$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141671.roa File: AS141671.roa (raw, json) Hash identifier: ohASNCtgxzahJBFyuAtEePTLptI8V0UdblfKjKr+/NY= Subject key identifier: CC:88:1F:E4:A2:B4:95:8A:4A:75:71:2B:56:ED:0A:96:32:52:FA:C5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7450234B5840C9AFF5AF941B1105DE3A0DB0646B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141671.roa Signing time: Wed 31 Jul 2024 11:01:32 +0000 ROA not before: Wed 31 Jul 2024 10:56:32 +0000 ROA not after: Wed 30 Jul 2025 11:01:32 +0000 asID: 141671 IP address blocks: 103.224.100.0/22 maxlen: 24 103.227.144.0/22 maxlen: 24 2400:ad60::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:50:23:4b:58:40:c9:af:f5:af:94:1b:11:05:de:3a:0d:b0:64:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 10:56:32 2024 GMT Not After : Jul 30 11:01:32 2025 GMT Subject: CN=CC881FE4A2B4958A4A75712B56ED0A963252FAC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:67:5a:e5:9c:0d:b7:0d:5c:6a:8f:9e:1f:18: d6:da:41:32:08:5e:ee:7d:e4:be:4d:96:29:2c:39: a9:8b:4d:44:76:18:be:d3:42:61:72:81:2d:2d:ab: f0:3c:da:62:4e:64:19:04:8c:1f:91:3b:04:65:45: 83:2e:34:07:e5:f6:a8:f5:e1:f7:87:2c:8d:53:c8: 98:8d:51:8d:ec:58:68:f5:80:ff:75:e6:62:fa:bd: d6:a3:c7:31:97:df:47:98:7f:e5:a7:4b:18:2f:82: ba:d1:0c:af:9b:a2:dc:87:8a:5f:57:c6:a1:0b:8e: 1e:c4:bc:74:64:03:d9:24:14:13:92:9c:0f:de:9f: 5b:52:6e:70:9b:db:f7:6e:38:b1:4e:4b:30:6b:69: 7d:06:db:20:6a:b1:d6:5b:27:57:cc:8d:43:c2:5d: 89:e1:a6:d2:8a:0e:52:b6:6f:5d:44:86:95:8a:e5: 9f:64:d2:15:1b:03:b5:46:28:1a:51:8e:c5:17:c4: 5e:c2:fd:56:88:3e:7b:c5:4b:6f:44:41:55:07:66: e5:d5:be:68:95:9d:d7:0e:8d:97:ff:4d:5a:1c:d6: 4f:ac:a1:54:d2:cc:e6:50:c2:00:98:de:06:d4:92: 65:96:e1:73:3c:04:ac:bf:6b:1b:d9:04:07:ff:28: d0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:88:1F:E4:A2:B4:95:8A:4A:75:71:2B:56:ED:0A:96:32:52:FA:C5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141671.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.100.0/22 103.227.144.0/22 IPv6: 2400:ad60::/32 Signature Algorithm: sha256WithRSAEncryption 5c:e8:b1:b2:43:88:5f:4c:cd:15:dd:3f:95:b0:e6:3c:70:24: 16:ca:fe:cc:79:01:4e:8e:59:a9:d9:bc:74:99:26:9d:4e:08: da:af:1d:6b:d2:8d:12:fb:b4:b7:ec:d5:b7:bf:09:1f:2e:28: 8b:1e:be:bf:55:36:0a:ec:17:5e:5a:34:79:f6:50:da:77:61: d4:ca:af:20:85:10:f4:cb:9a:ee:20:6b:42:ec:1a:d1:63:dd: e2:b0:d5:a7:5b:95:df:66:41:b5:06:c6:2c:14:4f:21:29:d9: 76:66:9e:3b:a8:db:89:e4:0f:12:a3:ac:84:ca:4f:5b:9b:06: 61:f8:b1:fb:dd:09:8b:62:fa:fa:ce:c6:bb:fc:b8:74:d7:9d: 36:a2:32:7f:8a:33:9a:c6:25:e8:5d:58:86:d5:a7:56:48:ef: f1:1c:92:e7:82:2b:3a:58:a8:92:75:ca:31:1f:96:b5:4b:a5: 4c:74:49:09:a4:ac:60:95:f1:0e:09:b0:22:62:1f:23:05:79: 0f:11:d3:9e:6b:76:f9:5d:3d:e3:7f:23:f3:9a:c7:1a:aa:fa: f4:98:de:f5:f4:49:cf:ec:9e:82:21:5c:f0:f0:11:ad:39:6d: 2c:bf:9c:72:ff:18:1c:41:31:6d:ea:23:dc:ce:cf:d7:3d:f0: ab:0a:ae:5f -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUdFAjS1hAya/1r5QbEQXeOg2wZGswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDczMTEwNTYzMloX DTI1MDczMDExMDEzMlowMzExMC8GA1UEAxMoQ0M4ODFGRTRBMkI0OTU4QTRBNzU3 MTJCNTZFRDBBOTYzMjUyRkFDNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9nWuWcDbcNXGqPnh8Y1tpBMghe7n3kvk2WKSw5qYtNRHYYvtNCYXKBLS2r 8DzaYk5kGQSMH5E7BGVFgy40B+X2qPXh94csjVPImI1RjexYaPWA/3XmYvq91qPH MZffR5h/5adLGC+CutEMr5ui3IeKX1fGoQuOHsS8dGQD2SQUE5KcD96fW1JucJvb 9244sU5LMGtpfQbbIGqx1lsnV8yNQ8JdieGm0ooOUrZvXUSGlYrln2TSFRsDtUYo GlGOxRfEXsL9Vog+e8VLb0RBVQdm5dW+aJWd1w6Nl/9NWhzWT6yhVNLM5lDCAJje BtSSZZbhczwErL9rG9kEB/8o0NUCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBTMiB/k orSVikp1cStW7QqWMlL6xTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY3MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAmfgZAMEAmfjkDANBAIAAjAHAwUAJACtYDANBgkqhkiG9w0BAQsF AAOCAQEAXOixskOIX0zNFd0/lbDmPHAkFsr+zHkBTo5Zqdm8dJkmnU4I2q8da9KN Evu0t+zVt78JHy4oix6+v1U2CuwXXlo0efZQ2ndh1MqvIIUQ9Mua7iBrQuwa0WPd 4rDVp1uV32ZBtQbGLBRPISnZdmaeO6jbieQPEqOshMpPW5sGYfix+90Ji2L6+s7G u/y4dNedNqIyf4ozmsYl6F1YhtWnVkjv8RyS54IrOlioknXKMR+WtUulTHRJCaSs YJXxDgmwImIfIwV5DxHTnmt2+V09438j85rHGqr69Jje9fRJz+yegiFc8PARrTlt LL+ccv8YHEExbeoj3M7P1z3wqwquXw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:48 2024 by rpki-client on console-ams.rpki-client.org