$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141641.roa File: AS141641.roa (raw, json) Hash identifier: kXiIBqo5VhEFNVEMx6wXVr98dcezKhi+sgNZY3CDpto= Subject key identifier: 3B:79:D0:A6:08:6E:23:CA:5D:2A:49:88:86:69:3F:5E:86:7E:7D:AA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3352CE118C7EC78C1F9EE813A9F0DF50E78FC00F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141641.roa Signing time: Fri 11 Aug 2023 07:33:34 +0000 ROA not before: Fri 11 Aug 2023 07:28:34 +0000 ROA not after: Fri 09 Aug 2024 07:33:34 +0000 asID: 141641 IP address blocks: 103.160.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:52:ce:11:8c:7e:c7:8c:1f:9e:e8:13:a9:f0:df:50:e7:8f:c0:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 11 07:28:34 2023 GMT Not After : Aug 9 07:33:34 2024 GMT Subject: CN=3B79D0A6086E23CA5D2A498886693F5E867E7DAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:bb:7d:f2:1f:52:44:59:9d:a2:45:08:73:7e: 97:d4:41:98:36:9c:48:2d:c3:c0:7a:94:50:49:7e: ac:25:95:37:6c:6f:f7:2a:ad:f6:b7:ff:76:d2:6d: 13:2e:e4:96:5c:98:8f:57:f0:4f:8e:01:64:a3:2b: f9:f7:67:9f:f8:2b:2c:8a:2d:f0:68:07:d3:6c:04: 21:9f:62:9c:af:15:66:70:31:61:9b:4a:78:c2:e9: 0b:54:4f:e1:6c:b5:85:53:4a:89:ff:b0:08:92:7f: 96:22:8c:5c:83:1a:2f:28:1f:ea:c6:59:9a:92:61: e6:28:72:3f:ab:3b:e6:b1:7a:35:94:a1:8a:c1:44: 9b:d6:51:a0:80:cc:bc:e4:62:35:ed:f9:f6:28:c5: 8d:6f:d9:75:71:3d:b9:e8:80:92:83:d6:37:02:db: ad:fa:25:bf:ee:19:7d:a0:89:8d:95:7d:ed:7e:16: 92:2d:10:69:18:2c:46:b3:5a:c4:e1:e8:54:e3:de: 22:97:20:d9:5b:fc:4c:76:c0:65:5c:84:ba:c2:c0: bb:c3:70:5f:27:68:d9:de:af:6a:17:7d:11:8d:63: 31:1f:24:af:46:39:39:df:5d:e9:2b:b3:fb:1a:fb: 53:8d:13:8c:32:92:08:ea:9a:31:57:e0:32:23:52: 22:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:79:D0:A6:08:6E:23:CA:5D:2A:49:88:86:69:3F:5E:86:7E:7D:AA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141641.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.118.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:5b:01:f9:8a:55:c2:5a:ec:02:e9:f8:ae:51:ff:d2:c6:6c: 25:3b:49:41:76:79:5a:75:c4:15:be:c9:df:39:6b:90:21:31: e2:28:9d:fb:1e:ad:4c:e4:14:0e:b4:39:5a:c9:05:1e:35:0c: f6:55:10:67:74:18:cd:30:89:5d:f0:55:43:1d:ec:2b:1e:05: b0:b4:97:8b:04:b4:3b:36:36:85:af:8d:8e:19:5b:6a:9f:95: 88:2c:21:f5:11:3c:10:76:93:96:0b:86:00:4d:bd:f0:a7:6a: 67:1f:a4:e4:86:30:50:5d:2c:a8:12:8f:f5:a9:e6:27:01:ee: 5b:5b:37:8b:9f:f4:51:a3:b9:b2:07:2e:91:b4:fa:17:04:73: 79:82:d8:ff:ec:bd:4a:ab:f4:3b:17:cd:c7:2c:f4:e7:d9:9f: 17:21:42:87:f2:d1:44:d3:1d:34:0e:33:46:36:02:19:e1:f9: 08:3c:6a:88:f8:63:07:59:7b:14:0d:f8:04:86:5b:53:75:ce: 18:ca:57:c9:81:b2:c9:07:f9:23:7e:7f:56:29:e0:ef:f5:96: 11:02:79:e3:0c:b0:5a:3b:a0:b7:d7:76:57:d5:66:40:f8:29: c5:1f:04:64:f4:38:e5:d2:47:4d:2c:8a:3c:e6:cb:99:17:4e: 3d:db:e1:44 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUM1LOEYx+x4wfnugTqfDfUOePwA8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgxMTA3MjgzNFoX DTI0MDgwOTA3MzMzNFowMzExMC8GA1UEAxMoM0I3OUQwQTYwODZFMjNDQTVEMkE0 OTg4ODY2OTNGNUU4NjdFN0RBQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOm7ffIfUkRZnaJFCHN+l9RBmDacSC3DwHqUUEl+rCWVN2xv9yqt9rf/dtJt Ey7kllyYj1fwT44BZKMr+fdnn/grLIot8GgH02wEIZ9inK8VZnAxYZtKeMLpC1RP 4Wy1hVNKif+wCJJ/liKMXIMaLygf6sZZmpJh5ihyP6s75rF6NZShisFEm9ZRoIDM vORiNe359ijFjW/ZdXE9ueiAkoPWNwLbrfolv+4ZfaCJjZV97X4Wki0QaRgsRrNa xOHoVOPeIpcg2Vv8THbAZVyEusLAu8NwXydo2d6vahd9EY1jMR8kr0Y5Od9d6Suz +xr7U40TjDKSCOqaMVfgMiNSIi0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ7edCm CG4jyl0qSYiGaT9ehn59qjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY0MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGegdjANBgkqhkiG9w0BAQsFAAOCAQEAC1sB+YpVwlrsAun4rlH/ 0sZsJTtJQXZ5WnXEFb7J3zlrkCEx4iid+x6tTOQUDrQ5WskFHjUM9lUQZ3QYzTCJ XfBVQx3sKx4FsLSXiwS0OzY2ha+Njhlbap+ViCwh9RE8EHaTlguGAE298KdqZx+k 5IYwUF0sqBKP9anmJwHuW1s3i5/0UaO5sgcukbT6FwRzeYLY/+y9Sqv0OxfNxyz0 59mfFyFCh/LRRNMdNA4zRjYCGeH5CDxqiPhjB1l7FA34BIZbU3XOGMpXyYGyyQf5 I35/Ving7/WWEQJ54wywWjugt9d2V9VmQPgpxR8EZPQ45dJHTSyKPObLmRdOPdvh RA== -----END CERTIFICATE-----Generated at Wed May 8 10:06:53 2024 by rpki-client on console-ams.rpki-client.org