$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141140.roa File: AS141140.roa (raw, json) Hash identifier: Kg5xf0OElLyfAM3ybxBkhzQkXPjC4OazpShEWrsdaUg= Subject key identifier: F4:38:87:06:3A:18:16:A8:DF:E3:BC:5A:DE:10:21:22:C7:6F:62:C5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 18A261FEBCAB34C864CFFD346E70149D468F7B4F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141140.roa Signing time: Thu 03 Oct 2024 08:00:00 +0000 ROA not before: Thu 03 Oct 2024 07:55:00 +0000 ROA not after: Thu 02 Oct 2025 08:00:00 +0000 asID: 141140 IP address blocks: 103.93.93.0/24 maxlen: 24 103.159.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:a2:61:fe:bc:ab:34:c8:64:cf:fd:34:6e:70:14:9d:46:8f:7b:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 3 07:55:00 2024 GMT Not After : Oct 2 08:00:00 2025 GMT Subject: CN=F43887063A1816A8DFE3BC5ADE102122C76F62C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9e:00:e0:7c:c6:fd:4b:a6:fa:ae:ea:c7:68: 51:36:c9:5f:6f:0f:7b:2a:2f:27:56:3e:4a:8c:84: 5e:29:e8:8b:e4:72:08:44:bb:43:b8:05:06:93:07: 1a:2e:9b:9b:08:5a:12:85:eb:2a:e2:b8:b5:89:65: b0:1b:98:fd:e8:4c:92:29:04:09:52:72:eb:53:ce: 3d:dd:4f:57:9b:4a:08:e9:78:2e:80:13:64:00:2a: 0c:3d:4d:23:7a:1d:12:a4:f2:30:f3:bf:a9:68:e3: ad:af:78:42:a0:77:ce:df:58:fe:f4:32:8c:61:61: 7f:34:7e:e1:f2:b4:42:bb:97:58:95:3d:f5:c9:5f: 08:0c:ef:8b:47:39:00:01:e1:6b:71:ff:6d:99:eb: be:1a:a3:e0:2e:5a:56:ac:ee:ed:90:c3:f1:57:4f: 4b:a7:88:eb:1d:b9:1f:0a:93:e4:8f:f9:d6:a0:f8: c6:a0:f7:34:37:a7:37:c1:04:a2:39:c4:a6:9b:3e: cc:77:3b:e2:81:5a:d3:ca:cf:aa:38:09:a4:7f:2e: ad:6f:5a:6e:c3:55:8f:31:53:15:2e:b0:5f:1f:ce: 46:8d:4a:56:d0:2d:89:35:58:fd:c6:33:c1:67:5e: ce:fa:e8:ae:64:69:0e:a4:0d:81:2b:fa:d7:7f:e8: a2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:38:87:06:3A:18:16:A8:DF:E3:BC:5A:DE:10:21:22:C7:6F:62:C5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141140.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.93.93.0/24 103.159.96.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:34:c6:75:24:6b:91:33:4e:65:50:a2:30:27:ca:5e:5b:54: 82:b7:bb:88:6e:04:08:37:77:6d:af:75:a4:66:6b:a8:2a:bb: 0c:41:79:66:57:bb:c2:83:57:eb:fb:a2:1a:9a:fb:e4:83:49: 59:d6:64:f2:64:79:20:43:a2:fd:e0:3b:47:87:cb:32:18:04: 9c:fc:1a:3c:1f:c3:79:74:57:bc:49:4c:d6:14:f2:2b:20:78: 11:06:60:64:83:e5:37:33:3f:d2:0f:70:7d:00:1f:bd:4c:1c: 16:2d:b6:8b:00:35:bb:c9:bd:b6:83:fa:50:0f:68:48:18:00: 57:b1:4c:e0:97:61:24:66:60:19:90:06:69:5a:ec:4f:3c:aa: a4:ef:6a:e2:f4:53:30:81:3a:bc:43:82:a2:70:1b:41:1a:d3: 16:8d:c3:47:43:1a:01:d0:86:ee:b5:12:5a:40:55:33:8b:7b: 71:79:6c:45:c1:2a:2d:54:0b:81:e7:c5:3e:53:12:6a:4b:fb: 88:29:c2:3a:77:11:75:3d:8c:64:df:b4:7b:f7:ef:eb:19:e6: 0d:ee:20:3c:95:2a:a7:05:b7:29:5a:98:e8:97:36:3e:21:c7: e2:8c:d5:ae:bc:fa:28:2f:21:70:8f:56:47:1e:3b:60:a5:a6: 0a:d0:41:0f -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUGKJh/ryrNMhkz/00bnAUnUaPe08wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwMzA3NTUwMFoX DTI1MTAwMjA4MDAwMFowMzExMC8GA1UEAxMoRjQzODg3MDYzQTE4MTZBOERGRTNC QzVBREUxMDIxMjJDNzZGNjJDNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWeAOB8xv1Lpvqu6sdoUTbJX28PeyovJ1Y+SoyEXinoi+RyCES7Q7gFBpMH Gi6bmwhaEoXrKuK4tYllsBuY/ehMkikECVJy61POPd1PV5tKCOl4LoATZAAqDD1N I3odEqTyMPO/qWjjra94QqB3zt9Y/vQyjGFhfzR+4fK0QruXWJU99clfCAzvi0c5 AAHha3H/bZnrvhqj4C5aVqzu7ZDD8VdPS6eI6x25HwqT5I/51qD4xqD3NDenN8EE ojnEpps+zHc74oFa08rPqjgJpH8urW9absNVjzFTFS6wXx/ORo1KVtAtiTVY/cYz wWdezvrormRpDqQNgSv613/oopsCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBT0OIcG OhgWqN/jvFreECEix29ixTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTE0MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGddXQMEAGefYDANBgkqhkiG9w0BAQsFAAOCAQEAijTGdSRrkTNO ZVCiMCfKXltUgre7iG4ECDd3ba91pGZrqCq7DEF5Zle7woNX6/uiGpr75INJWdZk 8mR5IEOi/eA7R4fLMhgEnPwaPB/DeXRXvElM1hTyKyB4EQZgZIPlNzM/0g9wfQAf vUwcFi22iwA1u8m9toP6UA9oSBgAV7FM4JdhJGZgGZAGaVrsTzyqpO9q4vRTMIE6 vEOConAbQRrTFo3DR0MaAdCG7rUSWkBVM4t7cXlsRcEqLVQLgefFPlMSakv7iCnC OncRdT2MZN+0e/fv6xnmDe4gPJUqpwW3KVqY6Jc2PiHH4ozVrrz6KC8hcI9WRx47 YKWmCtBBDw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:55 2024 by rpki-client on console-fra.rpki-client.org