$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141917.roa File: AS141917.roa (raw, json) Hash identifier: AF6TvxCWo44pKVeW5Qc++phdR21OWkr0Ob0llsDp7iw= Subject key identifier: 9C:FC:1B:59:40:92:27:64:A5:FA:A7:C1:77:66:F0:FA:79:C6:2C:4E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 41D0AC5BB72E6C280A888CA7F01DC5B43592383D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141917.roa Signing time: Tue 10 Dec 2024 05:00:19 +0000 ROA not before: Tue 10 Dec 2024 04:55:19 +0000 ROA not after: Tue 09 Dec 2025 05:00:19 +0000 asID: 141917 IP address blocks: 103.164.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:d0:ac:5b:b7:2e:6c:28:0a:88:8c:a7:f0:1d:c5:b4:35:92:38:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:19 2024 GMT Not After : Dec 9 05:00:19 2025 GMT Subject: CN=9CFC1B5940922764A5FAA7C17766F0FA79C62C4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:49:b5:81:1d:63:d3:71:68:73:86:37:06:28: 10:50:ce:c5:c8:ec:b3:5a:7f:20:8d:de:25:cb:f7: 9e:67:fd:e0:20:61:3c:c4:cc:3b:ed:38:85:a5:ad: 3c:82:98:0d:9a:2c:57:0e:39:12:cf:de:00:8c:f0: 62:9e:ea:7e:62:27:88:3a:69:be:38:04:55:79:51: 8f:b7:1c:1b:d1:03:5c:43:93:e0:1b:d2:4a:b8:5d: cb:71:ee:50:2b:dc:57:6a:34:18:29:5c:31:ec:df: 27:46:07:60:d1:b5:c2:9f:d0:00:d1:5e:3f:25:ce: 6f:5a:34:4d:3e:7f:f2:c8:db:65:99:ab:47:14:2d: 6c:c2:a1:f3:03:00:fb:44:17:64:8a:39:f8:c1:31: e4:7e:5e:2d:01:b5:ad:0f:a0:2b:24:c3:26:57:e3: cf:c6:83:46:8c:14:09:1a:d7:de:33:b9:cb:c0:10: e3:3c:6b:66:ee:40:aa:e5:a3:ee:d9:91:ab:7d:d8: 26:b0:db:9b:cd:5d:80:0c:3d:ff:7f:c5:1f:2d:ad: 9b:9b:f2:ef:65:2a:f8:a0:98:24:5c:e5:47:03:85: 50:92:18:0e:7f:70:85:9a:8b:25:8c:d7:67:6e:bf: 63:a4:cc:f6:24:e6:d1:20:95:22:b1:6e:14:42:10: 7c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:FC:1B:59:40:92:27:64:A5:FA:A7:C1:77:66:F0:FA:79:C6:2C:4E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141917.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.228.0/23 Signature Algorithm: sha256WithRSAEncryption 15:a0:1f:5e:81:f9:9e:8a:bc:eb:eb:27:59:eb:f9:36:d1:28: e5:d6:e3:27:fc:56:6d:8b:8f:67:96:31:16:91:c8:a2:15:a4: 76:b6:cd:62:9c:3f:15:42:8c:69:b4:74:5c:43:79:4e:8d:03: d3:0a:58:3d:53:ee:88:47:0e:bc:73:96:eb:2e:88:43:49:b3: d1:44:c0:bd:99:b0:8b:ed:c7:5e:da:f8:07:57:cc:23:83:66: 58:3b:49:59:ff:4a:f4:85:56:c6:cd:8b:47:45:99:4f:cf:47: 50:8e:0a:70:c4:41:bd:56:b3:42:59:23:98:12:b4:52:ac:8a: af:79:f2:95:57:78:f2:de:e9:7d:88:ff:4a:b1:c2:03:0e:c2: 4e:e0:f2:a4:54:39:5c:b8:c9:55:d4:35:19:4e:34:ad:42:05: 71:28:62:94:fb:4f:0b:3e:5f:64:85:be:46:58:89:5d:03:61: b9:6d:04:60:f5:1b:94:97:d5:c4:0e:23:81:04:79:f4:8a:a6: 83:67:0b:c2:30:9d:ec:ed:99:58:cd:aa:64:93:22:b5:80:29: 2f:fa:ee:84:2f:ba:27:45:65:9e:2d:b7:74:dd:67:78:d3:35: 3e:04:3c:e0:4f:c3:2a:ba:c0:b8:1f:fa:b4:f8:ff:11:0f:92: 1d:cb:14:20 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQdCsW7cubCgKiIyn8B3FtDWSOD0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxOVoX DTI1MTIwOTA1MDAxOVowMzExMC8GA1UEAxMoOUNGQzFCNTk0MDkyMjc2NEE1RkFB N0MxNzc2NkYwRkE3OUM2MkM0RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANdJtYEdY9NxaHOGNwYoEFDOxcjss1p/II3eJcv3nmf94CBhPMTMO+04haWt PIKYDZosVw45Es/eAIzwYp7qfmIniDppvjgEVXlRj7ccG9EDXEOT4BvSSrhdy3Hu UCvcV2o0GClcMezfJ0YHYNG1wp/QANFePyXOb1o0TT5/8sjbZZmrRxQtbMKh8wMA +0QXZIo5+MEx5H5eLQG1rQ+gKyTDJlfjz8aDRowUCRrX3jO5y8AQ4zxrZu5AquWj 7tmRq33YJrDbm81dgAw9/3/FHy2tm5vy72Uq+KCYJFzlRwOFUJIYDn9whZqLJYzX Z26/Y6TM9iTm0SCVIrFuFEIQfGsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSc/BtZ QJInZKX6p8F3ZvD6ecYsTjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWek5DANBgkqhkiG9w0BAQsFAAOCAQEAFaAfXoH5noq86+snWev5 NtEo5dbjJ/xWbYuPZ5YxFpHIohWkdrbNYpw/FUKMabR0XEN5To0D0wpYPVPuiEcO vHOW6y6IQ0mz0UTAvZmwi+3HXtr4B1fMI4NmWDtJWf9K9IVWxs2LR0WZT89HUI4K cMRBvVazQlkjmBK0UqyKr3nylVd48t7pfYj/SrHCAw7CTuDypFQ5XLjJVdQ1GU40 rUIFcShilPtPCz5fZIW+RliJXQNhuW0EYPUblJfVxA4jgQR59Iqmg2cLwjCd7O2Z WM2qZJMitYApL/ruhC+6J0Vlni23dN1neNM1PgQ84E/DKrrAuB/6tPj/EQ+SHcsU IA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:21 2025 by rpki-client