$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141654.roa File: AS141654.roa (raw, json) Hash identifier: iddGinX8QG2NdPj/E0MqzMH/o5cVuFo1fGbEWds6N6U= Subject key identifier: 7C:E1:3A:A2:3C:83:D3:F7:A4:AD:7E:0D:4B:2C:D4:2F:F3:CB:E0:F4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 667A43E54CBD6D9982AFA411C30705758C36E140 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141654.roa Signing time: Tue 09 Jan 2024 04:00:26 +0000 ROA not before: Tue 09 Jan 2024 03:55:26 +0000 ROA not after: Tue 07 Jan 2025 04:00:26 +0000 asID: 141654 IP address blocks: 103.162.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:7a:43:e5:4c:bd:6d:99:82:af:a4:11:c3:07:05:75:8c:36:e1:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:26 2024 GMT Not After : Jan 7 04:00:26 2025 GMT Subject: CN=7CE13AA23C83D3F7A4AD7E0D4B2CD42FF3CBE0F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:bb:b0:a0:49:b7:c2:43:2d:72:46:1f:c3:20: b3:87:ab:58:bf:80:1a:7e:c1:59:d2:9b:04:49:fe: bb:c6:47:ca:18:45:97:5c:ff:8c:e1:d4:ce:41:88: 68:48:fb:0d:15:f9:a2:85:31:bc:c6:2f:8a:83:9a: 20:d5:38:5d:7a:fb:b9:f9:4a:77:d1:ba:2e:02:db: 6a:5a:ea:39:38:62:74:20:1d:ac:d0:c9:d4:68:96: 63:df:8e:a7:9d:29:de:42:29:5c:2d:1d:6d:9f:99: ce:08:9d:a9:88:0e:40:a0:b8:91:33:e5:0f:b1:ba: 44:49:24:e2:86:a9:bd:af:64:51:8d:b1:cc:9d:b1: 67:cc:e4:14:5a:16:2d:c9:f1:7f:7f:b1:e7:1b:f2: de:02:58:55:d5:db:14:18:f9:c3:5d:1c:5f:bc:a7: 8a:6c:af:b1:e7:c3:ca:29:0f:00:c5:94:3c:b6:f1: 2a:ba:a2:ff:49:73:5a:f9:93:bd:05:f3:86:30:2f: e2:00:5c:4d:58:d1:d5:7c:13:a5:6e:84:75:48:3e: 5f:98:74:b0:09:55:7e:d0:66:43:89:c5:8e:e1:1e: 73:ba:9f:65:b3:33:ce:90:b6:e6:9b:e2:c4:97:77: f5:c4:8d:c6:c9:9d:d0:4e:06:54:27:f3:94:4d:de: 50:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E1:3A:A2:3C:83:D3:F7:A4:AD:7E:0D:4B:2C:D4:2F:F3:CB:E0:F4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141654.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.144.0/23 Signature Algorithm: sha256WithRSAEncryption 70:1d:c1:3d:b3:0b:47:c1:44:3a:53:8a:48:22:32:84:85:ed: ba:21:24:d7:db:78:6a:0f:ee:99:89:5a:a6:fb:4f:7e:61:43: 28:ae:37:0c:92:31:8b:47:24:67:c4:1a:73:b6:e1:dd:41:47: 2c:02:12:46:f3:27:2d:34:b3:6e:42:78:cc:fe:27:a4:cb:01: 7d:db:d7:42:ef:b4:58:9b:2f:fa:9e:2a:36:da:29:f1:3c:29: dc:ff:20:1c:68:bc:ae:21:c0:0b:cd:3e:11:7a:0e:c2:14:66: f9:f4:2b:f9:5c:f2:68:91:ba:0f:64:66:45:d4:24:db:7b:f5: 01:f8:9a:7e:3e:fb:f2:ad:60:46:dd:f5:45:a1:5f:90:e9:4d: 67:13:ec:4d:94:55:12:44:84:f2:4b:0b:06:20:c3:e0:fd:11: 91:45:2f:ca:01:15:91:73:21:b8:6d:c5:d2:68:ad:a2:b4:ef: 55:cb:fb:ab:bf:f5:1f:bd:87:63:56:b7:e0:61:72:ad:9f:92: ad:2c:1d:91:f5:b5:73:06:98:59:49:87:96:5f:3b:a4:e2:cd: 78:38:38:21:05:33:2c:f1:61:84:26:15:22:1b:91:19:1d:43: 49:4a:13:e9:9e:50:a5:94:38:20:b3:91:44:37:ba:b6:95:2a: 99:8e:96:01 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZnpD5Uy9bZmCr6QRwwcFdYw24UAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyNloX DTI1MDEwNzA0MDAyNlowMzExMC8GA1UEAxMoN0NFMTNBQTIzQzgzRDNGN0E0QUQ3 RTBENEIyQ0Q0MkZGM0NCRTBGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOa7sKBJt8JDLXJGH8Mgs4erWL+AGn7BWdKbBEn+u8ZHyhhFl1z/jOHUzkGI aEj7DRX5ooUxvMYvioOaINU4XXr7uflKd9G6LgLbalrqOThidCAdrNDJ1GiWY9+O p50p3kIpXC0dbZ+ZzgidqYgOQKC4kTPlD7G6REkk4oapva9kUY2xzJ2xZ8zkFFoW Lcnxf3+x5xvy3gJYVdXbFBj5w10cX7ynimyvsefDyikPAMWUPLbxKrqi/0lzWvmT vQXzhjAv4gBcTVjR1XwTpW6EdUg+X5h0sAlVftBmQ4nFjuEec7qfZbMzzpC25pvi xJd39cSNxsmd0E4GVCfzlE3eUP0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR84Tqi PIPT96Stfg1LLNQv88vg9DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY1NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeikDANBgkqhkiG9w0BAQsFAAOCAQEAcB3BPbMLR8FEOlOKSCIy hIXtuiEk19t4ag/umYlapvtPfmFDKK43DJIxi0ckZ8Qac7bh3UFHLAISRvMnLTSz bkJ4zP4npMsBfdvXQu+0WJsv+p4qNtop8Twp3P8gHGi8riHAC80+EXoOwhRm+fQr +VzyaJG6D2RmRdQk23v1Afiafj778q1gRt31RaFfkOlNZxPsTZRVEkSE8ksLBiDD 4P0RkUUvygEVkXMhuG3F0mitorTvVcv7q7/1H72HY1a34GFyrZ+SrSwdkfW1cwaY WUmHll87pOLNeDg4IQUzLPFhhCYVIhuRGR1DSUoT6Z5QpZQ4ILORRDe6tpUqmY6W AQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:55 2024 by rpki-client on console-fra.rpki-client.org