$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141461.roa File: AS141461.roa (raw, json) Hash identifier: CpVSBTGxRJdOinV2Flz8nMD4uT/UaKq2LOnwSfdsmAY= Subject key identifier: 25:F7:3C:4F:97:15:BD:8D:25:94:60:5C:FB:82:D1:54:9F:7A:24:34 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1BFB95362EED9EEBD3404CF00DB91A0D93B14803 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141461.roa Signing time: Thu 14 Dec 2023 02:54:58 +0000 ROA not before: Thu 14 Dec 2023 02:49:58 +0000 ROA not after: Thu 12 Dec 2024 02:54:58 +0000 asID: 141461 IP address blocks: 202.80.209.0/24 maxlen: 24 202.80.220.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:fb:95:36:2e:ed:9e:eb:d3:40:4c:f0:0d:b9:1a:0d:93:b1:48:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 14 02:49:58 2023 GMT Not After : Dec 12 02:54:58 2024 GMT Subject: CN=25F73C4F9715BD8D2594605CFB82D1549F7A2434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8a:40:c3:8b:5c:8a:ca:1e:a1:c5:bd:27:9f: 5b:cc:04:8e:ba:0c:9d:85:bf:0d:de:02:f5:3e:63: 77:8f:76:d0:80:8f:bd:5f:98:23:8d:7a:84:b3:bc: 33:62:1f:df:1c:32:62:3f:ac:47:13:66:1f:a8:57: 24:31:6e:9c:51:31:24:8c:4a:1e:f2:ad:17:07:09: e1:8b:64:99:17:e4:b5:b2:93:b7:dd:e2:64:97:fb: 58:48:72:b0:20:88:30:2a:51:23:46:fc:91:1f:86: 70:dd:19:73:20:19:18:ab:31:21:ac:49:ed:84:5c: c8:54:29:41:d2:1d:18:91:1e:8e:b2:86:2f:2b:e3: ab:61:4d:df:b4:42:5b:0f:b1:4d:15:ff:2e:a2:75: d9:54:70:49:6a:5a:22:94:79:fd:5f:a6:19:76:b7: 59:a9:2e:f1:05:d0:39:aa:2f:22:ef:c9:e9:55:ad: 9b:c2:fd:4d:b7:36:d1:b6:e5:ed:37:c1:c1:a7:d5: af:2a:53:f9:2e:0e:a2:cc:25:a2:09:2a:3d:ab:b6: 95:18:04:49:73:8d:fb:7f:6c:36:99:d9:11:c0:48: 7c:e6:28:2d:c3:d0:7a:f3:d3:f6:c8:40:96:c4:60: 8e:8c:b6:1e:38:9d:ea:de:ac:03:ad:2c:bb:cf:e0: 04:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F7:3C:4F:97:15:BD:8D:25:94:60:5C:FB:82:D1:54:9F:7A:24:34 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141461.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.80.209.0/24 202.80.220.0/23 Signature Algorithm: sha256WithRSAEncryption 05:95:9f:c5:4b:2a:1d:1b:17:95:cf:e0:8d:89:f1:57:af:7b: e0:df:88:df:35:46:b8:59:3f:e6:c0:36:88:74:4d:0d:52:fe: ef:58:c7:fb:d4:4d:d3:74:c3:6c:fc:16:9e:64:b1:1f:36:f0: 2c:2d:44:e2:b2:32:65:ff:08:bd:0b:12:22:10:9a:e1:8e:e1: a1:60:24:47:35:4b:64:7b:e0:a4:87:31:fb:3b:8a:52:e5:f4: 28:d1:b9:65:f8:f0:0b:1c:a4:c4:d2:1b:91:d4:52:d6:a4:bf: 7a:30:39:e2:fe:36:60:5d:7b:7d:bf:95:6c:c5:2c:e0:5b:09: 19:a4:1d:f4:f3:60:82:5c:41:bd:32:86:ae:e3:d1:09:fa:aa: ff:dd:06:0a:40:f0:0e:99:c4:d8:50:fc:ad:f7:fa:d4:c4:32: 26:d0:71:cd:79:5a:0f:d1:a4:a6:2e:b1:b3:e1:b0:44:bb:e3: 97:b7:32:cb:f6:28:d9:16:e7:0a:a0:19:26:9b:ab:16:12:af: b7:d8:d0:36:54:5a:1b:81:8b:e6:b6:7d:09:4a:36:c4:5c:0f: 96:04:46:90:42:8e:d4:b0:a4:26:8d:01:4e:99:ec:7b:c6:c8: 6d:2b:7e:90:5d:0f:6c:c2:81:34:58:ec:8e:f6:d6:88:66:b6: 39:7e:13:7c -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUG/uVNi7tnuvTQEzwDbkaDZOxSAMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxNDAyNDk1OFoX DTI0MTIxMjAyNTQ1OFowMzExMC8GA1UEAxMoMjVGNzNDNEY5NzE1QkQ4RDI1OTQ2 MDVDRkI4MkQxNTQ5RjdBMjQzNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALeKQMOLXIrKHqHFvSefW8wEjroMnYW/Dd4C9T5jd4920ICPvV+YI416hLO8 M2If3xwyYj+sRxNmH6hXJDFunFExJIxKHvKtFwcJ4YtkmRfktbKTt93iZJf7WEhy sCCIMCpRI0b8kR+GcN0ZcyAZGKsxIaxJ7YRcyFQpQdIdGJEejrKGLyvjq2FN37RC Ww+xTRX/LqJ12VRwSWpaIpR5/V+mGXa3Waku8QXQOaovIu/J6VWtm8L9Tbc20bbl 7TfBwafVrypT+S4OoswlogkqPau2lRgESXON+39sNpnZEcBIfOYoLcPQevPT9shA lsRgjoy2Hjid6t6sA60su8/gBBECAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQl9zxP lxW9jSWUYFz7gtFUn3okNDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTQ2MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAMpQ0QMEAcpQ3DANBgkqhkiG9w0BAQsFAAOCAQEABZWfxUsqHRsX lc/gjYnxV6974N+I3zVGuFk/5sA2iHRNDVL+71jH+9RN03TDbPwWnmSxHzbwLC1E 4rIyZf8IvQsSIhCa4Y7hoWAkRzVLZHvgpIcx+zuKUuX0KNG5ZfjwCxykxNIbkdRS 1qS/ejA54v42YF17fb+VbMUs4FsJGaQd9PNgglxBvTKGruPRCfqq/90GCkDwDpnE 2FD8rff61MQyJtBxzXlaD9Gkpi6xs+GwRLvjl7cyy/Yo2RbnCqAZJpurFhKvt9jQ NlRaG4GL5rZ9CUo2xFwPlgRGkEKO1LCkJo0BTpnse8bIbSt+kF0PbMKBNFjsjvbW iGa2OX4TfA== -----END CERTIFICATE-----Generated at Wed May 8 17:45:22 2024 by rpki-client on console-ams.rpki-client.org