$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141668.roa File: AS141668.roa (raw, json) Hash identifier: c2Z6PcOpaqVU5XzveArmvH8+/rHkXGc2wb4SCe4721s= Subject key identifier: 9F:DF:2F:37:A7:B2:1F:56:B3:BE:B8:62:94:BD:30:3F:D5:03:47:24 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3B24BEF1AABEE27A6B3BCF65FA4C51AF961B3398 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141668.roa Signing time: Tue 09 Jan 2024 04:00:16 +0000 ROA not before: Tue 09 Jan 2024 03:55:16 +0000 ROA not after: Tue 07 Jan 2025 04:00:16 +0000 asID: 141668 IP address blocks: 103.162.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:24:be:f1:aa:be:e2:7a:6b:3b:cf:65:fa:4c:51:af:96:1b:33:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:16 2024 GMT Not After : Jan 7 04:00:16 2025 GMT Subject: CN=9FDF2F37A7B21F56B3BEB86294BD303FD5034724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:05:96:1b:7f:4c:e5:62:9f:dc:c9:2c:24:4d: 92:55:84:40:56:a4:ac:4b:34:42:8e:81:1a:1a:7e: 0b:47:b7:37:22:46:10:cc:da:5f:6c:9c:c8:d8:c9: 1f:4e:75:3c:dd:1e:88:df:b5:6e:c8:5b:8e:7b:6c: dd:e0:24:d0:49:ce:3b:13:c4:e3:bf:57:71:76:34: 34:ba:9c:c1:13:d5:3b:45:e7:e2:f0:91:b9:59:3c: 0f:fa:c8:2b:06:de:6a:09:79:e1:11:ed:60:0f:59: 13:15:bd:17:ee:a4:79:d5:30:e3:69:57:40:c3:97: 5f:cf:9c:f9:de:98:79:f1:6f:3d:f2:cf:9c:6a:93: a3:cf:9b:e3:0e:45:74:ef:97:75:c3:3f:18:b0:92: 9b:ec:28:3b:75:b2:60:95:32:5f:a1:88:44:e3:e2: 57:46:53:ea:9d:86:59:16:ee:3d:8f:ba:10:6e:f6: 8e:b2:6d:3a:96:ab:85:af:7c:1d:42:e4:21:47:93: e2:f1:3d:05:20:2d:a9:04:47:a4:68:e9:0a:ac:c2: 36:d9:0f:46:91:20:04:5d:fc:b2:c9:d6:c9:66:2e: e3:e3:fb:b8:03:2a:a0:60:ee:01:cd:b8:e6:40:f5: 70:be:70:2d:05:79:11:eb:8a:22:ff:26:0d:6b:7b: 5e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:DF:2F:37:A7:B2:1F:56:B3:BE:B8:62:94:BD:30:3F:D5:03:47:24 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141668.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.141.0/24 Signature Algorithm: sha256WithRSAEncryption 39:b0:a1:cc:62:a7:d2:62:af:c6:00:58:3a:57:21:68:1e:c0: cd:a6:14:34:07:cf:7b:66:00:a9:f2:7a:db:48:6b:0b:00:22: 1d:07:cf:63:99:b3:cf:01:cc:3e:37:c0:d4:6f:b3:8c:0b:e9: 60:1e:3f:42:ca:a3:4d:8a:d0:fc:4c:1e:e0:00:19:83:9c:43: d4:a1:25:38:a2:0b:e7:12:4d:2a:9f:73:9c:bd:24:ab:7c:b7: 13:3c:b7:63:9e:5b:c2:0d:b9:be:0a:6e:63:d5:d4:9e:0f:96: 01:7a:d4:f3:6e:66:ae:eb:46:f1:99:1c:a5:37:ef:99:ee:fa: 10:3f:d5:72:69:94:57:07:aa:28:69:2b:9f:73:2b:2d:3b:74: 08:90:38:d2:d3:79:18:3e:b8:28:ec:65:98:78:59:68:5f:71: 60:3e:33:a0:0c:6f:6c:59:6e:0d:42:69:73:dc:84:4f:4b:dd: c3:a5:92:76:7b:19:bf:91:86:89:4c:41:4d:e9:8f:f6:1b:66: f7:62:6a:a5:1d:ec:78:22:97:99:52:5e:b5:21:8c:63:e2:e8: 1c:80:0c:47:2a:52:84:47:c8:15:e6:94:e7:59:96:93:ba:9e: f2:d3:b8:ef:3d:90:f6:f3:9b:c7:af:a6:b7:67:06:5c:f5:7b: 2c:58:ac:fa -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOyS+8aq+4nprO89l+kxRr5YbM5gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxNloX DTI1MDEwNzA0MDAxNlowMzExMC8GA1UEAxMoOUZERjJGMzdBN0IyMUY1NkIzQkVC ODYyOTRCRDMwM0ZENTAzNDcyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMoFlht/TOVin9zJLCRNklWEQFakrEs0Qo6BGhp+C0e3NyJGEMzaX2ycyNjJ H051PN0eiN+1bshbjnts3eAk0EnOOxPE479XcXY0NLqcwRPVO0Xn4vCRuVk8D/rI Kwbeagl54RHtYA9ZExW9F+6kedUw42lXQMOXX8+c+d6YefFvPfLPnGqTo8+b4w5F dO+XdcM/GLCSm+woO3WyYJUyX6GIROPiV0ZT6p2GWRbuPY+6EG72jrJtOparha98 HULkIUeT4vE9BSAtqQRHpGjpCqzCNtkPRpEgBF38ssnWyWYu4+P7uAMqoGDuAc24 5kD1cL5wLQV5EeuKIv8mDWt7XlcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSf3y83 p7IfVrO+uGKUvTA/1QNHJDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeijTANBgkqhkiG9w0BAQsFAAOCAQEAObChzGKn0mKvxgBYOlch aB7AzaYUNAfPe2YAqfJ620hrCwAiHQfPY5mzzwHMPjfA1G+zjAvpYB4/QsqjTYrQ /Ewe4AAZg5xD1KElOKIL5xJNKp9znL0kq3y3Ezy3Y55bwg25vgpuY9XUng+WAXrU 825mrutG8ZkcpTfvme76ED/VcmmUVweqKGkrn3MrLTt0CJA40tN5GD64KOxlmHhZ aF9xYD4zoAxvbFluDUJpc9yET0vdw6WSdnsZv5GGiUxBTemP9htm92JqpR3seCKX mVJetSGMY+LoHIAMRypShEfIFeaU51mWk7qe8tO47z2Q9vObx6+mt2cGXPV7LFis +g== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:25 2024 by rpki-client on console-fra.rpki-client.org