$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141576.roa File: AS141576.roa (raw, json) Hash identifier: 3RqvIvh/cSpu8s9SwddcuWXF+FHIXoR1DBR6A2I89oU= Subject key identifier: ED:DD:F4:AB:51:E6:BD:F7:D5:D7:E0:DA:FF:7C:56:2E:38:0D:0B:7A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 251C8108CA3CD227E07F180789CB170D453F819E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141576.roa Signing time: Tue 09 Jan 2024 04:00:05 +0000 ROA not before: Tue 09 Jan 2024 03:55:05 +0000 ROA not after: Tue 07 Jan 2025 04:00:05 +0000 asID: 141576 IP address blocks: 103.160.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:1c:81:08:ca:3c:d2:27:e0:7f:18:07:89:cb:17:0d:45:3f:81:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:05 2024 GMT Not After : Jan 7 04:00:05 2025 GMT Subject: CN=EDDDF4AB51E6BDF7D5D7E0DAFF7C562E380D0B7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:dc:b6:a1:e4:f1:06:30:d8:fc:d9:62:b9:ca: 79:e3:d1:59:ed:59:ec:90:75:e5:6a:84:30:2e:1e: 55:ed:d2:ad:82:1d:ba:64:12:55:b0:96:97:84:da: 93:b0:8c:36:08:7a:7f:b7:eb:d8:6d:d4:eb:d7:af: 28:2b:5f:77:86:7e:f8:df:3b:be:cd:e2:2f:ba:5b: b6:c5:87:f9:c3:80:5f:a7:5b:e5:47:d3:9a:fe:0c: db:3b:8b:c7:63:38:82:65:ae:f7:b5:d8:b5:a9:41: 72:32:f7:0b:b7:17:22:c8:da:47:a9:4e:e2:cc:b0: d5:51:6e:38:85:67:cc:de:e7:18:09:29:b8:a7:16: 90:e6:56:f2:37:15:2b:ef:eb:5e:79:3f:dd:f2:a2: 2e:97:c6:56:7d:52:22:3b:01:97:5f:e0:c3:ff:8a: 7b:dc:81:db:6e:73:0b:62:49:a0:c7:f7:94:18:5a: 71:40:d0:ce:48:fa:f5:4c:84:91:c5:d1:ce:9f:fd: 96:13:38:50:23:c6:f3:00:f7:8d:3d:e2:4b:02:fa: 3e:9a:c2:61:8d:22:a1:32:84:33:13:c1:99:00:56: 19:45:9b:8f:8e:fc:2b:e1:a8:53:b7:72:41:93:9f: 80:34:69:be:db:b2:d5:9d:62:9e:14:d9:88:c3:8e: 49:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:DD:F4:AB:51:E6:BD:F7:D5:D7:E0:DA:FF:7C:56:2E:38:0D:0B:7A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141576.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.147.0/24 Signature Algorithm: sha256WithRSAEncryption 79:01:34:f9:f6:8b:40:92:32:2f:bb:17:14:c7:c2:60:1e:48: 14:81:c4:8e:cc:e6:d6:85:7d:28:4b:a6:fd:82:82:83:c6:c8: 3e:b2:9b:d7:95:04:0b:35:6d:70:00:5b:97:c3:c8:49:0a:15: a9:2c:5d:d7:c8:db:fe:35:0f:00:07:7e:92:d9:a2:e6:ac:72: 66:c5:32:db:53:29:38:82:d4:43:b2:28:69:e7:3f:b5:f8:2c: 38:f4:7b:54:c0:3e:a8:93:ec:ce:ef:4c:4f:05:0f:63:e8:3d: cd:9b:fa:e7:5a:df:6a:68:aa:a6:34:10:00:28:9d:29:17:68: 73:98:1f:e1:13:87:51:06:69:5d:af:36:4d:8b:53:ba:85:89: ad:7f:6c:56:55:1b:c6:8e:82:49:91:dd:f2:47:be:86:26:d5: fd:20:04:68:f0:b7:bb:79:4f:11:3c:06:ec:30:a6:92:44:cc: 98:98:25:f2:8b:f5:97:ab:4c:2d:8c:09:66:18:20:99:4a:db: ce:78:36:5a:44:e6:97:65:eb:db:a9:87:6f:9c:46:d8:4b:f8: 78:0d:8f:14:d0:cb:16:0a:20:7d:b2:66:52:8c:09:05:36:1e: 76:a7:79:95:28:5a:ed:84:77:13:7a:19:f6:ab:54:fc:4b:e1: 7c:ee:8e:04 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJRyBCMo80ifgfxgHicsXDUU/gZ4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwNVoX DTI1MDEwNzA0MDAwNVowMzExMC8GA1UEAxMoRUREREY0QUI1MUU2QkRGN0Q1RDdF MERBRkY3QzU2MkUzODBEMEI3QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN/ctqHk8QYw2PzZYrnKeePRWe1Z7JB15WqEMC4eVe3SrYIdumQSVbCWl4Ta k7CMNgh6f7fr2G3U69evKCtfd4Z++N87vs3iL7pbtsWH+cOAX6db5UfTmv4M2zuL x2M4gmWu97XYtalBcjL3C7cXIsjaR6lO4syw1VFuOIVnzN7nGAkpuKcWkOZW8jcV K+/rXnk/3fKiLpfGVn1SIjsBl1/gw/+Ke9yB225zC2JJoMf3lBhacUDQzkj69UyE kcXRzp/9lhM4UCPG8wD3jT3iSwL6PprCYY0ioTKEMxPBmQBWGUWbj478K+GoU7dy QZOfgDRpvtuy1Z1inhTZiMOOSUMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTt3fSr Uea999XX4Nr/fFYuOA0LejAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTU3Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGegkzANBgkqhkiG9w0BAQsFAAOCAQEAeQE0+faLQJIyL7sXFMfC YB5IFIHEjszm1oV9KEum/YKCg8bIPrKb15UECzVtcABbl8PISQoVqSxd18jb/jUP AAd+ktmi5qxyZsUy21MpOILUQ7Ioaec/tfgsOPR7VMA+qJPszu9MTwUPY+g9zZv6 51rfamiqpjQQACidKRdoc5gf4ROHUQZpXa82TYtTuoWJrX9sVlUbxo6CSZHd8ke+ hibV/SAEaPC3u3lPETwG7DCmkkTMmJgl8ov1l6tMLYwJZhggmUrbzng2WkTml2Xr 26mHb5xG2Ev4eA2PFNDLFgogfbJmUowJBTYedqd5lSha7YR3E3oZ9qtU/EvhfO6O BA== -----END CERTIFICATE-----Generated at Fri May 3 03:08:30 2024 by rpki-client on console-ams.rpki-client.org