$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141666.roa File: AS141666.roa (raw, json) Hash identifier: 7ckWXcGGzITZaxEE9PVSOJ92otNbVpfBI+431Fv1+bU= Subject key identifier: AF:21:C9:D7:B3:B8:C0:DA:49:AA:B4:EB:10:8E:5D:20:69:90:A2:F4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 321F58B365C6B036F620907A3A64DF2854A3885A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141666.roa Signing time: Wed 27 Dec 2023 03:00:00 +0000 ROA not before: Wed 27 Dec 2023 02:55:00 +0000 ROA not after: Wed 25 Dec 2024 03:00:00 +0000 asID: 141666 IP address blocks: 103.162.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:1f:58:b3:65:c6:b0:36:f6:20:90:7a:3a:64:df:28:54:a3:88:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 27 02:55:00 2023 GMT Not After : Dec 25 03:00:00 2024 GMT Subject: CN=AF21C9D7B3B8C0DA49AAB4EB108E5D206990A2F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:59:30:77:ff:99:ad:33:60:89:ec:46:8b:aa: d2:6f:2f:de:d4:7c:82:ad:09:10:d4:80:db:bd:65: 53:24:33:13:e1:3e:b3:b6:c8:b7:1b:00:bc:10:03: ac:c0:f5:ad:9f:15:d4:9c:e4:76:2f:89:4b:13:9c: 5d:a4:bf:92:84:83:1d:5a:9d:f7:0c:2f:7f:18:b5: 8b:9b:c9:19:10:e5:f9:f1:d5:06:2e:b9:eb:3a:2a: 23:94:38:b0:76:d5:3c:3c:4b:35:54:18:e9:2e:19: 81:7e:53:73:6a:cd:4b:3d:fb:f6:84:b4:fc:e4:4e: 8b:0d:d1:2e:ac:b7:d2:a8:92:3c:ca:38:96:54:70: 52:66:ab:48:38:b2:fd:ed:72:4b:e6:d5:ce:90:7d: 1e:13:8c:51:3e:30:49:a2:0f:bd:61:a2:08:12:f2: 10:c1:55:ce:18:73:c1:48:16:b6:bd:28:10:8d:69: d7:7f:27:8e:df:e0:d4:26:19:f3:6d:6b:be:00:51: 73:69:10:b6:19:24:cc:d8:7a:45:c0:82:e4:5b:b3: 8e:eb:44:19:f1:e3:b1:85:65:c6:d6:e9:26:53:65: 88:11:3a:a7:64:1c:82:6a:a3:91:da:54:2a:2c:84: 22:7f:a0:48:1d:0c:e7:e8:8f:56:6a:40:a0:7a:94: fc:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:21:C9:D7:B3:B8:C0:DA:49:AA:B4:EB:10:8E:5D:20:69:90:A2:F4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141666.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.253.0/24 Signature Algorithm: sha256WithRSAEncryption 00:87:5b:0e:6f:5c:3c:6c:17:38:f8:e2:80:37:0f:a3:a0:1a: 7f:7c:e7:74:a1:f9:6f:d3:7e:34:df:15:40:4e:7b:9b:e2:12: 32:9c:4b:08:9f:b2:ca:48:db:26:ac:b5:08:69:6c:13:05:73: 23:0e:fd:3c:d7:93:20:2a:b2:ec:aa:a9:0b:bb:77:9d:93:f0: fb:0f:ac:7b:04:72:d6:c7:af:35:b5:a7:12:5c:de:f3:a9:43: f6:9b:ee:e5:05:87:3e:43:82:9c:df:08:7c:1a:09:72:ae:e5: 54:f8:1a:c4:93:8a:7f:9f:f1:fe:2c:e7:71:3d:82:33:b9:c8: 8b:05:01:11:d3:dd:01:b6:75:32:27:21:8b:ee:21:34:87:ec: 25:61:96:3a:9b:87:ea:d8:c7:73:a6:6b:cb:43:d7:2e:c4:34: 06:68:d3:81:d7:db:61:58:0e:2d:f9:b7:6e:3f:0b:00:69:4b: cc:85:e7:00:49:00:51:f6:d8:76:25:f8:de:e4:eb:e8:01:51: 22:2f:ee:32:9c:3f:d6:25:8d:70:c1:c6:aa:e8:f1:2a:99:45: a8:43:ca:7c:1d:ad:79:fa:57:99:0e:ea:cf:57:fc:b1:c9:a1: 49:8e:3a:14:20:2a:fa:35:7a:ec:fe:f4:27:a0:4c:5c:a7:a9: ff:17:f8:3a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMh9Ys2XGsDb2IJB6OmTfKFSjiFowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIyNzAyNTUwMFoX DTI0MTIyNTAzMDAwMFowMzExMC8GA1UEAxMoQUYyMUM5RDdCM0I4QzBEQTQ5QUFC NEVCMTA4RTVEMjA2OTkwQTJGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVZMHf/ma0zYInsRouq0m8v3tR8gq0JENSA271lUyQzE+E+s7bItxsAvBAD rMD1rZ8V1Jzkdi+JSxOcXaS/koSDHVqd9wwvfxi1i5vJGRDl+fHVBi656zoqI5Q4 sHbVPDxLNVQY6S4ZgX5Tc2rNSz379oS0/OROiw3RLqy30qiSPMo4llRwUmarSDiy /e1yS+bVzpB9HhOMUT4wSaIPvWGiCBLyEMFVzhhzwUgWtr0oEI1p138njt/g1CYZ 821rvgBRc2kQthkkzNh6RcCC5FuzjutEGfHjsYVlxtbpJlNliBE6p2QcgmqjkdpU KiyEIn+gSB0M5+iPVmpAoHqU/MUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSvIcnX s7jA2kmqtOsQjl0gaZCi9DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGei/TANBgkqhkiG9w0BAQsFAAOCAQEAAIdbDm9cPGwXOPjigDcP o6Aaf3zndKH5b9N+NN8VQE57m+ISMpxLCJ+yykjbJqy1CGlsEwVzIw79PNeTICqy 7KqpC7t3nZPw+w+sewRy1sevNbWnElze86lD9pvu5QWHPkOCnN8IfBoJcq7lVPga xJOKf5/x/izncT2CM7nIiwUBEdPdAbZ1Michi+4hNIfsJWGWOpuH6tjHc6Zry0PX LsQ0BmjTgdfbYVgOLfm3bj8LAGlLzIXnAEkAUfbYdiX43uTr6AFRIi/uMpw/1iWN cMHGqujxKplFqEPKfB2tefpXmQ7qz1f8scmhSY46FCAq+jV67P70J6BMXKep/xf4 Og== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:25 2024 by rpki-client on console-fra.rpki-client.org