$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141591.roa File: AS141591.roa (raw, json) Hash identifier: aKgxBLVDXc4c0riaQEp86wzPcqwLqqcPs/RNpAYF/LE= Subject key identifier: 59:55:C2:86:90:46:78:C1:4F:32:9D:78:98:7A:1E:60:2D:43:95:35 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 307634D889BF825FCFA193DEF20AC2ECE8F05222 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141591.roa Signing time: Thu 28 Dec 2023 04:00:00 +0000 ROA not before: Thu 28 Dec 2023 03:55:00 +0000 ROA not after: Thu 26 Dec 2024 04:00:00 +0000 asID: 141591 IP address blocks: 103.159.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:76:34:d8:89:bf:82:5f:cf:a1:93:de:f2:0a:c2:ec:e8:f0:52:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 28 03:55:00 2023 GMT Not After : Dec 26 04:00:00 2024 GMT Subject: CN=5955C286904678C14F329D78987A1E602D439535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3c:32:2b:21:93:3b:13:50:3d:f2:b9:c5:e8: f0:65:15:3d:db:df:cb:08:48:f2:cf:08:be:a2:a5: e5:65:92:bc:9d:d5:91:c6:ef:e1:fb:29:31:1f:d0: d6:9a:2e:ec:c2:b4:b1:d5:68:e9:92:83:69:64:f6: f1:e2:70:20:f4:4b:df:14:94:7a:cc:2d:e7:00:f5: f0:1a:5a:32:15:57:6d:1c:b9:c3:0f:4a:62:d9:1d: e7:c4:15:bf:c8:7b:e1:c5:83:39:32:57:9a:ee:be: 33:a1:c7:0d:76:a3:3e:f6:42:07:c7:07:8d:a8:bf: 19:69:38:ab:00:29:65:e5:d1:c1:30:74:bc:16:4f: ff:71:f4:c8:b8:40:a3:a6:dd:c6:85:f2:06:64:bc: 42:fd:ed:36:dd:e0:af:76:b4:a3:1a:7f:c9:39:1f: 13:16:e1:00:23:00:a7:f4:91:5e:40:2a:fa:f8:35: 4c:54:22:bc:3a:db:de:90:fc:a6:31:92:88:a1:7e: 3f:d4:d6:0d:89:ff:54:e8:cd:13:ba:0b:50:a7:d4: 2c:35:5d:37:98:ac:5f:d9:8b:16:e0:fb:b4:64:0a: 03:52:6c:c0:6e:55:94:ca:51:49:7a:eb:f7:e2:33: 83:2c:b8:61:cc:26:38:05:77:1b:2d:2c:7b:3f:73: 27:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:55:C2:86:90:46:78:C1:4F:32:9D:78:98:7A:1E:60:2D:43:95:35 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141591.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.62.0/23 Signature Algorithm: sha256WithRSAEncryption 73:a6:28:27:e8:11:85:e5:cf:c1:2f:08:b3:73:a6:b9:db:46: 98:8c:31:77:76:ac:7b:f8:3f:6f:68:40:e3:8d:f5:2a:05:80: e8:f1:73:81:f9:33:19:83:09:a2:05:2f:60:c6:49:ab:30:1d: 5f:66:be:39:4c:5e:56:d3:04:2f:94:da:cb:50:03:35:ba:cf: 91:23:9e:c0:80:a7:a6:68:30:b5:38:59:7b:35:62:b0:42:93: 20:3c:e5:69:6d:5a:48:35:5e:5e:ae:de:9e:6a:fe:64:75:3d: ec:18:d9:53:d0:6a:a4:73:d7:8f:b0:c1:98:2d:58:85:70:92: 47:29:80:af:21:68:ce:9b:2e:77:33:d5:5e:7c:6f:0f:cb:6a: 3b:e7:6d:b6:6e:3a:76:f8:fe:6b:5e:99:e5:59:05:f0:f5:c8: 2b:5f:87:e0:03:fa:52:5e:89:be:f7:2a:48:29:79:c0:97:57: 17:84:c3:54:e1:46:eb:42:0f:6a:0b:39:29:47:54:a0:10:b4: 90:be:a9:2e:12:a0:52:c0:99:1c:73:84:5c:f1:65:53:0c:3b: 84:52:24:63:c1:32:32:de:1e:ea:7f:d5:b1:8d:d4:58:0c:9d: d2:db:bb:09:ca:f9:ea:68:1a:94:3b:87:9b:df:ee:5e:75:7c: ac:50:5d:50 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMHY02Im/gl/PoZPe8grC7OjwUiIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIyODAzNTUwMFoX DTI0MTIyNjA0MDAwMFowMzExMC8GA1UEAxMoNTk1NUMyODY5MDQ2NzhDMTRGMzI5 RDc4OTg3QTFFNjAyRDQzOTUzNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALI8MishkzsTUD3yucXo8GUVPdvfywhI8s8IvqKl5WWSvJ3Vkcbv4fspMR/Q 1pou7MK0sdVo6ZKDaWT28eJwIPRL3xSUeswt5wD18BpaMhVXbRy5ww9KYtkd58QV v8h74cWDOTJXmu6+M6HHDXajPvZCB8cHjai/GWk4qwApZeXRwTB0vBZP/3H0yLhA o6bdxoXyBmS8Qv3tNt3gr3a0oxp/yTkfExbhACMAp/SRXkAq+vg1TFQivDrb3pD8 pjGSiKF+P9TWDYn/VOjNE7oLUKfULDVdN5isX9mLFuD7tGQKA1JswG5VlMpRSXrr 9+Izgyy4YcwmOAV3Gy0sez9zJ1UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRZVcKG kEZ4wU8ynXiYeh5gLUOVNTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTU5MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWefPjANBgkqhkiG9w0BAQsFAAOCAQEAc6YoJ+gRheXPwS8Is3Om udtGmIwxd3ase/g/b2hA4431KgWA6PFzgfkzGYMJogUvYMZJqzAdX2a+OUxeVtME L5Tay1ADNbrPkSOewICnpmgwtThZezVisEKTIDzlaW1aSDVeXq7enmr+ZHU97BjZ U9BqpHPXj7DBmC1YhXCSRymAryFozpsudzPVXnxvD8tqO+dttm46dvj+a16Z5VkF 8PXIK1+H4AP6Ul6JvvcqSCl5wJdXF4TDVOFG60IPags5KUdUoBC0kL6pLhKgUsCZ HHOEXPFlUww7hFIkY8EyMt4e6n/VsY3UWAyd0tu7Ccr56mgalDuHm9/uXnV8rFBd UA== -----END CERTIFICATE-----Generated at Wed May 8 14:59:56 2024 by rpki-client on console-ams.rpki-client.org