$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141140.roa File: AS141140.roa (raw, json) Hash identifier: FJ7Vl/y4jnQ2vg1jCFBaNq4fSwPwd5wVo1ZHmC9fdN4= Subject key identifier: 4A:A0:54:81:1D:18:EA:A9:AF:C6:41:10:29:4D:8A:17:6F:07:98:A7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6652B8D8CF67C9FAC4F9848AC81742DDA1B93776 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141140.roa Signing time: Thu 02 Nov 2023 08:00:00 +0000 ROA not before: Thu 02 Nov 2023 07:55:00 +0000 ROA not after: Thu 31 Oct 2024 08:00:00 +0000 asID: 141140 IP address blocks: 103.93.93.0/24 maxlen: 24 103.159.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:52:b8:d8:cf:67:c9:fa:c4:f9:84:8a:c8:17:42:dd:a1:b9:37:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 2 07:55:00 2023 GMT Not After : Oct 31 08:00:00 2024 GMT Subject: CN=4AA054811D18EAA9AFC64110294D8A176F0798A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5d:12:fd:f9:23:05:90:ad:2e:41:60:f6:dd: a3:6e:83:e1:d9:d9:8b:69:b6:6e:48:9a:1d:26:77: cd:c3:ac:a2:06:83:75:c7:75:03:26:12:f0:aa:b9: 0e:a3:1d:0e:32:ad:69:09:9d:11:26:c2:44:a9:8c: b8:34:66:54:ef:7d:bf:2d:fc:e1:89:91:99:fb:c6: 15:02:c6:b6:85:46:25:11:d9:8e:61:24:8b:ab:2a: e1:f9:22:1e:5e:79:f2:3d:e8:34:b1:3f:81:ce:6c: ad:01:27:0f:d4:d2:05:32:00:bd:33:4b:5c:81:01: 34:77:34:0b:75:0a:42:aa:a4:86:e6:fc:d4:16:eb: 33:2a:b8:2f:07:c4:c3:63:4c:d1:c0:04:09:fb:22: 7a:8d:0e:98:7a:41:38:e9:a7:a2:04:3b:c0:31:e9: 9e:59:c1:89:5f:ed:69:d1:2d:55:4f:da:cd:97:19: 8d:4c:5b:5f:f3:d5:38:6b:cc:0e:1b:df:fb:b6:f1: 09:88:b1:85:0f:64:33:b5:73:3a:a9:e4:9d:e4:97: d9:be:9d:1b:4c:a0:4b:37:d4:ef:17:65:c8:b5:f7: f7:7c:12:f7:23:a9:85:83:31:4f:aa:0b:7f:63:6c: 5c:bb:cb:fd:cf:5a:3d:a6:69:9d:17:bd:de:fe:ab: 8b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:A0:54:81:1D:18:EA:A9:AF:C6:41:10:29:4D:8A:17:6F:07:98:A7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141140.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.93.93.0/24 103.159.96.0/24 Signature Algorithm: sha256WithRSAEncryption 72:c0:95:f1:34:b6:e0:0e:ca:52:c9:4d:a1:32:8c:1a:bc:d1: bc:f2:75:71:fd:38:ee:8c:45:17:48:f2:76:b9:14:1a:6c:64: 53:4b:a5:aa:89:78:5d:9d:fe:a3:16:e4:65:e6:00:95:3d:44: 42:ac:f9:92:ab:7c:d2:98:c2:2f:98:07:ff:52:8e:e2:de:40: f4:c3:c6:85:cb:3f:65:88:5a:88:de:b7:9a:63:80:68:73:18: b5:06:6a:98:ac:5a:a3:f6:42:7b:24:61:85:b9:9b:ad:68:da: 07:50:bd:a9:18:da:d7:33:ca:e7:97:73:4f:4d:86:5b:46:3d: 27:ac:fc:9e:72:7a:0c:e9:55:e5:30:0e:0f:83:3f:9e:f2:99: b7:d8:30:59:e1:0c:20:ac:d5:dc:e8:75:0e:7d:08:22:22:59: 89:fe:e4:95:e1:ec:b2:4f:36:66:2b:e7:ef:9c:1b:5b:c1:e4: ae:f4:c2:80:3d:bf:a1:10:44:7a:03:28:48:82:69:aa:ba:cb: ea:67:8d:03:aa:b2:37:3b:d4:a5:52:3e:02:1a:e0:58:7d:78: 8f:f5:0d:31:4f:90:15:c4:ad:5d:3e:bc:a8:c6:34:13:04:f5: dd:aa:e3:27:01:36:70:e1:95:9d:f0:b9:e6:ba:9f:61:ca:2f: 07:6a:3a:d4 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUZlK42M9nyfrE+YSKyBdC3aG5N3YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwMjA3NTUwMFoX DTI0MTAzMTA4MDAwMFowMzExMC8GA1UEAxMoNEFBMDU0ODExRDE4RUFBOUFGQzY0 MTEwMjk0RDhBMTc2RjA3OThBNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMddEv35IwWQrS5BYPbdo26D4dnZi2m2bkiaHSZ3zcOsogaDdcd1AyYS8Kq5 DqMdDjKtaQmdESbCRKmMuDRmVO99vy384YmRmfvGFQLGtoVGJRHZjmEki6sq4fki Hl558j3oNLE/gc5srQEnD9TSBTIAvTNLXIEBNHc0C3UKQqqkhub81BbrMyq4LwfE w2NM0cAECfsieo0OmHpBOOmnogQ7wDHpnlnBiV/tadEtVU/azZcZjUxbX/PVOGvM Dhvf+7bxCYixhQ9kM7VzOqnkneSX2b6dG0ygSzfU7xdlyLX393wS9yOphYMxT6oL f2NsXLvL/c9aPaZpnRe93v6riysCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBRKoFSB HRjqqa/GQRApTYoXbweYpzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTE0MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGddXQMEAGefYDANBgkqhkiG9w0BAQsFAAOCAQEAcsCV8TS24A7K UslNoTKMGrzRvPJ1cf047oxFF0jydrkUGmxkU0ulqol4XZ3+oxbkZeYAlT1EQqz5 kqt80pjCL5gH/1KO4t5A9MPGhcs/ZYhaiN63mmOAaHMYtQZqmKxao/ZCeyRhhbmb rWjaB1C9qRja1zPK55dzT02GW0Y9J6z8nnJ6DOlV5TAOD4M/nvKZt9gwWeEMIKzV 3Oh1Dn0IIiJZif7kleHssk82Zivn75wbW8HkrvTCgD2/oRBEegMoSIJpqrrL6meN A6qyNzvUpVI+AhrgWH14j/UNMU+QFcStXT68qMY0EwT13arjJwE2cOGVnfC55rqf YcovB2o61A== -----END CERTIFICATE-----Generated at Wed May 8 14:59:55 2024 by rpki-client on console-ams.rpki-client.org