$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141126.roa File: AS141126.roa (raw, json) Hash identifier: FGWxnuSBp9Q27u+IdBnWkrPqCQX2wex8civmlvosxrw= Subject key identifier: 60:A1:BA:71:BA:EF:C6:7A:9B:38:99:72:87:C7:81:F0:72:27:AD:66 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0CC3662730C6980173EF7B223071AD3386B08F86 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141126.roa Signing time: Tue 24 Oct 2023 02:52:03 +0000 ROA not before: Tue 24 Oct 2023 02:47:03 +0000 ROA not after: Tue 22 Oct 2024 02:52:03 +0000 asID: 141126 IP address blocks: 103.158.154.0/23 maxlen: 24 203.175.126.0/23 maxlen: 24 2001:df1:d040::/48 maxlen: 48 2001:df5:5980::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:c3:66:27:30:c6:98:01:73:ef:7b:22:30:71:ad:33:86:b0:8f:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 24 02:47:03 2023 GMT Not After : Oct 22 02:52:03 2024 GMT Subject: CN=60A1BA71BAEFC67A9B38997287C781F07227AD66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3a:30:c9:3a:b8:f2:ca:df:8a:e7:3a:43:fb: 25:4e:29:d1:c3:f5:d0:1a:74:1f:ce:78:f7:2d:31: 34:22:21:f5:d0:fa:cc:8f:4c:e3:90:9a:6f:c3:65: bb:f5:8d:1c:70:f4:80:be:69:e2:d3:58:2c:fa:22: aa:bd:71:46:b7:49:38:92:d7:13:31:00:43:ee:c6: 86:98:bd:7c:ff:77:a9:6e:7c:3b:79:3e:59:7b:c7: 9c:37:34:79:c6:07:5b:02:f0:bd:b1:d2:be:e1:01: 60:a7:27:27:9f:8b:9b:8e:55:1d:2b:7b:8b:1e:e3: 54:49:89:21:18:01:a0:da:0d:3b:5d:52:65:8e:24: 05:e8:58:a3:d3:31:2e:6f:e6:90:9d:2f:3a:4a:be: ea:a2:c6:7b:bc:e5:8b:40:44:55:a1:03:c4:7b:32: a6:7f:1a:3d:83:04:c8:e3:d1:bc:6c:7b:b6:9a:29: 10:65:34:e8:d1:fb:76:df:19:03:bf:e9:d8:85:6a: b9:7b:b4:01:4f:c5:99:cd:87:d9:25:77:88:a9:60: 9c:ac:fc:3b:f5:4d:8e:f4:2d:a5:d7:fc:48:5b:30: 2b:d9:fe:11:15:10:12:7b:9f:c7:e7:e5:90:3b:6d: de:72:18:cc:af:e2:5e:60:2e:78:bf:2a:dc:69:00: a8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A1:BA:71:BA:EF:C6:7A:9B:38:99:72:87:C7:81:F0:72:27:AD:66 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141126.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.154.0/23 203.175.126.0/23 IPv6: 2001:df1:d040::/48 2001:df5:5980::/48 Signature Algorithm: sha256WithRSAEncryption 34:3a:fe:50:1c:4e:c2:19:b0:0d:0e:d5:82:90:fb:d9:95:dc: 3c:e9:79:3f:7f:b0:06:5b:6b:72:46:72:6e:aa:86:01:d8:bc: 64:b2:93:20:3a:85:e3:a4:88:e8:46:78:af:b4:a8:dd:e9:13: 1e:d3:df:3a:57:f5:1c:90:b3:9f:b0:c6:be:d7:75:f3:57:74: 70:2a:cb:03:8b:57:c2:f3:0e:08:26:f3:71:98:d5:5d:db:54: ad:5a:53:37:7a:17:3a:af:de:e9:9e:aa:9d:b3:ff:98:a0:12: 26:00:98:f1:6d:22:5b:c5:90:f8:52:0c:d3:13:b2:10:8e:6e: 3e:b0:4a:c4:98:75:22:66:c1:d2:be:4c:4c:7b:b0:8a:b8:d3: 13:96:37:02:4a:a8:8e:00:91:ba:c8:f0:71:f2:a8:25:bf:43: ec:eb:cf:2d:f7:3c:32:54:07:25:11:5e:e5:a4:22:3d:93:6b: 9d:16:e8:0e:9b:6c:59:99:e8:2b:35:94:82:1a:9d:a5:09:0d: 5f:9f:23:1d:4c:5a:cf:d1:78:13:ce:83:2f:07:59:1a:43:3a: e7:f7:d9:da:54:1b:ef:a4:71:70:4d:fb:a2:cc:4d:5a:9b:95: 85:d4:5f:2a:bb:a5:e8:25:f8:19:75:e4:19:bd:e9:d6:26:a1: c6:80:5c:ec -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgIUDMNmJzDGmAFz73siMHGtM4awj4YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAyNDAyNDcwM1oX DTI0MTAyMjAyNTIwM1owMzExMC8GA1UEAxMoNjBBMUJBNzFCQUVGQzY3QTlCMzg5 OTcyODdDNzgxRjA3MjI3QUQ2NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALo6MMk6uPLK34rnOkP7JU4p0cP10Bp0H8549y0xNCIh9dD6zI9M45Cab8Nl u/WNHHD0gL5p4tNYLPoiqr1xRrdJOJLXEzEAQ+7Ghpi9fP93qW58O3k+WXvHnDc0 ecYHWwLwvbHSvuEBYKcnJ5+Lm45VHSt7ix7jVEmJIRgBoNoNO11SZY4kBehYo9Mx Lm/mkJ0vOkq+6qLGe7zli0BEVaEDxHsypn8aPYMEyOPRvGx7tpopEGU06NH7dt8Z A7/p2IVquXu0AU/Fmc2H2SV3iKlgnKz8O/VNjvQtpdf8SFswK9n+ERUQEnufx+fl kDtt3nIYzK/iXmAueL8q3GkAqC8CAwEAAaOCAfAwggHsMB0GA1UdDgQWBBRgobpx uu/Geps4mXKHx4HwcietZjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTEyNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA/BggrBgEFBQcBBwEB/wQwMC4w EgQCAAEwDAMEAWeemgMEAcuvfjAYBAIAAjASAwcAIAEN8dBAAwcAIAEN9VmAMA0G CSqGSIb3DQEBCwUAA4IBAQA0Ov5QHE7CGbANDtWCkPvZldw86Xk/f7AGW2tyRnJu qoYB2LxkspMgOoXjpIjoRnivtKjd6RMe0986V/UckLOfsMa+13XzV3RwKssDi1fC 8w4IJvNxmNVd21StWlM3ehc6r97pnqqds/+YoBImAJjxbSJbxZD4UgzTE7IQjm4+ sErEmHUiZsHSvkxMe7CKuNMTljcCSqiOAJG6yPBx8qglv0Ps688t9zwyVAclEV7l pCI9k2udFugOm2xZmegrNZSCGp2lCQ1fnyMdTFrP0XgTzoMvB1kaQzrn99naVBvv pHFwTfuizE1am5WF1F8qu6XoJfgZdeQZvenWJqHGgFzs -----END CERTIFICATE-----Generated at Mon May 6 01:46:06 2024 by rpki-client on console-ams.rpki-client.org