$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141899.roa File: AS141899.roa (raw, json) Hash identifier: dKkTHha91IjR9gtimZpS4JBaMj7z9d5ztOrliX6n9E4= Subject key identifier: 55:B4:D5:67:3E:F1:D2:C4:70:A1:57:07:AD:ED:AF:E6:40:31:57:5E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 51F390E0E4AB8F2DEDBD71EECBF3745CFF55C823 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141899.roa Signing time: Mon 24 Feb 2025 03:16:16 +0000 ROA not before: Mon 24 Feb 2025 03:11:16 +0000 ROA not after: Mon 23 Feb 2026 03:16:16 +0000 asID: 141899 IP address blocks: 103.164.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:f3:90:e0:e4:ab:8f:2d:ed:bd:71:ee:cb:f3:74:5c:ff:55:c8:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 24 03:11:16 2025 GMT Not After : Feb 23 03:16:16 2026 GMT Subject: CN=55B4D5673EF1D2C470A15707ADEDAFE64031575E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e5:95:aa:26:14:f4:07:7f:a4:ae:71:1f:26: e0:9a:9e:9e:4e:4e:27:a0:6f:1e:85:c4:7a:4a:fd: f6:52:7e:41:5d:fd:ae:fc:81:dd:29:27:f7:24:53: c1:dc:be:24:59:77:c0:1e:02:99:dd:15:96:2b:06: 41:89:7a:77:cc:97:cd:68:61:e7:70:9a:e6:5b:21: d8:af:92:ba:e5:51:f6:66:22:d3:43:39:01:62:73: 1e:80:b8:11:d0:30:ce:f8:df:fe:bf:bb:b4:6c:33: 2e:3b:ba:8d:ee:36:64:fa:b8:53:ec:0d:51:46:99: 67:9f:c0:79:6b:28:7d:25:58:38:cd:8a:a5:6d:0b: b7:aa:6f:4a:2e:b0:aa:ed:e0:3a:1f:9e:dd:59:ef: e0:c1:6a:1b:f4:87:20:10:4d:2d:96:75:20:b8:c5: 0c:80:7a:da:f0:24:3c:dc:56:98:b9:98:4f:a0:23: bf:e7:01:09:ea:8e:4e:24:68:63:6c:cf:17:9e:62: 7d:2f:48:05:17:bf:bd:f5:11:ea:9e:8a:ad:ef:7a: 9f:4d:97:ec:b0:77:19:66:a9:55:0d:e0:0d:da:8d: ae:cb:2f:19:64:61:31:6f:06:46:99:08:5e:f8:b3: 7e:ad:10:fd:7d:ff:d8:74:46:08:3d:36:34:25:7d: 0e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B4:D5:67:3E:F1:D2:C4:70:A1:57:07:AD:ED:AF:E6:40:31:57:5E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141899.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.20.0/23 Signature Algorithm: sha256WithRSAEncryption 12:c9:a2:12:4c:86:01:33:fd:85:83:e2:c0:a7:e8:78:d8:d3: 21:c5:0a:4a:64:62:02:cc:0c:2e:39:e2:c0:f4:e0:12:0b:3d: f5:30:14:79:9c:07:2b:e5:31:6f:b7:37:4e:b1:96:f3:b9:89: 0b:a8:16:ce:e2:e4:80:82:0b:46:fa:d5:c8:47:90:4a:db:0b: 2a:e3:3a:3a:89:c1:f8:55:2f:3a:a8:53:12:d6:93:e4:3c:69: 2c:81:aa:7a:f9:ee:73:5e:da:6f:72:2b:31:22:3e:90:56:6e: de:e4:5e:f3:08:03:be:d7:00:90:19:32:f1:09:e7:e2:a0:62: bc:46:56:b0:8b:ab:e8:f4:7a:41:9a:9d:3f:17:47:71:2a:78: 07:b0:35:9e:2b:0d:eb:e4:4c:ed:f4:ea:c7:bb:ef:47:18:26: 04:77:59:8b:f6:25:cc:db:59:6d:23:ce:99:b3:a2:0b:f4:13: fc:51:04:ae:0b:29:52:0b:72:8c:3d:89:bd:2e:61:9b:31:dd: bc:b6:7e:7e:68:38:32:4a:1f:2c:4e:54:e2:07:0e:f6:c6:06: de:b3:19:94:54:31:54:e4:b4:8d:39:e8:6b:cf:52:03:f4:d9: ae:1a:e0:9b:9c:69:4a:52:32:4d:28:ea:41:ef:0f:69:7d:53: 13:0b:9c:eb -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUfOQ4OSrjy3tvXHuy/N0XP9VyCMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIyNDAzMTExNloX DTI2MDIyMzAzMTYxNlowMzExMC8GA1UEAxMoNTVCNEQ1NjczRUYxRDJDNDcwQTE1 NzA3QURFREFGRTY0MDMxNTc1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/llaomFPQHf6SucR8m4Jqenk5OJ6BvHoXEekr99lJ+QV39rvyB3Skn9yRT wdy+JFl3wB4Cmd0VlisGQYl6d8yXzWhh53Ca5lsh2K+SuuVR9mYi00M5AWJzHoC4 EdAwzvjf/r+7tGwzLju6je42ZPq4U+wNUUaZZ5/AeWsofSVYOM2KpW0Lt6pvSi6w qu3gOh+e3Vnv4MFqG/SHIBBNLZZ1ILjFDIB62vAkPNxWmLmYT6Ajv+cBCeqOTiRo Y2zPF55ifS9IBRe/vfUR6p6Kre96n02X7LB3GWapVQ3gDdqNrssvGWRhMW8GRpkI Xvizfq0Q/X3/2HRGCD02NCV9DmUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRVtNVn PvHSxHChVwet7a/mQDFXXjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTg5OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWekFDANBgkqhkiG9w0BAQsFAAOCAQEAEsmiEkyGATP9hYPiwKfo eNjTIcUKSmRiAswMLjniwPTgEgs99TAUeZwHK+Uxb7c3TrGW87mJC6gWzuLkgIIL RvrVyEeQStsLKuM6OonB+FUvOqhTEtaT5DxpLIGqevnuc17ab3IrMSI+kFZu3uRe 8wgDvtcAkBky8Qnn4qBivEZWsIur6PR6QZqdPxdHcSp4B7A1nisN6+RM7fTqx7vv RxgmBHdZi/YlzNtZbSPOmbOiC/QT/FEErgspUgtyjD2JvS5hmzHdvLZ+fmg4Mkof LE5U4gcO9sYG3rMZlFQxVOS0jTnoa89SA/TZrhrgm5xpSlIyTSjqQe8PaX1TEwuc 6w== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:23 2025 by rpki-client