$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141131.roa File: AS141131.roa (raw, json) Hash identifier: X0fYTa2ycp/TpIn92FR4kz3iXjMq12CcGuwGGtdb3yg= Subject key identifier: C9:4F:1C:32:F5:6C:2F:7E:BC:FC:12:26:93:1E:71:F9:7C:8B:BE:2B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4EA951D6196F470F50EEE8BCC9DE1404B76ADD30 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141131.roa Signing time: Tue 09 Jan 2024 04:00:08 +0000 ROA not before: Tue 09 Jan 2024 03:55:08 +0000 ROA not after: Tue 07 Jan 2025 04:00:08 +0000 asID: 141131 IP address blocks: 103.158.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:a9:51:d6:19:6f:47:0f:50:ee:e8:bc:c9:de:14:04:b7:6a:dd:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:08 2024 GMT Not After : Jan 7 04:00:08 2025 GMT Subject: CN=C94F1C32F56C2F7EBCFC1226931E71F97C8BBE2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cf:f4:84:b8:71:93:1f:08:c6:c4:ac:6b:4a: a7:b4:e2:cb:68:2b:d6:04:94:4e:69:75:c7:c7:ad: 44:e4:f3:9d:65:0a:d5:05:4f:1f:9d:9d:e6:55:39: 0b:d6:c9:49:6c:05:fd:94:ac:3b:1b:72:c7:9c:46: 13:02:b7:08:1c:f7:e1:0e:95:5b:59:45:09:f3:12: fc:a5:f5:d9:09:eb:82:af:80:1e:ff:e3:55:f9:e9: 19:62:6d:d9:0a:18:ba:42:f3:91:65:75:a9:e3:60: 35:be:4d:8a:1c:7d:89:d9:15:e9:10:1c:10:a1:8a: 2a:d3:d2:98:2e:44:5c:63:56:12:96:43:87:fb:53: a4:19:01:58:43:8a:22:d7:bc:ad:ea:1e:c0:54:df: a9:bd:bc:25:fd:f7:2f:ba:e4:17:9a:fd:6a:c6:4e: de:c5:92:d4:d4:54:b0:67:ca:8b:91:13:50:44:e6: e0:cd:1c:33:fd:25:4d:30:73:02:8d:15:f2:50:d4: 5b:98:bc:6e:dd:ff:cb:ca:4c:9c:59:53:43:b4:90: fb:94:ac:e0:d3:9b:52:b6:32:42:a8:a0:68:a2:8b: 1d:0f:c6:8a:9f:c4:0b:c2:06:33:ca:fc:fa:9e:67: 73:ef:4f:99:e0:18:dc:c7:5c:9d:11:c3:7d:f8:e1: ee:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:4F:1C:32:F5:6C:2F:7E:BC:FC:12:26:93:1E:71:F9:7C:8B:BE:2B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.143.0/24 Signature Algorithm: sha256WithRSAEncryption 13:e2:3b:fb:d2:cb:8e:f6:6a:de:84:0b:cf:f1:0a:9b:e8:cf: 43:6d:45:7e:c3:ba:6f:62:20:64:9e:77:73:a6:f4:d6:cf:f1: 66:98:1e:e4:0b:70:40:53:c8:59:ff:b0:3f:8b:0c:6c:ef:6c: 69:c0:6e:a8:b7:fc:3d:74:5f:f7:24:b0:78:22:5e:95:81:90: 74:63:20:af:06:5f:96:1d:06:f4:ad:9b:96:f7:2f:87:9b:c7: 74:2c:28:cb:0b:f7:41:7a:c4:24:ce:1b:de:48:77:93:8c:2a: 4d:69:05:58:b6:5f:5a:4d:c3:73:e7:5d:4d:72:20:63:65:1d: 76:3e:3f:51:62:a3:8c:8d:14:d6:c5:ca:ad:66:d7:d3:83:b7: dd:48:8c:95:70:02:e5:67:fd:3c:cb:b7:ca:66:82:59:60:6d: f7:4a:27:ff:d1:0b:55:5b:9e:73:9b:24:f9:2f:21:d3:84:7e: 08:6a:e0:04:74:14:8f:f9:e1:8a:e9:3d:f7:a9:fa:22:63:c8: ee:ef:ee:ff:ee:03:b7:ed:88:e4:3b:e6:2e:d0:9d:57:cb:c2: 8e:2b:11:d8:ac:bf:33:f7:69:0c:96:70:68:6c:cc:2b:83:91: 30:de:5c:8e:83:e6:e5:a4:bf:8b:5f:bc:00:a8:6f:24:9c:54: af:4a:8c:91 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTqlR1hlvRw9Q7ui8yd4UBLdq3TAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwOFoX DTI1MDEwNzA0MDAwOFowMzExMC8GA1UEAxMoQzk0RjFDMzJGNTZDMkY3RUJDRkMx MjI2OTMxRTcxRjk3QzhCQkUyQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALnP9IS4cZMfCMbErGtKp7Tiy2gr1gSUTml1x8etROTznWUK1QVPH52d5lU5 C9bJSWwF/ZSsOxtyx5xGEwK3CBz34Q6VW1lFCfMS/KX12Qnrgq+AHv/jVfnpGWJt 2QoYukLzkWV1qeNgNb5Nihx9idkV6RAcEKGKKtPSmC5EXGNWEpZDh/tTpBkBWEOK Ite8reoewFTfqb28Jf33L7rkF5r9asZO3sWS1NRUsGfKi5ETUETm4M0cM/0lTTBz Ao0V8lDUW5i8bt3/y8pMnFlTQ7SQ+5Ss4NObUrYyQqigaKKLHQ/Gip/EC8IGM8r8 +p5nc+9PmeAY3MdcnRHDffjh7nkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTJTxwy 9Wwvfrz8EiaTHnH5fIu+KzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTEzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeejzANBgkqhkiG9w0BAQsFAAOCAQEAE+I7+9LLjvZq3oQLz/EK m+jPQ21FfsO6b2IgZJ53c6b01s/xZpge5AtwQFPIWf+wP4sMbO9sacBuqLf8PXRf 9ySweCJelYGQdGMgrwZflh0G9K2blvcvh5vHdCwoywv3QXrEJM4b3kh3k4wqTWkF WLZfWk3Dc+ddTXIgY2Uddj4/UWKjjI0U1sXKrWbX04O33UiMlXAC5Wf9PMu3ymaC WWBt90on/9ELVVuec5sk+S8h04R+CGrgBHQUj/nhiuk996n6ImPI7u/u/+4Dt+2I 5DvmLtCdV8vCjisR2Ky/M/dpDJZwaGzMK4ORMN5cjoPm5aS/i1+8AKhvJJxUr0qM kQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:27 2024 by rpki-client on console-ams.rpki-client.org