$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141591.roa File: AS141591.roa (raw, json) Hash identifier: v+iuoMTsM1yscI0PrKJMSn7W+fAOj+trZWtnlxXCxsM= Subject key identifier: E6:96:6D:A0:48:12:85:64:55:58:52:14:61:09:E3:87:B1:83:A1:3E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4CEDB503DC1FE0840FA328F7F6505120997DB3AB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141591.roa Signing time: Thu 28 Nov 2024 04:00:00 +0000 ROA not before: Thu 28 Nov 2024 03:55:00 +0000 ROA not after: Thu 27 Nov 2025 04:00:00 +0000 asID: 141591 IP address blocks: 103.159.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:ed:b5:03:dc:1f:e0:84:0f:a3:28:f7:f6:50:51:20:99:7d:b3:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 28 03:55:00 2024 GMT Not After : Nov 27 04:00:00 2025 GMT Subject: CN=E6966DA048128564555852146109E387B183A13E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4c:c6:3f:c2:55:47:b5:ea:09:59:19:91:16: 15:12:6c:af:63:57:06:37:8b:b1:23:35:38:8f:fb: a3:b9:bb:cc:37:fe:97:70:73:4d:1b:57:5d:a8:48: 44:e7:42:d8:16:46:58:b7:bd:b7:fc:19:ad:6e:51: 8d:5c:f8:ad:63:11:fa:5e:6a:40:e2:50:c3:52:17: 52:cb:f0:bd:a0:5b:9c:6f:a3:d0:02:cf:a4:5f:98: 38:e9:70:52:fd:3e:23:09:24:9c:4a:c7:d5:cd:7a: 79:2c:f5:cb:06:92:da:8c:40:04:29:79:88:68:2e: 87:b2:dd:4c:ab:e0:92:0f:cf:05:a5:9f:6e:74:dc: 61:fa:74:c1:18:af:e2:42:21:92:a3:50:3c:73:98: ae:85:b2:a4:85:cc:7c:76:33:43:78:4e:9a:d5:56: 68:2b:5d:4b:a1:73:b0:27:36:6c:26:0c:df:77:86: 7e:4f:16:29:ad:d7:06:b5:4c:0c:0a:a8:99:ca:8f: c3:28:dd:a7:94:6e:f0:df:6d:db:93:94:a3:87:6e: 48:bd:e3:b9:ad:ad:bf:78:90:e9:55:c0:84:79:6f: 26:e8:ef:ed:e8:bf:5d:7d:97:44:aa:f2:f2:af:ab: 39:b6:8b:87:33:ff:7a:90:1b:a5:58:f3:ed:f3:31: b2:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:96:6D:A0:48:12:85:64:55:58:52:14:61:09:E3:87:B1:83:A1:3E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141591.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.62.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:b4:a1:7c:b3:6e:12:58:85:83:a8:d4:1d:39:2a:04:a5:a3: 33:61:59:26:bf:cf:b4:d4:9e:b9:9d:88:85:c9:b0:fe:7b:4e: 2c:39:90:88:40:dc:05:fb:cb:49:c1:fb:01:dd:f0:20:dc:6e: 04:f4:7c:ff:61:c2:44:aa:ca:34:2e:ea:4e:71:22:1a:18:3b: 29:ad:f8:fe:ab:fe:c0:50:4c:3c:67:c3:48:2b:e7:16:72:05: 18:cb:9c:ed:16:f6:69:25:d0:e2:d9:c5:e5:44:2d:85:a5:55: c8:24:2d:9c:fb:0b:b5:dd:3a:92:80:1e:0b:81:c1:2a:81:a1: 2b:fd:c2:f5:e6:e0:1b:64:52:72:c1:c7:fc:25:32:4e:b1:ce: a3:ca:5c:d1:a9:5b:16:d8:f8:11:dc:62:d4:d0:dd:29:47:3b: 60:2a:08:a8:c8:6b:71:27:3d:f9:7f:88:63:b0:40:bf:58:d3: 76:e3:98:5f:95:8e:9b:8f:ca:23:82:0a:fb:96:8d:66:33:15: ee:6a:8f:9b:69:98:d1:32:fe:7e:d4:fa:51:00:17:a1:ff:ff: 68:99:4a:0d:a5:04:5f:8f:5d:4e:d5:1d:d9:18:bd:7e:99:05: a7:91:27:1f:5c:38:d6:1f:f1:54:6a:13:66:1c:d6:6d:a3:90: aa:32:3c:69 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTO21A9wf4IQPoyj39lBRIJl9s6swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyODAzNTUwMFoX DTI1MTEyNzA0MDAwMFowMzExMC8GA1UEAxMoRTY5NjZEQTA0ODEyODU2NDU1NTg1 MjE0NjEwOUUzODdCMTgzQTEzRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMRMxj/CVUe16glZGZEWFRJsr2NXBjeLsSM1OI/7o7m7zDf+l3BzTRtXXahI ROdC2BZGWLe9t/wZrW5RjVz4rWMR+l5qQOJQw1IXUsvwvaBbnG+j0ALPpF+YOOlw Uv0+IwkknErH1c16eSz1ywaS2oxABCl5iGguh7LdTKvgkg/PBaWfbnTcYfp0wRiv 4kIhkqNQPHOYroWypIXMfHYzQ3hOmtVWaCtdS6FzsCc2bCYM33eGfk8WKa3XBrVM DAqomcqPwyjdp5Ru8N9t25OUo4duSL3jua2tv3iQ6VXAhHlvJujv7ei/XX2XRKry 8q+rObaLhzP/epAbpVjz7fMxspECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTmlm2g SBKFZFVYUhRhCeOHsYOhPjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTU5MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWefPjANBgkqhkiG9w0BAQsFAAOCAQEATbShfLNuEliFg6jUHTkq BKWjM2FZJr/PtNSeuZ2Ihcmw/ntOLDmQiEDcBfvLScH7Ad3wINxuBPR8/2HCRKrK NC7qTnEiGhg7Ka34/qv+wFBMPGfDSCvnFnIFGMuc7Rb2aSXQ4tnF5UQthaVVyCQt nPsLtd06koAeC4HBKoGhK/3C9ebgG2RScsHH/CUyTrHOo8pc0albFtj4Edxi1NDd KUc7YCoIqMhrcSc9+X+IY7BAv1jTduOYX5WOm4/KI4IK+5aNZjMV7mqPm2mY0TL+ ftT6UQAXof//aJlKDaUEX49dTtUd2Ri9fpkFp5EnH1w41h/xVGoTZhzWbaOQqjI8 aQ== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:19 2025 by rpki-client