$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141641.roa File: AS141641.roa (raw, json) Hash identifier: V2ar1Al/7EGlzPH+F3ErbxnSqtKgjHOxRxPN2eh1WSk= Subject key identifier: AE:0E:F5:72:A0:19:8A:3B:D2:8E:67:C6:16:F6:CF:F8:4B:9D:6B:DF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 01D2C4393AF3D07D69B5A5737E604E8DE4B705F7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141641.roa Signing time: Fri 12 Jul 2024 08:00:00 +0000 ROA not before: Fri 12 Jul 2024 07:55:00 +0000 ROA not after: Fri 11 Jul 2025 08:00:00 +0000 asID: 141641 IP address blocks: 103.160.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:d2:c4:39:3a:f3:d0:7d:69:b5:a5:73:7e:60:4e:8d:e4:b7:05:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 12 07:55:00 2024 GMT Not After : Jul 11 08:00:00 2025 GMT Subject: CN=AE0EF572A0198A3BD28E67C616F6CFF84B9D6BDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:36:a7:2e:e7:08:c4:d7:dc:65:89:80:13:ea: 1c:a1:7d:86:4c:de:f7:c6:c2:91:17:97:2b:b5:82: c2:50:27:a5:9c:42:42:66:83:af:b7:4f:d2:dc:ce: 50:8c:47:c0:4a:b3:61:ac:b7:24:92:1e:52:87:be: e6:ab:09:08:c7:09:ac:c4:19:7c:b6:c7:56:4d:f8: 0f:f2:57:ff:73:ff:d3:ec:27:2a:1e:ac:8d:10:54: a8:d0:dd:08:ce:dd:7a:bb:6f:56:24:04:f6:16:d5: e1:27:93:34:7c:54:27:6b:b8:1f:4f:b7:ff:80:84: 2f:63:48:c4:a1:6d:61:61:88:43:f1:eb:22:aa:e3: 2d:d4:3c:aa:e1:0f:47:7f:e4:22:56:e7:d6:84:69: 76:19:a0:18:7a:c8:e9:5b:7a:73:a0:f9:ec:98:2f: 44:70:ac:b8:3b:94:33:a8:2b:f0:2b:bf:8c:d7:5a: 17:84:15:b1:56:e9:ea:f6:0c:0b:b2:91:04:ca:39: 1e:18:3c:50:8a:12:cc:79:c5:10:36:a8:80:fb:3f: df:57:af:8a:d4:5f:af:2f:5d:9c:0f:7b:b4:73:d8: fe:6a:10:2d:84:30:72:ab:ce:6e:ff:4e:a4:e6:9a: d2:aa:16:60:67:b0:29:b0:cf:8c:19:a5:9c:5d:0a: 1c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:0E:F5:72:A0:19:8A:3B:D2:8E:67:C6:16:F6:CF:F8:4B:9D:6B:DF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141641.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.118.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:ca:22:1d:2f:c5:59:88:0e:ca:0c:76:cc:98:b6:dc:e2:3d: 93:d8:98:5a:c4:88:8d:7e:42:ff:31:31:db:5e:4c:3b:10:6d: 6a:6b:a1:29:f9:34:76:10:ae:0c:aa:b9:83:10:75:1b:dd:b0: ec:fa:f4:f3:38:d0:21:2d:ba:d9:08:b1:8b:bf:c8:48:fd:a5: 7e:6d:84:3b:7c:1a:ef:d0:c0:43:fe:ba:1b:51:01:0e:09:48: 15:8f:d3:5a:02:b4:d6:85:11:c9:fd:83:7b:f8:e3:65:17:a1: 15:6d:85:a6:4e:0d:ee:63:37:d6:a0:b6:1e:ba:0a:4e:6d:16: fc:b2:58:d0:98:f5:44:35:52:be:fd:e8:9e:d2:f5:cb:ef:ac: 82:73:28:19:93:d3:d4:0b:fc:45:4d:76:4d:65:d6:b3:48:c3: 35:a3:ca:bb:09:17:48:cf:0a:75:1b:64:b0:45:08:b9:0d:e5: eb:31:eb:50:d7:47:02:94:dc:d5:56:b5:8e:1d:49:80:2d:39: 43:f3:bf:4c:ee:14:10:c0:5b:e4:63:d0:63:1e:78:49:15:9e: af:bf:0d:2b:87:3d:13:b1:47:4d:06:1e:0e:a8:aa:95:57:be: 90:af:59:56:75:23:b3:5b:61:82:5d:be:ec:3f:1a:6e:70:83: ad:ad:45:fa -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAdLEOTrz0H1ptaVzfmBOjeS3BfcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcxMjA3NTUwMFoX DTI1MDcxMTA4MDAwMFowMzExMC8GA1UEAxMoQUUwRUY1NzJBMDE5OEEzQkQyOEU2 N0M2MTZGNkNGRjg0QjlENkJERjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKA2py7nCMTX3GWJgBPqHKF9hkze98bCkReXK7WCwlAnpZxCQmaDr7dP0tzO UIxHwEqzYay3JJIeUoe+5qsJCMcJrMQZfLbHVk34D/JX/3P/0+wnKh6sjRBUqNDd CM7dertvViQE9hbV4SeTNHxUJ2u4H0+3/4CEL2NIxKFtYWGIQ/HrIqrjLdQ8quEP R3/kIlbn1oRpdhmgGHrI6Vt6c6D57JgvRHCsuDuUM6gr8Cu/jNdaF4QVsVbp6vYM C7KRBMo5Hhg8UIoSzHnFEDaogPs/31evitRfry9dnA97tHPY/moQLYQwcqvObv9O pOaa0qoWYGewKbDPjBmlnF0KHOsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSuDvVy oBmKO9KOZ8YW9s/4S51r3zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY0MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGegdjANBgkqhkiG9w0BAQsFAAOCAQEAG8oiHS/FWYgOygx2zJi2 3OI9k9iYWsSIjX5C/zEx215MOxBtamuhKfk0dhCuDKq5gxB1G92w7Pr08zjQIS26 2Qixi7/ISP2lfm2EO3wa79DAQ/66G1EBDglIFY/TWgK01oURyf2De/jjZRehFW2F pk4N7mM31qC2HroKTm0W/LJY0Jj1RDVSvv3ontL1y++sgnMoGZPT1Av8RU12TWXW s0jDNaPKuwkXSM8KdRtksEUIuQ3l6zHrUNdHApTc1Va1jh1JgC05Q/O/TO4UEMBb 5GPQYx54SRWer78NK4c9E7FHTQYeDqiqlVe+kK9ZVnUjs1thgl2+7D8abnCDra1F +g== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:25 2024 by rpki-client on console-fra.rpki-client.org