$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141929.roa File: AS141929.roa (raw, json) Hash identifier: GvqXzwVKPzXoabi2WLevwmHU4m3VQOQ66a1t3KbcOLw= Subject key identifier: D4:5B:81:C1:4C:B3:EC:50:59:EF:10:F9:14:38:22:A4:28:DC:C9:14 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3997D3C8B42395D39B686F5B1C7288ABF1BC8372 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141929.roa Signing time: Tue 09 Jan 2024 04:00:20 +0000 ROA not before: Tue 09 Jan 2024 03:55:20 +0000 ROA not after: Tue 07 Jan 2025 04:00:20 +0000 asID: 141929 IP address blocks: 103.166.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:97:d3:c8:b4:23:95:d3:9b:68:6f:5b:1c:72:88:ab:f1:bc:83:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:20 2024 GMT Not After : Jan 7 04:00:20 2025 GMT Subject: CN=D45B81C14CB3EC5059EF10F9143822A428DCC914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:41:51:50:12:f7:5c:e7:06:dc:2b:be:22:5b: ac:c0:07:76:dc:27:9a:67:23:cc:6e:87:2b:4f:65: 7e:aa:67:e0:33:a5:ca:79:c0:e0:66:6e:b4:e5:34: ba:a8:a4:9a:7e:da:22:b7:ce:96:18:9c:79:07:f8: 19:8a:ae:d8:79:f7:ff:c8:af:06:3c:90:53:7c:0f: ce:15:13:a1:24:2b:17:be:43:07:a7:1e:9e:62:9f: 4e:58:86:91:9e:95:d1:dd:6d:65:c2:0b:58:39:94: 34:83:b2:b6:f7:6b:72:ee:27:df:21:34:5f:c5:bf: 7e:ae:a9:2f:a5:01:3e:05:d6:a6:cc:a6:5d:d9:db: 15:76:a3:9e:cf:b3:9b:e4:80:b5:48:95:9c:f1:36: cc:8e:79:51:e6:ba:47:cc:3a:c0:9c:34:31:7f:e6: ec:15:8b:e0:97:9a:73:0f:47:b3:96:67:7d:d2:0d: b5:a4:60:be:01:90:cd:3b:8e:ca:7d:ed:7a:15:cc: df:b4:eb:5c:5e:9e:29:1d:7a:d7:f4:d8:60:eb:fd: 58:b6:3c:d5:5e:5c:65:5e:c1:53:5f:75:28:53:12: 8e:1b:41:9f:23:09:ef:42:49:ee:26:63:3d:92:f9: 07:46:a8:c9:4e:54:56:a6:17:92:c8:61:f6:05:f1: 6e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:5B:81:C1:4C:B3:EC:50:59:EF:10:F9:14:38:22:A4:28:DC:C9:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141929.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.32.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:51:5b:8a:d7:28:b8:08:5d:23:15:c4:49:88:13:89:d4:75: 98:88:1e:e0:bc:a6:1e:d3:5b:89:0d:9b:bc:94:65:21:ef:5c: 25:71:ac:af:26:8c:af:6a:36:69:84:53:88:32:19:f4:88:92: ca:55:1f:f8:4a:18:fd:96:6b:31:1f:c0:75:e3:48:26:fa:ae: d3:8f:52:42:ed:b0:9f:05:2e:c8:ae:2c:9e:45:2b:a8:0a:0b: 65:85:06:4b:20:d4:72:72:3e:6b:8d:44:fc:19:f5:cc:5a:98: 10:b2:c9:77:2e:ac:56:cd:7f:76:0f:9a:d0:2d:8c:49:08:6f: c8:52:2b:0c:ed:14:b3:5d:3e:7a:68:47:e3:85:1e:43:ae:33: aa:32:c7:0e:97:ed:71:a9:51:bc:05:d1:cd:c7:15:1e:9c:df: d2:c4:be:d7:e2:97:a2:49:e2:7d:0c:9d:d5:9e:87:f5:30:c1: d3:26:4f:72:27:45:15:54:3d:88:e8:36:e3:0c:f3:7d:cf:ec: 03:1b:f3:c6:09:0f:25:25:1c:f3:bc:ed:fb:4f:d8:52:a0:85: 25:54:77:45:ed:c2:e7:f1:9a:70:06:7b:40:fd:d5:42:27:13: a2:08:d8:0a:b6:35:4d:50:52:1e:3a:00:66:bd:3d:73:d4:db: 21:6f:a4:64 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOZfTyLQjldObaG9bHHKIq/G8g3IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyMFoX DTI1MDEwNzA0MDAyMFowMzExMC8GA1UEAxMoRDQ1QjgxQzE0Q0IzRUM1MDU5RUYx MEY5MTQzODIyQTQyOERDQzkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALRBUVAS91znBtwrviJbrMAHdtwnmmcjzG6HK09lfqpn4DOlynnA4GZutOU0 uqikmn7aIrfOlhiceQf4GYqu2Hn3/8ivBjyQU3wPzhUToSQrF75DB6cenmKfTliG kZ6V0d1tZcILWDmUNIOytvdrcu4n3yE0X8W/fq6pL6UBPgXWpsymXdnbFXajns+z m+SAtUiVnPE2zI55Uea6R8w6wJw0MX/m7BWL4Jeacw9Hs5ZnfdINtaRgvgGQzTuO yn3tehXM37TrXF6eKR161/TYYOv9WLY81V5cZV7BU191KFMSjhtBnyMJ70JJ7iZj PZL5B0aoyU5UVqYXkshh9gXxbm8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTUW4HB TLPsUFnvEPkUOCKkKNzJFDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkyOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWemIDANBgkqhkiG9w0BAQsFAAOCAQEAS1FbitcouAhdIxXESYgT idR1mIge4LymHtNbiQ2bvJRlIe9cJXGsryaMr2o2aYRTiDIZ9IiSylUf+EoY/ZZr MR/AdeNIJvqu049SQu2wnwUuyK4snkUrqAoLZYUGSyDUcnI+a41E/Bn1zFqYELLJ dy6sVs1/dg+a0C2MSQhvyFIrDO0Us10+emhH44UeQ64zqjLHDpftcalRvAXRzccV Hpzf0sS+1+KXoknifQyd1Z6H9TDB0yZPcidFFVQ9iOg24wzzfc/sAxvzxgkPJSUc 87zt+0/YUqCFJVR3Re3C5/GacAZ7QP3VQicTogjYCrY1TVBSHjoAZr09c9TbIW+k ZA== -----END CERTIFICATE-----Generated at Sun May 5 00:13:52 2024 by rpki-client on console-ams.rpki-client.org