$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141109.roa File: AS141109.roa (raw, json) Hash identifier: XccRlKp16OOL2/nRIB6mJcfgnKJMr1cbMmMA8gZSY44= Subject key identifier: D4:C1:9F:E7:6A:8B:54:49:98:B0:F5:52:8B:8D:64:2A:FE:EF:9A:1D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 76E7E1A426EB8D00FE7574461C190EB9239F7CE6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141109.roa Signing time: Tue 10 Dec 2024 05:00:11 +0000 ROA not before: Tue 10 Dec 2024 04:55:11 +0000 ROA not after: Tue 09 Dec 2025 05:00:11 +0000 asID: 141109 IP address blocks: 103.157.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:e7:e1:a4:26:eb:8d:00:fe:75:74:46:1c:19:0e:b9:23:9f:7c:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:11 2024 GMT Not After : Dec 9 05:00:11 2025 GMT Subject: CN=D4C19FE76A8B544998B0F5528B8D642AFEEF9A1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fc:33:6b:3f:08:f6:e1:4c:d9:a9:e3:32:b3: b7:e4:58:8c:e0:0a:46:5d:35:a7:ee:9b:92:11:d8: c2:b6:42:f4:b2:ba:9d:8a:97:77:24:02:b1:19:63: 23:f0:64:f7:09:25:17:8f:e1:83:4a:f7:c3:e9:7e: ae:79:f3:fc:5b:f3:ce:ae:78:59:b7:c5:07:db:1a: 18:ab:62:9c:52:27:e9:ba:fb:1a:37:d8:0f:7d:87: dc:eb:96:0f:e4:36:83:af:a8:4f:0b:2f:40:db:28: c5:df:0c:d7:26:20:67:d0:ca:0b:ae:04:2a:21:91: 72:66:af:7d:33:86:54:69:1c:96:40:1a:d3:36:06: ec:87:a0:fd:1d:4d:58:89:49:65:d2:4c:b5:57:b5: 86:48:ed:fc:5a:8d:17:3b:37:b6:9e:3b:92:e2:7e: c3:8c:65:16:d4:56:e1:b5:8c:bd:f4:cf:90:b6:75: b8:39:23:1f:a2:60:e6:7e:50:6c:ae:f3:43:35:16: ff:2b:62:e0:f8:3c:bd:f3:57:0e:7c:24:63:34:35: 24:4a:4f:5a:6b:47:49:68:ea:85:03:58:d2:f7:4a: 4c:ab:34:1a:d0:ff:ce:1b:24:21:ae:06:8f:3c:70: e7:7f:33:6e:41:4b:33:84:f0:71:3f:0f:78:57:7c: 1b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C1:9F:E7:6A:8B:54:49:98:B0:F5:52:8B:8D:64:2A:FE:EF:9A:1D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141109.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.32.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:7b:31:6b:a7:cf:8a:17:1a:bb:67:91:a9:38:74:a3:65:97: 7c:ee:94:3f:8e:cc:0c:d2:7f:93:bf:76:fb:8f:ad:d4:a3:8a: ef:77:a9:86:62:53:db:36:04:88:71:ff:cb:22:74:ca:1d:5e: 77:96:48:bc:70:fe:77:29:5a:3d:5d:30:12:a7:02:25:0b:7c: 2d:a2:f4:54:83:2f:22:76:87:90:13:7c:2b:4f:29:9d:ba:af: b4:55:ff:e8:4b:4f:a6:ab:79:36:23:d9:a5:2c:1a:44:a8:31: dc:6b:32:8c:04:97:34:e1:3c:18:5a:b3:4e:fa:40:59:27:83: 44:11:d3:47:33:62:d8:41:2e:bd:7b:f7:2a:81:63:53:91:ac: 69:59:98:08:f7:7b:a6:26:02:25:7d:6b:d8:66:2e:af:45:37: 89:cf:e9:c7:a7:7c:bf:1f:58:8c:79:26:73:2a:d2:e9:3b:95: 60:80:a2:33:56:25:3a:70:b2:e4:7e:26:cb:e5:13:4f:be:8e: 01:27:27:b1:bd:8b:b9:6a:d2:60:f1:f9:b6:16:a2:44:db:e3: de:39:51:f2:98:38:18:13:bb:65:16:6c:b0:0e:2f:d3:76:9c: 60:b8:b4:32:46:c4:3a:8b:26:2d:e6:4b:f2:41:fb:67:0e:75: 16:3c:0d:00 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdufhpCbrjQD+dXRGHBkOuSOffOYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxMVoX DTI1MTIwOTA1MDAxMVowMzExMC8GA1UEAxMoRDRDMTlGRTc2QThCNTQ0OTk4QjBG NTUyOEI4RDY0MkFGRUVGOUExRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMb8M2s/CPbhTNmp4zKzt+RYjOAKRl01p+6bkhHYwrZC9LK6nYqXdyQCsRlj I/Bk9wklF4/hg0r3w+l+rnnz/Fvzzq54WbfFB9saGKtinFIn6br7GjfYD32H3OuW D+Q2g6+oTwsvQNsoxd8M1yYgZ9DKC64EKiGRcmavfTOGVGkclkAa0zYG7Ieg/R1N WIlJZdJMtVe1hkjt/FqNFzs3tp47kuJ+w4xlFtRW4bWMvfTPkLZ1uDkjH6Jg5n5Q bK7zQzUW/yti4Pg8vfNXDnwkYzQ1JEpPWmtHSWjqhQNY0vdKTKs0GtD/zhskIa4G jzxw538zbkFLM4TwcT8PeFd8Gx0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTUwZ/n aotUSZiw9VKLjWQq/u+aHTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTEwOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWedIDANBgkqhkiG9w0BAQsFAAOCAQEAjHsxa6fPihcau2eRqTh0 o2WXfO6UP47MDNJ/k792+4+t1KOK73ephmJT2zYEiHH/yyJ0yh1ed5ZIvHD+dyla PV0wEqcCJQt8LaL0VIMvInaHkBN8K08pnbqvtFX/6EtPpqt5NiPZpSwaRKgx3Gsy jASXNOE8GFqzTvpAWSeDRBHTRzNi2EEuvXv3KoFjU5GsaVmYCPd7piYCJX1r2GYu r0U3ic/px6d8vx9YjHkmcyrS6TuVYICiM1YlOnCy5H4my+UTT76OAScnsb2LuWrS YPH5thaiRNvj3jlR8pg4GBO7ZRZssA4v03acYLi0MkbEOosmLeZL8kH7Zw51FjwN AA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:37 2025 by rpki-client