$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141594.roa File: AS141594.roa (raw, json) Hash identifier: mR/8g8Tz8ULXDH9778kRwtZzbLgX9icNAXmp49fPqj8= Subject key identifier: 5B:3B:7B:CF:02:27:21:09:AC:1A:51:55:F1:B4:0E:4B:2D:40:08:B1 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 121B64159E96ECFCC46376742D3EE346B4232E96 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141594.roa Signing time: Thu 04 Jul 2024 03:00:00 +0000 ROA not before: Thu 04 Jul 2024 02:55:00 +0000 ROA not after: Thu 03 Jul 2025 03:00:00 +0000 asID: 141594 IP address blocks: 103.160.160.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:1b:64:15:9e:96:ec:fc:c4:63:76:74:2d:3e:e3:46:b4:23:2e:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 4 02:55:00 2024 GMT Not After : Jul 3 03:00:00 2025 GMT Subject: CN=5B3B7BCF02272109AC1A5155F1B40E4B2D4008B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1b:e8:cd:5f:4e:bb:8c:10:81:04:7a:ed:8d: ca:43:32:d6:c9:66:31:e5:2f:73:d8:4b:b9:9b:6e: 6f:89:51:6c:bb:6d:c5:09:34:9b:c5:b8:f1:5d:e2: 2b:9d:81:86:9e:05:83:e8:60:34:bc:e2:9c:07:f1: 0c:49:5d:60:da:c5:c4:39:8d:94:bd:db:de:2b:6a: af:70:cc:11:4d:ed:68:17:29:45:ee:b1:41:42:85: 9c:1c:c9:51:37:49:02:c2:7e:a1:dc:17:68:28:2d: 76:12:c0:e0:cc:db:08:75:46:78:e9:07:8a:bf:c8: c1:48:4d:a2:14:eb:db:1d:6b:1c:8a:44:ae:53:9b: 29:43:b1:4a:04:6e:d5:e2:cc:74:b0:fe:ce:b1:cd: 3c:77:34:41:ae:d2:f0:be:f4:d3:07:fe:fd:50:43: 43:de:c5:40:36:92:b4:c6:8f:f4:8d:36:ec:b5:7d: 3e:ef:85:77:0f:36:b3:e7:01:59:93:0d:a4:58:4a: 6c:62:c3:16:8f:61:17:b6:13:f8:ba:9c:df:41:2e: 93:ee:13:e7:ad:c7:fc:e8:9b:91:12:e8:51:f7:ac: ae:38:52:d5:65:a7:1e:35:f5:6d:57:42:76:37:da: d9:83:a5:ca:f8:19:d6:37:f3:7a:20:88:7a:7f:61: f9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:3B:7B:CF:02:27:21:09:AC:1A:51:55:F1:B4:0E:4B:2D:40:08:B1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141594.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.160.0/23 Signature Algorithm: sha256WithRSAEncryption 29:00:3d:b2:33:69:e1:58:8a:90:e9:7f:23:19:eb:6d:a2:c5: cb:a8:e0:f6:8b:b9:2d:05:19:33:56:51:69:19:46:95:93:1b: ea:d3:69:16:13:d6:61:af:ee:da:af:58:7e:ac:e2:3f:e9:3c: 5b:e7:bd:71:a4:d2:6a:76:4e:34:ed:7b:bd:4c:a3:97:bd:12: 39:87:77:97:ff:ef:3f:3f:9d:b6:ab:28:e2:ef:c1:1e:6c:0b: 6f:8e:a8:ec:90:bc:1e:f2:2e:ca:d3:36:5a:93:1a:78:cf:8d: 1c:93:2e:03:a3:c4:b4:22:2f:3a:d1:b9:5e:b5:71:51:eb:5f: 9e:a8:8e:de:76:a8:d5:0c:2a:d7:7b:33:16:dd:83:e5:e4:b8: b6:f2:b6:ca:1b:5b:fc:26:c1:32:58:41:de:55:11:fd:45:c9: ab:6a:ed:a2:c8:a1:bc:2c:2e:58:d1:92:7b:87:78:1d:2d:4c: e9:93:c3:26:f5:7a:b0:33:00:13:98:e8:83:61:35:96:93:41: fe:38:a9:89:3b:81:f5:05:fd:2b:8d:c7:ff:af:04:a5:6d:fc: c4:ca:0c:62:ac:2b:26:0a:f0:c2:f7:25:a9:f3:b2:94:70:47: 7d:bd:07:e5:3d:4e:6e:e1:e9:e4:2b:85:49:9d:e9:97:11:94: 1c:8c:c3:6a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUEhtkFZ6W7PzEY3Z0LT7jRrQjLpYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwNDAyNTUwMFoX DTI1MDcwMzAzMDAwMFowMzExMC8GA1UEAxMoNUIzQjdCQ0YwMjI3MjEwOUFDMUE1 MTU1RjFCNDBFNEIyRDQwMDhCMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANEb6M1fTruMEIEEeu2NykMy1slmMeUvc9hLuZtub4lRbLttxQk0m8W48V3i K52Bhp4Fg+hgNLzinAfxDEldYNrFxDmNlL3b3itqr3DMEU3taBcpRe6xQUKFnBzJ UTdJAsJ+odwXaCgtdhLA4MzbCHVGeOkHir/IwUhNohTr2x1rHIpErlObKUOxSgRu 1eLMdLD+zrHNPHc0Qa7S8L700wf+/VBDQ97FQDaStMaP9I027LV9Pu+Fdw82s+cB WZMNpFhKbGLDFo9hF7YT+Lqc30Euk+4T563H/OibkRLoUfesrjhS1WWnHjX1bVdC djfa2YOlyvgZ1jfzeiCIen9h+TECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRbO3vP AichCawaUVXxtA5LLUAIsTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTU5NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWegoDANBgkqhkiG9w0BAQsFAAOCAQEAKQA9sjNp4ViKkOl/Ixnr baLFy6jg9ou5LQUZM1ZRaRlGlZMb6tNpFhPWYa/u2q9YfqziP+k8W+e9caTSanZO NO17vUyjl70SOYd3l//vPz+dtqso4u/BHmwLb46o7JC8HvIuytM2WpMaeM+NHJMu A6PEtCIvOtG5XrVxUetfnqiO3nao1Qwq13szFt2D5eS4tvK2yhtb/CbBMlhB3lUR /UXJq2rtosihvCwuWNGSe4d4HS1M6ZPDJvV6sDMAE5jog2E1lpNB/jipiTuB9QX9 K43H/68EpW38xMoMYqwrJgrwwvclqfOylHBHfb0H5T1ObuHp5CuFSZ3plxGUHIzD ag== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:55 2024 by rpki-client on console-fra.rpki-client.org