$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141638.roa File: AS141638.roa (raw, json) Hash identifier: xrFtBMeedZc8ANEpQ3BQA83w0gTtzuqgeLQ/ZdYPEiU= Subject key identifier: A3:3A:CC:B1:21:7B:E1:43:49:6C:C2:A4:C7:FC:21:8C:53:3F:E8:86 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2CCC680EE2ACB14D918EEAA6A3B03ED07EE03CF6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141638.roa Signing time: Tue 09 Jan 2024 04:00:27 +0000 ROA not before: Tue 09 Jan 2024 03:55:27 +0000 ROA not after: Tue 07 Jan 2025 04:00:27 +0000 asID: 141638 IP address blocks: 103.162.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:cc:68:0e:e2:ac:b1:4d:91:8e:ea:a6:a3:b0:3e:d0:7e:e0:3c:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:27 2024 GMT Not After : Jan 7 04:00:27 2025 GMT Subject: CN=A33ACCB1217BE143496CC2A4C7FC218C533FE886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:28:6e:23:4b:ac:4c:8b:58:45:2a:80:a5:35: c7:a4:72:f4:96:2d:13:d7:4f:6a:bb:f6:e7:eb:46: 78:bd:7a:c9:e1:cf:97:27:25:86:38:67:72:16:bf: 40:a5:ae:dc:ab:09:db:62:b8:8f:78:31:35:84:cc: e0:38:85:4c:10:13:38:08:fd:c3:4d:1c:3c:c6:06: 65:62:83:a9:56:9e:8d:21:9a:ee:71:26:67:e8:3f: 67:5c:82:25:8d:00:70:7c:bb:74:32:78:e5:28:9f: d4:99:73:d6:42:d1:70:96:d2:c9:ba:93:d5:77:76: 6a:4a:eb:3a:29:93:c1:be:da:fb:bd:61:ce:d8:55: 93:2d:46:b7:e2:a6:57:25:64:ce:45:37:8c:44:78: b4:10:41:41:1d:27:06:ac:51:39:0c:4e:ea:af:b8: 6b:12:43:24:be:72:76:33:7a:25:f3:1a:66:4a:3c: 07:1f:2c:9f:ff:ba:34:31:4e:b5:4d:b8:84:43:21: 02:34:b8:0f:af:b2:a0:4f:2f:b1:43:52:c1:33:6b: 4c:7a:65:5e:ce:88:4f:d1:50:f9:64:5a:db:98:93: 0c:22:aa:a1:53:8d:08:f5:26:c1:05:ab:04:a4:ae: ec:3c:3a:7f:02:63:77:ea:2e:06:a2:32:f5:9e:cd: 64:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:3A:CC:B1:21:7B:E1:43:49:6C:C2:A4:C7:FC:21:8C:53:3F:E8:86 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.18.0/24 Signature Algorithm: sha256WithRSAEncryption 23:a0:cc:1c:fa:c8:ac:7e:20:85:f7:f1:c3:ab:fe:a2:aa:fe: 13:85:98:3e:7d:9a:46:16:71:bc:6b:04:a7:d6:ca:38:4b:36: 3b:bd:0c:cc:75:9f:10:4d:c1:4e:c1:02:b6:55:57:97:90:87: 47:d1:0d:90:63:62:5d:d9:7c:19:70:d1:2d:b3:a1:fd:49:98: d2:31:51:4c:40:81:1e:db:be:23:2c:00:cd:bd:8e:ea:2a:2d: 3a:8a:c7:e8:f5:f6:b2:e3:b0:ab:c2:09:23:32:c0:d2:7c:d4: 96:f5:da:c2:eb:f8:07:27:4d:29:52:d0:b1:c9:80:4d:f5:2f: 30:24:e2:48:90:30:58:08:c8:55:10:06:35:33:71:14:76:d0: c1:6e:9b:7c:21:55:c7:24:57:9f:17:27:ae:ee:4e:da:4c:bf: 6e:52:2d:c4:5c:33:0c:43:52:25:b9:d7:ba:18:2b:92:d3:7e: 6b:f4:ef:85:44:1e:6b:dd:c9:25:e5:02:e8:f1:ba:d7:fe:d6: da:b6:da:08:fb:18:7e:9b:a4:16:f9:9a:71:8a:92:97:ec:8a: 8f:85:70:72:91:43:ef:e7:61:7b:56:79:5d:b0:16:2a:e6:48: 54:56:b9:e1:84:69:41:f9:5f:ce:e7:f0:3c:a3:af:25:15:2b: cd:f5:a7:cb -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULMxoDuKssU2Rjuqmo7A+0H7gPPYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyN1oX DTI1MDEwNzA0MDAyN1owMzExMC8GA1UEAxMoQTMzQUNDQjEyMTdCRTE0MzQ5NkND MkE0QzdGQzIxOEM1MzNGRTg4NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJsobiNLrEyLWEUqgKU1x6Ry9JYtE9dParv25+tGeL16yeHPlyclhjhncha/ QKWu3KsJ22K4j3gxNYTM4DiFTBATOAj9w00cPMYGZWKDqVaejSGa7nEmZ+g/Z1yC JY0AcHy7dDJ45Sif1Jlz1kLRcJbSybqT1Xd2akrrOimTwb7a+71hzthVky1Gt+Km VyVkzkU3jER4tBBBQR0nBqxROQxO6q+4axJDJL5ydjN6JfMaZko8Bx8sn/+6NDFO tU24hEMhAjS4D6+yoE8vsUNSwTNrTHplXs6IT9FQ+WRa25iTDCKqoVONCPUmwQWr BKSu7Dw6fwJjd+ouBqIy9Z7NZHUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSjOsyx IXvhQ0lswqTH/CGMUz/ohjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTYzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeiEjANBgkqhkiG9w0BAQsFAAOCAQEAI6DMHPrIrH4ghffxw6v+ oqr+E4WYPn2aRhZxvGsEp9bKOEs2O70MzHWfEE3BTsECtlVXl5CHR9ENkGNiXdl8 GXDRLbOh/UmY0jFRTECBHtu+IywAzb2O6iotOorH6PX2suOwq8IJIzLA0nzUlvXa wuv4BydNKVLQscmATfUvMCTiSJAwWAjIVRAGNTNxFHbQwW6bfCFVxyRXnxcnru5O 2ky/blItxFwzDENSJbnXuhgrktN+a/TvhUQea93JJeUC6PG61/7W2rbaCPsYfpuk FvmacYqSl+yKj4VwcpFD7+dhe1Z5XbAWKuZIVFa54YRpQflfzufwPKOvJRUrzfWn yw== -----END CERTIFICATE-----Generated at Sat Apr 27 21:40:20 2024 by rpki-client on console-ams.rpki-client.org