$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141666.roa File: AS141666.roa (raw, json) Hash identifier: O/ChAh0awl+YtnXsI6yUY3uIUN+VaCAEnqsb5JRNVyI= Subject key identifier: C2:12:67:CB:25:2C:CB:85:46:F9:C9:63:26:41:0C:85:72:0B:09:34 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0751C3EC70F4F0F7C35E5720C4E637F169DAE3CF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141666.roa Signing time: Wed 27 Nov 2024 03:00:00 +0000 ROA not before: Wed 27 Nov 2024 02:55:00 +0000 ROA not after: Wed 26 Nov 2025 03:00:00 +0000 asID: 141666 IP address blocks: 103.162.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:51:c3:ec:70:f4:f0:f7:c3:5e:57:20:c4:e6:37:f1:69:da:e3:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 27 02:55:00 2024 GMT Not After : Nov 26 03:00:00 2025 GMT Subject: CN=C21267CB252CCB8546F9C96326410C85720B0934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:91:f1:78:cd:03:2f:cd:8f:23:ef:da:dc:d6: 79:d4:ec:3f:8d:09:87:38:35:be:1f:28:eb:60:6e: bf:b1:b4:e8:5d:03:b5:71:56:be:14:5f:15:29:37: 97:04:82:4f:58:99:d3:da:0f:21:d7:9d:cc:f9:fa: 0d:5e:20:cf:fe:42:ab:4f:c0:7e:ff:f5:2c:e7:3b: eb:7e:72:fd:91:f9:48:11:3c:3b:5f:b1:00:6e:48: 3b:ff:fc:07:26:65:5d:39:01:82:dd:70:dd:c4:6f: 40:cf:40:29:68:4e:01:49:45:04:42:a7:7a:f6:5c: d1:9e:58:72:a0:bd:d3:be:be:2c:f6:94:4a:3e:ed: ea:84:d5:b2:e2:aa:6c:2d:1e:3f:8e:d5:b6:d2:e2: db:89:5f:03:f9:eb:2b:22:a5:90:9f:71:2c:61:aa: 6e:3b:85:ef:72:22:e9:65:8a:27:04:ea:fa:59:39: e9:9b:18:ad:96:2a:2b:b0:cb:bc:1e:51:a3:68:67: d5:4b:a6:6a:0f:f2:cf:dc:e9:84:15:92:76:d1:fc: 86:0d:e0:6d:f2:cc:c9:b4:cd:9d:d5:d8:63:1a:bb: ad:ea:c9:e2:05:85:77:41:5b:53:ec:17:45:14:a2: a7:9e:66:00:c6:ec:b1:b2:32:10:05:5c:75:77:e7: f5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:12:67:CB:25:2C:CB:85:46:F9:C9:63:26:41:0C:85:72:0B:09:34 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141666.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.253.0/24 Signature Algorithm: sha256WithRSAEncryption 84:bc:0b:f2:d7:1f:90:dc:47:b1:66:f7:e1:8a:7f:2a:e9:06: ff:93:d8:06:1d:c9:30:65:f0:93:ce:94:37:29:1a:da:6c:dd: 0f:1f:22:01:aa:87:07:5f:6a:b8:cd:8e:4d:3b:94:c4:07:b4: 0e:72:84:b3:40:73:d5:14:7d:7f:7e:1f:da:72:3d:af:16:c0: 45:12:18:23:9d:97:3c:2e:c9:de:90:b6:b3:a4:4f:1c:3b:55: 18:b2:b2:ea:d2:28:4f:b0:9d:3f:62:19:87:2c:31:d5:bd:08: 4a:b5:05:17:16:b6:3f:03:8c:01:cf:49:d5:a6:f3:29:68:a7: 33:d9:66:06:fe:e8:4f:2e:85:68:93:0e:d9:a4:ce:96:e5:72: 40:a3:56:78:e3:62:af:40:90:ad:f4:59:56:a0:8b:24:87:5b: c0:fa:08:ac:0d:b7:6c:cf:c8:e6:65:94:14:8f:40:80:8d:bf: 6e:98:6f:41:97:dc:c5:1f:3d:b7:7d:5e:d0:99:74:f7:be:5a: 9d:58:a2:3a:8c:ad:00:2b:19:58:d8:cd:e9:60:6c:fb:16:f8: e5:a1:7c:96:52:e6:96:2c:61:22:ef:dd:d1:97:81:fa:ce:19: 59:16:bf:ad:0b:b1:b6:fc:16:a7:5b:2d:53:af:b5:b8:51:09: 8b:60:43:ae -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUB1HD7HD08PfDXlcgxOY38Wna488wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyNzAyNTUwMFoX DTI1MTEyNjAzMDAwMFowMzExMC8GA1UEAxMoQzIxMjY3Q0IyNTJDQ0I4NTQ2RjlD OTYzMjY0MTBDODU3MjBCMDkzNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOmR8XjNAy/NjyPv2tzWedTsP40Jhzg1vh8o62Buv7G06F0DtXFWvhRfFSk3 lwSCT1iZ09oPIdedzPn6DV4gz/5Cq0/Afv/1LOc7635y/ZH5SBE8O1+xAG5IO//8 ByZlXTkBgt1w3cRvQM9AKWhOAUlFBEKnevZc0Z5YcqC9076+LPaUSj7t6oTVsuKq bC0eP47VttLi24lfA/nrKyKlkJ9xLGGqbjuF73Ii6WWKJwTq+lk56ZsYrZYqK7DL vB5Ro2hn1Uumag/yz9zphBWSdtH8hg3gbfLMybTNndXYYxq7rerJ4gWFd0FbU+wX RRSip55mAMbssbIyEAVcdXfn9ZsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTCEmfL JSzLhUb5yWMmQQyFcgsJNDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGei/TANBgkqhkiG9w0BAQsFAAOCAQEAhLwL8tcfkNxHsWb34Yp/ KukG/5PYBh3JMGXwk86UNyka2mzdDx8iAaqHB19quM2OTTuUxAe0DnKEs0Bz1RR9 f34f2nI9rxbARRIYI52XPC7J3pC2s6RPHDtVGLKy6tIoT7CdP2IZhywx1b0ISrUF Fxa2PwOMAc9J1abzKWinM9lmBv7oTy6FaJMO2aTOluVyQKNWeONir0CQrfRZVqCL JIdbwPoIrA23bM/I5mWUFI9AgI2/bphvQZfcxR89t31e0Jl0975anViiOoytACsZ WNjN6WBs+xb45aF8llLmlixhIu/d0ZeB+s4ZWRa/rQuxtvwWp1stU6+1uFEJi2BD rg== -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:56 2025 by rpki-client