$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141107.roa File: AS141107.roa (raw, json) Hash identifier: ICk7QdO4T3XAmP+B12R1HphjL9gJRkHNi+rgh+VE56I= Subject key identifier: 2C:B9:D1:A2:82:7D:37:98:40:90:DD:7C:BB:9C:BE:CF:D4:10:5F:C5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3B25AE80055E34D642DDFACB928C2C7DEAE8FC23 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141107.roa Signing time: Thu 20 Feb 2025 04:00:00 +0000 ROA not before: Thu 20 Feb 2025 03:55:00 +0000 ROA not after: Thu 19 Feb 2026 04:00:00 +0000 asID: 141107 IP address blocks: 103.157.26.0/23 maxlen: 24 103.169.6.0/23 maxlen: 24 103.187.106.0/24 maxlen: 24 2001:df5:b80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:25:ae:80:05:5e:34:d6:42:dd:fa:cb:92:8c:2c:7d:ea:e8:fc:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 20 03:55:00 2025 GMT Not After : Feb 19 04:00:00 2026 GMT Subject: CN=2CB9D1A2827D37984090DD7CBB9CBECFD4105FC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7e:4e:4e:14:b4:7e:8f:50:12:58:0a:50:cf: b0:04:bc:e2:af:95:52:df:42:93:d8:e2:ee:ac:49: 66:9d:12:04:46:31:9c:d2:75:3a:f6:4b:b6:bf:bf: 4e:2d:c8:20:1c:ef:2f:f1:f8:6d:5c:55:b3:01:6b: a1:e9:b6:7d:05:e1:d9:24:f2:cb:8e:8d:28:77:a5: 89:6d:f3:ae:2f:95:27:dd:d1:ee:17:85:db:b6:c0: bb:4e:be:c0:ee:97:a1:4f:0f:55:30:1d:c7:0a:2e: a8:48:37:0d:d2:2e:50:bb:db:55:33:5c:78:f2:31: cd:2e:3c:f8:f3:9b:d5:d1:94:eb:62:79:30:06:d4: cd:3f:66:4b:9a:3f:f3:30:8a:f8:59:f7:f3:9f:c7: d3:fd:05:14:f7:6b:5c:77:85:e4:2f:e9:3a:ec:28: 57:3d:88:b0:9c:b4:1d:d4:37:90:4b:96:c0:9e:9b: 14:7c:3f:d0:e6:f3:ea:3b:69:62:ee:e0:1c:2f:6a: 84:0a:8f:d7:77:55:10:32:a1:6d:46:68:18:30:13: de:14:6a:89:4b:a2:5b:a9:86:ce:80:06:1f:be:f9: 5e:48:ae:71:a6:60:e9:ab:92:50:ce:7e:34:86:24: fc:a9:d4:60:3c:35:40:b5:e7:b3:74:69:fa:9e:45: 32:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B9:D1:A2:82:7D:37:98:40:90:DD:7C:BB:9C:BE:CF:D4:10:5F:C5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141107.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.26.0/23 103.169.6.0/23 103.187.106.0/24 IPv6: 2001:df5:b80::/48 Signature Algorithm: sha256WithRSAEncryption 64:36:09:f6:aa:20:fc:60:99:9d:3d:65:9f:b6:c1:56:68:f0: 81:ae:de:6e:f5:c9:4c:fe:ec:57:91:e4:ec:d8:23:d6:6f:ec: 65:f7:d7:16:11:4e:93:cd:a6:b9:4f:5f:4a:22:67:06:68:42: d5:6a:28:25:9b:c2:42:9a:a5:d2:c1:bd:1f:85:76:ba:f7:af: 47:56:0e:1b:b6:f0:2b:38:16:68:c0:71:1d:0f:42:30:3d:8c: 92:b4:1c:57:7b:3d:48:c1:0d:3f:51:4b:8a:4c:da:dc:17:e6: a2:05:68:4f:bb:f6:eb:91:22:fd:1d:99:ba:e2:87:b3:c6:27: ff:73:cf:3e:7f:96:82:67:2b:96:b4:ec:7d:8f:c9:b2:1c:b5: 5d:08:84:c0:d3:e1:d3:46:89:2b:ba:a1:62:af:4f:3f:88:88: a4:7f:b3:73:0a:66:b7:18:29:28:bc:da:84:20:92:eb:31:bf: 6a:8a:1c:fe:9e:fd:d7:b1:15:a7:e1:2e:0d:66:e0:a0:8c:f0: 24:2e:c8:58:ae:8d:ea:31:b6:74:6d:58:6a:35:6e:6c:93:b9: f4:d7:94:19:a6:fe:d2:b4:64:89:9a:3b:ed:96:1f:24:eb:e3: e9:3a:a8:09:14:04:fd:23:dc:0a:f6:1a:ff:ff:b4:66:39:7c: d0:d5:1a:7e -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUOyWugAVeNNZC3frLkowsfero/CMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIyMDAzNTUwMFoX DTI2MDIxOTA0MDAwMFowMzExMC8GA1UEAxMoMkNCOUQxQTI4MjdEMzc5ODQwOTBE RDdDQkI5Q0JFQ0ZENDEwNUZDNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALV+Tk4UtH6PUBJYClDPsAS84q+VUt9Ck9ji7qxJZp0SBEYxnNJ1OvZLtr+/ Ti3IIBzvL/H4bVxVswFroem2fQXh2STyy46NKHeliW3zri+VJ93R7heF27bAu06+ wO6XoU8PVTAdxwouqEg3DdIuULvbVTNcePIxzS48+POb1dGU62J5MAbUzT9mS5o/ 8zCK+Fn385/H0/0FFPdrXHeF5C/pOuwoVz2IsJy0HdQ3kEuWwJ6bFHw/0Obz6jtp Yu7gHC9qhAqP13dVEDKhbUZoGDAT3hRqiUuiW6mGzoAGH775XkiucaZg6auSUM5+ NIYk/KnUYDw1QLXns3Rp+p5FMkkCAwEAAaOCAe0wggHpMB0GA1UdDgQWBBQsudGi gn03mECQ3Xy7nL7P1BBfxTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTEwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA8BggrBgEFBQcBBwEB/wQtMCsw GAQCAAEwEgMEAWedGgMEAWepBgMEAGe7ajAPBAIAAjAJAwcAIAEN9QuAMA0GCSqG SIb3DQEBCwUAA4IBAQBkNgn2qiD8YJmdPWWftsFWaPCBrt5u9clM/uxXkeTs2CPW b+xl99cWEU6Tzaa5T19KImcGaELVaiglm8JCmqXSwb0fhXa6969HVg4btvArOBZo wHEdD0IwPYyStBxXez1IwQ0/UUuKTNrcF+aiBWhPu/brkSL9HZm64oezxif/c88+ f5aCZyuWtOx9j8myHLVdCITA0+HTRokruqFir08/iIikf7NzCma3GCkovNqEIJLr Mb9qihz+nv3XsRWn4S4NZuCgjPAkLshYro3qMbZ0bVhqNW5sk7n015QZpv7StGSJ mjvtlh8k6+PpOqgJFAT9I9wK9hr//7RmOXzQ1Rp+ -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:40 2025 by rpki-client