$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141668.roa File: AS141668.roa (raw, json) Hash identifier: 6AUpvQ108PW3K4WeBqK5wyh2qojC8FkdnJDBUArkLic= Subject key identifier: 60:A8:21:97:61:8D:EE:72:DC:F5:BB:9C:ED:09:DD:3B:EC:85:F6:B0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4727EFAEC502AF40C940DD4C7F20A26C19CA879E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141668.roa Signing time: Tue 10 Dec 2024 05:00:12 +0000 ROA not before: Tue 10 Dec 2024 04:55:12 +0000 ROA not after: Tue 09 Dec 2025 05:00:12 +0000 asID: 141668 IP address blocks: 103.162.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:27:ef:ae:c5:02:af:40:c9:40:dd:4c:7f:20:a2:6c:19:ca:87:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:12 2024 GMT Not After : Dec 9 05:00:12 2025 GMT Subject: CN=60A82197618DEE72DCF5BB9CED09DD3BEC85F6B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9c:27:59:a8:ac:96:1a:98:ab:be:b0:ab:8c: 45:f0:27:84:a6:af:9a:0a:42:50:bf:b7:15:77:72: bc:df:a6:62:fe:ed:70:0b:c6:af:8d:aa:6a:d4:da: 41:ff:90:11:71:4e:51:24:38:f3:51:14:03:bf:1e: e5:58:a9:88:06:da:7c:28:0d:c5:8b:0a:ce:b9:df: 2c:24:24:ff:6c:58:52:b5:06:3d:55:2e:35:0b:34: e6:c4:f8:eb:a7:b0:b8:b8:09:a0:04:1c:dc:8f:6b: 23:48:26:73:96:74:cc:49:0a:e4:70:93:d5:13:ba: 4b:92:bc:52:9b:c5:1c:3f:f5:5e:b8:41:b4:f2:41: 23:e2:12:81:fd:b8:79:63:55:e0:31:f6:c5:71:1b: 4f:1e:ed:e3:d0:4f:56:44:eb:62:22:a0:c0:54:b9: 55:ff:19:83:ab:08:56:c0:59:aa:bf:d4:da:74:9a: 89:49:72:53:1a:72:dc:25:5f:cd:2b:b5:eb:fc:fb: eb:15:22:20:ad:9d:d1:d7:50:d9:28:53:6c:61:c4: 96:d6:8b:c8:01:d0:29:83:74:d4:3d:af:8e:65:b1: c9:c3:fd:07:22:d3:d6:c7:9d:a8:f5:d0:4f:ef:0a: e3:b2:c2:e6:5e:4d:f5:b7:d9:69:10:40:d0:a5:f4: 4d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A8:21:97:61:8D:EE:72:DC:F5:BB:9C:ED:09:DD:3B:EC:85:F6:B0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141668.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.141.0/24 Signature Algorithm: sha256WithRSAEncryption 82:5e:b8:c9:cb:2e:e9:a4:e4:09:f4:b8:03:bf:90:68:1b:37: 4c:43:ec:7c:b7:df:6a:04:55:70:df:c2:3f:40:2c:c7:ac:97: 63:09:b6:19:f4:f1:26:e0:26:b1:dc:a0:dc:d7:11:70:20:c2: fd:55:a8:33:3d:1c:f2:15:11:28:b0:30:75:97:d1:c6:e3:09: eb:68:4c:2c:21:c6:d0:e1:ab:7b:53:1b:ea:6e:f2:1d:ec:9d: 73:e4:48:c3:a1:d0:39:a9:32:da:4d:80:94:c8:93:89:d1:ed: 33:96:61:1e:9b:2a:ae:2a:76:ba:0d:c1:be:86:ca:b3:54:28: 42:61:7a:0a:b4:2c:e6:b9:66:7b:34:8b:2f:05:ae:37:a1:88: 93:46:b5:86:98:ff:d3:17:ca:79:f9:96:03:86:7a:3d:c4:c9: 5a:f9:26:a7:57:fa:fc:31:4b:4d:d0:07:14:0a:58:08:67:eb: ee:33:12:bd:80:a9:d3:09:94:97:f3:4e:48:37:43:68:01:e5: 2c:6f:cf:8e:bf:19:b3:e0:14:d5:6c:2e:7c:9a:bb:48:53:e0: 24:e0:bc:69:8a:3e:4e:6f:b5:cd:12:42:df:74:c8:73:a1:cb: b5:32:4a:2f:5f:ff:e3:f6:93:5d:b5:2d:fc:41:6e:69:46:67: d2:19:08:54 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIURyfvrsUCr0DJQN1MfyCibBnKh54wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxMloX DTI1MTIwOTA1MDAxMlowMzExMC8GA1UEAxMoNjBBODIxOTc2MThERUU3MkRDRjVC QjlDRUQwOUREM0JFQzg1RjZCMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK+cJ1morJYamKu+sKuMRfAnhKavmgpCUL+3FXdyvN+mYv7tcAvGr42qatTa Qf+QEXFOUSQ481EUA78e5VipiAbafCgNxYsKzrnfLCQk/2xYUrUGPVUuNQs05sT4 66ewuLgJoAQc3I9rI0gmc5Z0zEkK5HCT1RO6S5K8UpvFHD/1XrhBtPJBI+ISgf24 eWNV4DH2xXEbTx7t49BPVkTrYiKgwFS5Vf8Zg6sIVsBZqr/U2nSaiUlyUxpy3CVf zSu16/z76xUiIK2d0ddQ2ShTbGHEltaLyAHQKYN01D2vjmWxycP9ByLT1sedqPXQ T+8K47LC5l5N9bfZaRBA0KX0TXcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRgqCGX YY3uctz1u5ztCd077IX2sDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeijTANBgkqhkiG9w0BAQsFAAOCAQEAgl64ycsu6aTkCfS4A7+Q aBs3TEPsfLffagRVcN/CP0Asx6yXYwm2GfTxJuAmsdyg3NcRcCDC/VWoMz0c8hUR KLAwdZfRxuMJ62hMLCHG0OGre1Mb6m7yHeydc+RIw6HQOaky2k2AlMiTidHtM5Zh Hpsqrip2ug3BvobKs1QoQmF6CrQs5rlmezSLLwWuN6GIk0a1hpj/0xfKefmWA4Z6 PcTJWvkmp1f6/DFLTdAHFApYCGfr7jMSvYCp0wmUl/NOSDdDaAHlLG/Pjr8Zs+AU 1WwufJq7SFPgJOC8aYo+Tm+1zRJC33TIc6HLtTJKL1//4/aTXbUt/EFuaUZn0hkI VA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:36 2025 by rpki-client