$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141638.roa File: AS141638.roa (raw, json) Hash identifier: UtVY1fFfy2gJ5s2Zx0H9O7AudyZVEb0gYaxu9GUrhI8= Subject key identifier: D2:4B:9B:40:AF:22:06:4F:82:31:52:CB:A6:6F:0F:E6:C5:74:A1:FF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 64F6F3C2D56829ADCE07ED373541629C1BE647D4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141638.roa Signing time: Tue 10 Dec 2024 05:00:23 +0000 ROA not before: Tue 10 Dec 2024 04:55:23 +0000 ROA not after: Tue 09 Dec 2025 05:00:23 +0000 asID: 141638 IP address blocks: 103.162.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:f6:f3:c2:d5:68:29:ad:ce:07:ed:37:35:41:62:9c:1b:e6:47:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:23 2024 GMT Not After : Dec 9 05:00:23 2025 GMT Subject: CN=D24B9B40AF22064F823152CBA66F0FE6C574A1FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ea:e4:00:72:63:c0:22:71:b0:e4:93:9b:21: 18:0b:92:7b:55:d1:29:7b:f7:1a:9c:9a:16:a5:cf: 51:79:04:65:46:d7:48:70:b0:d0:35:e1:39:5a:61: 30:62:20:a6:5b:62:9e:82:85:45:0f:47:45:18:85: 83:0a:d5:6a:0f:a3:d1:a4:80:b4:50:5a:01:e8:26: fb:40:36:42:1e:cf:41:14:02:17:8e:f3:61:e1:db: fd:25:a5:c4:8b:63:c9:44:8d:f3:70:62:9b:20:a9: bb:a7:ca:83:38:4e:68:19:90:bd:36:44:9b:9b:8e: 5d:df:ba:ce:ce:29:7a:21:0e:af:45:a8:5b:a6:db: 5e:04:c0:80:84:3e:68:c0:72:34:8f:07:1d:e2:dd: ca:49:72:b2:43:c5:27:fc:56:31:84:c8:2a:44:e5: 64:b7:6a:bc:13:e0:25:71:27:a6:f1:74:3c:ae:64: 62:96:cd:03:b1:37:c7:75:38:2e:f5:46:42:29:c3: 0d:84:09:74:a2:9e:7d:8d:5a:2e:2c:fa:18:39:e8: 67:25:bf:97:78:ca:c5:68:dd:af:b7:51:50:51:f3: ac:3f:ae:68:4d:8c:6a:94:67:d4:4c:6a:3b:b7:70: b0:a6:b9:a7:c6:30:23:15:52:47:87:6d:5e:ed:de: 4e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:4B:9B:40:AF:22:06:4F:82:31:52:CB:A6:6F:0F:E6:C5:74:A1:FF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.18.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:a4:82:8e:97:af:c8:aa:3b:92:28:fe:c1:63:99:17:a4:bf: 4c:e4:c6:2a:65:97:0c:8a:f5:93:9d:e1:01:5d:f9:d1:df:99: c1:13:82:ad:eb:ca:19:6b:8d:43:2d:d6:37:f2:3e:02:72:14: 55:20:19:31:b9:cc:cc:76:42:36:13:51:d8:0e:d7:51:84:14: 30:ec:bc:24:a5:57:b8:68:77:6a:ed:ff:c5:4a:08:82:5a:c7: 49:12:b8:44:64:6c:89:14:36:1e:0a:25:cc:95:32:39:08:b0: 34:2d:55:0b:8e:0d:ad:60:50:c1:96:42:04:98:56:16:e7:09: bb:2c:11:32:fe:41:7b:0b:99:f2:be:0d:78:19:04:f2:96:7b: 29:5a:ac:be:ba:b0:bb:0e:2d:c3:3c:06:c1:31:54:4c:50:a7: df:a0:77:0d:52:06:b2:6c:53:1d:3e:ed:57:5e:ba:5b:f2:e9: 63:b8:a1:75:f9:64:8a:7c:ba:55:99:f2:5b:3c:72:f0:85:fe: 9a:ae:8f:1c:40:f8:7a:7f:9d:be:05:ef:ce:f6:9a:20:f0:f1: 81:bd:b8:aa:4d:03:ed:9b:d8:2d:37:b3:99:78:08:b0:af:80: 3a:92:6a:fa:b1:30:65:44:2b:6c:fe:8c:ee:1b:4d:7c:02:cb: 58:dc:e6:77 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZPbzwtVoKa3OB+03NUFinBvmR9QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyM1oX DTI1MTIwOTA1MDAyM1owMzExMC8GA1UEAxMoRDI0QjlCNDBBRjIyMDY0RjgyMzE1 MkNCQTY2RjBGRTZDNTc0QTFGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOHq5AByY8AicbDkk5shGAuSe1XRKXv3GpyaFqXPUXkEZUbXSHCw0DXhOVph MGIgpltinoKFRQ9HRRiFgwrVag+j0aSAtFBaAegm+0A2Qh7PQRQCF47zYeHb/SWl xItjyUSN83BimyCpu6fKgzhOaBmQvTZEm5uOXd+6zs4peiEOr0WoW6bbXgTAgIQ+ aMByNI8HHeLdyklyskPFJ/xWMYTIKkTlZLdqvBPgJXEnpvF0PK5kYpbNA7E3x3U4 LvVGQinDDYQJdKKefY1aLiz6GDnoZyW/l3jKxWjdr7dRUFHzrD+uaE2MapRn1Exq O7dwsKa5p8YwIxVSR4dtXu3eTqkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTSS5tA ryIGT4IxUsumbw/mxXSh/zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTYzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeiEjANBgkqhkiG9w0BAQsFAAOCAQEALaSCjpevyKo7kij+wWOZ F6S/TOTGKmWXDIr1k53hAV350d+ZwROCrevKGWuNQy3WN/I+AnIUVSAZMbnMzHZC NhNR2A7XUYQUMOy8JKVXuGh3au3/xUoIglrHSRK4RGRsiRQ2HgolzJUyOQiwNC1V C44NrWBQwZZCBJhWFucJuywRMv5BewuZ8r4NeBkE8pZ7KVqsvrqwuw4twzwGwTFU TFCn36B3DVIGsmxTHT7tV166W/LpY7ihdflkiny6VZnyWzxy8IX+mq6PHED4en+d vgXvzvaaIPDxgb24qk0D7ZvYLTezmXgIsK+AOpJq+rEwZUQrbP6M7htNfALLWNzm dw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:45 2025 by rpki-client