$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141896.roa File: AS141896.roa (raw, json) Hash identifier: qQLx6Zf1W7kXuOIcr0yYCAEzobguEzxQ9jE2oB/nhzc= Subject key identifier: EA:F0:1F:83:61:A5:FB:9F:CB:EA:74:F3:18:D6:FD:2E:DB:4B:27:29 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4021A2BD0184A93B5F55333E05FA6F7E024119E3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141896.roa Signing time: Tue 09 Jan 2024 03:00:00 +0000 ROA not before: Tue 09 Jan 2024 02:55:00 +0000 ROA not after: Tue 07 Jan 2025 03:00:00 +0000 asID: 141896 IP address blocks: 103.163.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:21:a2:bd:01:84:a9:3b:5f:55:33:3e:05:fa:6f:7e:02:41:19:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 02:55:00 2024 GMT Not After : Jan 7 03:00:00 2025 GMT Subject: CN=EAF01F8361A5FB9FCBEA74F318D6FD2EDB4B2729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a4:e8:a1:18:8c:5c:71:d9:8d:52:01:b0:ac: b5:bd:3a:b0:18:b5:36:84:fe:34:15:11:3a:5a:3b: 85:26:bc:e7:42:77:ce:a8:a4:ac:29:77:3e:4e:1c: c8:13:6e:79:7d:cc:b4:f2:f2:4d:76:b4:4e:a6:a2: e0:3f:24:6a:33:7b:82:26:54:58:62:a3:60:a5:25: d1:a5:61:60:0e:d7:5d:9e:43:1a:32:32:16:be:ba: 2d:98:83:0c:ee:12:3a:0a:1a:19:a6:d0:b2:70:7c: 9d:dc:0d:94:0b:56:d5:49:8c:2e:1e:73:4a:7d:66: be:a5:c5:a3:bd:d7:9b:bb:f7:62:2a:90:0c:37:f7: c2:f8:54:e2:18:dc:72:91:3d:6d:ba:cb:96:3a:df: 3d:41:89:fc:e2:c3:7e:1e:bb:fa:8e:46:d7:5f:1d: b8:6c:0e:57:4e:cc:65:bc:64:18:46:23:09:a6:fd: 25:50:79:f8:aa:c0:53:1f:e9:e0:cb:69:06:2d:c5: 13:5c:6b:5f:8d:20:9c:75:82:ed:ef:9e:58:a7:66: 82:32:64:db:bf:d7:09:80:ae:27:14:a4:0c:a8:e8: ca:cc:7a:d2:1c:a1:a0:c5:9f:f6:8f:85:a3:f6:5c: 7d:97:85:97:ad:cc:65:62:01:e3:af:3d:44:56:ea: 44:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F0:1F:83:61:A5:FB:9F:CB:EA:74:F3:18:D6:FD:2E:DB:4B:27:29 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141896.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.226.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:b1:19:3b:77:62:7e:b3:12:73:e1:5a:71:bc:0a:70:05:32: 9f:2d:c6:0a:52:df:79:ea:ea:c6:b6:0e:f8:08:c0:b0:2b:0b: 39:92:9e:50:6f:7d:17:45:bc:30:89:dc:93:f5:8f:4e:dc:f9: 73:c4:72:3b:98:15:82:46:4d:68:ca:0c:f2:0b:a3:c5:65:ef: 78:fe:45:b8:24:ab:dd:97:92:6d:f0:86:bd:53:05:22:6b:6b: 5a:8b:e2:e4:28:56:66:c8:31:6c:53:a0:0e:18:ea:cb:b4:e7: 08:ac:cd:c1:c8:69:00:9c:a9:b7:3d:69:d4:23:67:b0:62:c2: 41:f8:b4:a4:05:a3:f7:2f:6c:84:f3:9b:af:0f:42:40:31:77: 49:a1:39:ef:62:f1:52:2e:8c:6e:02:d1:92:ed:fa:11:bd:8c: 25:0a:3a:cc:6a:4b:c8:67:41:a2:5c:85:fd:be:d2:83:81:e2: 53:1b:7d:3e:53:40:4d:76:86:79:46:ab:6f:05:15:91:e8:9a: 49:56:01:88:72:d5:99:8a:36:27:e2:90:67:18:69:18:1f:fb: df:c5:95:69:53:18:11:60:8c:63:e7:5a:26:7c:95:a4:34:96: c5:af:84:75:e1:16:30:f6:64:56:1c:6f:a3:40:ff:5e:18:4b: 70:3d:38:58 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQCGivQGEqTtfVTM+BfpvfgJBGeMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAyNTUwMFoX DTI1MDEwNzAzMDAwMFowMzExMC8GA1UEAxMoRUFGMDFGODM2MUE1RkI5RkNCRUE3 NEYzMThENkZEMkVEQjRCMjcyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCk6KEYjFxx2Y1SAbCstb06sBi1NoT+NBUROlo7hSa850J3zqikrCl3Pk4c yBNueX3MtPLyTXa0Tqai4D8kajN7giZUWGKjYKUl0aVhYA7XXZ5DGjIyFr66LZiD DO4SOgoaGabQsnB8ndwNlAtW1UmMLh5zSn1mvqXFo73Xm7v3YiqQDDf3wvhU4hjc cpE9bbrLljrfPUGJ/OLDfh67+o5G118duGwOV07MZbxkGEYjCab9JVB5+KrAUx/p 4MtpBi3FE1xrX40gnHWC7e+eWKdmgjJk27/XCYCuJxSkDKjoysx60hyhoMWf9o+F o/ZcfZeFl63MZWIB4689RFbqRMUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTq8B+D YaX7n8vqdPMY1v0u20snKTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTg5Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWej4jANBgkqhkiG9w0BAQsFAAOCAQEAa7EZO3difrMSc+FacbwK cAUyny3GClLfeerqxrYO+AjAsCsLOZKeUG99F0W8MInck/WPTtz5c8RyO5gVgkZN aMoM8gujxWXveP5FuCSr3ZeSbfCGvVMFImtrWovi5ChWZsgxbFOgDhjqy7TnCKzN wchpAJyptz1p1CNnsGLCQfi0pAWj9y9shPObrw9CQDF3SaE572LxUi6MbgLRku36 Eb2MJQo6zGpLyGdBolyF/b7Sg4HiUxt9PlNATXaGeUarbwUVkeiaSVYBiHLVmYo2 J+KQZxhpGB/738WVaVMYEWCMY+daJnyVpDSWxa+EdeEWMPZkVhxvo0D/XhhLcD04 WA== -----END CERTIFICATE-----Generated at Tue May 7 16:42:40 2024 by rpki-client on console-ams.rpki-client.org