$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141576.roa File: AS141576.roa (raw, json) Hash identifier: 4Sh+BaOA2PwotjAB0xst7GiSr7V7LrI2V5aIWwoSOww= Subject key identifier: DA:52:FA:50:53:58:F8:E8:E4:CD:F8:95:29:09:68:61:BB:BF:9D:6F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4FD8C9324D26F8EA6BCE6920EB9CB3CB7B7FDA44 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141576.roa Signing time: Tue 10 Dec 2024 05:00:03 +0000 ROA not before: Tue 10 Dec 2024 04:55:03 +0000 ROA not after: Tue 09 Dec 2025 05:00:03 +0000 asID: 141576 IP address blocks: 103.160.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:d8:c9:32:4d:26:f8:ea:6b:ce:69:20:eb:9c:b3:cb:7b:7f:da:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:03 2024 GMT Not After : Dec 9 05:00:03 2025 GMT Subject: CN=DA52FA505358F8E8E4CDF89529096861BBBF9D6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:15:1b:3a:65:e9:10:c0:c3:51:9b:c1:8c:b9: 8f:a3:35:75:5a:1b:ef:a3:07:e2:bb:d1:5b:a3:fc: 6a:61:ab:cb:44:9d:2a:f4:27:39:0a:f0:75:c2:77: 4a:ab:5a:c0:1d:f8:02:d4:4f:11:0d:8e:48:e5:90: 5f:2d:ec:5d:88:26:60:40:ec:f1:df:18:da:86:b3: 6e:59:a6:8c:9f:77:69:21:19:d9:0d:8a:80:1c:e6: 08:74:12:f0:f5:5d:b5:14:b1:90:00:59:87:8a:43: 57:a5:88:ea:2c:84:13:0a:1f:72:cc:f8:34:47:2e: 64:dd:3f:06:3b:c2:1b:70:b9:d6:ed:b8:02:65:eb: 84:dc:1a:52:54:cb:aa:f4:ef:6f:32:08:b6:25:f8: 1b:5a:83:5c:9c:24:ae:ee:8d:ff:fe:e7:6b:b4:79: 39:0d:3f:53:73:aa:e4:2a:33:3e:74:93:42:46:d0: 72:5c:a5:d2:67:30:a7:cb:2a:a9:eb:79:23:56:48: 93:c3:3e:56:6d:6d:f7:15:86:22:5a:28:2b:e9:26: 89:aa:41:1d:04:3e:c6:6f:12:f7:f8:33:68:48:65: 2f:1d:6d:b2:43:2b:81:90:5d:14:2a:9f:14:d9:b3: 09:f1:db:db:4b:37:2c:d3:63:39:f1:93:8b:95:64: 73:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:52:FA:50:53:58:F8:E8:E4:CD:F8:95:29:09:68:61:BB:BF:9D:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141576.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.147.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:3a:1d:e1:71:3c:33:84:5f:d2:45:35:65:0d:42:f3:cc:c6: 03:e7:43:f8:2d:7a:68:1e:41:56:fd:c8:76:fc:3e:40:f8:9b: 46:57:b1:a3:a1:33:11:bf:3e:8d:28:63:43:90:07:ff:e1:a6: f6:73:2e:80:1e:b5:dc:00:41:df:ff:4a:44:2e:8b:b8:4d:3d: c7:d8:cb:fa:15:e9:7a:db:fc:8c:80:bb:e6:e2:b8:3b:c2:4e: 97:31:e3:e5:55:c5:4c:3f:3d:69:b7:ad:06:69:55:32:a4:7f: 35:ec:eb:1a:a8:61:65:fa:57:14:8c:ca:ad:17:2c:98:27:20: d6:9e:b5:49:0b:1c:a6:70:1c:78:83:15:9f:17:10:4b:24:aa: 0c:4f:85:88:77:61:4f:74:a2:fc:3a:b6:04:37:b1:fa:60:88: f8:17:a4:e2:18:27:d0:b7:11:af:de:8a:61:5f:3b:06:47:79: fa:33:f9:bf:75:52:bc:b5:6b:f2:6d:fc:95:98:91:eb:19:86: c8:7f:b9:e3:36:80:da:a0:05:b2:fc:6f:e9:c3:bd:8f:f8:c9: 80:47:30:30:c2:1e:86:d3:0b:eb:fd:94:ba:14:19:d0:bc:0c: 22:e1:c8:c6:92:12:23:8a:8d:7d:b4:38:f1:49:95:47:66:18: 2e:29:d1:1f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUT9jJMk0m+Oprzmkg65yzy3t/2kQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwM1oX DTI1MTIwOTA1MDAwM1owMzExMC8GA1UEAxMoREE1MkZBNTA1MzU4RjhFOEU0Q0RG ODk1MjkwOTY4NjFCQkJGOUQ2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMYVGzpl6RDAw1GbwYy5j6M1dVob76MH4rvRW6P8amGry0SdKvQnOQrwdcJ3 SqtawB34AtRPEQ2OSOWQXy3sXYgmYEDs8d8Y2oazblmmjJ93aSEZ2Q2KgBzmCHQS 8PVdtRSxkABZh4pDV6WI6iyEEwofcsz4NEcuZN0/BjvCG3C51u24AmXrhNwaUlTL qvTvbzIItiX4G1qDXJwkru6N//7na7R5OQ0/U3Oq5CozPnSTQkbQclyl0mcwp8sq qet5I1ZIk8M+Vm1t9xWGIlooK+kmiapBHQQ+xm8S9/gzaEhlLx1tskMrgZBdFCqf FNmzCfHb20s3LNNjOfGTi5Vkc6MCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTaUvpQ U1j46OTN+JUpCWhhu7+dbzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTU3Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGegkzANBgkqhkiG9w0BAQsFAAOCAQEAjzod4XE8M4Rf0kU1ZQ1C 88zGA+dD+C16aB5BVv3Idvw+QPibRlexo6EzEb8+jShjQ5AH/+Gm9nMugB613ABB 3/9KRC6LuE09x9jL+hXpetv8jIC75uK4O8JOlzHj5VXFTD89abetBmlVMqR/Nezr GqhhZfpXFIzKrRcsmCcg1p61SQscpnAceIMVnxcQSySqDE+FiHdhT3Si/Dq2BDex +mCI+Bek4hgn0LcRr96KYV87Bkd5+jP5v3VSvLVr8m38lZiR6xmGyH+54zaA2qAF svxv6cO9j/jJgEcwMMIehtML6/2UuhQZ0LwMIuHIxpISI4qNfbQ48UmVR2YYLinR Hw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:27:03 2025 by rpki-client