$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141663.roa File: AS141663.roa (raw, json) Hash identifier: xIikxJSK4EfC37KEKhlVVyeot8BdCKZJvEIFGsOm3ZA= Subject key identifier: 4F:C8:BD:DB:AD:04:06:FE:47:92:37:F8:76:AD:F5:99:E1:2A:A5:D0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 41C6BFAC7F03117AD47AADD20921412886489943 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141663.roa Signing time: Tue 09 Apr 2024 05:00:00 +0000 ROA not before: Tue 09 Apr 2024 04:55:00 +0000 ROA not after: Tue 08 Apr 2025 05:00:00 +0000 asID: 141663 IP address blocks: 103.158.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:c6:bf:ac:7f:03:11:7a:d4:7a:ad:d2:09:21:41:28:86:48:99:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 9 04:55:00 2024 GMT Not After : Apr 8 05:00:00 2025 GMT Subject: CN=4FC8BDDBAD0406FE479237F876ADF599E12AA5D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:62:13:4d:5b:6a:27:13:14:36:95:01:68:16: 58:20:6f:d6:de:d3:fe:bc:b2:03:39:fc:95:88:3e: f8:c0:ed:28:0f:08:38:7b:0f:ae:b4:66:ea:85:0a: 2a:51:22:42:fb:3a:1d:94:67:34:fd:a0:cd:54:ee: 52:f1:4d:b6:04:d9:c1:5d:97:79:50:08:1f:ea:25: 03:0c:1e:a7:76:41:78:f0:ac:8e:c2:f6:e4:0a:62: ea:1c:21:37:6c:e7:73:97:ce:e4:99:ee:3a:46:ec: 79:1a:9e:56:10:f4:a2:09:72:19:e0:60:5f:0a:4a: 09:8b:41:18:5d:6d:cc:4f:07:ba:76:bd:54:07:84: 68:92:b7:0b:00:cd:0c:75:14:46:3e:bf:3c:0d:a2: ac:0b:f2:55:07:b4:e9:93:a6:ad:ea:8f:d2:1d:8e: f4:07:fe:db:53:16:22:90:54:bc:7c:6a:db:8b:95: 7d:8f:e4:1c:05:48:ff:1f:92:a9:be:e3:e9:05:cf: ed:7b:f2:b9:13:7f:20:63:5d:ff:41:6d:41:2b:46: 7d:3a:51:bd:1d:cd:1b:79:c2:f9:bd:bf:05:4b:02: 56:48:db:bd:dd:b0:51:65:73:64:fd:a8:b8:c9:c0: 4e:41:c0:34:c9:4c:4d:51:01:14:80:2c:78:78:d9: 32:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:C8:BD:DB:AD:04:06:FE:47:92:37:F8:76:AD:F5:99:E1:2A:A5:D0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141663.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.188.0/23 Signature Algorithm: sha256WithRSAEncryption 01:a4:e6:9b:15:63:48:d7:05:d9:7a:47:46:5d:91:d2:59:fb: b8:69:3d:96:9f:31:aa:6a:05:86:99:4e:70:b7:78:79:6d:50: c7:d8:6f:75:f0:b2:c3:41:43:a0:b9:a0:7e:b6:a3:37:83:22: 80:d7:db:8c:06:21:ec:41:09:1c:f2:91:05:bf:7e:78:b8:51: 51:4c:4e:53:ae:73:c0:75:81:95:4c:cb:3b:a9:f8:3b:3c:84: a8:48:a0:10:65:c5:04:ba:9d:49:48:6d:28:22:a4:18:cf:0d: df:16:e2:3c:7e:8c:34:00:3a:d1:14:86:8c:fc:8b:cd:8f:a4: 68:48:06:b6:56:6b:ba:f6:0c:e2:19:a3:65:92:25:5e:f8:2a: 61:d3:72:bb:41:77:2c:d0:b2:ba:57:fa:92:3d:ba:64:5e:19: 51:75:0e:1c:54:65:3b:e5:02:a0:11:ab:2d:e6:1b:35:a2:91: 60:55:27:3b:fe:7c:4e:59:cc:5b:8e:f4:31:6c:f3:c6:c0:1b: f1:bf:ac:57:3a:02:04:a5:38:e4:f8:ef:2f:8b:f1:1c:55:32: 91:8a:04:5d:af:0c:62:42:f2:6c:b7:12:2b:ee:e6:2e:2f:a5: 83:9a:82:0b:84:f1:0d:99:5f:c7:41:a8:45:73:ff:bf:33:d0: d8:10:f0:e7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQca/rH8DEXrUeq3SCSFBKIZImUMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQwOTA0NTUwMFoX DTI1MDQwODA1MDAwMFowMzExMC8GA1UEAxMoNEZDOEJEREJBRDA0MDZGRTQ3OTIz N0Y4NzZBREY1OTlFMTJBQTVEMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOliE01baicTFDaVAWgWWCBv1t7T/ryyAzn8lYg++MDtKA8IOHsPrrRm6oUK KlEiQvs6HZRnNP2gzVTuUvFNtgTZwV2XeVAIH+olAwwep3ZBePCsjsL25Api6hwh N2znc5fO5JnuOkbseRqeVhD0oglyGeBgXwpKCYtBGF1tzE8Huna9VAeEaJK3CwDN DHUURj6/PA2irAvyVQe06ZOmreqP0h2O9Af+21MWIpBUvHxq24uVfY/kHAVI/x+S qb7j6QXP7XvyuRN/IGNd/0FtQStGfTpRvR3NG3nC+b2/BUsCVkjbvd2wUWVzZP2o uMnATkHANMlMTVEBFIAseHjZMjECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRPyL3b rQQG/keSN/h2rfWZ4Sql0DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY2My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeevDANBgkqhkiG9w0BAQsFAAOCAQEAAaTmmxVjSNcF2XpHRl2R 0ln7uGk9lp8xqmoFhplOcLd4eW1Qx9hvdfCyw0FDoLmgfrajN4MigNfbjAYh7EEJ HPKRBb9+eLhRUUxOU65zwHWBlUzLO6n4OzyEqEigEGXFBLqdSUhtKCKkGM8N3xbi PH6MNAA60RSGjPyLzY+kaEgGtlZruvYM4hmjZZIlXvgqYdNyu0F3LNCyulf6kj26 ZF4ZUXUOHFRlO+UCoBGrLeYbNaKRYFUnO/58TlnMW470MWzzxsAb8b+sVzoCBKU4 5PjvL4vxHFUykYoEXa8MYkLybLcSK+7mLi+lg5qCC4TxDZlfx0GoRXP/vzPQ2BDw 5w== -----END CERTIFICATE-----Generated at Wed May 8 04:37:57 2024 by rpki-client on console-fra.rpki-client.org