$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141921.roa File: AS141921.roa (raw, json) Hash identifier: LdZM1+9LPXit9JNVnbTgee4+QeHch9NRIRsfidrTmlo= Subject key identifier: E1:97:A7:FC:C4:FF:11:A8:D5:43:4D:16:46:86:D3:CA:9F:B8:09:43 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 55460EF9F94D92614536AC3387B65B501F0E3DF3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141921.roa Signing time: Thu 02 Nov 2023 02:13:47 +0000 ROA not before: Thu 02 Nov 2023 02:08:47 +0000 ROA not after: Thu 31 Oct 2024 02:13:47 +0000 asID: 141921 IP address blocks: 103.178.194.0/24 maxlen: 24 2001:df3:ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:46:0e:f9:f9:4d:92:61:45:36:ac:33:87:b6:5b:50:1f:0e:3d:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 2 02:08:47 2023 GMT Not After : Oct 31 02:13:47 2024 GMT Subject: CN=E197A7FCC4FF11A8D5434D164686D3CA9FB80943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:02:12:9e:7d:34:42:b5:6d:0b:ca:f6:9a:34: f6:ac:76:c6:23:04:f5:70:ed:3a:21:8f:ff:ce:87: 14:d6:68:f7:38:e2:24:3f:6e:c1:9d:6a:85:f9:4a: 7e:47:e6:0f:f5:63:88:a0:1f:cc:2d:59:fb:01:71: c1:71:b7:1e:6e:ff:3f:24:48:db:17:1c:27:94:c2: 1c:46:28:70:26:97:2a:39:c1:97:59:32:ba:85:56: 0f:3d:c4:e8:45:f4:80:d7:22:70:46:1b:bc:b0:68: fe:35:15:48:6c:f4:45:f9:a9:78:8e:79:ea:8a:fe: 27:92:bf:80:de:2f:57:2c:51:26:86:3f:61:28:99: 97:c0:46:1b:e2:e9:c4:e9:13:fd:41:c6:4e:6e:52: 62:04:be:7c:f3:f0:9f:18:8b:5d:f5:80:75:4a:04: 4d:58:34:ec:28:4f:c0:e1:fb:c9:22:3c:0c:1d:ce: 35:33:f9:99:38:3c:d3:0f:a8:d1:77:a8:64:80:4e: b4:ed:1c:d0:32:02:f2:9b:42:7e:ac:02:6e:00:ba: fe:53:15:be:2a:da:2a:ef:b1:b2:13:76:6c:49:6b: f1:61:35:4c:bb:cc:42:5c:4d:44:a8:b3:ef:90:b3: 69:b3:2b:49:ba:ca:f1:56:3f:0a:c3:fa:b9:e5:d6: 7a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:97:A7:FC:C4:FF:11:A8:D5:43:4D:16:46:86:D3:CA:9F:B8:09:43 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141921.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.194.0/24 IPv6: 2001:df3:ac0::/48 Signature Algorithm: sha256WithRSAEncryption 65:e6:06:65:61:b9:7f:7d:ae:4d:54:22:7e:8c:46:fa:e0:6b: ec:54:e7:d4:20:76:34:12:90:42:9a:45:b9:19:7b:2d:a1:7f: 7c:da:5b:12:3f:5d:cd:f2:ed:7d:b4:dc:95:cf:24:29:b8:64: 69:fc:18:76:4b:5d:e9:ca:b1:43:91:7d:56:02:ac:c0:56:e9: 3f:aa:54:33:8d:93:30:e1:f0:5b:91:9a:2e:6a:26:f4:38:ec: 34:7d:01:35:0f:ab:17:98:a4:51:f6:c2:2b:8f:e6:96:2a:ab: e8:ca:04:91:16:e1:2d:32:10:79:b4:61:d9:10:1f:b9:bc:0d: 60:90:80:45:95:4a:de:a1:4e:d7:ac:3e:02:ff:ea:c6:85:4b: 66:9f:80:d5:ad:d1:e0:f0:36:d1:12:d3:86:f0:29:cf:13:b3: f0:39:b9:65:eb:50:4b:18:ab:0a:ee:d7:a7:ca:ad:07:bc:97: a0:d7:aa:61:99:aa:e7:4e:52:6a:46:7b:54:76:24:8d:d8:4d: c2:92:38:f9:2d:b5:42:07:3e:a3:77:78:9c:c6:c3:5e:b8:1c: 08:ff:f6:49:d6:39:8a:df:fc:ea:47:bf:e0:9d:13:4e:90:a2: 3c:d5:9c:d8:91:a2:a6:54:81:2a:13:15:95:0f:84:bf:a1:7e: 07:ef:7b:91 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUVUYO+flNkmFFNqwzh7ZbUB8OPfMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwMjAyMDg0N1oX DTI0MTAzMTAyMTM0N1owMzExMC8GA1UEAxMoRTE5N0E3RkNDNEZGMTFBOEQ1NDM0 RDE2NDY4NkQzQ0E5RkI4MDk0MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPUCEp59NEK1bQvK9po09qx2xiME9XDtOiGP/86HFNZo9zjiJD9uwZ1qhflK fkfmD/VjiKAfzC1Z+wFxwXG3Hm7/PyRI2xccJ5TCHEYocCaXKjnBl1kyuoVWDz3E 6EX0gNcicEYbvLBo/jUVSGz0RfmpeI556or+J5K/gN4vVyxRJoY/YSiZl8BGG+Lp xOkT/UHGTm5SYgS+fPPwnxiLXfWAdUoETVg07ChPwOH7ySI8DB3ONTP5mTg80w+o 0XeoZIBOtO0c0DIC8ptCfqwCbgC6/lMVviraKu+xshN2bElr8WE1TLvMQlxNRKiz 75CzabMrSbrK8VY/CsP6ueXWekECAwEAAaOCAeEwggHdMB0GA1UdDgQWBBThl6f8 xP8RqNVDTRZGhtPKn7gJQzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkyMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGeywjAPBAIAAjAJAwcAIAEN8wrAMA0GCSqGSIb3DQEBCwUAA4IB AQBl5gZlYbl/fa5NVCJ+jEb64GvsVOfUIHY0EpBCmkW5GXstoX982lsSP13N8u19 tNyVzyQpuGRp/Bh2S13pyrFDkX1WAqzAVuk/qlQzjZMw4fBbkZouaib0OOw0fQE1 D6sXmKRR9sIrj+aWKqvoygSRFuEtMhB5tGHZEB+5vA1gkIBFlUreoU7XrD4C/+rG hUtmn4DVrdHg8DbREtOG8CnPE7PwObll61BLGKsK7tenyq0HvJeg16phmarnTlJq RntUdiSN2E3Ckjj5LbVCBz6jd3icxsNeuBwI//ZJ1jmK3/zqR7/gnRNOkKI81ZzY kaKmVIEqExWVD4S/oX4H73uR -----END CERTIFICATE-----Generated at Wed May 8 04:37:57 2024 by rpki-client on console-fra.rpki-client.org