$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141921.roa File: AS141921.roa (raw, json) Hash identifier: RCT7trqt+Lzyglka5ja1fpQuqkUilRqXesdDNjg8FBA= Subject key identifier: 33:44:5A:B7:1D:FD:C1:3D:51:74:C7:3E:67:03:65:B1:BA:53:AB:6C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6FCE57439508F6254D5F8CC5406DEF38FE3C5D95 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141921.roa Signing time: Thu 03 Oct 2024 03:00:00 +0000 ROA not before: Thu 03 Oct 2024 02:55:00 +0000 ROA not after: Thu 02 Oct 2025 03:00:00 +0000 asID: 141921 IP address blocks: 103.178.194.0/24 maxlen: 24 2001:df3:ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:ce:57:43:95:08:f6:25:4d:5f:8c:c5:40:6d:ef:38:fe:3c:5d:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 3 02:55:00 2024 GMT Not After : Oct 2 03:00:00 2025 GMT Subject: CN=33445AB71DFDC13D5174C73E670365B1BA53AB6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5e:ef:67:e5:55:eb:6b:15:eb:59:68:5f:19: c1:5c:38:61:69:31:e4:7b:bd:bd:cc:cc:83:e2:f9: e2:09:cd:3c:c7:97:14:14:62:b8:4d:bb:87:2d:8b: 2f:3d:f6:f4:a8:3d:88:91:70:50:14:5d:93:a3:8e: 74:0c:a6:ec:73:40:bf:4d:4f:33:98:30:17:54:1d: 96:4b:a6:70:ce:2b:4f:14:22:1a:07:85:d7:12:01: 5e:60:e8:24:63:77:12:d7:68:23:d8:c1:bd:5b:91: 6b:41:21:f5:d5:1b:24:1a:b4:03:57:23:a3:4f:4e: f4:55:db:68:25:b8:71:c4:08:d2:a8:94:09:0e:1f: 85:fb:52:85:8d:33:ee:13:17:d3:5e:cd:ad:b2:df: 6e:f6:21:22:76:12:cc:42:a3:19:cf:13:3e:61:22: 63:c8:43:53:82:60:7d:37:14:11:05:5e:ca:29:e7: 63:d6:c9:c0:53:fa:12:4c:7e:99:a9:30:77:0d:3e: 46:85:0c:0c:fa:55:d9:9b:fb:da:83:c3:63:d2:13: 9d:30:81:f0:11:7d:3e:14:74:84:97:22:17:be:ac: 63:0b:cb:3c:d3:38:01:a2:3c:70:70:3f:90:6c:d9: 74:7a:bd:7b:26:72:16:f7:e8:8e:6d:4e:d7:4c:61: 0c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:44:5A:B7:1D:FD:C1:3D:51:74:C7:3E:67:03:65:B1:BA:53:AB:6C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141921.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.194.0/24 IPv6: 2001:df3:ac0::/48 Signature Algorithm: sha256WithRSAEncryption 94:f8:40:14:ec:2a:8c:52:e9:5e:98:3e:8c:d3:e2:73:b3:7a: 8f:fb:9e:11:56:f6:37:c4:1c:83:b1:5a:f6:ff:ae:72:25:ee: 21:61:ba:57:2d:0b:1d:02:72:a4:49:ca:4a:20:04:20:df:ec: 7a:74:c7:32:34:9f:1a:84:96:58:35:aa:0b:93:08:c4:0b:cb: ed:9b:55:83:1a:18:d9:95:14:4a:28:39:fe:3c:79:eb:1a:b9: 94:66:b2:f9:ab:f0:56:47:f7:e7:25:4a:1c:b8:0c:cc:3e:84: 5c:21:4c:1d:b7:3f:14:3f:0a:86:17:2a:8e:3c:bf:a0:17:f7: a6:73:1d:61:4f:f1:db:3c:12:6f:dd:ac:4d:b2:f4:6a:fe:b9: 74:98:8f:82:ed:5e:f9:5b:b0:ac:0a:2e:fa:e7:8d:ba:a6:13: 7f:94:01:e9:7e:51:c6:49:6a:ae:5d:14:c4:13:c8:c5:ea:57: 52:4f:89:b2:d2:84:94:1d:a6:21:32:88:97:5e:62:9f:c8:be: 36:d2:e2:7d:57:82:93:32:bb:ce:54:1b:88:b3:80:7d:58:bf: b5:fa:c2:b2:06:25:25:8d:da:43:3b:51:d8:88:3c:63:b6:e2: 15:4c:b4:a3:b9:05:2c:1c:ee:fe:4f:f1:4c:94:73:18:ff:36: fd:0d:be:eb -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUb85XQ5UI9iVNX4zFQG3vOP48XZUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwMzAyNTUwMFoX DTI1MTAwMjAzMDAwMFowMzExMC8GA1UEAxMoMzM0NDVBQjcxREZEQzEzRDUxNzRD NzNFNjcwMzY1QjFCQTUzQUI2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKhe72flVetrFetZaF8ZwVw4YWkx5Hu9vczMg+L54gnNPMeXFBRiuE27hy2L Lz329Kg9iJFwUBRdk6OOdAym7HNAv01PM5gwF1QdlkumcM4rTxQiGgeF1xIBXmDo JGN3EtdoI9jBvVuRa0Eh9dUbJBq0A1cjo09O9FXbaCW4ccQI0qiUCQ4fhftShY0z 7hMX017NrbLfbvYhInYSzEKjGc8TPmEiY8hDU4JgfTcUEQVeyinnY9bJwFP6Ekx+ makwdw0+RoUMDPpV2Zv72oPDY9ITnTCB8BF9PhR0hJciF76sYwvLPNM4AaI8cHA/ kGzZdHq9eyZyFvfojm1O10xhDPMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQzRFq3 Hf3BPVF0xz5nA2WxulOrbDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkyMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGeywjAPBAIAAjAJAwcAIAEN8wrAMA0GCSqGSIb3DQEBCwUAA4IB AQCU+EAU7CqMUulemD6M0+Jzs3qP+54RVvY3xByDsVr2/65yJe4hYbpXLQsdAnKk ScpKIAQg3+x6dMcyNJ8ahJZYNaoLkwjEC8vtm1WDGhjZlRRKKDn+PHnrGrmUZrL5 q/BWR/fnJUocuAzMPoRcIUwdtz8UPwqGFyqOPL+gF/emcx1hT/HbPBJv3axNsvRq /rl0mI+C7V75W7CsCi765426phN/lAHpflHGSWquXRTEE8jF6ldST4my0oSUHaYh MoiXXmKfyL420uJ9V4KTMrvOVBuIs4B9WL+1+sKyBiUljdpDO1HYiDxjtuIVTLSj uQUsHO7+T/FMlHMY/zb9Db7r -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:25 2024 by rpki-client on console-fra.rpki-client.org