$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141104.roa File: AS141104.roa (raw, json) Hash identifier: pY6PL+o1MtRe8luOpC20WkyiAzpF+HhqRXahcGSTMoA= Subject key identifier: 15:3F:43:53:9B:4D:BD:BE:07:5F:04:8F:0E:9D:3B:F5:15:05:8C:78 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 07FE62F4E49DA512AAF5526B70EC177769C54FA7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141104.roa Signing time: Tue 09 Jan 2024 04:00:30 +0000 ROA not before: Tue 09 Jan 2024 03:55:30 +0000 ROA not after: Tue 07 Jan 2025 04:00:30 +0000 asID: 141104 IP address blocks: 103.156.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:fe:62:f4:e4:9d:a5:12:aa:f5:52:6b:70:ec:17:77:69:c5:4f:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:30 2024 GMT Not After : Jan 7 04:00:30 2025 GMT Subject: CN=153F43539B4DBDBE075F048F0E9D3BF515058C78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8c:a8:23:92:a3:12:d5:f6:98:d1:e1:fa:91: 3c:c2:c7:5d:08:38:fc:30:22:36:ca:9d:76:c5:89: a1:31:0c:7f:ce:b2:62:80:74:81:e0:f1:2d:46:15: ee:28:b2:73:86:f6:ab:6d:ca:d2:6a:2a:fa:37:8d: 98:fc:80:33:ca:08:c5:26:82:2c:65:d0:fa:02:43: ba:2e:af:cc:eb:69:9f:9a:f2:e1:b5:03:70:1f:65: 0b:ea:45:26:28:ca:b2:fa:4c:68:e4:6d:70:12:58: 70:d4:6b:28:13:4f:ce:71:d8:52:94:41:dc:f8:ee: 1a:2b:4a:ec:84:f2:f8:8a:8f:ca:43:df:60:22:8a: 05:e5:34:1d:e2:9b:e9:ec:81:64:9a:d2:09:95:a3: 96:b4:cd:df:af:68:ff:c6:95:d3:c9:6b:1b:09:ec: 4d:18:b6:a0:6a:05:ad:02:d7:0c:e0:b5:bc:0d:68: 32:ec:fa:53:b8:4d:4d:7c:c4:55:70:7a:26:88:7b: 08:c2:67:ac:fb:2d:df:59:c3:d8:ff:dd:d6:6b:fc: f1:8d:03:d5:fe:03:8c:f6:d9:c0:b2:fc:8b:ff:23: d3:d2:12:87:f7:d5:0f:7b:6f:59:51:64:e9:3d:0e: 1a:03:9b:42:a8:b4:d0:de:a0:f5:6d:d5:28:fc:79: 6c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3F:43:53:9B:4D:BD:BE:07:5F:04:8F:0E:9D:3B:F5:15:05:8C:78 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141104.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.254.0/24 Signature Algorithm: sha256WithRSAEncryption 27:90:52:c8:d8:44:7a:94:e8:b8:78:68:33:8d:86:37:2d:ae: e2:15:99:ee:5a:41:9e:7a:ac:4b:93:ef:c1:06:db:17:d9:7c: cb:5d:cc:f5:7e:f6:0f:09:c9:02:34:7b:32:32:7e:6c:d9:1d: 59:54:16:50:b9:96:75:2f:fc:a7:7c:1d:91:83:9b:37:61:4b: ed:d2:e6:8a:ad:f2:31:a1:64:45:a0:ac:de:b9:f9:3f:f4:74: 63:16:80:06:6b:68:9f:91:b5:4a:0e:dd:29:bd:7b:57:83:2e: 61:78:ee:73:b6:b2:2f:1b:0c:5e:eb:cf:73:23:87:45:e0:72: e6:4f:64:91:68:ad:20:e6:41:ce:18:fa:6f:bc:d9:43:d8:68: 6e:c1:7a:64:f6:a7:ee:86:76:3e:b1:1a:45:fd:fe:c8:4e:96: 76:0f:6b:08:5d:18:12:83:f4:65:2c:15:de:e5:33:18:3c:ee: 13:17:ae:ae:bb:97:eb:c5:cc:7e:e2:ca:cb:1f:af:4c:69:70: d8:83:ae:46:d0:db:f9:e7:d6:d6:96:40:bd:6a:ab:eb:b0:a5: 0a:c4:61:c0:74:a3:33:d9:ea:c4:c7:3d:04:c8:17:27:77:c7: df:cc:99:cf:5f:25:b4:b9:18:49:3e:8b:0a:a5:95:30:5a:a5: 12:44:e6:4f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUB/5i9OSdpRKq9VJrcOwXd2nFT6cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUzMFoX DTI1MDEwNzA0MDAzMFowMzExMC8GA1UEAxMoMTUzRjQzNTM5QjREQkRCRTA3NUYw NDhGMEU5RDNCRjUxNTA1OEM3ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMaMqCOSoxLV9pjR4fqRPMLHXQg4/DAiNsqddsWJoTEMf86yYoB0geDxLUYV 7iiyc4b2q23K0moq+jeNmPyAM8oIxSaCLGXQ+gJDui6vzOtpn5ry4bUDcB9lC+pF JijKsvpMaORtcBJYcNRrKBNPznHYUpRB3PjuGitK7ITy+IqPykPfYCKKBeU0HeKb 6eyBZJrSCZWjlrTN369o/8aV08lrGwnsTRi2oGoFrQLXDOC1vA1oMuz6U7hNTXzE VXB6Joh7CMJnrPst31nD2P/d1mv88Y0D1f4DjPbZwLL8i/8j09ISh/fVD3tvWVFk 6T0OGgObQqi00N6g9W3VKPx5bOECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQVP0NT m029vgdfBI8OnTv1FQWMeDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTEwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGec/jANBgkqhkiG9w0BAQsFAAOCAQEAJ5BSyNhEepTouHhoM42G Ny2u4hWZ7lpBnnqsS5PvwQbbF9l8y13M9X72DwnJAjR7MjJ+bNkdWVQWULmWdS/8 p3wdkYObN2FL7dLmiq3yMaFkRaCs3rn5P/R0YxaABmton5G1Sg7dKb17V4MuYXju c7ayLxsMXuvPcyOHReBy5k9kkWitIOZBzhj6b7zZQ9hobsF6ZPan7oZ2PrEaRf3+ yE6Wdg9rCF0YEoP0ZSwV3uUzGDzuExeurruX68XMfuLKyx+vTGlw2IOuRtDb+efW 1pZAvWqr67ClCsRhwHSjM9nqxMc9BMgXJ3fH38yZz18ltLkYST6LCqWVMFqlEkTm Tw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:47 2024 by rpki-client on console-ams.rpki-client.org