$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141936.roa File: AS141936.roa (raw, json) Hash identifier: QcWnydOq2yEs4sN1b2tRQZ/GViXuzn1rgyZ4nTRF+6A= Subject key identifier: 58:9B:D8:57:D6:5B:BE:AE:31:0B:F8:C4:63:87:AD:5D:01:2D:88:CA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0BF27A9FBB616318CF5C106F320730DAA44C4946 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141936.roa Signing time: Tue 09 Jan 2024 04:00:03 +0000 ROA not before: Tue 09 Jan 2024 03:55:03 +0000 ROA not after: Tue 07 Jan 2025 04:00:03 +0000 asID: 141936 IP address blocks: 103.166.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:f2:7a:9f:bb:61:63:18:cf:5c:10:6f:32:07:30:da:a4:4c:49:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:03 2024 GMT Not After : Jan 7 04:00:03 2025 GMT Subject: CN=589BD857D65BBEAE310BF8C46387AD5D012D88CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b5:a0:d7:2a:16:00:eb:d9:45:1b:c7:81:c2: 10:bf:63:c4:e6:bf:63:07:3f:56:de:f8:1d:7b:11: 93:ce:d5:c8:55:82:64:ee:93:60:9e:f5:d8:ee:48: eb:7d:8b:d6:49:11:93:75:94:21:57:11:01:64:d8: 5c:1b:44:53:5a:a7:8d:d2:69:38:dd:62:a7:6b:85: 0b:a9:24:2f:e9:18:7f:20:eb:12:dd:fb:92:f0:52: 2d:a0:87:f8:fb:15:19:9b:3b:59:c1:86:dc:a2:38: a5:60:da:e0:48:12:cf:4c:ef:ed:fa:b9:a5:59:37: 41:e2:14:1e:b1:ae:48:48:91:22:5b:7b:7a:44:3f: 43:8c:4b:b7:52:b4:74:85:98:c6:20:95:66:a6:76: 67:87:04:c0:5f:c3:ed:d3:61:58:1a:9c:f2:34:6a: bd:8f:4f:4e:0a:15:34:25:85:25:0d:a3:83:12:d7: bd:19:60:cd:4c:5e:25:7b:42:c4:e7:e4:96:be:88: a3:2b:3c:90:f3:a7:11:ef:cc:1e:44:44:d9:9b:11: a7:19:6c:75:9a:22:8d:6d:1f:79:ed:89:f5:32:b8: 9c:95:6b:6e:f4:58:6c:26:fc:00:d1:fe:08:5d:37: 2b:16:f2:45:93:2a:56:9c:64:b5:50:fd:2d:6d:2d: f9:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:9B:D8:57:D6:5B:BE:AE:31:0B:F8:C4:63:87:AD:5D:01:2D:88:CA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.46.0/24 Signature Algorithm: sha256WithRSAEncryption 85:d9:83:79:57:44:5c:0c:c6:4a:3f:d9:c5:29:80:c2:9c:72: 6c:e0:99:20:a3:4f:98:ed:ee:36:4d:02:04:1b:ac:f4:d7:aa: e4:67:17:df:68:1c:c8:7f:e0:e8:61:a1:a8:3f:fa:0e:26:30: d9:ed:65:06:a1:ba:73:90:af:13:0b:69:c0:c6:2e:b0:d1:6b: 85:5a:55:c3:dd:a6:5f:e2:37:c8:8c:9c:d3:70:36:91:1c:17: 1f:74:5d:9d:0d:a5:2d:76:c6:70:e0:cd:fd:9b:7e:af:70:f1: 44:53:db:4f:53:2d:69:12:fc:2a:97:5c:21:1f:ad:df:ed:4f: 30:da:ae:59:82:c5:78:19:bf:51:2c:90:b4:1d:72:75:f2:c2: 17:21:1a:bc:5a:78:07:b7:4f:bf:3e:74:22:e4:da:73:7e:33: 93:eb:c6:f5:26:17:bc:b0:85:89:8b:6e:6e:da:5a:49:b1:7a: 14:ff:ec:3e:96:03:f1:dc:4a:8b:15:89:03:97:2c:ed:93:0d: 37:c1:c9:91:9b:e0:27:67:0a:45:4f:b1:97:d9:fe:59:17:4b: 2d:98:84:f5:6f:68:4d:54:8b:68:7c:21:6c:10:a2:a4:79:e7: 71:34:1f:e1:a9:cc:86:9f:63:91:b8:1e:a4:ec:ea:7e:31:04: bf:0b:6f:af -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUC/J6n7thYxjPXBBvMgcw2qRMSUYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwM1oX DTI1MDEwNzA0MDAwM1owMzExMC8GA1UEAxMoNTg5QkQ4NTdENjVCQkVBRTMxMEJG OEM0NjM4N0FENUQwMTJEODhDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKm1oNcqFgDr2UUbx4HCEL9jxOa/Ywc/Vt74HXsRk87VyFWCZO6TYJ712O5I 632L1kkRk3WUIVcRAWTYXBtEU1qnjdJpON1ip2uFC6kkL+kYfyDrEt37kvBSLaCH +PsVGZs7WcGG3KI4pWDa4EgSz0zv7fq5pVk3QeIUHrGuSEiRIlt7ekQ/Q4xLt1K0 dIWYxiCVZqZ2Z4cEwF/D7dNhWBqc8jRqvY9PTgoVNCWFJQ2jgxLXvRlgzUxeJXtC xOfklr6Ioys8kPOnEe/MHkRE2ZsRpxlsdZoijW0fee2J9TK4nJVrbvRYbCb8ANH+ CF03KxbyRZMqVpxktVD9LW0t+R0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRYm9hX 1lu+rjEL+MRjh61dAS2IyjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGemLjANBgkqhkiG9w0BAQsFAAOCAQEAhdmDeVdEXAzGSj/ZxSmA wpxybOCZIKNPmO3uNk0CBBus9Neq5GcX32gcyH/g6GGhqD/6DiYw2e1lBqG6c5Cv EwtpwMYusNFrhVpVw92mX+I3yIyc03A2kRwXH3RdnQ2lLXbGcODN/Zt+r3DxRFPb T1MtaRL8KpdcIR+t3+1PMNquWYLFeBm/USyQtB1ydfLCFyEavFp4B7dPvz50IuTa c34zk+vG9SYXvLCFiYtubtpaSbF6FP/sPpYD8dxKixWJA5cs7ZMNN8HJkZvgJ2cK RU+xl9n+WRdLLZiE9W9oTVSLaHwhbBCipHnncTQf4anMhp9jkbgepOzqfjEEvwtv rw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:28 2024 by rpki-client on console-ams.rpki-client.org