$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141671.roa File: AS141671.roa (raw, json) Hash identifier: lRoc4bKT99fgyn+OXwaWHPViaz0YTsOuMYvj9eTrcfo= Subject key identifier: 1C:16:64:F7:62:4B:1E:C1:09:20:F0:8B:F8:0F:00:22:5B:CD:4B:DF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 45F9226AF1EF041F5ADBDA67A4C77B80865D7F61 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141671.roa Signing time: Wed 30 Aug 2023 10:00:38 +0000 ROA not before: Wed 30 Aug 2023 09:55:38 +0000 ROA not after: Wed 28 Aug 2024 10:00:38 +0000 asID: 141671 IP address blocks: 103.224.100.0/22 maxlen: 24 103.227.144.0/22 maxlen: 24 2400:ad60::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:f9:22:6a:f1:ef:04:1f:5a:db:da:67:a4:c7:7b:80:86:5d:7f:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 30 09:55:38 2023 GMT Not After : Aug 28 10:00:38 2024 GMT Subject: CN=1C1664F7624B1EC10920F08BF80F00225BCD4BDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3a:c9:33:84:73:4a:6a:55:38:cb:74:a0:1f: 38:50:37:ae:da:c0:bb:cc:0e:26:28:cf:4a:14:6e: 23:85:77:89:5b:66:4a:ea:e8:a8:3f:f7:49:0a:bf: 3a:80:d7:0c:db:4c:50:13:09:87:ad:78:30:ce:f3: 05:72:2e:4c:63:1d:d8:2e:7b:69:8c:36:8b:a3:bc: 03:d1:29:c1:58:4a:44:6c:1c:d8:88:88:12:07:f2: d6:b8:69:53:66:d4:24:9a:06:ae:31:c8:49:f7:c1: 93:3b:41:41:e9:93:39:30:1c:45:23:05:19:e9:52: d0:fb:5f:07:09:e7:b0:38:66:2d:60:c2:fa:d6:f4: 95:b8:1c:05:32:13:db:d1:1c:49:ba:0b:7b:85:75: 68:ca:b2:f0:a1:25:1b:d4:e3:ef:90:08:c7:46:7b: 70:b9:36:96:9f:c0:fa:93:19:54:b1:8a:c0:d2:2c: ce:62:5c:93:d2:7d:5d:7d:86:a9:8d:00:31:2e:3a: 62:e3:99:cb:90:d6:6c:31:ca:d3:d2:a5:24:16:af: d5:41:f7:ee:15:18:a0:77:6c:6c:18:a6:31:dd:40: 77:e1:75:94:fb:1d:b8:b2:c0:42:d2:48:2b:27:2f: 55:ad:3b:9d:68:9d:c0:c4:23:57:ed:14:21:07:86: c2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:16:64:F7:62:4B:1E:C1:09:20:F0:8B:F8:0F:00:22:5B:CD:4B:DF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141671.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.100.0/22 103.227.144.0/22 IPv6: 2400:ad60::/32 Signature Algorithm: sha256WithRSAEncryption 0b:09:e9:9e:cc:e6:ed:82:72:90:7b:f4:17:48:d0:77:f8:c5: 54:ff:36:dc:2a:1c:2f:32:8c:93:ff:d4:9a:fb:9f:57:3d:d9: 73:63:bd:45:cb:b3:14:df:d9:ba:aa:95:de:b0:52:15:1b:70: 7c:35:24:8f:ed:21:bb:5a:c3:21:61:d4:9e:c5:6f:cc:c2:b7: 76:95:2b:eb:a1:98:d3:00:f7:0a:4a:23:78:04:bc:b8:09:a6: 33:e2:37:eb:e1:1d:54:ee:a2:7d:b0:61:ba:ea:b4:57:fc:ca: 76:e5:bd:ea:88:47:da:6a:2e:06:70:5a:39:93:f6:79:ee:1f: da:12:80:05:ec:60:ba:30:1d:f4:33:d9:e5:28:a6:d5:21:a5: a9:f0:f5:08:6d:55:11:65:3f:5a:49:1f:47:43:0f:4c:a6:29: ba:14:0d:c2:85:cb:5b:e5:44:85:01:0e:0e:44:83:b2:c1:cf: 88:3b:59:bf:0e:24:fb:87:ae:24:8c:37:ba:fe:5c:19:c3:78: 9a:19:cd:93:db:72:14:2c:b6:d5:52:57:d7:ab:28:c4:7c:84: a1:ab:45:41:b0:ff:6a:3e:1d:01:aa:9a:ef:2c:d4:b5:90:61: b5:e7:1f:66:c4:be:1c:4a:81:99:f8:d8:13:f3:8d:a9:73:7e: 61:7b:7e:8d -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIURfkiavHvBB9a29pnpMd7gIZdf2EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgzMDA5NTUzOFoX DTI0MDgyODEwMDAzOFowMzExMC8GA1UEAxMoMUMxNjY0Rjc2MjRCMUVDMTA5MjBG MDhCRjgwRjAwMjI1QkNENEJERjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMY6yTOEc0pqVTjLdKAfOFA3rtrAu8wOJijPShRuI4V3iVtmSuroqD/3SQq/ OoDXDNtMUBMJh614MM7zBXIuTGMd2C57aYw2i6O8A9EpwVhKRGwc2IiIEgfy1rhp U2bUJJoGrjHISffBkztBQemTOTAcRSMFGelS0PtfBwnnsDhmLWDC+tb0lbgcBTIT 29EcSboLe4V1aMqy8KElG9Tj75AIx0Z7cLk2lp/A+pMZVLGKwNIszmJck9J9XX2G qY0AMS46YuOZy5DWbDHK09KlJBav1UH37hUYoHdsbBimMd1Ad+F1lPsduLLAQtJI KycvVa07nWidwMQjV+0UIQeGwlcCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBQcFmT3 YksewQkg8Iv4DwAiW81L3zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY3MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAmfgZAMEAmfjkDANBAIAAjAHAwUAJACtYDANBgkqhkiG9w0BAQsF AAOCAQEACwnpnszm7YJykHv0F0jQd/jFVP823CocLzKMk//UmvufVz3Zc2O9Rcuz FN/ZuqqV3rBSFRtwfDUkj+0hu1rDIWHUnsVvzMK3dpUr66GY0wD3CkojeAS8uAmm M+I36+EdVO6ifbBhuuq0V/zKduW96ohH2mouBnBaOZP2ee4f2hKABexgujAd9DPZ 5Sim1SGlqfD1CG1VEWU/WkkfR0MPTKYpuhQNwoXLW+VEhQEODkSDssHPiDtZvw4k +4euJIw3uv5cGcN4mhnNk9tyFCy21VJX16soxHyEoatFQbD/aj4dAaqa7yzUtZBh tecfZsS+HEqBmfjYE/ONqXN+YXt+jQ== -----END CERTIFICATE-----Generated at Wed May 8 18:12:15 2024 by rpki-client on console-fra.rpki-client.org