$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141934.roa File: AS141934.roa (raw, json) Hash identifier: 5YiAjBB+mofD603rH2M5c36ta8gmRU4Em0nRMrnzSV0= Subject key identifier: FD:6A:51:3B:B4:96:0E:5B:B0:EB:12:08:F9:F2:9D:3C:B3:D3:EA:B5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4C718303E17CCB75C584FD530E178BFBE268B645 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141934.roa Signing time: Mon 03 Jun 2024 08:00:00 +0000 ROA not before: Mon 03 Jun 2024 07:55:00 +0000 ROA not after: Mon 02 Jun 2025 08:00:00 +0000 asID: 141934 IP address blocks: 103.4.82.0/23 maxlen: 24 2001:df1:5040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:71:83:03:e1:7c:cb:75:c5:84:fd:53:0e:17:8b:fb:e2:68:b6:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 07:55:00 2024 GMT Not After : Jun 2 08:00:00 2025 GMT Subject: CN=FD6A513BB4960E5BB0EB1208F9F29D3CB3D3EAB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8b:09:e4:54:7f:24:41:d6:31:2b:6a:00:4c: a0:81:1a:25:c5:a7:72:5e:30:24:90:13:f1:11:b3: 1c:c7:b8:cd:a4:64:33:2f:94:ca:d3:13:b5:b1:bd: 21:60:5f:71:e5:d4:01:84:95:68:64:c9:f4:fc:cc: 51:d5:fc:ef:28:77:56:aa:1e:77:75:90:38:aa:bc: 4b:20:c9:09:0c:f1:3d:13:78:da:94:0f:e6:8e:b2: ae:a8:bc:72:b5:d6:25:85:1c:ab:ed:82:a1:85:42: 15:e5:b8:a3:7d:5b:d9:b9:13:e0:04:29:30:73:c5: 93:7a:c4:e3:4b:c1:e3:c4:b5:76:2a:bc:4f:0d:53: 27:db:ad:e4:58:54:76:03:f0:10:72:d6:40:8b:a6: 66:71:06:94:b7:24:9c:cd:00:5d:a8:68:60:0e:45: 53:0c:a0:fd:0d:82:ec:d9:40:db:a7:55:47:56:41: 27:5b:07:d9:5b:9d:53:96:7e:2a:ce:39:ce:18:f6: 0c:1b:32:b1:f8:00:f3:da:ff:88:df:0d:4b:c6:88: 8e:26:17:7f:20:d0:b0:b0:9b:7a:7d:5c:be:b1:14: 3c:84:54:78:14:00:86:2f:3b:d7:54:1c:bf:21:38: 42:5f:85:4a:07:53:95:8c:1e:cb:74:33:d0:c0:18: 2c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:6A:51:3B:B4:96:0E:5B:B0:EB:12:08:F9:F2:9D:3C:B3:D3:EA:B5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.82.0/23 IPv6: 2001:df1:5040::/48 Signature Algorithm: sha256WithRSAEncryption 4f:ef:9a:98:d1:98:7e:f0:89:c3:c5:19:7d:a7:18:26:98:14: fc:e9:1d:2e:58:23:ab:5b:80:c8:a1:3e:ef:2a:4c:47:0d:e8: 1d:72:a0:cf:9f:23:77:f8:98:d6:17:c0:1e:ab:e1:86:ec:da: 43:98:c9:aa:2d:55:5f:83:78:a0:59:d5:23:d4:72:4f:2e:40: 5c:20:6a:5b:b0:cc:5e:d0:db:69:23:6e:8f:89:3d:77:a6:f2: 3f:5a:57:98:48:07:61:be:a7:2f:61:02:4f:05:df:eb:e6:6d: f5:f4:56:09:69:bc:20:28:0b:00:e8:5a:b5:8b:1a:d9:87:5c: 38:3f:95:c4:91:3b:7d:a2:bc:5a:9a:fa:45:9f:d6:3e:b1:66: 5b:3a:2b:ad:f3:ea:34:5b:0b:fc:f4:ff:42:3f:1f:e8:25:53: 86:75:03:67:1e:b5:cc:95:3a:17:85:0c:1e:4d:b9:63:1a:e8: 2c:62:69:e0:ab:d0:af:db:92:1c:31:75:27:1a:fc:47:bc:a7: 3e:ce:8e:73:88:da:c4:09:f9:77:3a:2c:fe:6f:76:f4:7f:d8: e0:41:a5:8c:e9:ee:4a:f2:97:de:41:0c:0e:05:49:26:55:5d: fa:7d:a8:67:58:6b:8c:06:d4:84:c4:2a:d1:6b:dc:90:a2:c5: fa:75:da:64 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUTHGDA+F8y3XFhP1TDheL++JotkUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYwMzA3NTUwMFoX DTI1MDYwMjA4MDAwMFowMzExMC8GA1UEAxMoRkQ2QTUxM0JCNDk2MEU1QkIwRUIx MjA4RjlGMjlEM0NCM0QzRUFCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM2LCeRUfyRB1jEragBMoIEaJcWncl4wJJAT8RGzHMe4zaRkMy+UytMTtbG9 IWBfceXUAYSVaGTJ9PzMUdX87yh3Vqoed3WQOKq8SyDJCQzxPRN42pQP5o6yrqi8 crXWJYUcq+2CoYVCFeW4o31b2bkT4AQpMHPFk3rE40vB48S1diq8Tw1TJ9ut5FhU dgPwEHLWQIumZnEGlLcknM0AXahoYA5FUwyg/Q2C7NlA26dVR1ZBJ1sH2VudU5Z+ Ks45zhj2DBsysfgA89r/iN8NS8aIjiYXfyDQsLCben1cvrEUPIRUeBQAhi8711Qc vyE4Ql+FSgdTlYwey3Qz0MAYLE8CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBT9alE7 tJYOW7DrEgj58p08s9PqtTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWcEUjAPBAIAAjAJAwcAIAEN8VBAMA0GCSqGSIb3DQEBCwUAA4IB AQBP75qY0Zh+8InDxRl9pxgmmBT86R0uWCOrW4DIoT7vKkxHDegdcqDPnyN3+JjW F8Aeq+GG7NpDmMmqLVVfg3igWdUj1HJPLkBcIGpbsMxe0NtpI26PiT13pvI/WleY SAdhvqcvYQJPBd/r5m319FYJabwgKAsA6Fq1ixrZh1w4P5XEkTt9orxamvpFn9Y+ sWZbOiut8+o0Wwv89P9CPx/oJVOGdQNnHrXMlToXhQweTbljGugsYmngq9Cv25Ic MXUnGvxHvKc+zo5ziNrECfl3Oiz+b3b0f9jgQaWM6e5K8pfeQQwOBUkmVV36fahn WGuMBtSExCrRa9yQosX6ddpk -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:55 2024 by rpki-client on console-fra.rpki-client.org