$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141673.roa File: AS141673.roa (raw, json) Hash identifier: vd0MdVkdB/I8r+nQ+gcugMLj/RBn+f84ErkVM0spwsc= Subject key identifier: DC:48:39:04:F4:D4:5F:55:22:2F:9B:F6:BB:15:07:94:C7:B6:E6:03 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 41398637949F9225BA79D1F75202AA1B3896BD5C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141673.roa Signing time: Fri 02 Feb 2024 09:28:48 +0000 ROA not before: Fri 02 Feb 2024 09:23:48 +0000 ROA not after: Fri 31 Jan 2025 09:28:48 +0000 asID: 141673 IP address blocks: 103.210.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:39:86:37:94:9f:92:25:ba:79:d1:f7:52:02:aa:1b:38:96:bd:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 2 09:23:48 2024 GMT Not After : Jan 31 09:28:48 2025 GMT Subject: CN=DC483904F4D45F55222F9BF6BB150794C7B6E603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:27:0a:9b:a0:47:bb:ad:89:5e:19:c3:e3:3c: c7:07:17:56:f4:44:fe:05:45:14:41:ef:09:45:f9: 1a:b7:fe:85:3a:2b:a2:f4:65:22:2f:d5:88:db:ab: 74:74:f2:98:1f:90:44:51:bc:07:17:ac:d7:fa:15: ef:ba:6d:82:e2:00:1d:39:d6:f7:4e:1b:47:e7:53: 0e:c0:49:25:55:93:72:5d:93:ff:f5:95:cc:ab:81: ff:a7:22:13:85:1e:c3:c1:e3:aa:0c:31:e9:88:bf: e4:5f:fe:0c:96:1b:42:1d:31:6f:5e:af:8c:13:69: f2:38:40:13:74:52:bf:8c:cf:0d:01:8b:54:e7:17: 5d:a5:20:b6:12:84:56:65:3e:85:7f:bc:45:5f:6d: 0d:a7:7a:dc:1e:cb:5a:51:20:c2:9b:5c:a0:fb:d2: 58:95:1d:b6:b1:c4:d2:f0:37:ea:6e:6c:b4:06:42: fe:83:53:2d:60:be:b3:0d:4b:e3:ad:48:cf:c9:87: 42:04:5d:97:11:f4:c6:e7:9c:bf:c7:db:99:6c:f7: 71:e1:3f:81:0f:31:ac:0e:9a:53:56:53:54:e5:21: 92:07:34:12:92:0b:d2:d1:d3:9a:78:6a:33:3c:df: 57:ad:e8:f9:7c:82:a6:54:c1:23:10:2f:3a:81:3a: b5:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:48:39:04:F4:D4:5F:55:22:2F:9B:F6:BB:15:07:94:C7:B6:E6:03 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141673.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.52.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:96:8f:5d:f1:f5:1b:3f:a5:d1:08:6c:d4:d4:7f:76:ba:19: 6b:6f:a2:17:f8:2e:03:4c:8e:09:7a:bc:f7:70:1b:7b:cd:ae: c0:ac:bb:8c:f5:c4:9b:84:e1:3e:31:78:a5:9b:cf:78:11:82: 56:7e:ed:93:cd:f0:f3:e6:37:24:c9:93:be:0c:fd:b0:2c:1c: 07:ee:d5:c3:8b:87:12:57:d0:08:66:3d:7f:5a:45:ab:a9:5c: 67:a4:21:9c:ff:e8:a2:82:7e:12:05:86:cd:ab:de:e1:e7:62: 69:e1:a8:ea:83:84:5b:61:6d:04:93:33:47:96:c0:c7:3d:41: c4:c3:f5:73:20:24:f7:14:be:7d:c7:0e:57:72:00:e1:20:f0: bd:0b:65:40:1a:ed:81:91:07:7c:04:0f:82:b7:92:61:76:fb: 01:ef:37:3e:30:12:a5:a0:8f:5e:d5:36:7c:b7:30:4b:2e:fe: 3f:e4:9f:a8:70:8f:1c:ac:47:4b:5b:f4:f1:c3:95:94:4e:82: 5a:fe:4f:44:80:54:4b:f7:a1:9b:fe:6f:51:77:ee:1c:81:d2: 9b:9e:38:93:eb:c6:75:6b:aa:d2:14:76:c0:06:80:1b:fc:7b: de:ff:83:62:a4:f6:5e:b5:a2:d4:04:b2:a0:0b:c1:e7:e5:a0: 13:45:77:9f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQTmGN5SfkiW6edH3UgKqGziWvVwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIwMjA5MjM0OFoX DTI1MDEzMTA5Mjg0OFowMzExMC8GA1UEAxMoREM0ODM5MDRGNEQ0NUY1NTIyMkY5 QkY2QkIxNTA3OTRDN0I2RTYwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMYnCpugR7utiV4Zw+M8xwcXVvRE/gVFFEHvCUX5Grf+hTorovRlIi/ViNur dHTymB+QRFG8Bxes1/oV77ptguIAHTnW904bR+dTDsBJJVWTcl2T//WVzKuB/6ci E4Uew8Hjqgwx6Yi/5F/+DJYbQh0xb16vjBNp8jhAE3RSv4zPDQGLVOcXXaUgthKE VmU+hX+8RV9tDad63B7LWlEgwptcoPvSWJUdtrHE0vA36m5stAZC/oNTLWC+sw1L 461Iz8mHQgRdlxH0xuecv8fbmWz3ceE/gQ8xrA6aU1ZTVOUhkgc0EpIL0tHTmnhq MzzfV63o+XyCplTBIxAvOoE6tXkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTcSDkE 9NRfVSIvm/a7FQeUx7bmAzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfSNDANBgkqhkiG9w0BAQsFAAOCAQEAfZaPXfH1Gz+l0Qhs1NR/ droZa2+iF/guA0yOCXq893Abe82uwKy7jPXEm4ThPjF4pZvPeBGCVn7tk83w8+Y3 JMmTvgz9sCwcB+7Vw4uHElfQCGY9f1pFq6lcZ6QhnP/oooJ+EgWGzave4ediaeGo 6oOEW2FtBJMzR5bAxz1BxMP1cyAk9xS+fccOV3IA4SDwvQtlQBrtgZEHfAQPgreS YXb7Ae83PjASpaCPXtU2fLcwSy7+P+SfqHCPHKxHS1v08cOVlE6CWv5PRIBUS/eh m/5vUXfuHIHSm544k+vGdWuq0hR2wAaAG/x73v+DYqT2XrWi1ASyoAvB5+WgE0V3 nw== -----END CERTIFICATE-----Generated at Fri May 3 03:08:30 2024 by rpki-client on console-ams.rpki-client.org