$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141924.roa File: AS141924.roa (raw, json) Hash identifier: qZq3HrY6U3pjyJls9TRCPSGF6wdYb+5DhVM/+3zti6Y= Subject key identifier: 12:F1:57:9D:26:7F:AB:3C:CF:6A:82:03:22:10:A7:4B:A0:BC:67:95 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 473CE37D5B550773B48CB2A1F90C1848BD203190 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141924.roa Signing time: Tue 19 Dec 2023 06:18:21 +0000 ROA not before: Tue 19 Dec 2023 06:13:21 +0000 ROA not after: Tue 17 Dec 2024 06:18:21 +0000 asID: 141924 IP address blocks: 103.176.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:3c:e3:7d:5b:55:07:73:b4:8c:b2:a1:f9:0c:18:48:bd:20:31:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 19 06:13:21 2023 GMT Not After : Dec 17 06:18:21 2024 GMT Subject: CN=12F1579D267FAB3CCF6A82032210A74BA0BC6795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:cb:39:31:d1:bf:e1:53:4f:84:29:8c:c1:52: 7c:c6:cd:37:90:e1:79:90:27:ce:15:ed:77:0a:e2: 37:1f:8f:f0:2f:cd:1c:8c:ea:93:f3:85:84:a8:3e: 9c:7e:2d:ca:9a:2e:20:91:c1:a5:be:b4:d5:e0:2c: 93:a2:c7:68:03:4b:bc:bc:77:01:82:3f:83:a9:a1: d7:15:cd:5d:47:88:c3:52:58:9d:29:37:56:3d:77: 75:6c:45:e4:60:11:ad:da:35:4f:5f:51:95:a6:3a: 4e:ae:92:59:e2:6c:60:7f:3f:0b:25:47:e2:73:69: 76:bd:0b:64:5e:cb:e4:35:11:e6:d1:9a:3c:ff:ce: 9f:d4:d7:95:98:6d:fe:94:c3:66:57:37:99:0d:c3: d6:bc:8f:2f:6b:7f:15:17:90:88:62:3b:a0:15:88: a2:ef:2d:f8:3a:76:b0:26:e7:2f:c0:a8:ff:72:8f: a3:c8:1e:02:9b:6c:34:68:06:bd:2c:50:4d:97:14: c3:5c:17:8c:72:90:77:0a:ed:88:1d:79:1a:7d:c2: d6:b7:1d:40:e6:c5:0e:8e:6c:a6:a6:7d:70:d2:55: b0:3b:5c:8e:4c:52:4c:fd:53:1f:98:3c:79:ab:b6: 06:9f:37:1a:c4:e0:a6:0e:fc:39:4b:a9:26:45:a2: 87:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F1:57:9D:26:7F:AB:3C:CF:6A:82:03:22:10:A7:4B:A0:BC:67:95 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141924.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.143.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:aa:ea:37:2c:4a:03:f9:3d:b7:91:52:23:cd:ce:09:e6:84: 7d:6e:f0:e4:c9:92:b9:b7:a7:22:26:3b:c0:71:c5:63:32:ee: 6f:c1:65:fd:83:f0:f8:2a:63:14:cd:84:7e:5b:2d:1c:91:e1: bc:e6:7a:53:06:8e:47:c3:43:31:80:08:1d:85:5e:12:17:17: ed:ca:13:b0:8c:38:95:5a:ae:44:33:65:56:90:fe:5b:b5:62: 87:f7:2c:bf:e3:7b:3b:58:16:8b:4f:82:5a:e9:f0:34:99:9f: 6c:cd:8a:65:31:8f:bc:0d:68:44:55:02:4f:2a:8f:f3:3a:4d: 75:3e:46:f1:48:50:87:17:90:7a:44:eb:7c:eb:69:35:cb:36: ff:26:e2:cc:fe:cc:93:94:32:22:3c:30:a7:58:8b:9a:fc:57: 39:65:d4:61:c0:44:dd:64:6f:a5:ee:73:dd:3e:6e:9a:a4:61: 3f:84:03:35:57:86:31:bd:23:62:0d:b1:87:a1:bf:8a:f1:f1: a7:41:7d:d5:1b:91:fc:28:57:81:7c:02:c0:bf:90:29:0b:64: 7a:f5:1d:38:9a:60:10:c1:2b:16:0b:74:67:18:31:4f:58:0d: 95:8e:20:66:45:99:64:41:74:c3:31:3d:c5:5b:61:b4:fb:3a: d1:36:96:73 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIURzzjfVtVB3O0jLKh+QwYSL0gMZAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxOTA2MTMyMVoX DTI0MTIxNzA2MTgyMVowMzExMC8GA1UEAxMoMTJGMTU3OUQyNjdGQUIzQ0NGNkE4 MjAzMjIxMEE3NEJBMEJDNjc5NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK3LOTHRv+FTT4QpjMFSfMbNN5DheZAnzhXtdwriNx+P8C/NHIzqk/OFhKg+ nH4typouIJHBpb601eAsk6LHaANLvLx3AYI/g6mh1xXNXUeIw1JYnSk3Vj13dWxF 5GARrdo1T19RlaY6Tq6SWeJsYH8/CyVH4nNpdr0LZF7L5DUR5tGaPP/On9TXlZht /pTDZlc3mQ3D1ryPL2t/FReQiGI7oBWIou8t+Dp2sCbnL8Co/3KPo8geAptsNGgG vSxQTZcUw1wXjHKQdwrtiB15Gn3C1rcdQObFDo5spqZ9cNJVsDtcjkxSTP1TH5g8 eau2Bp83GsTgpg78OUupJkWih88CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQS8Ved Jn+rPM9qggMiEKdLoLxnlTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkyNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGewjzANBgkqhkiG9w0BAQsFAAOCAQEAXKrqNyxKA/k9t5FSI83O CeaEfW7w5MmSubenIiY7wHHFYzLub8Fl/YPw+CpjFM2EflstHJHhvOZ6UwaOR8ND MYAIHYVeEhcX7coTsIw4lVquRDNlVpD+W7Vih/csv+N7O1gWi0+CWunwNJmfbM2K ZTGPvA1oRFUCTyqP8zpNdT5G8UhQhxeQekTrfOtpNcs2/ybizP7Mk5QyIjwwp1iL mvxXOWXUYcBE3WRvpe5z3T5umqRhP4QDNVeGMb0jYg2xh6G/ivHxp0F91RuR/ChX gXwCwL+QKQtkevUdOJpgEMErFgt0ZxgxT1gNlY4gZkWZZEF0wzE9xVthtPs60TaW cw== -----END CERTIFICATE-----Generated at Wed May 8 17:45:22 2024 by rpki-client on console-ams.rpki-client.org