$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141131.roa File: AS141131.roa (raw, json) Hash identifier: HVWnPhboJreYmKkBeWOXolh+equc3eCzQoMdZHaxk+4= Subject key identifier: D7:71:C1:72:15:78:54:EC:92:14:26:F9:0A:E4:A3:6A:04:B4:A3:83 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4751EB2FF0A107BAC9DE23F9C440838432D5303C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141131.roa Signing time: Tue 10 Dec 2024 05:00:05 +0000 ROA not before: Tue 10 Dec 2024 04:55:05 +0000 ROA not after: Tue 09 Dec 2025 05:00:05 +0000 asID: 141131 IP address blocks: 103.158.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:51:eb:2f:f0:a1:07:ba:c9:de:23:f9:c4:40:83:84:32:d5:30:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:05 2024 GMT Not After : Dec 9 05:00:05 2025 GMT Subject: CN=D771C172157854EC921426F90AE4A36A04B4A383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ee:21:79:3d:f9:c8:7b:02:25:48:1e:98:ad: ea:ef:85:26:1d:d3:6c:6c:7b:d3:64:36:b9:1a:b7: 6d:eb:ed:f2:98:c3:be:52:68:24:22:db:74:56:29: b4:01:1d:98:77:46:91:2d:74:c7:c9:6f:b5:6f:cb: 05:64:39:ec:5d:e8:44:31:44:eb:c5:f2:a2:c7:c6: 2b:aa:5a:9a:5e:39:ee:b1:5c:3d:ca:f6:c9:25:4c: 7a:be:14:f6:0d:78:44:c5:fb:26:4d:bd:8c:c3:a3: ea:0f:85:d6:8d:e7:50:28:8d:0f:32:ae:a3:9a:b9: 69:fa:f8:4d:5f:6f:49:95:77:23:fc:1f:8c:d6:03: bf:c8:6a:0e:1e:0d:a7:22:a8:5d:47:f7:05:9b:db: b3:69:e2:fa:6e:56:8b:16:76:a2:50:f1:5b:4b:74: eb:18:a4:06:05:6e:f4:7e:50:3d:35:eb:82:b4:f3: 83:67:47:69:fc:01:4f:4c:fd:ee:53:63:a6:87:3b: 55:8b:6b:fe:a1:b0:59:66:34:ad:2f:73:ff:c9:2f: c4:97:6c:15:3c:18:1a:b0:d9:be:36:f2:90:2b:cc: ca:2e:98:41:5a:00:75:d5:ac:b3:87:54:a0:04:ca: bb:5e:72:eb:40:8b:49:04:fa:1b:7b:80:13:41:f0: ff:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:71:C1:72:15:78:54:EC:92:14:26:F9:0A:E4:A3:6A:04:B4:A3:83 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.143.0/24 Signature Algorithm: sha256WithRSAEncryption 78:f2:11:db:e6:5f:6d:80:97:61:bb:c7:ce:ba:04:48:e8:3a: a2:09:e9:e0:e3:70:f2:94:9d:76:ab:c5:cb:06:51:43:a5:d6: 76:61:04:a6:56:dc:14:6a:47:ee:be:14:7f:eb:a1:35:4d:70: df:fc:21:54:dc:eb:29:95:ed:ea:95:a8:1a:ed:00:69:3e:d7: 20:ad:b5:7e:14:92:12:26:b5:d5:47:9f:7b:ee:44:0f:15:94: 0d:96:2d:03:3b:7e:04:20:f1:de:ed:57:70:7f:2a:4e:a5:b9: 45:b8:1a:83:a7:25:30:37:bd:6c:fe:ae:02:36:f3:f7:88:3a: 34:34:16:b1:72:9c:43:0e:c7:ff:23:9e:f2:04:97:d1:7b:83: ce:9c:7d:7d:38:4d:c5:b8:a3:04:46:7e:26:c0:7f:19:72:d6: df:37:7a:b4:c2:0a:50:51:12:0b:4c:d7:5c:ea:4c:f3:ba:f3: f3:90:bf:0e:03:5f:97:50:40:82:50:a7:ce:50:46:2f:b1:b6: 2a:99:07:9d:86:00:b4:e9:df:30:bb:fd:a1:1c:b4:84:6f:fe: a5:ff:f8:03:76:98:e5:13:68:99:0c:65:3e:e2:0a:50:bd:ea: 02:c2:c2:cc:b1:7f:6b:bd:c8:b7:4c:af:fd:34:9c:51:71:ee: 0c:2b:dc:27 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUR1HrL/ChB7rJ3iP5xECDhDLVMDwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwNVoX DTI1MTIwOTA1MDAwNVowMzExMC8GA1UEAxMoRDc3MUMxNzIxNTc4NTRFQzkyMTQy NkY5MEFFNEEzNkEwNEI0QTM4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMruIXk9+ch7AiVIHpit6u+FJh3TbGx702Q2uRq3bevt8pjDvlJoJCLbdFYp tAEdmHdGkS10x8lvtW/LBWQ57F3oRDFE68XyosfGK6paml457rFcPcr2ySVMer4U 9g14RMX7Jk29jMOj6g+F1o3nUCiNDzKuo5q5afr4TV9vSZV3I/wfjNYDv8hqDh4N pyKoXUf3BZvbs2ni+m5WixZ2olDxW0t06xikBgVu9H5QPTXrgrTzg2dHafwBT0z9 7lNjpoc7VYtr/qGwWWY0rS9z/8kvxJdsFTwYGrDZvjbykCvMyi6YQVoAddWss4dU oATKu15y60CLSQT6G3uAE0Hw/90CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTXccFy FXhU7JIUJvkK5KNqBLSjgzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTEzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeejzANBgkqhkiG9w0BAQsFAAOCAQEAePIR2+ZfbYCXYbvHzroE SOg6ognp4ONw8pSddqvFywZRQ6XWdmEEplbcFGpH7r4Uf+uhNU1w3/whVNzrKZXt 6pWoGu0AaT7XIK21fhSSEia11Uefe+5EDxWUDZYtAzt+BCDx3u1XcH8qTqW5Rbga g6clMDe9bP6uAjbz94g6NDQWsXKcQw7H/yOe8gSX0XuDzpx9fThNxbijBEZ+JsB/ GXLW3zd6tMIKUFESC0zXXOpM87rz85C/DgNfl1BAglCnzlBGL7G2KpkHnYYAtOnf MLv9oRy0hG/+pf/4A3aY5RNomQxlPuIKUL3qAsLCzLF/a73It0yv/TScUXHuDCvc Jw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:49 2025 by rpki-client