$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141643.roa File: AS141643.roa (raw, json) Hash identifier: 1nFFHNbkxg8rlB2r2cs/mVZvOqR2RsOMf04BRiAyZUA= Subject key identifier: 88:5E:96:74:38:A2:78:CE:6C:F1:B0:DF:F1:71:C3:F8:8A:C0:F9:3A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 32EEC5DBBDD71F02EA6ED7F14B5E7DF934AE8209 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141643.roa Signing time: Tue 09 Jan 2024 04:00:23 +0000 ROA not before: Tue 09 Jan 2024 03:55:23 +0000 ROA not after: Tue 07 Jan 2025 04:00:23 +0000 asID: 141643 IP address blocks: 103.162.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ee:c5:db:bd:d7:1f:02:ea:6e:d7:f1:4b:5e:7d:f9:34:ae:82:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:23 2024 GMT Not After : Jan 7 04:00:23 2025 GMT Subject: CN=885E967438A278CE6CF1B0DFF171C3F88AC0F93A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:af:ac:5d:8d:50:02:10:0b:5c:f1:69:ec:a8: 49:d2:30:bf:a4:15:ee:c7:d0:54:c8:d8:52:93:c3: ca:2b:1e:c2:28:02:c8:19:db:14:a5:3c:e2:11:df: ce:21:e3:1b:78:3e:53:93:9f:6f:a5:da:b4:89:18: d3:fe:47:3e:4c:c2:fb:03:31:c2:2a:29:86:8c:44: bc:64:5d:58:c6:6e:00:a0:2e:eb:07:c7:10:98:82: ce:f6:7e:a9:54:db:78:b5:a4:d1:a5:79:95:cc:21: 7c:89:85:60:df:83:58:d9:1c:dd:b6:84:e5:07:d8: 44:8f:c0:81:c0:5f:6d:59:05:fb:84:25:f5:75:48: f5:af:f8:89:35:a3:ee:da:e3:fe:89:c1:50:7d:1d: 54:0c:3b:80:ba:b0:89:21:c6:b2:86:a2:80:eb:3b: f2:32:11:14:4a:94:1b:69:f1:dd:0b:fd:a4:de:56: c4:1d:ae:d8:ae:89:e2:e8:4e:19:02:b6:8f:62:98: dc:1b:05:59:65:e9:6b:b7:33:53:85:4a:16:fa:60: e2:f0:ba:c6:60:ac:da:b8:04:97:48:1b:42:a3:64: b0:72:52:81:91:70:6f:07:84:46:66:67:b5:b2:f8: ca:5c:c0:ff:03:72:dc:27:70:f2:b6:2e:c0:25:16: 37:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:5E:96:74:38:A2:78:CE:6C:F1:B0:DF:F1:71:C3:F8:8A:C0:F9:3A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141643.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.68.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:6f:7a:9f:e5:74:66:07:5c:a5:20:e7:a9:d2:5d:f9:da:aa: 74:6e:f6:8b:9f:ba:5d:79:45:e3:0f:33:54:af:a0:3d:63:ae: 7b:89:86:f8:f6:0d:02:1e:d8:39:a4:c4:50:81:1c:a4:0d:aa: 01:25:62:cc:94:2a:be:da:ea:82:3a:51:4c:e5:93:64:56:4f: c0:4b:85:b3:ef:cf:bd:4f:a9:ab:bc:1d:fa:10:be:23:bd:98: c2:86:6d:bd:a2:63:3f:a2:61:05:51:b2:35:bf:e6:0c:3d:06: 94:68:e0:04:4b:4a:60:c8:6e:c3:b6:0a:bd:7a:ad:b7:1c:35: d5:3c:8c:9d:85:ef:d8:3b:f7:b7:d1:e3:5f:b4:37:24:4b:86: 58:e0:65:ed:f1:88:34:96:53:4e:70:af:08:e3:73:cf:74:e4: 18:86:cd:69:0e:ff:ef:2b:53:a4:95:5b:b1:a0:b1:1e:c4:21: 42:d3:5e:3d:38:48:77:db:74:25:5a:3f:99:75:83:5a:83:93: 5d:ba:a5:2f:72:88:d4:4b:64:7b:f6:bd:ef:46:af:96:d1:d5: c6:85:18:a0:c7:29:74:83:a4:59:10:f8:48:b6:db:f0:98:3f: ef:52:a8:4c:ca:8b:a8:db:d0:98:3c:37:14:92:ab:cd:6e:af: 5c:71:3d:a7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMu7F273XHwLqbtfxS159+TSuggkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyM1oX DTI1MDEwNzA0MDAyM1owMzExMC8GA1UEAxMoODg1RTk2NzQzOEEyNzhDRTZDRjFC MERGRjE3MUMzRjg4QUMwRjkzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMivrF2NUAIQC1zxaeyoSdIwv6QV7sfQVMjYUpPDyisewigCyBnbFKU84hHf ziHjG3g+U5Ofb6XatIkY0/5HPkzC+wMxwiophoxEvGRdWMZuAKAu6wfHEJiCzvZ+ qVTbeLWk0aV5lcwhfImFYN+DWNkc3baE5QfYRI/AgcBfbVkF+4Ql9XVI9a/4iTWj 7trj/onBUH0dVAw7gLqwiSHGsoaigOs78jIRFEqUG2nx3Qv9pN5WxB2u2K6J4uhO GQK2j2KY3BsFWWXpa7czU4VKFvpg4vC6xmCs2rgEl0gbQqNksHJSgZFwbweERmZn tbL4ylzA/wNy3Cdw8rYuwCUWN2sCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSIXpZ0 OKJ4zmzxsN/xccP4isD5OjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY0My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeiRDANBgkqhkiG9w0BAQsFAAOCAQEAfm96n+V0ZgdcpSDnqdJd +dqqdG72i5+6XXlF4w8zVK+gPWOue4mG+PYNAh7YOaTEUIEcpA2qASVizJQqvtrq gjpRTOWTZFZPwEuFs+/PvU+pq7wd+hC+I72YwoZtvaJjP6JhBVGyNb/mDD0GlGjg BEtKYMhuw7YKvXqttxw11TyMnYXv2Dv3t9HjX7Q3JEuGWOBl7fGINJZTTnCvCONz z3TkGIbNaQ7/7ytTpJVbsaCxHsQhQtNePThId9t0JVo/mXWDWoOTXbqlL3KI1Etk e/a970avltHVxoUYoMcpdIOkWRD4SLbb8Jg/71KoTMqLqNvQmDw3FJKrzW6vXHE9 pw== -----END CERTIFICATE-----Generated at Thu May 9 00:29:15 2024 by rpki-client on console-ams.rpki-client.org