$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141590.roa File: AS141590.roa (raw, json) Hash identifier: PqKA4+RE3E8XEZCQnopdn8L9VcI0cmee4YE8x5FJy4o= Subject key identifier: 6E:EC:2A:EF:F5:2A:2E:CD:A3:CA:67:59:F3:B0:18:70:CF:03:3A:1F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2502028FA4F859F8E3FB42A63BDA4F90A09D541D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141590.roa Signing time: Tue 10 Dec 2024 05:00:13 +0000 ROA not before: Tue 10 Dec 2024 04:55:13 +0000 ROA not after: Tue 09 Dec 2025 05:00:13 +0000 asID: 141590 IP address blocks: 103.158.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:02:02:8f:a4:f8:59:f8:e3:fb:42:a6:3b:da:4f:90:a0:9d:54:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:13 2024 GMT Not After : Dec 9 05:00:13 2025 GMT Subject: CN=6EEC2AEFF52A2ECDA3CA6759F3B01870CF033A1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:32:58:45:8a:44:a8:27:ad:79:b4:2b:12:a6: 33:36:12:68:03:9a:85:8a:8a:29:e6:8b:b0:74:2f: 61:f3:3e:b7:83:b5:ba:e5:bc:90:b6:b8:c2:50:0e: 8f:0c:9e:b0:d9:7b:dd:92:0d:04:9c:5d:f2:31:8a: df:d1:66:d8:e0:a6:5e:78:36:02:c8:f3:87:3d:4d: 9c:46:05:c2:b1:d1:4c:9f:31:89:08:3a:e6:48:43: 6d:c6:36:ae:c7:a4:57:f3:11:01:c1:44:83:62:64: 45:b6:a0:40:bb:17:72:f9:77:37:05:33:04:33:96: 51:4e:d7:58:f4:3a:b2:e9:93:af:a1:97:dc:db:22: 8b:00:fd:a9:5a:87:2d:1b:59:15:e5:44:1e:eb:77: 20:97:ce:f3:e1:35:bf:df:23:c1:de:54:fb:94:97: 06:ab:a1:26:78:07:71:c4:aa:5a:bb:39:0f:11:ef: 2d:7d:ac:d2:1a:8d:98:57:d1:a4:44:13:bf:44:ea: f8:ad:75:39:c7:09:1c:bc:31:94:c7:22:ba:82:5a: cc:45:15:25:42:a5:d9:81:3a:bf:0b:e0:1e:01:f0: 35:61:29:9e:9f:ee:e5:8f:fc:78:19:00:51:28:62: 06:28:e2:cc:b5:32:f8:4d:00:05:f4:0a:f3:ce:41: b5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:EC:2A:EF:F5:2A:2E:CD:A3:CA:67:59:F3:B0:18:70:CF:03:3A:1F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141590.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.22.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:77:cd:bb:d7:74:84:df:bf:1c:32:bc:0d:62:c1:f3:59:c1: ac:d9:02:92:55:64:dc:fc:52:45:1f:25:7b:dd:7c:b2:9b:39: aa:0c:45:70:2c:f3:e6:91:7f:a7:5b:53:3e:3a:28:39:8d:12: 69:fc:9f:6c:1c:49:26:4a:44:0f:fb:a7:ac:d8:a4:cb:ef:61: 93:48:f1:ea:ab:90:29:62:7f:90:60:5b:57:44:d0:a8:52:de: 1c:c3:55:cb:ba:02:2b:c3:5d:b1:bd:be:d8:7f:58:c5:4a:ff: 1a:5f:4e:c7:6e:11:97:b4:26:76:f7:9d:ca:aa:86:ee:c7:45: f5:d5:83:16:fb:04:37:fd:74:4b:64:e3:8f:b9:47:85:fe:1d: c8:3d:a6:b6:e7:01:ea:03:2c:16:db:31:bc:3d:29:49:0d:2a: ed:07:9d:30:2a:69:f0:86:d0:7f:be:1b:08:eb:cc:12:2e:fc: bf:8f:3e:9d:43:72:15:c2:4b:c2:81:60:ce:1d:e5:af:da:1f: 12:74:28:e8:df:2d:d5:7f:36:ac:33:c5:a0:f3:68:c8:47:1d: d4:31:d8:da:92:06:06:5f:f7:2d:92:c6:fc:12:96:13:b6:c0: 38:e0:7b:ef:aa:ff:c8:8d:a1:e3:ba:6f:8d:d6:b1:af:88:bf: a9:5b:55:5f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJQICj6T4Wfjj+0KmO9pPkKCdVB0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxM1oX DTI1MTIwOTA1MDAxM1owMzExMC8GA1UEAxMoNkVFQzJBRUZGNTJBMkVDREEzQ0E2 NzU5RjNCMDE4NzBDRjAzM0ExRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAyWEWKRKgnrXm0KxKmMzYSaAOahYqKKeaLsHQvYfM+t4O1uuW8kLa4wlAO jwyesNl73ZINBJxd8jGK39Fm2OCmXng2Asjzhz1NnEYFwrHRTJ8xiQg65khDbcY2 rsekV/MRAcFEg2JkRbagQLsXcvl3NwUzBDOWUU7XWPQ6sumTr6GX3NsiiwD9qVqH LRtZFeVEHut3IJfO8+E1v98jwd5U+5SXBquhJngHccSqWrs5DxHvLX2s0hqNmFfR pEQTv0Tq+K11OccJHLwxlMciuoJazEUVJUKl2YE6vwvgHgHwNWEpnp/u5Y/8eBkA UShiBijizLUy+E0ABfQK885BtUMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRu7Crv 9SouzaPKZ1nzsBhwzwM6HzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTU5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeeFjANBgkqhkiG9w0BAQsFAAOCAQEAfHfNu9d0hN+/HDK8DWLB 81nBrNkCklVk3PxSRR8le918sps5qgxFcCzz5pF/p1tTPjooOY0SafyfbBxJJkpE D/unrNiky+9hk0jx6quQKWJ/kGBbV0TQqFLeHMNVy7oCK8Ndsb2+2H9YxUr/Gl9O x24Rl7QmdvedyqqG7sdF9dWDFvsEN/10S2Tjj7lHhf4dyD2mtucB6gMsFtsxvD0p SQ0q7QedMCpp8IbQf74bCOvMEi78v48+nUNyFcJLwoFgzh3lr9ofEnQo6N8t1X82 rDPFoPNoyEcd1DHY2pIGBl/3LZLG/BKWE7bAOOB776r/yI2h47pvjdaxr4i/qVtV Xw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:25 2025 by rpki-client