$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141594.roa File: AS141594.roa (raw, json) Hash identifier: a2CIMlYEL/NYV6eJj+YRHGPDMYyS9JjrcdpSTMCmTMA= Subject key identifier: AB:2F:0F:84:61:97:DD:B6:44:0A:44:95:72:DB:B6:BA:72:14:E0:16 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 776EDEC0F61EDAB7E20843522BE7474C04D265D8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141594.roa Signing time: Thu 03 Aug 2023 02:20:34 +0000 ROA not before: Thu 03 Aug 2023 02:15:34 +0000 ROA not after: Thu 01 Aug 2024 02:20:34 +0000 asID: 141594 IP address blocks: 103.160.160.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:6e:de:c0:f6:1e:da:b7:e2:08:43:52:2b:e7:47:4c:04:d2:65:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 3 02:15:34 2023 GMT Not After : Aug 1 02:20:34 2024 GMT Subject: CN=AB2F0F846197DDB6440A449572DBB6BA7214E016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2e:d5:24:b2:09:65:99:25:04:13:3c:50:fc: f5:be:20:fc:9d:01:8a:07:c7:7f:34:8a:d9:19:52: 05:3b:4a:c2:a0:e4:fe:10:b0:38:c4:06:2e:87:b9: f2:ba:8c:44:4d:a0:4e:65:af:29:a8:03:46:90:a9: d3:92:dc:91:61:b2:64:49:d5:b1:f7:3f:ed:ee:6d: f0:d2:8f:0d:ca:00:d5:81:8c:e9:24:df:5d:6d:cc: 36:cf:c2:b5:53:ca:be:10:ce:dd:af:b1:4d:49:2e: ef:e0:12:22:b3:ce:0a:14:f5:42:44:48:62:c3:1f: 04:93:87:63:25:c9:2c:fa:ef:af:e9:87:50:61:52: 9f:ac:f8:4b:0f:91:bf:16:d2:e5:d0:5f:fc:ca:61: c0:0e:4e:94:c6:78:ea:76:57:8d:e8:5e:f4:5d:40: 9d:e2:37:ab:0c:fa:bd:64:c1:6f:25:91:5e:a3:20: ec:e0:28:9d:45:14:22:b3:09:f4:62:bf:28:3e:fc: 59:b5:51:62:d7:b4:05:e4:cc:69:c4:bb:2a:08:b7: d3:a3:08:ab:d8:f5:02:a0:a5:bd:ed:49:9c:89:80: d8:9c:fe:f2:cb:e7:5c:c5:1c:69:08:36:3d:1e:2a: d6:1f:2a:0e:1f:dd:6e:81:63:72:de:b2:b0:76:4a: 79:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:2F:0F:84:61:97:DD:B6:44:0A:44:95:72:DB:B6:BA:72:14:E0:16 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141594.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.160.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:20:60:57:2a:b9:ff:ab:eb:40:9f:59:8f:2d:4c:0f:1d:d8: 64:62:1f:ef:7e:5c:10:85:19:cd:c3:e7:33:45:79:4c:50:af: f9:21:d5:61:d0:a3:3d:a9:05:ea:bc:5b:ca:f6:02:e9:c6:80: 16:f3:09:79:c7:b4:a1:82:ef:a3:45:f0:9d:bb:48:e1:f5:b2: 32:42:12:49:80:cb:38:66:1f:a1:c6:68:46:04:b2:e6:a4:6e: f4:c9:f2:4a:d2:75:f7:4c:e9:ea:e5:2f:c1:1d:1c:cb:0e:ed: b0:21:38:d0:33:4a:11:fd:2b:96:e9:87:1d:08:a5:ba:9e:95: 46:9e:ee:c2:a2:40:92:9a:10:0b:6f:9b:2b:50:fd:3e:44:4d: 7b:d2:24:2b:48:21:0e:80:88:43:be:e2:2e:c2:1f:66:3d:f4: fd:4d:f2:8b:32:a1:01:4d:24:f5:42:49:f8:37:49:25:0d:28: 09:96:33:ca:6d:fa:01:8e:47:46:81:bc:be:1a:7d:7b:ea:b0: 62:59:15:cd:7e:4c:8d:b9:1d:60:d9:54:dd:dc:25:1d:69:e9: f6:72:d9:72:fc:40:09:8c:36:16:d7:2a:b7:8c:21:08:28:7e: 4a:09:16:bf:0e:f0:a3:ea:f0:ae:22:cd:45:49:26:fe:67:b8: e5:4c:ae:c5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUd27ewPYe2rfiCENSK+dHTATSZdgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwMzAyMTUzNFoX DTI0MDgwMTAyMjAzNFowMzExMC8GA1UEAxMoQUIyRjBGODQ2MTk3RERCNjQ0MEE0 NDk1NzJEQkI2QkE3MjE0RTAxNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0u1SSyCWWZJQQTPFD89b4g/J0BigfHfzSK2RlSBTtKwqDk/hCwOMQGLoe5 8rqMRE2gTmWvKagDRpCp05LckWGyZEnVsfc/7e5t8NKPDcoA1YGM6STfXW3MNs/C tVPKvhDO3a+xTUku7+ASIrPOChT1QkRIYsMfBJOHYyXJLPrvr+mHUGFSn6z4Sw+R vxbS5dBf/MphwA5OlMZ46nZXjehe9F1AneI3qwz6vWTBbyWRXqMg7OAonUUUIrMJ 9GK/KD78WbVRYte0BeTMacS7Kgi306MIq9j1AqClve1JnImA2Jz+8svnXMUcaQg2 PR4q1h8qDh/dboFjct6ysHZKea8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSrLw+E YZfdtkQKRJVy27a6chTgFjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTU5NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWegoDANBgkqhkiG9w0BAQsFAAOCAQEAWyBgVyq5/6vrQJ9Zjy1M Dx3YZGIf735cEIUZzcPnM0V5TFCv+SHVYdCjPakF6rxbyvYC6caAFvMJece0oYLv o0XwnbtI4fWyMkISSYDLOGYfocZoRgSy5qRu9MnyStJ190zp6uUvwR0cyw7tsCE4 0DNKEf0rlumHHQilup6VRp7uwqJAkpoQC2+bK1D9PkRNe9IkK0ghDoCIQ77iLsIf Zj30/U3yizKhAU0k9UJJ+DdJJQ0oCZYzym36AY5HRoG8vhp9e+qwYlkVzX5Mjbkd YNlU3dwlHWnp9nLZcvxACYw2Ftcqt4whCCh+SgkWvw7wo+rwriLNRUkm/me45Uyu xQ== -----END CERTIFICATE-----Generated at Wed May 8 22:46:42 2024 by rpki-client on console-ams.rpki-client.org