$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141889.roa File: AS141889.roa (raw, json) Hash identifier: KNyzogZ3N0qBiImF/wYSPunup+KUaIgVgwOioQvze9M= Subject key identifier: 5F:2D:80:23:DF:0B:6C:D1:24:E3:ED:55:EA:0C:00:5F:DA:7F:BD:03 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5D55C37085F59C987EB9D51EBFC679A8673682DA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141889.roa Signing time: Mon 23 Sep 2024 09:00:00 +0000 ROA not before: Mon 23 Sep 2024 08:55:00 +0000 ROA not after: Mon 22 Sep 2025 09:00:00 +0000 asID: 141889 IP address blocks: 103.163.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:55:c3:70:85:f5:9c:98:7e:b9:d5:1e:bf:c6:79:a8:67:36:82:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 23 08:55:00 2024 GMT Not After : Sep 22 09:00:00 2025 GMT Subject: CN=5F2D8023DF0B6CD124E3ED55EA0C005FDA7FBD03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c4:d3:3b:84:1e:a0:20:9a:68:ce:5b:6b:a8: fa:31:ff:46:0f:e4:52:85:65:23:8f:e7:3f:e5:ed: dd:58:27:e4:0d:23:79:b5:55:f7:f6:82:98:b1:e6: cb:84:86:18:a3:72:66:22:b5:96:92:51:ae:80:c8: 37:88:d2:42:8e:d6:70:cd:a4:f9:84:cd:4e:db:53: c7:34:7c:77:94:06:57:46:81:90:04:4e:ee:f7:3f: 08:3a:08:47:10:a7:bf:ef:99:e0:3f:10:90:77:9d: ec:75:2f:99:18:d4:c0:61:6e:76:80:65:be:13:bc: fa:45:4b:9e:4d:1b:16:9a:93:e2:99:ab:c5:54:d6: 99:39:47:2e:05:f6:0b:30:ee:35:c6:dc:de:dd:72: ac:aa:54:0e:cd:2d:52:86:51:d1:85:60:90:0a:91: c9:ed:e4:1e:f9:1a:45:8b:eb:a6:72:ca:24:f6:69: f3:6a:93:03:c4:00:5a:38:81:b3:a3:a6:8b:95:5d: d2:0d:5e:15:05:1a:68:12:bc:ba:0a:94:46:9b:e4: 22:c4:b8:6f:03:4d:46:27:f4:1e:14:ed:14:d2:24: 5d:a7:1f:45:bc:d6:74:cd:86:85:6e:8f:17:09:85: f2:3d:5a:53:5e:2a:db:a4:62:a9:79:dd:3d:28:00: d3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:2D:80:23:DF:0B:6C:D1:24:E3:ED:55:EA:0C:00:5F:DA:7F:BD:03 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141889.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.13.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:38:b2:24:16:b2:93:a3:4a:6f:78:45:d3:23:ca:46:2f:77: 0e:18:56:1c:74:fc:da:1e:51:05:c6:13:55:aa:d8:38:3b:57: 28:06:8c:84:0e:94:7c:7b:d6:32:57:f4:2a:eb:5b:b0:ff:55: ab:9d:8a:ba:db:e9:1b:4b:de:9a:9e:3a:a4:04:96:00:7e:68: 29:eb:be:a5:69:db:bf:9e:e0:bf:4e:0c:27:84:1d:28:4a:44: 0d:a6:73:c5:4c:19:2b:f0:3b:8d:dd:c1:66:d9:8c:dd:71:bc: 35:92:53:74:5e:c1:69:d7:39:44:62:cb:c3:fc:3e:9e:dd:35: 85:e4:65:cf:12:30:25:ce:5e:bb:95:d5:9d:c4:52:ec:bf:a3: d8:a9:a9:3a:24:f6:6c:1c:b4:e5:ba:9c:c5:c2:59:f1:b7:ed: 6b:5a:63:72:cd:29:21:9d:3f:cc:c6:b0:e1:b2:7a:c7:da:a8: f1:bb:ae:4d:22:b3:e3:5d:91:54:35:61:5a:20:ed:27:25:df: c1:c4:15:2d:65:c5:a0:59:da:9a:6d:94:ab:6f:48:66:42:89: 3e:2d:fe:b9:72:59:38:bb:9c:57:c7:74:ea:54:07:52:92:24: 12:40:ef:70:9b:12:54:e2:0f:1a:bf:45:47:db:f1:37:cc:46: 75:1a:49:2a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXVXDcIX1nJh+udUev8Z5qGc2gtowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkyMzA4NTUwMFoX DTI1MDkyMjA5MDAwMFowMzExMC8GA1UEAxMoNUYyRDgwMjNERjBCNkNEMTI0RTNF RDU1RUEwQzAwNUZEQTdGQkQwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMLE0zuEHqAgmmjOW2uo+jH/Rg/kUoVlI4/nP+Xt3Vgn5A0jebVV9/aCmLHm y4SGGKNyZiK1lpJRroDIN4jSQo7WcM2k+YTNTttTxzR8d5QGV0aBkARO7vc/CDoI RxCnv++Z4D8QkHed7HUvmRjUwGFudoBlvhO8+kVLnk0bFpqT4pmrxVTWmTlHLgX2 CzDuNcbc3t1yrKpUDs0tUoZR0YVgkAqRye3kHvkaRYvrpnLKJPZp82qTA8QAWjiB s6Omi5Vd0g1eFQUaaBK8ugqURpvkIsS4bwNNRif0HhTtFNIkXacfRbzWdM2GhW6P FwmF8j1aU14q26RiqXndPSgA05UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRfLYAj 3wts0STj7VXqDABf2n+9AzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTg4OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGejDTANBgkqhkiG9w0BAQsFAAOCAQEAPjiyJBayk6NKb3hF0yPK Ri93DhhWHHT82h5RBcYTVarYODtXKAaMhA6UfHvWMlf0KutbsP9Vq52KutvpG0ve mp46pASWAH5oKeu+pWnbv57gv04MJ4QdKEpEDaZzxUwZK/A7jd3BZtmM3XG8NZJT dF7Badc5RGLLw/w+nt01heRlzxIwJc5eu5XVncRS7L+j2KmpOiT2bBy05bqcxcJZ 8bfta1pjcs0pIZ0/zMaw4bJ6x9qo8buuTSKz412RVDVhWiDtJyXfwcQVLWXFoFna mm2Uq29IZkKJPi3+uXJZOLucV8d06lQHUpIkEkDvcJsSVOIPGr9FR9vxN8xGdRpJ Kg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:55 2024 by rpki-client on console-fra.rpki-client.org