$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141890.roa File: AS141890.roa (raw, json) Hash identifier: 8ftqhhVVc/wybD9Bawdh50mPZM1mzVEvZotwKws8r5s= Subject key identifier: A4:94:D7:CD:72:44:AB:38:DC:41:1B:66:26:B6:44:C8:5F:70:5F:79 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1A3E965A3B91CFAA7F463FDC212334CCB549372A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141890.roa Signing time: Thu 12 Sep 2024 07:02:24 +0000 ROA not before: Thu 12 Sep 2024 06:57:24 +0000 ROA not after: Thu 11 Sep 2025 07:02:24 +0000 asID: 141890 IP address blocks: 103.76.178.0/24 maxlen: 24 103.163.39.0/24 maxlen: 24 103.200.116.0/23 maxlen: 24 103.200.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:3e:96:5a:3b:91:cf:aa:7f:46:3f:dc:21:23:34:cc:b5:49:37:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 12 06:57:24 2024 GMT Not After : Sep 11 07:02:24 2025 GMT Subject: CN=A494D7CD7244AB38DC411B6626B644C85F705F79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8a:98:19:59:2e:6f:60:4f:e1:df:59:dc:d9: 94:2c:f2:91:fd:23:c0:8f:d9:55:2c:0b:4b:c5:b0: 6b:ba:9e:90:db:be:0d:44:0d:89:f1:55:12:9f:e8: 42:07:c5:e0:7a:68:5c:3e:f2:51:66:83:66:c8:09: b5:14:2a:4d:d4:64:9d:05:9b:af:b9:4b:3a:a9:27: 7a:c5:f2:a0:55:e2:77:83:01:b3:1f:84:d7:ae:7e: 18:cb:24:d5:a1:14:be:b4:54:0a:8b:d1:e0:e5:0e: 55:f9:b5:6b:7b:be:f4:16:d6:55:18:7b:11:64:0e: 94:f7:da:d6:3e:09:43:f7:20:36:eb:de:5b:ed:bf: a9:ba:a1:1d:cb:05:ad:27:bc:0a:cf:26:99:90:0c: bc:22:1d:b1:1b:97:2e:56:3b:20:24:6b:30:ee:f6: a9:16:f3:be:c1:81:61:3a:f7:b5:8d:9e:7d:55:84: eb:2f:a4:8e:35:22:ac:b0:51:80:8c:7f:3c:c1:b5: 7e:f3:ba:b7:46:88:5e:26:1d:2f:81:2e:04:3e:9a: c0:85:46:2b:dd:80:b9:01:8c:1f:37:85:2e:48:82: 78:fc:eb:78:d1:c2:07:cd:04:61:14:8b:5e:97:24: d4:65:95:11:3c:72:1b:ab:10:d3:d3:54:8b:48:77: 5a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:94:D7:CD:72:44:AB:38:DC:41:1B:66:26:B6:44:C8:5F:70:5F:79 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141890.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.178.0/24 103.163.39.0/24 103.200.116.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:22:c0:3a:40:3a:93:aa:cb:05:d5:21:a5:81:f1:67:5a:43: ee:e6:93:9e:c3:10:06:d4:9e:99:ca:6e:c0:ee:76:3b:e2:15: b4:49:41:5e:f6:f2:b5:62:5d:d3:90:fc:49:09:68:4c:80:3c: eb:03:b4:d4:96:1d:b3:6e:ae:de:83:ce:dc:c4:84:ca:00:c3: c5:e9:d5:d0:7c:4c:3b:2e:00:27:c7:77:91:c2:4c:6b:fe:5b: 0f:ec:62:13:89:53:ba:4b:7c:10:5a:f2:2c:62:7b:fe:7d:bd: 8a:e8:8f:b9:f8:9d:de:ed:8e:3a:64:6e:be:4d:7c:f8:d1:ae: 15:c3:24:89:20:fe:b3:c9:d7:1f:e5:d7:3a:a3:a1:dd:18:f6: be:1d:37:d3:60:ec:19:52:5c:c1:84:b0:6e:c2:b8:9c:51:36: e8:9c:32:c7:a8:95:20:0c:89:07:4a:80:ab:fc:eb:76:44:b0: 00:e8:f2:41:fe:68:51:6e:10:87:d5:84:17:c4:3a:b2:d3:41: a9:f3:c2:a6:05:16:c2:58:60:b2:a0:93:61:58:6e:96:95:96: 7b:31:ca:df:3a:15:8b:7f:6b:9e:0a:ff:c5:81:9f:cc:09:52: 61:a0:ec:9e:71:24:4a:f4:13:f8:b7:4f:e6:50:7e:c3:b6:b1: e1:f2:67:f1 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUGj6WWjuRz6p/Rj/cISM0zLVJNyowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxMjA2NTcyNFoX DTI1MDkxMTA3MDIyNFowMzExMC8GA1UEAxMoQTQ5NEQ3Q0Q3MjQ0QUIzOERDNDEx QjY2MjZCNjQ0Qzg1RjcwNUY3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGKmBlZLm9gT+HfWdzZlCzykf0jwI/ZVSwLS8Wwa7qekNu+DUQNifFVEp/o QgfF4HpoXD7yUWaDZsgJtRQqTdRknQWbr7lLOqknesXyoFXid4MBsx+E165+GMsk 1aEUvrRUCovR4OUOVfm1a3u+9BbWVRh7EWQOlPfa1j4JQ/cgNuveW+2/qbqhHcsF rSe8Cs8mmZAMvCIdsRuXLlY7ICRrMO72qRbzvsGBYTr3tY2efVWE6y+kjjUirLBR gIx/PMG1fvO6t0aIXiYdL4EuBD6awIVGK92AuQGMHzeFLkiCePzreNHCB80EYRSL Xpck1GWVETxyG6sQ09NUi0h3WrkCAwEAAaOCAdwwggHYMB0GA1UdDgQWBBSklNfN ckSrONxBG2YmtkTIX3BfeTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTg5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEAGdMsgMEAGejJwMEAmfIdDANBgkqhkiG9w0BAQsFAAOCAQEASyLA OkA6k6rLBdUhpYHxZ1pD7uaTnsMQBtSemcpuwO52O+IVtElBXvbytWJd05D8SQlo TIA86wO01JYds26u3oPO3MSEygDDxenV0HxMOy4AJ8d3kcJMa/5bD+xiE4lTukt8 EFryLGJ7/n29iuiPufid3u2OOmRuvk18+NGuFcMkiSD+s8nXH+XXOqOh3Rj2vh03 02DsGVJcwYSwbsK4nFE26Jwyx6iVIAyJB0qAq/zrdkSwAOjyQf5oUW4Qh9WEF8Q6 stNBqfPCpgUWwlhgsqCTYVhulpWWezHK3zoVi39rngr/xYGfzAlSYaDsnnEkSvQT +LdP5lB+w7ax4fJn8Q== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:55 2024 by rpki-client on console-fra.rpki-client.org