$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141643.roa File: AS141643.roa (raw, json) Hash identifier: 969etOtbFxwaNpbFg0yqvYpOHVWfnE4qT4NRxVEx2Qs= Subject key identifier: FA:77:D5:CE:64:3F:AD:2D:8B:E6:E0:47:B0:91:FA:58:41:A9:C4:9C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 58C48731F34ABE485AE001D4C5AEB55CF397251E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141643.roa Signing time: Tue 10 Dec 2024 05:00:19 +0000 ROA not before: Tue 10 Dec 2024 04:55:19 +0000 ROA not after: Tue 09 Dec 2025 05:00:19 +0000 asID: 141643 IP address blocks: 103.162.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:c4:87:31:f3:4a:be:48:5a:e0:01:d4:c5:ae:b5:5c:f3:97:25:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:19 2024 GMT Not After : Dec 9 05:00:19 2025 GMT Subject: CN=FA77D5CE643FAD2D8BE6E047B091FA5841A9C49C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6a:d2:dd:6e:0f:f0:c0:be:c6:2b:8d:2f:69: a7:21:5c:66:28:e5:c5:9b:ce:16:2a:85:94:ab:54: 9d:9d:91:ae:90:76:c1:fb:89:85:71:54:52:c6:df: 0d:89:04:a5:8a:60:90:d0:91:99:3d:70:c4:7e:a3: f8:47:08:20:0e:0b:1a:d1:76:3f:e8:5e:af:39:7e: af:ea:ff:f6:58:93:f8:81:de:ec:21:b3:0a:d6:03: 9a:61:98:ac:f9:00:45:9a:1c:4f:7f:a4:08:fc:b4: 2b:a8:b3:74:87:77:a4:ca:c2:8b:bd:89:e6:a4:09: d7:04:c1:99:0b:2f:88:51:c4:4a:e5:ed:5f:e2:d5: 39:b4:b8:3e:df:89:f1:48:31:5c:46:7f:9d:77:29: 64:8b:c1:6e:d2:33:4b:e5:e3:86:e7:f7:03:08:61: ee:62:09:29:4d:ce:b5:9a:6c:ee:c9:89:30:08:e1: 6c:36:41:13:a6:9e:0d:68:72:1a:49:5d:82:cc:db: e9:cc:31:d1:34:f3:cc:7a:73:ff:f7:49:53:39:d5: 59:bb:bd:1a:88:4d:80:70:99:7f:04:24:88:b4:50: 44:41:0d:34:8d:0e:4a:d2:d1:a8:95:39:29:ad:d5: 89:1c:c5:e5:a1:ff:7d:9a:03:45:6a:19:8f:46:0c: c6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:77:D5:CE:64:3F:AD:2D:8B:E6:E0:47:B0:91:FA:58:41:A9:C4:9C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141643.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.68.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:43:4d:2a:47:e9:d2:23:43:be:a5:97:05:92:0a:3e:4b:d2: 17:7a:29:d3:89:40:a6:14:c7:29:86:35:21:a0:16:64:64:80: 51:6b:3d:49:57:6b:c0:7c:fa:9b:9f:d6:da:50:f4:6c:67:b9: 7d:d0:cb:96:86:ae:3d:19:e6:64:e4:35:ef:cc:60:37:6c:8a: 2d:39:9c:6b:c0:66:3e:74:00:ec:e1:21:d8:2e:0f:30:b2:7b: 9e:9d:21:d4:d1:de:dd:3f:8f:e4:04:0f:66:f1:62:8e:23:7c: a3:91:73:c8:8d:30:52:1b:b8:3f:be:72:c4:d4:d9:9e:95:3a: d0:24:ca:ac:4a:f5:9c:31:fa:8b:e1:1c:88:b9:78:17:f8:b5: 3f:7b:a0:75:31:0b:cc:d7:8a:8f:58:51:44:45:8b:1d:76:e3: fe:81:67:fb:96:f6:7e:ee:70:95:b5:60:19:08:87:4c:1d:0f: c8:fb:cf:8e:33:43:34:6b:99:b1:ea:f3:91:40:bf:de:7e:07: d6:62:7e:8d:6f:b0:dc:37:89:ff:6a:b7:68:a5:26:b8:7b:9c: 9b:96:6d:48:84:46:95:87:ed:7e:ab:ce:ec:c4:41:a5:30:f7: 1f:4a:6e:7c:25:d5:f8:1e:d3:89:85:2a:12:2c:99:db:42:81: 79:0a:7a:0c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWMSHMfNKvkha4AHUxa61XPOXJR4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxOVoX DTI1MTIwOTA1MDAxOVowMzExMC8GA1UEAxMoRkE3N0Q1Q0U2NDNGQUQyRDhCRTZF MDQ3QjA5MUZBNTg0MUE5QzQ5QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALFq0t1uD/DAvsYrjS9ppyFcZijlxZvOFiqFlKtUnZ2RrpB2wfuJhXFUUsbf DYkEpYpgkNCRmT1wxH6j+EcIIA4LGtF2P+herzl+r+r/9liT+IHe7CGzCtYDmmGY rPkARZocT3+kCPy0K6izdId3pMrCi72J5qQJ1wTBmQsviFHESuXtX+LVObS4Pt+J 8UgxXEZ/nXcpZIvBbtIzS+Xjhuf3Awhh7mIJKU3OtZps7smJMAjhbDZBE6aeDWhy Gkldgszb6cwx0TTzzHpz//dJUznVWbu9GohNgHCZfwQkiLRQREENNI0OStLRqJU5 Ka3ViRzF5aH/fZoDRWoZj0YMxqkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT6d9XO ZD+tLYvm4EewkfpYQanEnDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY0My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeiRDANBgkqhkiG9w0BAQsFAAOCAQEAakNNKkfp0iNDvqWXBZIK PkvSF3op04lAphTHKYY1IaAWZGSAUWs9SVdrwHz6m5/W2lD0bGe5fdDLloauPRnm ZOQ178xgN2yKLTmca8BmPnQA7OEh2C4PMLJ7np0h1NHe3T+P5AQPZvFijiN8o5Fz yI0wUhu4P75yxNTZnpU60CTKrEr1nDH6i+EciLl4F/i1P3ugdTELzNeKj1hRREWL HXbj/oFn+5b2fu5wlbVgGQiHTB0PyPvPjjNDNGuZserzkUC/3n4H1mJ+jW+w3DeJ /2q3aKUmuHucm5ZtSIRGlYftfqvO7MRBpTD3H0pufCXV+B7TiYUqEiyZ20KBeQp6 DA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:29:56 2025 by rpki-client