May 2 23:02:00 2024 by rpki-client on console-fra.rpki-client.org