$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141645.roa File: AS141645.roa (raw, json) Hash identifier: J6xMgvevk9Ox9HQttrQoomwNtZIf9/ueWTN5suqNQUw= Subject key identifier: C2:26:AC:B1:B0:45:D8:B9:4B:4A:C4:BB:A4:CA:C0:3F:61:DE:53:FF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0219991660C813ACEFCFBDF4AE694E11C71756DE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141645.roa Signing time: Tue 09 Jan 2024 04:00:11 +0000 ROA not before: Tue 09 Jan 2024 03:55:11 +0000 ROA not after: Tue 07 Jan 2025 04:00:11 +0000 asID: 141645 IP address blocks: 103.162.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:19:99:16:60:c8:13:ac:ef:cf:bd:f4:ae:69:4e:11:c7:17:56:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:11 2024 GMT Not After : Jan 7 04:00:11 2025 GMT Subject: CN=C226ACB1B045D8B94B4AC4BBA4CAC03F61DE53FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:55:fb:69:7b:23:8a:7d:a8:04:f6:bf:00:e2: 34:ca:7d:92:ae:6a:d5:6e:b2:7f:ba:5e:42:3d:13: b7:bb:28:cc:ab:93:47:57:a1:d4:82:54:42:f1:72: 06:c0:54:01:e8:e4:62:19:04:5d:66:42:ae:b5:61: 78:18:a1:ac:6e:96:de:78:46:7b:1f:c4:64:07:76: 91:2b:40:e1:5f:8d:fa:92:48:cb:39:90:5b:66:5c: 09:f1:7f:f0:da:3d:f6:f8:f0:84:5d:f8:95:91:4d: 1f:28:a5:d0:0d:06:05:ef:d8:f0:ad:f8:00:86:78: 87:4f:8a:1d:4f:02:72:39:ec:c7:c5:53:81:36:0d: c4:04:83:c9:29:d7:bf:29:ad:5c:75:78:c2:b5:9f: 2a:a6:ea:cc:bb:f3:70:9e:95:0e:1b:8e:04:2e:14: 5e:ab:36:25:39:95:e9:4d:6a:95:cb:ce:25:97:8b: 01:d2:7c:49:a9:59:98:2e:80:7c:d6:77:e6:19:ba: d6:e7:42:92:a8:b4:c0:4e:66:7e:75:9d:49:f5:0c: 11:ed:ed:67:f9:4a:08:7c:6f:ae:24:a2:e3:9f:62: 8b:cb:69:cd:04:d8:0a:d3:2b:eb:50:60:a5:71:e8: fb:a6:b0:56:8e:da:d7:b9:47:29:10:d1:0a:2d:5d: 89:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:26:AC:B1:B0:45:D8:B9:4B:4A:C4:BB:A4:CA:C0:3F:61:DE:53:FF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141645.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.54.0/24 Signature Algorithm: sha256WithRSAEncryption 88:07:31:87:87:ee:be:c4:d6:91:06:69:47:05:38:66:55:ba: e3:c9:0e:36:f0:51:e4:94:af:15:a3:7e:17:42:3f:c3:9e:87: 91:c8:33:36:31:5a:e4:c2:4a:00:14:97:e3:c6:42:c8:d7:cb: 47:9f:a0:29:10:53:30:bf:a8:f5:91:be:82:56:7f:73:27:92: 4a:25:27:32:93:8f:ea:b7:4d:cf:e3:0c:50:01:26:30:8e:02: 0c:83:90:a4:01:9d:b6:c2:42:ca:54:99:7c:c3:6b:79:c9:be: 2b:3a:6f:07:de:d0:1a:f7:58:c9:3f:c6:6c:f4:74:2b:cb:05: 41:f4:31:f1:7a:e4:57:95:16:7f:02:2a:08:a6:3d:7d:85:9f: 86:35:f9:d0:6d:1e:8f:4c:91:34:cf:2b:79:11:d3:9d:a9:31: 1b:58:b7:d2:73:d6:30:e7:58:6c:67:f3:bf:a0:8a:7c:60:c7: 43:b6:d3:c8:c8:39:e6:f8:b8:f3:85:18:62:4a:2d:5d:fe:f0: 33:7a:88:de:f7:d1:1a:db:ba:9b:8a:b9:51:d5:e4:49:16:91: 9a:ab:a3:e7:57:47:b3:cb:2c:09:94:34:bf:e2:4e:7c:4b:43: ba:26:18:ab:7d:54:fc:3f:21:b1:1a:ad:aa:42:16:99:5c:f3: cb:4b:dc:ab -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAhmZFmDIE6zvz730rmlOEccXVt4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxMVoX DTI1MDEwNzA0MDAxMVowMzExMC8GA1UEAxMoQzIyNkFDQjFCMDQ1RDhCOTRCNEFD NEJCQTRDQUMwM0Y2MURFNTNGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANFV+2l7I4p9qAT2vwDiNMp9kq5q1W6yf7peQj0Tt7sozKuTR1eh1IJUQvFy BsBUAejkYhkEXWZCrrVheBihrG6W3nhGex/EZAd2kStA4V+N+pJIyzmQW2ZcCfF/ 8No99vjwhF34lZFNHyil0A0GBe/Y8K34AIZ4h0+KHU8Ccjnsx8VTgTYNxASDySnX vymtXHV4wrWfKqbqzLvzcJ6VDhuOBC4UXqs2JTmV6U1qlcvOJZeLAdJ8SalZmC6A fNZ35hm61udCkqi0wE5mfnWdSfUMEe3tZ/lKCHxvriSi459ii8tpzQTYCtMr61Bg pXHo+6awVo7a17lHKRDRCi1diTECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTCJqyx sEXYuUtKxLukysA/Yd5T/zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeiNjANBgkqhkiG9w0BAQsFAAOCAQEAiAcxh4fuvsTWkQZpRwU4 ZlW648kONvBR5JSvFaN+F0I/w56HkcgzNjFa5MJKABSX48ZCyNfLR5+gKRBTML+o 9ZG+glZ/cyeSSiUnMpOP6rdNz+MMUAEmMI4CDIOQpAGdtsJCylSZfMNrecm+Kzpv B97QGvdYyT/GbPR0K8sFQfQx8XrkV5UWfwIqCKY9fYWfhjX50G0ej0yRNM8reRHT nakxG1i30nPWMOdYbGfzv6CKfGDHQ7bTyMg55vi484UYYkotXf7wM3qI3vfRGtu6 m4q5UdXkSRaRmquj51dHs8ssCZQ0v+JOfEtDuiYYq31U/D8hsRqtqkIWmVzzy0vc qw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:48 2024 by rpki-client on console-ams.rpki-client.org