$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141889.roa File: AS141889.roa (raw, json) Hash identifier: 65kapj7RGMWC7dwvZLmPJFHhYdDa+x247on7m6cA4JU= Subject key identifier: 8B:52:02:C4:05:54:27:D4:B6:DC:45:26:F4:3F:36:73:82:AD:86:CF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0324221678CA7E3739F276FA554C5DDBDA67CE95 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141889.roa Signing time: Mon 23 Oct 2023 08:05:42 +0000 ROA not before: Mon 23 Oct 2023 08:00:42 +0000 ROA not after: Mon 21 Oct 2024 08:05:42 +0000 asID: 141889 IP address blocks: 103.163.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:24:22:16:78:ca:7e:37:39:f2:76:fa:55:4c:5d:db:da:67:ce:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 23 08:00:42 2023 GMT Not After : Oct 21 08:05:42 2024 GMT Subject: CN=8B5202C4055427D4B6DC4526F43F367382AD86CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:56:bb:7b:2c:46:0e:c0:b4:0b:1f:a8:b2:22: a0:d9:ad:6c:00:ef:d6:5a:6a:a3:7c:3d:7c:82:29: 7e:8e:51:3c:3e:50:3e:33:14:3c:06:83:ee:92:71: 9d:6d:bc:c7:59:f5:6b:b9:d1:de:b1:be:88:2b:85: e4:11:19:2f:e1:b9:a2:bc:10:c8:c8:e3:ec:c9:35: 10:96:c1:fb:05:30:51:45:72:86:f1:0f:0a:82:13: 28:c0:45:68:3b:fc:38:98:fc:3e:17:b7:90:1f:c7: 28:19:a2:f4:3e:f0:85:b4:d1:f2:01:6f:ff:5a:47: 10:fb:03:34:41:f7:78:6c:95:e0:bc:a1:d5:43:e4: c2:b1:77:c0:4d:7e:a4:55:16:f8:73:b5:0e:25:6d: b4:50:c7:f2:09:fd:74:ab:04:41:51:c8:9d:1e:4b: e4:38:0f:21:ce:32:1e:a3:4e:17:bd:f8:25:a6:54: 67:8f:fa:3d:c4:0b:56:a3:d5:db:59:90:c4:63:9e: b7:c0:75:53:57:3c:fa:f4:c0:74:ab:1d:47:a4:e2: 43:e7:e6:b0:c4:5b:9e:53:16:c8:e8:fd:97:22:96: 40:0f:46:25:c9:ba:15:0e:69:1b:78:52:9c:71:36: 48:aa:fc:f1:28:d9:bd:c7:58:7f:d6:52:8f:20:0b: 64:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:52:02:C4:05:54:27:D4:B6:DC:45:26:F4:3F:36:73:82:AD:86:CF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141889.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.13.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:6a:8c:fc:ac:e7:87:a3:e2:c5:92:23:2d:89:b2:4b:4a:60: 4d:7d:1b:3f:53:d1:c6:41:39:2c:b1:f6:6f:6b:15:5b:af:cc: 9c:57:a3:da:50:35:d4:6b:4a:ac:3b:ba:10:7e:b2:35:25:50: f3:dc:e8:3d:47:d5:78:31:a5:64:f8:6b:0d:de:46:42:83:ac: b5:cf:c7:03:23:b4:3c:56:59:96:b1:7f:20:bc:97:8d:d2:38: b7:17:aa:ba:76:a1:66:af:37:b6:d7:c5:30:0f:c1:45:96:7e: 97:9b:8f:23:a9:6b:8f:41:18:5a:38:e9:1a:75:bb:06:3c:eb: 17:db:97:95:e6:df:c1:f6:d3:6d:7d:7e:5c:ac:94:49:4b:a2: 1b:64:09:da:08:bb:c6:98:8c:f8:29:d4:e1:49:30:f1:64:eb: c2:0e:db:f8:90:f6:8c:c5:1d:fc:c6:fa:30:9e:e4:53:f0:92: 9a:d1:a8:c1:3c:5d:42:ed:04:fb:69:11:c3:d6:d3:52:dd:3f: 96:d7:4b:7d:b8:db:ac:e8:0c:d1:42:7c:da:be:a6:25:d5:63: 2d:a3:ee:49:62:bb:96:c0:17:6a:4b:2b:7b:31:7a:6a:f2:58: 43:7c:1c:98:8a:fd:83:05:f8:7a:ed:7c:d7:ae:ff:e6:71:6a: e2:2a:6b:47 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAyQiFnjKfjc58nb6VUxd29pnzpUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAyMzA4MDA0MloX DTI0MTAyMTA4MDU0MlowMzExMC8GA1UEAxMoOEI1MjAyQzQwNTU0MjdENEI2REM0 NTI2RjQzRjM2NzM4MkFEODZDRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPZWu3ssRg7AtAsfqLIioNmtbADv1lpqo3w9fIIpfo5RPD5QPjMUPAaD7pJx nW28x1n1a7nR3rG+iCuF5BEZL+G5orwQyMjj7Mk1EJbB+wUwUUVyhvEPCoITKMBF aDv8OJj8Phe3kB/HKBmi9D7whbTR8gFv/1pHEPsDNEH3eGyV4Lyh1UPkwrF3wE1+ pFUW+HO1DiVttFDH8gn9dKsEQVHInR5L5DgPIc4yHqNOF734JaZUZ4/6PcQLVqPV 21mQxGOet8B1U1c8+vTAdKsdR6TiQ+fmsMRbnlMWyOj9lyKWQA9GJcm6FQ5pG3hS nHE2SKr88SjZvcdYf9ZSjyALZGkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSLUgLE BVQn1LbcRSb0PzZzgq2GzzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTg4OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGejDTANBgkqhkiG9w0BAQsFAAOCAQEAO2qM/Kznh6PixZIjLYmy S0pgTX0bP1PRxkE5LLH2b2sVW6/MnFej2lA11GtKrDu6EH6yNSVQ89zoPUfVeDGl ZPhrDd5GQoOstc/HAyO0PFZZlrF/ILyXjdI4txequnahZq83ttfFMA/BRZZ+l5uP I6lrj0EYWjjpGnW7BjzrF9uXlebfwfbTbX1+XKyUSUuiG2QJ2gi7xpiM+CnU4Ukw 8WTrwg7b+JD2jMUd/Mb6MJ7kU/CSmtGowTxdQu0E+2kRw9bTUt0/ltdLfbjbrOgM 0UJ82r6mJdVjLaPuSWK7lsAXaksrezF6avJYQ3wcmIr9gwX4eu18167/5nFq4ipr Rw== -----END CERTIFICATE-----Generated at Thu May 9 00:29:15 2024 by rpki-client on console-ams.rpki-client.org