$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141626.roa File: AS141626.roa (raw, json) Hash identifier: DhN3hKao5AWVui66fNfL0gS2YMkyyS+0CxrA+889NO8= Subject key identifier: BA:E3:CD:B0:59:DA:42:67:F8:E5:FA:5A:75:A4:84:3A:1C:F6:C0:1C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 630F6A3F13DA15229E192BEB4AC8562822A6CE36 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141626.roa Signing time: Tue 10 Dec 2024 05:00:26 +0000 ROA not before: Tue 10 Dec 2024 04:55:26 +0000 ROA not after: Tue 09 Dec 2025 05:00:26 +0000 asID: 141626 IP address blocks: 103.161.128.0/24 maxlen: 24 103.169.226.0/24 maxlen: 24 2407:9440::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:0f:6a:3f:13:da:15:22:9e:19:2b:eb:4a:c8:56:28:22:a6:ce:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:26 2024 GMT Not After : Dec 9 05:00:26 2025 GMT Subject: CN=BAE3CDB059DA4267F8E5FA5A75A4843A1CF6C01C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c2:db:54:ba:64:d2:db:51:e1:97:8b:3f:42: 84:33:16:fc:bd:f3:2e:ce:95:59:07:2c:c2:e1:52: f6:49:d1:21:7d:75:a3:1a:27:dd:e9:bd:76:ae:b9: bb:bb:fe:7b:77:7e:79:66:a0:cf:d8:79:c7:54:c1: 1d:f7:9e:68:a0:b7:95:73:4e:0e:91:17:29:87:cc: 08:7d:11:76:cb:73:07:69:45:35:99:10:2a:46:cd: 50:75:30:4c:fd:c6:63:3f:56:03:69:6f:9e:f3:89: 07:84:5f:2c:41:2a:31:e7:ce:8c:40:c7:c0:c4:10: ac:9c:2d:49:90:7f:70:3e:8a:22:91:b6:3a:c2:9a: ad:e8:f7:17:fc:1f:77:80:e2:17:ed:a3:4e:31:ef: 2e:23:dd:f5:2a:23:68:dd:2b:5c:fe:df:37:3d:40: 7c:47:6b:49:47:e1:21:7d:c1:53:1f:b2:8d:e7:62: bb:d7:9c:15:12:f9:0a:be:3a:66:70:ff:7d:e8:cf: 34:5a:74:0e:a0:13:b4:50:46:78:b2:81:18:18:65: f3:5b:49:9a:c6:f3:a9:0f:a8:e1:9e:af:b8:b3:51: 3e:c8:f2:34:2c:08:78:a3:c7:f5:b8:38:f8:b4:09: 49:41:11:b1:82:7f:33:2e:31:36:44:28:d8:36:52: 76:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E3:CD:B0:59:DA:42:67:F8:E5:FA:5A:75:A4:84:3A:1C:F6:C0:1C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141626.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.128.0/24 103.169.226.0/24 IPv6: 2407:9440::/32 Signature Algorithm: sha256WithRSAEncryption 43:bf:e3:99:28:9e:d0:c9:45:d4:69:a3:9a:b1:12:44:97:78: 56:9c:5e:cf:0c:d4:f2:22:02:c2:b7:cc:2e:35:8d:86:0c:59: 09:8a:2f:0c:29:86:ef:2e:b6:1a:b6:7e:6d:92:60:a6:01:7b: d0:d3:2b:c7:b6:7e:ba:7f:44:44:af:c3:c1:74:6b:08:e1:29: d4:e2:40:21:45:a1:d0:ae:27:b1:65:d4:a0:a1:15:9c:74:ec: 3a:26:93:83:10:a5:b7:b2:46:bc:ee:b0:f2:cf:bb:12:15:ae: e3:11:83:14:7b:0d:ac:8c:90:35:79:d3:d9:e7:21:0c:16:e8: f9:2e:1d:5f:b1:c0:2d:01:15:da:bb:6f:0e:f4:19:f0:77:c6: 44:b5:09:01:7f:2d:9f:91:13:4c:47:da:53:1b:f5:3e:78:11: 67:b9:09:55:0e:1b:f7:26:a9:17:84:d2:d6:89:9c:b1:cb:d5: 89:c0:84:3d:60:82:fc:78:12:d7:8a:1b:b6:85:68:fd:94:af: b5:d0:5d:7f:5b:db:ba:ac:e2:f3:b7:21:73:fd:be:71:a7:4e: d5:90:54:bf:d2:53:20:1e:0f:91:ab:8d:55:08:f1:02:8a:0d: ab:d5:e4:b7:a6:6c:0e:48:8a:49:5a:97:f2:08:a0:b8:05:76: 26:1a:e4:70 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUYw9qPxPaFSKeGSvrSshWKCKmzjYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyNloX DTI1MTIwOTA1MDAyNlowMzExMC8GA1UEAxMoQkFFM0NEQjA1OURBNDI2N0Y4RTVG QTVBNzVBNDg0M0ExQ0Y2QzAxQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK3C21S6ZNLbUeGXiz9ChDMW/L3zLs6VWQcswuFS9knRIX11oxon3em9dq65 u7v+e3d+eWagz9h5x1TBHfeeaKC3lXNODpEXKYfMCH0RdstzB2lFNZkQKkbNUHUw TP3GYz9WA2lvnvOJB4RfLEEqMefOjEDHwMQQrJwtSZB/cD6KIpG2OsKarej3F/wf d4DiF+2jTjHvLiPd9SojaN0rXP7fNz1AfEdrSUfhIX3BUx+yjediu9ecFRL5Cr46 ZnD/fejPNFp0DqATtFBGeLKBGBhl81tJmsbzqQ+o4Z6vuLNRPsjyNCwIeKPH9bg4 +LQJSUERsYJ/My4xNkQo2DZSdvsCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBS6482w WdpCZ/jl+lp1pIQ6HPbAHDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTYyNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAGehgAMEAGep4jANBAIAAjAHAwUAJAeUQDANBgkqhkiG9w0BAQsF AAOCAQEAQ7/jmSie0MlF1GmjmrESRJd4VpxezwzU8iICwrfMLjWNhgxZCYovDCmG 7y62GrZ+bZJgpgF70NMrx7Z+un9ERK/DwXRrCOEp1OJAIUWh0K4nsWXUoKEVnHTs OiaTgxClt7JGvO6w8s+7EhWu4xGDFHsNrIyQNXnT2echDBbo+S4dX7HALQEV2rtv DvQZ8HfGRLUJAX8tn5ETTEfaUxv1PngRZ7kJVQ4b9yapF4TS1omcscvVicCEPWCC /HgS14obtoVo/ZSvtdBdf1vbuqzi87chc/2+cadO1ZBUv9JTIB4PkauNVQjxAooN q9Xkt6ZsDkiKSVqX8giguAV2JhrkcA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:27 2025 by rpki-client