$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141929.roa File: AS141929.roa (raw, json) Hash identifier: SoOmzX9+ipAKzxGLZgu/6h6HAtJgR6Nl04I19tA9CQw= Subject key identifier: B1:9A:01:8D:06:AF:D3:B2:74:A5:FD:FD:9B:D1:65:6E:04:E4:14:10 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 21192E62C3235EA3560010DEBFD7F9C484022250 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141929.roa Signing time: Tue 10 Dec 2024 05:00:16 +0000 ROA not before: Tue 10 Dec 2024 04:55:16 +0000 ROA not after: Tue 09 Dec 2025 05:00:16 +0000 asID: 141929 IP address blocks: 103.166.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:19:2e:62:c3:23:5e:a3:56:00:10:de:bf:d7:f9:c4:84:02:22:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:16 2024 GMT Not After : Dec 9 05:00:16 2025 GMT Subject: CN=B19A018D06AFD3B274A5FDFD9BD1656E04E41410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f3:5a:a8:f4:ed:f7:67:06:3d:30:72:17:37: 86:f0:7b:fe:bc:f5:0c:af:5b:24:ca:7c:e4:3c:86: e1:86:7f:d6:a8:dc:61:61:b6:ab:4e:43:04:d4:61: 32:b2:e9:a2:14:10:ab:7a:29:50:b0:77:75:de:7a: f6:f9:b1:04:f2:1b:32:12:eb:c3:8f:be:1c:f9:27: 11:a7:4f:7b:53:9a:36:cf:0e:41:2b:72:f5:28:6f: 55:a4:52:61:59:34:6c:b1:15:25:0c:89:0d:58:58: 89:d9:35:8a:6f:2b:d6:f7:b4:99:10:ac:0b:f1:94: 22:2a:32:d0:15:30:88:d5:22:04:be:ee:1c:7a:7f: fc:e1:4e:4f:8a:50:a2:98:b9:13:96:51:0d:66:cb: 4b:4d:f9:d1:46:45:3b:21:ef:f8:2f:eb:c0:a9:b6: c2:16:82:42:de:d8:82:ed:5f:3f:18:48:e6:a0:8e: a8:da:48:63:c2:2a:f9:3b:89:40:2e:25:f0:39:da: 83:8a:5b:a9:bf:6c:0b:41:b2:91:68:fa:2b:6c:e2: fa:1c:db:16:cd:31:f9:4a:62:04:60:d8:c8:d1:71: a3:ed:f6:aa:5d:15:5e:f4:39:fc:56:26:3b:7f:21: 04:7e:b1:1a:9d:40:c1:e2:98:8f:18:bf:0f:8a:88: a6:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:9A:01:8D:06:AF:D3:B2:74:A5:FD:FD:9B:D1:65:6E:04:E4:14:10 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141929.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.32.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:d6:f6:f0:f9:4f:7c:89:e3:77:76:2e:d4:3f:ea:fb:68:44: 8b:16:05:f9:9f:10:53:69:1f:3a:f9:b6:1c:0a:56:67:b0:3a: 66:6a:dd:86:6c:87:d1:f3:2d:90:76:25:26:44:4a:19:23:c9: 7a:e4:2e:7e:e8:4f:f9:b9:3d:26:8f:eb:5c:c6:a0:ce:84:c1: 60:b8:e2:b1:86:92:51:40:f2:8d:a4:29:91:79:b1:5e:f0:89: f3:d4:3d:39:4e:4e:23:4e:7d:e9:b9:3f:26:2a:b1:8d:e3:d9: ac:b1:aa:ca:fa:e3:c3:c2:7b:1c:07:68:e9:64:21:e6:5e:e2: cc:9e:5e:fb:04:33:c7:60:60:fb:6a:b2:5e:fd:b8:64:43:fb: 28:47:88:52:e6:3e:ea:4a:50:9d:3f:ca:f4:53:de:7b:16:36: a2:bf:b8:b4:22:35:dc:43:ba:55:1b:70:49:38:f5:11:3d:f8: 2c:46:73:8e:92:f8:55:72:4a:77:ef:4a:4c:d6:e5:87:fa:7a: e8:ac:dd:04:d7:d7:ef:bb:a9:aa:82:00:43:c4:72:06:4b:d6: a6:33:73:ca:4f:f0:98:6d:d8:2d:a5:0c:be:17:55:32:ba:03: 54:57:5c:80:43:b1:ae:4c:f8:75:45:c5:cc:4f:df:60:6b:a5: 79:a0:76:fd -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUIRkuYsMjXqNWABDev9f5xIQCIlAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxNloX DTI1MTIwOTA1MDAxNlowMzExMC8GA1UEAxMoQjE5QTAxOEQwNkFGRDNCMjc0QTVG REZEOUJEMTY1NkUwNEU0MTQxMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTzWqj07fdnBj0wchc3hvB7/rz1DK9bJMp85DyG4YZ/1qjcYWG2q05DBNRh MrLpohQQq3opULB3dd569vmxBPIbMhLrw4++HPknEadPe1OaNs8OQSty9ShvVaRS YVk0bLEVJQyJDVhYidk1im8r1ve0mRCsC/GUIioy0BUwiNUiBL7uHHp//OFOT4pQ opi5E5ZRDWbLS0350UZFOyHv+C/rwKm2whaCQt7Ygu1fPxhI5qCOqNpIY8Iq+TuJ QC4l8Dnag4pbqb9sC0GykWj6K2zi+hzbFs0x+UpiBGDYyNFxo+32ql0VXvQ5/FYm O38hBH6xGp1AweKYjxi/D4qIpgcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSxmgGN Bq/TsnSl/f2b0WVuBOQUEDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkyOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWemIDANBgkqhkiG9w0BAQsFAAOCAQEACtb28PlPfInjd3Yu1D/q +2hEixYF+Z8QU2kfOvm2HApWZ7A6ZmrdhmyH0fMtkHYlJkRKGSPJeuQufuhP+bk9 Jo/rXMagzoTBYLjisYaSUUDyjaQpkXmxXvCJ89Q9OU5OI0596bk/JiqxjePZrLGq yvrjw8J7HAdo6WQh5l7izJ5e+wQzx2Bg+2qyXv24ZEP7KEeIUuY+6kpQnT/K9FPe exY2or+4tCI13EO6VRtwSTj1ET34LEZzjpL4VXJKd+9KTNblh/p66KzdBNfX77up qoIAQ8RyBkvWpjNzyk/wmG3YLaUMvhdVMroDVFdcgEOxrkz4dUXFzE/fYGuleaB2 /Q== -----END CERTIFICATE-----Generated at Sun Feb 16 20:39:34 2025 by rpki-client