$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141934.roa File: AS141934.roa (raw, json) Hash identifier: ltfy4Er8Iwzoa1M49GHMez3NS2I5uTMKcgtEMTchC+A= Subject key identifier: FB:6C:93:03:B9:8D:18:E6:30:9D:23:2E:97:A5:BE:FB:CB:67:71:A9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7A2A8E215E1DF65EA77ED1036C287B5AF3129CC7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141934.roa Signing time: Mon 03 Jul 2023 07:44:29 +0000 ROA not before: Mon 03 Jul 2023 07:39:29 +0000 ROA not after: Mon 01 Jul 2024 07:44:29 +0000 asID: 141934 IP address blocks: 103.4.82.0/23 maxlen: 24 2001:df1:5040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:2a:8e:21:5e:1d:f6:5e:a7:7e:d1:03:6c:28:7b:5a:f3:12:9c:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 3 07:39:29 2023 GMT Not After : Jul 1 07:44:29 2024 GMT Subject: CN=FB6C9303B98D18E6309D232E97A5BEFBCB6771A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fa:66:d6:ee:51:b0:c2:54:55:fb:8c:e9:10: 6b:aa:af:0f:37:17:8a:bd:88:d8:5c:81:65:03:bd: de:83:e2:45:5f:1d:d3:60:9f:92:43:df:94:55:10: 5a:2f:18:25:f4:31:b3:cc:65:7d:c6:ee:9e:61:e6: 84:91:9d:40:72:54:37:7b:b7:a7:4a:4b:e1:35:b8: a0:b1:bb:65:01:e8:f3:04:d7:a6:02:e5:fe:9e:c1: be:8f:b6:97:11:59:89:a2:ca:35:3f:97:16:03:33: fd:d1:0d:4b:41:b9:f0:dc:b1:17:ce:22:a3:8c:be: e4:c7:30:96:ce:6d:67:12:38:d2:45:b0:1b:2e:ff: 7b:99:b5:3a:d6:72:7c:41:8a:4a:97:a7:88:7a:40: cf:f7:93:ca:95:8d:f5:07:7f:a3:16:56:44:e6:0c: bd:d3:7b:ee:d8:65:f4:0f:aa:4f:31:67:10:05:19: ea:56:3c:3f:c6:fe:f9:d9:35:6a:10:ee:68:3b:ff: 0d:8d:a8:01:8c:7d:a8:e3:32:d0:1d:a5:35:bd:3e: 20:35:b4:ad:85:b3:ef:df:14:c3:4c:1f:b5:57:4c: d2:98:06:8d:12:4b:86:eb:ab:f5:78:e5:ec:6b:cc: 64:e9:97:07:c6:fb:ff:2f:62:b1:4c:5c:fb:8b:a9: 86:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:6C:93:03:B9:8D:18:E6:30:9D:23:2E:97:A5:BE:FB:CB:67:71:A9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.82.0/23 IPv6: 2001:df1:5040::/48 Signature Algorithm: sha256WithRSAEncryption 7a:40:46:e5:d9:fb:49:52:1d:e8:83:fd:d3:b8:c1:ff:df:e2: a2:61:b9:98:7d:80:5e:4c:76:ae:8e:fa:01:c3:ad:65:bb:68: aa:bb:3a:7b:ac:e7:ec:0e:3a:4f:90:c0:bb:cb:b8:73:02:39: 9a:67:05:53:65:f1:b5:05:eb:c7:46:ea:30:f3:77:b6:ba:5b: 98:bd:a9:db:71:23:04:ec:0a:b8:94:92:1d:09:d0:82:5d:55: dd:b7:fe:5e:8c:6d:3d:c7:af:7b:5c:b6:81:7c:4d:78:14:f0: 2c:34:10:10:95:df:d6:64:5e:86:d4:e8:f3:e4:25:77:8f:5a: 1d:92:a5:b4:f1:dc:f9:7a:cc:5c:bd:66:03:f7:31:83:02:36: 45:cf:b4:c9:9f:f0:57:82:ff:86:9d:bd:98:5a:1e:ae:ec:60: 03:02:61:ae:ea:5c:6b:85:c3:67:ef:8d:10:3f:3e:37:d1:cb: 18:54:87:e7:c7:1b:9b:5b:56:92:97:dd:93:9e:42:bd:a0:48: 58:6a:2c:81:81:93:60:3d:b2:28:ee:88:28:99:14:b8:d6:ad: f9:d3:f4:dc:fd:78:fb:8f:04:6e:b9:d0:b6:67:46:69:3d:1b: 29:b9:42:a1:b2:36:46:9a:1f:47:73:5d:2b:43:0c:ab:d2:c9: 3c:80:98:71 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUeiqOIV4d9l6nftEDbCh7WvMSnMcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcwMzA3MzkyOVoX DTI0MDcwMTA3NDQyOVowMzExMC8GA1UEAxMoRkI2QzkzMDNCOThEMThFNjMwOUQy MzJFOTdBNUJFRkJDQjY3NzFBOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALn6ZtbuUbDCVFX7jOkQa6qvDzcXir2I2FyBZQO93oPiRV8d02CfkkPflFUQ Wi8YJfQxs8xlfcbunmHmhJGdQHJUN3u3p0pL4TW4oLG7ZQHo8wTXpgLl/p7Bvo+2 lxFZiaLKNT+XFgMz/dENS0G58NyxF84io4y+5Mcwls5tZxI40kWwGy7/e5m1OtZy fEGKSpeniHpAz/eTypWN9Qd/oxZWROYMvdN77thl9A+qTzFnEAUZ6lY8P8b++dk1 ahDuaDv/DY2oAYx9qOMy0B2lNb0+IDW0rYWz798Uw0wftVdM0pgGjRJLhuur9Xjl 7GvMZOmXB8b7/y9isUxc+4uphucCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBT7bJMD uY0Y5jCdIy6Xpb77y2dxqTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWcEUjAPBAIAAjAJAwcAIAEN8VBAMA0GCSqGSIb3DQEBCwUAA4IB AQB6QEbl2ftJUh3og/3TuMH/3+KiYbmYfYBeTHaujvoBw61lu2iquzp7rOfsDjpP kMC7y7hzAjmaZwVTZfG1BevHRuow83e2uluYvanbcSME7Aq4lJIdCdCCXVXdt/5e jG09x697XLaBfE14FPAsNBAQld/WZF6G1Ojz5CV3j1odkqW08dz5esxcvWYD9zGD AjZFz7TJn/BXgv+Gnb2YWh6u7GADAmGu6lxrhcNn740QPz430csYVIfnxxubW1aS l92TnkK9oEhYaiyBgZNgPbIo7ogomRS41q350/Tc/Xj7jwRuudC2Z0ZpPRspuUKh sjZGmh9Hc10rQwyr0sk8gJhx -----END CERTIFICATE-----Generated at Wed May 8 18:12:15 2024 by rpki-client on console-fra.rpki-client.org