$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141645.roa File: AS141645.roa (raw, json) Hash identifier: MNHt728l4Nag+3hx3maayyaCdLYl0ArBZ0vaB1SQErg= Subject key identifier: 04:9E:34:07:E3:F7:09:98:95:F1:99:C3:40:64:D9:C9:83:D1:54:3C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 141A3AFA1EF9F8E7811969CCC07B56642037A85C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141645.roa Signing time: Tue 10 Dec 2024 05:00:10 +0000 ROA not before: Tue 10 Dec 2024 04:55:10 +0000 ROA not after: Tue 09 Dec 2025 05:00:10 +0000 asID: 141645 IP address blocks: 103.162.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:1a:3a:fa:1e:f9:f8:e7:81:19:69:cc:c0:7b:56:64:20:37:a8:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:10 2024 GMT Not After : Dec 9 05:00:10 2025 GMT Subject: CN=049E3407E3F7099895F199C34064D9C983D1543C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8e:fb:c2:f3:5b:90:e4:25:e2:af:b7:2d:3e: 8c:32:42:55:cb:cd:25:b1:a5:7d:a1:da:95:75:1b: d1:4a:66:e1:0d:b1:7c:9a:52:b3:48:85:c5:27:45: d0:d7:3a:ae:8c:24:69:41:a9:66:03:91:9d:25:e4: 76:8f:73:ba:08:d1:4e:90:d5:d6:a6:64:f1:f7:53: ca:1e:10:1f:a5:cc:f5:54:10:ca:b2:7b:20:84:88: 8c:24:b9:e2:3f:ff:6c:8b:aa:68:ad:26:6f:42:c2: 23:43:60:ae:30:f3:d5:ce:d1:39:e7:1e:fd:75:e7: cd:b9:9a:32:c8:2e:1b:e1:83:1a:83:09:59:6e:8c: c6:6b:8e:7a:4e:67:38:a2:31:88:fa:43:62:bb:c5: 1c:03:9b:ff:a6:25:63:73:65:1e:ad:98:1c:7e:b3: af:cb:16:8f:b0:70:8d:58:6a:27:41:27:b1:0b:f1: f5:b2:54:3f:df:0f:cf:02:5a:c5:bb:9e:ca:ed:f9: 64:c6:b3:e6:9d:aa:2a:c9:5a:d4:4e:56:8f:7e:a2: 4f:ff:60:1d:ff:2e:cf:74:db:e4:c6:f2:c3:7a:4c: bf:3c:95:93:ac:47:35:c9:76:c7:dd:e6:9a:49:67: 55:e2:15:38:f6:a2:37:78:5a:93:1f:88:72:a3:a6: 2d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:9E:34:07:E3:F7:09:98:95:F1:99:C3:40:64:D9:C9:83:D1:54:3C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141645.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.54.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:37:39:77:89:70:a9:0b:6a:a7:f5:e7:17:4e:82:e1:7b:bd: a8:c0:a5:a1:a8:b5:ad:fd:23:de:3e:05:06:c0:0d:26:78:37: 15:6f:c2:b6:a7:a4:a4:ac:83:aa:27:50:34:a7:d0:54:be:cd: 72:bb:48:63:02:53:b6:90:64:a2:eb:50:19:6a:a2:5f:88:61: ae:52:e0:aa:28:bc:e2:17:23:c8:a4:da:1b:8a:30:0d:61:cc: 3f:cf:ce:77:5e:03:3c:f5:2b:50:b1:a2:73:d2:d3:dc:b8:4d: 9c:44:9e:c5:54:33:cf:f6:15:c5:ad:f3:5c:44:e1:5e:4e:00: 32:d7:44:c8:92:3c:f5:40:f0:28:d3:b7:1f:3e:44:bc:af:56: a5:bc:b1:cd:79:83:af:e6:52:c3:fe:16:9f:bd:6d:da:a4:a3: ce:84:16:73:8a:88:33:8f:26:fa:dc:4c:a3:4c:b0:a9:87:8b: d0:4d:c8:ac:6a:41:4d:f8:be:2e:e0:c0:6a:34:a2:d2:42:21: ad:f2:c0:c2:d6:45:db:85:a8:b9:15:05:5e:70:b4:86:99:72: 4e:73:60:dc:46:0c:d6:94:0d:e8:49:3d:ab:cc:24:0e:27:a5: 20:81:ff:20:bb:cc:4e:86:0e:53:c4:fc:a8:65:e0:69:1d:1b: 3c:be:23:ed -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFBo6+h75+OeBGWnMwHtWZCA3qFwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxMFoX DTI1MTIwOTA1MDAxMFowMzExMC8GA1UEAxMoMDQ5RTM0MDdFM0Y3MDk5ODk1RjE5 OUMzNDA2NEQ5Qzk4M0QxNTQzQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANmO+8LzW5DkJeKvty0+jDJCVcvNJbGlfaHalXUb0Upm4Q2xfJpSs0iFxSdF 0Nc6rowkaUGpZgORnSXkdo9zugjRTpDV1qZk8fdTyh4QH6XM9VQQyrJ7IISIjCS5 4j//bIuqaK0mb0LCI0NgrjDz1c7ROece/XXnzbmaMsguG+GDGoMJWW6MxmuOek5n OKIxiPpDYrvFHAOb/6YlY3NlHq2YHH6zr8sWj7BwjVhqJ0EnsQvx9bJUP98PzwJa xbueyu35ZMaz5p2qKsla1E5Wj36iT/9gHf8uz3Tb5Mbyw3pMvzyVk6xHNcl2x93m mklnVeIVOPaiN3hakx+IcqOmLccCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQEnjQH 4/cJmJXxmcNAZNnJg9FUPDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeiNjANBgkqhkiG9w0BAQsFAAOCAQEACzc5d4lwqQtqp/XnF06C 4Xu9qMCloai1rf0j3j4FBsANJng3FW/CtqekpKyDqidQNKfQVL7NcrtIYwJTtpBk outQGWqiX4hhrlLgqii84hcjyKTaG4owDWHMP8/Od14DPPUrULGic9LT3LhNnESe xVQzz/YVxa3zXEThXk4AMtdEyJI89UDwKNO3Hz5EvK9WpbyxzXmDr+ZSw/4Wn71t 2qSjzoQWc4qIM48m+txMo0ywqYeL0E3IrGpBTfi+LuDAajSi0kIhrfLAwtZF24Wo uRUFXnC0hplyTnNg3EYM1pQN6Ek9q8wkDielIIH/ILvMToYOU8T8qGXgaR0bPL4j 7Q== -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:57 2025 by rpki-client