$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141917.roa File: AS141917.roa (raw, json) Hash identifier: cBCT3VYY7TDY7uRwPMDjwZkC0Ii2cqUosVIOwnCcKMk= Subject key identifier: 1F:32:D1:8F:8C:EF:60:A8:88:CB:7D:0B:57:60:BD:AF:79:64:41:78 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 59E492DE1BA8D488D1195E241709359DC563D4CF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141917.roa Signing time: Tue 09 Jan 2024 04:00:24 +0000 ROA not before: Tue 09 Jan 2024 03:55:24 +0000 ROA not after: Tue 07 Jan 2025 04:00:24 +0000 asID: 141917 IP address blocks: 103.164.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:e4:92:de:1b:a8:d4:88:d1:19:5e:24:17:09:35:9d:c5:63:d4:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:24 2024 GMT Not After : Jan 7 04:00:24 2025 GMT Subject: CN=1F32D18F8CEF60A888CB7D0B5760BDAF79644178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:34:37:ef:91:d3:06:3a:13:40:4f:de:cc:3c: 0c:d9:30:02:0f:27:4e:46:16:1b:e8:8b:30:62:f5: 34:8f:ce:da:8c:39:c2:72:b7:d4:ac:8e:d8:5e:2b: fe:d4:4c:d6:10:ab:90:ed:34:f4:60:05:c9:4a:b0: fa:07:dc:ab:29:88:2a:44:b3:b4:21:17:1c:0f:ed: 91:aa:e7:03:d8:e7:1b:06:8a:b0:72:ef:ac:22:54: 08:03:39:00:7a:55:0a:4c:b5:6f:63:fa:97:c0:22: 6e:ff:fd:3e:b3:6a:6b:d5:92:59:a2:3b:6d:57:e9: 05:13:e2:9b:78:32:36:60:59:a3:07:e4:8f:65:17: 51:39:51:15:ab:46:cf:e2:cc:35:7e:62:24:2b:e6: fe:e6:88:96:3b:1c:d0:42:7f:43:fb:d6:d6:c8:74: fb:1d:c9:e8:6b:ba:91:bc:10:54:07:e2:42:90:fb: f8:fb:a5:9b:f7:f0:cc:9f:d8:c4:26:c1:dd:f0:e4: 70:bb:e6:46:41:55:5d:bb:6e:ea:a7:c2:33:6e:50: e3:1b:62:9e:39:6a:73:2f:ad:87:00:50:65:56:23: 76:a6:14:a7:50:ff:89:2d:9f:e3:56:23:5a:69:7f: 39:6f:52:ae:16:c5:ac:e2:65:3a:66:e4:26:f9:92: 0b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:32:D1:8F:8C:EF:60:A8:88:CB:7D:0B:57:60:BD:AF:79:64:41:78 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141917.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.228.0/23 Signature Algorithm: sha256WithRSAEncryption 60:04:01:f7:3c:ab:c4:de:aa:fe:f8:8b:65:ea:fa:8f:1b:04: ce:71:9f:a7:95:6d:18:49:ff:e2:68:bd:cf:8b:ec:67:09:c8: 73:23:d6:c2:a0:ed:ff:e9:5b:f2:d9:96:46:7d:2b:a2:1f:2f: 3e:ab:ff:bc:0d:7d:5e:f7:4c:0b:8e:88:d7:f3:2d:27:e3:5f: 8d:e0:27:a0:e9:2c:30:5e:30:86:a9:6f:06:55:76:d8:f3:71: 52:86:48:7b:ca:f1:a3:3c:1e:8c:a3:58:a4:cf:eb:36:e8:42: 2c:d9:98:c8:33:1a:0c:32:0e:2a:f5:d8:98:80:cc:f5:e1:42: e0:0c:ab:4b:d3:03:81:c9:34:5b:e8:8e:f9:14:b7:11:6d:10: 07:32:89:5f:c0:1b:83:f4:18:36:90:ba:87:98:27:69:3e:7b: 60:e9:43:30:9d:e6:63:be:43:a0:a3:1a:a2:cb:d7:8d:2d:ae: 29:ec:ca:91:28:58:05:a7:b4:08:7d:de:dc:d7:a9:4b:fb:48: d0:9f:0a:ff:65:7e:96:fd:66:d6:49:ae:96:b4:ac:a1:0b:0b: bb:89:92:78:53:46:1c:9b:ec:7d:b3:20:ba:f6:54:95:8f:9c: ea:f2:49:2a:03:38:22:07:8c:a9:96:3f:45:b9:1c:b6:cc:e3: 1d:5f:14:65 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWeSS3huo1IjRGV4kFwk1ncVj1M8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyNFoX DTI1MDEwNzA0MDAyNFowMzExMC8GA1UEAxMoMUYzMkQxOEY4Q0VGNjBBODg4Q0I3 RDBCNTc2MEJEQUY3OTY0NDE3ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALk0N++R0wY6E0BP3sw8DNkwAg8nTkYWG+iLMGL1NI/O2ow5wnK31KyO2F4r /tRM1hCrkO009GAFyUqw+gfcqymIKkSztCEXHA/tkarnA9jnGwaKsHLvrCJUCAM5 AHpVCky1b2P6l8Aibv/9PrNqa9WSWaI7bVfpBRPim3gyNmBZowfkj2UXUTlRFatG z+LMNX5iJCvm/uaIljsc0EJ/Q/vW1sh0+x3J6Gu6kbwQVAfiQpD7+Pulm/fwzJ/Y xCbB3fDkcLvmRkFVXbtu6qfCM25Q4xtinjlqcy+thwBQZVYjdqYUp1D/iS2f41Yj Wml/OW9SrhbFrOJlOmbkJvmSC+sCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQfMtGP jO9gqIjLfQtXYL2veWRBeDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWek5DANBgkqhkiG9w0BAQsFAAOCAQEAYAQB9zyrxN6q/viLZer6 jxsEznGfp5VtGEn/4mi9z4vsZwnIcyPWwqDt/+lb8tmWRn0roh8vPqv/vA19XvdM C46I1/MtJ+NfjeAnoOksMF4whqlvBlV22PNxUoZIe8rxozwejKNYpM/rNuhCLNmY yDMaDDIOKvXYmIDM9eFC4AyrS9MDgck0W+iO+RS3EW0QBzKJX8Abg/QYNpC6h5gn aT57YOlDMJ3mY75DoKMaosvXjS2uKezKkShYBae0CH3e3NepS/tI0J8K/2V+lv1m 1kmulrSsoQsLu4mSeFNGHJvsfbMguvZUlY+c6vJJKgM4IgeMqZY/RbkctszjHV8U ZQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:28 2024 by rpki-client on console-ams.rpki-client.org