$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141902.roa File: AS141902.roa (raw, json) Hash identifier: hlubwEoW+RJvnip8VM6/FqqVroLqalThOYpMaDPm/Fo= Subject key identifier: 57:CB:4C:CE:31:23:4E:C9:CE:E8:78:66:B2:BB:27:96:D4:41:78:6F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 052174460D6BE28406AF54A9A7B00FB61CABA578 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141902.roa Signing time: Tue 09 Jan 2024 04:00:22 +0000 ROA not before: Tue 09 Jan 2024 03:55:22 +0000 ROA not after: Tue 07 Jan 2025 04:00:22 +0000 asID: 141902 IP address blocks: 103.163.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:21:74:46:0d:6b:e2:84:06:af:54:a9:a7:b0:0f:b6:1c:ab:a5:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:22 2024 GMT Not After : Jan 7 04:00:22 2025 GMT Subject: CN=57CB4CCE31234EC9CEE87866B2BB2796D441786F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fd:43:ab:a9:ec:36:6b:57:67:49:19:07:bf: 27:b2:23:05:d8:98:a6:e5:d4:80:29:59:ed:47:72: 14:10:be:45:ba:61:d2:db:f9:b0:9e:32:87:59:35: f8:31:b7:ee:79:96:c3:b5:3e:35:c9:5e:00:0e:cb: b2:bf:53:1a:8e:50:82:fe:5d:0d:44:8d:14:53:10: ce:d3:28:c4:24:55:14:f1:f6:07:ab:97:98:f3:15: 4f:87:1d:28:07:b6:1f:56:8c:b6:ac:16:ba:eb:bd: ee:ef:84:8f:2e:6c:c4:1e:fa:a2:92:92:79:86:93: cc:cc:cd:42:54:9c:79:c8:16:02:1b:ee:c2:56:29: c3:13:01:66:d3:58:05:4b:4c:84:0f:e5:7e:40:2e: 0a:bb:f0:49:ce:9a:9e:2e:61:43:44:13:ee:d7:5b: ca:49:11:4d:5f:a1:9b:7f:57:f0:ed:8f:12:c8:f9: 55:41:8b:c9:ae:50:81:3a:05:3f:6f:82:22:23:e7: 45:a0:80:ba:e9:db:0c:7c:77:e5:d0:ad:9e:02:97: 07:c0:0a:4c:c5:f1:a8:b0:cd:80:68:ca:54:16:8e: 6a:a0:52:ce:dc:8b:07:87:2b:4e:b6:34:e6:69:d4: 03:a6:46:93:d3:47:7b:95:3e:23:0e:2d:71:07:87: 60:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:CB:4C:CE:31:23:4E:C9:CE:E8:78:66:B2:BB:27:96:D4:41:78:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141902.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.134.0/23 Signature Algorithm: sha256WithRSAEncryption 47:63:8e:6b:e5:e1:18:50:45:a7:75:c8:cc:9a:3a:a2:8f:03: 5f:f2:84:f0:75:40:41:dc:a7:6b:c2:65:a3:64:87:26:d0:7d: 0e:69:9b:dc:9e:08:b4:a1:11:95:de:a6:db:52:b3:6f:45:9c: 01:70:94:f7:e2:7e:81:8b:6d:ae:64:4c:9a:98:33:09:01:7e: c2:6f:9a:e3:71:74:78:b6:2c:ca:c0:28:4c:b5:74:47:ad:63: 69:ec:3f:4c:c0:45:43:83:0f:05:24:10:e8:a0:a5:f6:04:46: 35:eb:67:ad:c7:0d:5d:e7:e4:7f:e5:9e:bf:43:2e:df:4f:05: cf:33:e3:d2:7b:43:1e:28:c0:7e:af:38:70:3c:75:f4:e2:54: f3:ea:d8:90:9a:66:43:0f:cf:77:f7:95:f2:e8:f5:da:70:fb: 0b:d0:ca:23:66:4c:ee:b2:38:84:4a:bb:1d:7d:96:aa:45:60: bb:1b:92:64:1b:47:48:64:25:d3:44:d3:25:6d:6e:d1:d7:76: 78:dd:01:62:ce:be:a3:b6:17:d4:39:1e:95:08:79:c5:8b:51: 74:4c:ac:a8:fc:5c:e2:4a:bf:d7:47:9f:92:df:09:ba:5a:a0: 77:40:b1:8c:6c:29:3f:46:b6:f0:8f:12:55:27:7b:75:82:ea: e2:6f:91:47 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUBSF0Rg1r4oQGr1Spp7APthyrpXgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyMloX DTI1MDEwNzA0MDAyMlowMzExMC8GA1UEAxMoNTdDQjRDQ0UzMTIzNEVDOUNFRTg3 ODY2QjJCQjI3OTZENDQxNzg2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALf9Q6up7DZrV2dJGQe/J7IjBdiYpuXUgClZ7UdyFBC+Rbph0tv5sJ4yh1k1 +DG37nmWw7U+NcleAA7Lsr9TGo5Qgv5dDUSNFFMQztMoxCRVFPH2B6uXmPMVT4cd KAe2H1aMtqwWuuu97u+Ejy5sxB76opKSeYaTzMzNQlScecgWAhvuwlYpwxMBZtNY BUtMhA/lfkAuCrvwSc6ani5hQ0QT7tdbykkRTV+hm39X8O2PEsj5VUGLya5QgToF P2+CIiPnRaCAuunbDHx35dCtngKXB8AKTMXxqLDNgGjKVBaOaqBSztyLB4crTrY0 5mnUA6ZGk9NHe5U+Iw4tcQeHYAkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRXy0zO MSNOyc7oeGayuyeW1EF4bzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkwMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWejhjANBgkqhkiG9w0BAQsFAAOCAQEAR2OOa+XhGFBFp3XIzJo6 oo8DX/KE8HVAQdyna8Jlo2SHJtB9Dmmb3J4ItKERld6m21Kzb0WcAXCU9+J+gYtt rmRMmpgzCQF+wm+a43F0eLYsysAoTLV0R61jaew/TMBFQ4MPBSQQ6KCl9gRGNetn rccNXefkf+Wev0Mu308FzzPj0ntDHijAfq84cDx19OJU8+rYkJpmQw/Pd/eV8uj1 2nD7C9DKI2ZM7rI4hEq7HX2WqkVguxuSZBtHSGQl00TTJW1u0dd2eN0BYs6+o7YX 1DkelQh5xYtRdEysqPxc4kq/10efkt8Julqgd0CxjGwpP0a28I8SVSd7dYLq4m+R Rw== -----END CERTIFICATE-----Generated at Wed May 8 04:37:57 2024 by rpki-client on console-fra.rpki-client.org