$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141107.roa File: AS141107.roa (raw, json) Hash identifier: UJcToNL6PfkcUaK7DKnEu0tQl7rdEGoRfwdkTallBVo= Subject key identifier: 68:A6:F2:12:85:9A:A3:6D:3F:6F:70:E6:86:BD:8D:A7:9B:46:55:C6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 44949092406AE9256137AF0F04DEC77DE26E0A22 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141107.roa Signing time: Thu 21 Mar 2024 04:00:00 +0000 ROA not before: Thu 21 Mar 2024 03:55:00 +0000 ROA not after: Thu 20 Mar 2025 04:00:00 +0000 asID: 141107 IP address blocks: 103.157.26.0/23 maxlen: 24 103.169.6.0/23 maxlen: 24 103.187.106.0/24 maxlen: 24 2001:df5:b80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:94:90:92:40:6a:e9:25:61:37:af:0f:04:de:c7:7d:e2:6e:0a:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 21 03:55:00 2024 GMT Not After : Mar 20 04:00:00 2025 GMT Subject: CN=68A6F212859AA36D3F6F70E686BD8DA79B4655C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:27:22:44:0e:d0:cb:3d:f8:89:d2:99:75:ac: 7e:d1:6d:06:4d:ad:f9:bb:c4:a5:84:4c:7d:11:aa: 49:f6:0a:e2:4e:76:c6:79:4d:cc:62:3b:ab:31:52: 47:47:ea:2e:89:94:a7:c8:b8:50:2e:c7:34:43:26: e8:8b:a7:da:6e:49:51:2a:0c:0b:1b:6d:b2:6c:11: b3:04:c8:31:57:95:2f:45:e2:be:b8:35:9a:48:71: 04:aa:95:13:ca:02:37:96:8f:9f:51:2e:cd:69:40: 45:cd:f1:ac:25:15:8a:b2:46:c4:25:07:0c:d7:ee: 63:0b:2b:14:4e:6c:fa:46:67:f9:9e:3f:9c:95:0b: f0:54:da:f0:9e:95:70:82:39:a7:e0:fa:f3:98:fe: 42:eb:d8:82:96:e7:cb:71:6e:3f:ff:40:f7:36:47: 7d:9d:5f:57:02:fa:4b:10:63:01:91:3f:f7:ed:34: 65:4a:ab:78:e1:36:76:73:24:e5:ea:58:e9:5e:d3: 47:9d:7c:02:b0:b2:a2:2d:7e:72:27:b6:c9:ac:22: 23:f7:95:15:16:30:40:42:60:54:81:ae:3a:65:85: 39:e1:75:43:7a:75:86:2a:24:fd:23:52:17:61:13: 2b:9c:36:7f:98:9e:55:2b:91:ce:08:a0:3b:d4:25: 1d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:A6:F2:12:85:9A:A3:6D:3F:6F:70:E6:86:BD:8D:A7:9B:46:55:C6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141107.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.26.0/23 103.169.6.0/23 103.187.106.0/24 IPv6: 2001:df5:b80::/48 Signature Algorithm: sha256WithRSAEncryption 91:1f:7c:98:de:a3:bc:a1:ee:d0:33:6b:86:13:e3:7a:88:fc: 5d:81:8e:a1:b0:1f:af:12:4b:72:04:b2:bd:03:a1:ff:a3:4a: 6f:2d:eb:02:6a:f3:98:62:83:19:39:f0:49:d6:e7:5f:2e:90: 17:3d:b2:57:63:e9:dc:d0:25:f5:b2:96:1d:f9:82:b4:a6:a7: b0:17:a0:81:ae:41:65:18:7a:c3:d7:d6:f5:9d:df:ba:31:d0: b3:5d:f0:0c:b6:92:d1:44:46:ed:49:77:8e:55:8a:6e:83:a1: 93:87:e4:fb:a6:79:7b:de:13:ab:7e:e4:5e:a4:18:70:b2:d3: aa:fb:a2:67:e7:27:b3:8a:2d:e3:87:d6:c9:e3:e1:11:dd:1e: 7c:17:4e:4a:b4:3c:27:7b:e2:d1:5a:9e:48:72:37:1e:d9:65: 2b:eb:98:7e:33:01:b8:56:53:3a:5d:b5:10:d6:d4:e7:c0:84: 2d:88:3c:1d:bb:60:54:dd:09:e4:33:59:e3:a6:2b:69:11:52: b4:54:e5:5f:f4:4e:f3:09:e2:39:2d:92:2b:79:25:a7:62:64: 74:e7:a1:16:b5:e6:fb:18:15:80:29:b3:fc:05:b4:f1:71:fc: b0:74:a5:95:12:fd:c9:32:18:5a:2f:18:b7:84:85:7a:e1:a2: 06:f7:a3:b4 -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIURJSQkkBq6SVhN68PBN7HfeJuCiIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMyMTAzNTUwMFoX DTI1MDMyMDA0MDAwMFowMzExMC8GA1UEAxMoNjhBNkYyMTI4NTlBQTM2RDNGNkY3 MEU2ODZCRDhEQTc5QjQ2NTVDNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPEnIkQO0Ms9+InSmXWsftFtBk2t+bvEpYRMfRGqSfYK4k52xnlNzGI7qzFS R0fqLomUp8i4UC7HNEMm6Iun2m5JUSoMCxttsmwRswTIMVeVL0Xivrg1mkhxBKqV E8oCN5aPn1EuzWlARc3xrCUVirJGxCUHDNfuYwsrFE5s+kZn+Z4/nJUL8FTa8J6V cII5p+D685j+QuvYgpbny3FuP/9A9zZHfZ1fVwL6SxBjAZE/9+00ZUqreOE2dnMk 5epY6V7TR518ArCyoi1+cie2yawiI/eVFRYwQEJgVIGuOmWFOeF1Q3p1hiok/SNS F2ETK5w2f5ieVSuRzgigO9QlHRcCAwEAAaOCAe0wggHpMB0GA1UdDgQWBBRopvIS hZqjbT9vcOaGvY2nm0ZVxjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTEwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA8BggrBgEFBQcBBwEB/wQtMCsw GAQCAAEwEgMEAWedGgMEAWepBgMEAGe7ajAPBAIAAjAJAwcAIAEN9QuAMA0GCSqG SIb3DQEBCwUAA4IBAQCRH3yY3qO8oe7QM2uGE+N6iPxdgY6hsB+vEktyBLK9A6H/ o0pvLesCavOYYoMZOfBJ1udfLpAXPbJXY+nc0CX1spYd+YK0pqewF6CBrkFlGHrD 19b1nd+6MdCzXfAMtpLRREbtSXeOVYpug6GTh+T7pnl73hOrfuRepBhwstOq+6Jn 5yezii3jh9bJ4+ER3R58F05KtDwne+LRWp5Icjce2WUr65h+MwG4VlM6XbUQ1tTn wIQtiDwdu2BU3QnkM1njpitpEVK0VOVf9E7zCeI5LZIreSWnYmR056EWteb7GBWA KbP8BbTxcfywdKWVEv3JMhhaLxi3hIV64aIG96O0 -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:25 2024 by rpki-client on console-fra.rpki-client.org