$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141642.roa File: AS141642.roa (raw, json) Hash identifier: PlRnoYrG5gohMZmEf2r6urupXF1nnJf17t2qpIMO9jU= Subject key identifier: F5:E1:A5:06:71:F4:C9:E8:50:2A:6E:AF:B2:7B:38:45:D8:6D:7C:93 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7632A4ADF9E9BDFBCBBB99DAB2F2AD65C0F7A8B0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141642.roa Signing time: Fri 22 Nov 2024 03:00:00 +0000 ROA not before: Fri 22 Nov 2024 02:55:00 +0000 ROA not after: Fri 21 Nov 2025 03:00:00 +0000 asID: 141642 IP address blocks: 36.50.92.0/24 maxlen: 24 36.50.109.0/24 maxlen: 24 103.190.170.0/23 maxlen: 24 103.202.226.0/24 maxlen: 24 2401:13e0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:32:a4:ad:f9:e9:bd:fb:cb:bb:99:da:b2:f2:ad:65:c0:f7:a8:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 22 02:55:00 2024 GMT Not After : Nov 21 03:00:00 2025 GMT Subject: CN=F5E1A50671F4C9E8502A6EAFB27B3845D86D7C93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1c:85:1c:c9:3c:85:5a:91:9e:72:01:0d:dd: 4c:df:7f:57:10:61:c7:ed:1a:44:df:41:be:7c:9a: 77:67:3b:36:a1:98:89:36:b3:2e:0e:89:51:79:30: 12:57:0d:60:53:76:35:07:f3:d2:46:62:b7:fe:01: 2e:14:f0:89:a6:a1:32:a1:c0:fd:94:3e:62:81:28: 3e:da:3d:23:85:a1:05:5a:23:e9:88:f5:4c:64:81: 1e:ba:7a:90:d4:fc:a4:05:99:48:e3:1a:73:26:e6: 26:58:f6:75:2f:4e:5e:58:b7:a4:d4:a7:92:48:2e: 57:cf:ac:72:e5:9d:cb:53:45:21:c5:a6:cc:bd:1f: 78:09:23:12:e1:df:09:ba:7a:8f:b2:66:2b:35:e5: f1:21:09:44:b6:9c:f8:ef:e9:4a:48:d0:1b:f7:5b: b3:f4:8d:f4:d9:13:14:de:9d:f9:37:ec:fb:87:59: 9f:96:46:c5:e3:a5:bd:32:a3:a3:d1:f4:68:47:7d: 0f:c4:29:28:ab:9e:73:8d:cf:55:f7:c2:93:b3:8a: 4a:d1:5c:cf:63:33:4f:37:02:d7:9c:aa:6b:f1:0d: e3:62:e3:eb:92:65:b8:d6:a2:57:3a:2c:91:e0:e5: e3:1d:22:3d:21:6e:de:85:c0:cb:2b:27:ec:20:b7: 68:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E1:A5:06:71:F4:C9:E8:50:2A:6E:AF:B2:7B:38:45:D8:6D:7C:93 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141642.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.92.0/24 36.50.109.0/24 103.190.170.0/23 103.202.226.0/24 IPv6: 2401:13e0::/32 Signature Algorithm: sha256WithRSAEncryption 44:be:21:4c:cf:71:8e:78:46:16:90:a4:0f:a3:0c:a0:98:49: 1c:56:55:a2:bc:9f:93:25:fd:70:52:89:fb:c7:2c:3c:39:e7: fc:56:f1:47:41:17:92:ea:26:2b:e8:12:33:a3:44:da:77:da: e5:77:2e:bd:5d:af:98:6e:78:f0:5b:81:df:51:ea:a6:fd:10: bc:28:74:1d:ed:a2:f6:d1:52:9a:6c:a8:59:dd:06:88:e5:d4: 97:9e:92:9b:95:ef:f4:36:d8:39:75:a6:9d:66:32:d4:ca:b0: 9a:e0:28:4d:93:bb:ef:b6:76:db:45:e7:95:b8:bc:d4:51:a2: fa:f4:d3:39:97:73:85:96:aa:86:1d:6b:a8:bd:26:bb:1e:b0: 63:fc:60:c8:cb:3d:73:20:f8:23:a0:49:30:f7:0b:48:04:5d: bd:c3:c2:38:6d:e4:9b:7c:76:07:0a:e2:a9:1d:aa:c5:f0:4d: f8:2f:b6:a9:ae:2e:e0:e4:7b:72:fb:e4:22:80:42:34:f3:c6: cc:84:9d:7b:de:cf:41:ed:7f:ef:02:6e:e4:98:97:88:70:a7: 75:0f:7f:86:d2:5d:ee:83:3e:36:a9:d8:5f:0e:31:50:2b:3c: a4:32:83:67:2b:37:22:e9:aa:8a:74:6d:a3:67:7c:3f:8a:7d: cc:59:86:2a -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIUdjKkrfnpvfvLu5nasvKtZcD3qLAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyMjAyNTUwMFoX DTI1MTEyMTAzMDAwMFowMzExMC8GA1UEAxMoRjVFMUE1MDY3MUY0QzlFODUwMkE2 RUFGQjI3QjM4NDVEODZEN0M5MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIchRzJPIVakZ5yAQ3dTN9/VxBhx+0aRN9Bvnyad2c7NqGYiTazLg6JUXkw ElcNYFN2NQfz0kZit/4BLhTwiaahMqHA/ZQ+YoEoPto9I4WhBVoj6Yj1TGSBHrp6 kNT8pAWZSOMacybmJlj2dS9OXli3pNSnkkguV8+scuWdy1NFIcWmzL0feAkjEuHf Cbp6j7JmKzXl8SEJRLac+O/pSkjQG/dbs/SN9NkTFN6d+Tfs+4dZn5ZGxeOlvTKj o9H0aEd9D8QpKKuec43PVffCk7OKStFcz2MzTzcC15yqa/EN42Lj65JluNaiVzos keDl4x0iPSFu3oXAyysn7CC3aM0CAwEAAaOCAfEwggHtMB0GA1UdDgQWBBT14aUG cfTJ6FAqbq+yezhF2G18kzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY0Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBABggrBgEFBQcBBwEB/wQxMC8w HgQCAAEwGAMEACQyXAMEACQybQMEAWe+qgMEAGfK4jANBAIAAjAHAwUAJAET4DAN BgkqhkiG9w0BAQsFAAOCAQEARL4hTM9xjnhGFpCkD6MMoJhJHFZVoryfkyX9cFKJ +8csPDnn/FbxR0EXkuomK+gSM6NE2nfa5XcuvV2vmG548FuB31Hqpv0QvCh0He2i 9tFSmmyoWd0GiOXUl56Sm5Xv9DbYOXWmnWYy1MqwmuAoTZO777Z220Xnlbi81FGi +vTTOZdzhZaqhh1rqL0mux6wY/xgyMs9cyD4I6BJMPcLSARdvcPCOG3km3x2Bwri qR2qxfBN+C+2qa4u4OR7cvvkIoBCNPPGzISde97PQe1/7wJu5JiXiHCndQ9/htJd 7oM+NqnYXw4xUCs8pDKDZys3IumqinRto2d8P4p9zFmGKg== -----END CERTIFICATE-----Generated at Sun Feb 16 20:58:21 2025 by rpki-client