$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141937.roa File: AS141937.roa (raw, json) Hash identifier: xibB+0o2GvXY2hiTswGdUqT96P8t0ZV084i/dhoX5Ok= Subject key identifier: 7B:82:39:E5:D8:5B:C6:BD:49:5F:DA:31:81:80:5B:CE:35:97:AA:19 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 47BE50D71D9F663EA93029C6B1D46B9DE373CB62 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141937.roa Signing time: Tue 09 Jan 2024 04:00:07 +0000 ROA not before: Tue 09 Jan 2024 03:55:07 +0000 ROA not after: Tue 07 Jan 2025 04:00:07 +0000 asID: 141937 IP address blocks: 103.165.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:be:50:d7:1d:9f:66:3e:a9:30:29:c6:b1:d4:6b:9d:e3:73:cb:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:07 2024 GMT Not After : Jan 7 04:00:07 2025 GMT Subject: CN=7B8239E5D85BC6BD495FDA3181805BCE3597AA19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f5:3d:7a:90:03:bd:e5:8f:fa:3d:88:81:80: fa:61:10:fa:b6:a6:c4:59:d0:07:99:e7:49:94:54: e1:b7:66:3d:91:fc:10:58:1f:3a:97:f3:1b:dc:ad: 8e:bb:c9:e7:5f:db:3d:1a:f6:67:5f:b4:86:bc:f8: f2:05:76:4a:b3:09:ec:40:0a:42:fc:c0:ed:69:0c: eb:c3:b1:a3:27:53:8a:12:d1:f0:3c:0a:0d:39:31: d6:b7:da:6c:22:70:7d:1f:cb:7c:3a:be:7c:cd:e8: 1e:93:ca:6d:a3:f9:e3:9b:f0:ab:84:7d:db:f1:73: 84:75:c8:07:8a:58:28:b6:9f:ed:1f:f0:30:92:83: 4f:73:84:c8:b7:9d:9e:c2:e7:22:47:94:ec:0e:9e: 27:a3:76:8b:81:a2:dd:81:75:91:95:fe:74:f5:ca: c8:b7:18:d9:32:74:c1:0b:fd:03:f7:3f:09:48:3e: a0:25:15:4a:fe:23:3a:74:7c:42:52:f3:4f:3b:da: e7:22:16:2e:47:d2:91:a5:54:04:d8:61:bd:41:15: ec:01:80:9c:a4:dc:41:dc:cd:67:8a:ff:b4:67:ea: 72:4e:bb:34:ba:d6:a1:09:d1:9e:09:bf:c9:9c:cb: d3:36:61:9a:75:6d:45:35:7a:6b:73:06:cb:28:1f: e1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:82:39:E5:D8:5B:C6:BD:49:5F:DA:31:81:80:5B:CE:35:97:AA:19 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.250.0/23 Signature Algorithm: sha256WithRSAEncryption 49:b3:8c:43:c3:40:4c:8b:f4:00:e6:fc:43:ae:21:e4:60:d0: 8a:fa:8e:43:36:6d:c7:9c:f4:43:c6:2f:b6:39:18:1f:33:23: d5:ac:ef:c9:38:44:75:0b:aa:a6:7c:0e:85:9f:bc:f5:b0:c5: c5:fe:75:b5:b2:cc:39:46:68:86:8d:81:47:21:3f:65:4b:1d: 58:83:32:7d:b9:f7:7b:a9:04:f2:1b:20:43:e1:84:01:ae:47: 23:62:09:f6:95:51:fa:97:4b:b9:2d:d4:6d:ca:32:68:1a:67: 01:a8:13:eb:da:b1:92:44:7d:78:87:ab:e7:c9:11:f4:00:29: d7:89:27:a5:47:58:52:0b:d4:33:37:38:31:10:c8:c2:ca:e0: bb:83:51:60:a1:51:31:9d:6e:4a:72:a9:10:d6:ae:b3:83:32: d3:a0:6f:d9:9a:fc:60:30:f1:1b:53:4f:01:5b:e8:28:86:55: e5:62:99:54:87:64:0a:c7:4c:88:01:06:5c:98:f3:8a:5e:97: 2c:d7:0d:bb:9f:9f:32:29:3c:9c:51:58:e7:3f:3c:36:ab:2a: 79:0f:1c:92:37:4e:1b:cb:90:fe:b7:b0:99:67:fb:d2:0c:31: 7f:9f:09:b7:66:66:d5:6f:af:aa:5b:d5:57:e5:0e:e2:cc:bf: 63:c6:6a:66 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUR75Q1x2fZj6pMCnGsdRrneNzy2IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwN1oX DTI1MDEwNzA0MDAwN1owMzExMC8GA1UEAxMoN0I4MjM5RTVEODVCQzZCRDQ5NUZE QTMxODE4MDVCQ0UzNTk3QUExOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANj1PXqQA73lj/o9iIGA+mEQ+ramxFnQB5nnSZRU4bdmPZH8EFgfOpfzG9yt jrvJ51/bPRr2Z1+0hrz48gV2SrMJ7EAKQvzA7WkM68OxoydTihLR8DwKDTkx1rfa bCJwfR/LfDq+fM3oHpPKbaP545vwq4R92/FzhHXIB4pYKLaf7R/wMJKDT3OEyLed nsLnIkeU7A6eJ6N2i4Gi3YF1kZX+dPXKyLcY2TJ0wQv9A/c/CUg+oCUVSv4jOnR8 QlLzTzva5yIWLkfSkaVUBNhhvUEV7AGAnKTcQdzNZ4r/tGfqck67NLrWoQnRngm/ yZzL0zZhmnVtRTV6a3MGyygf4ecCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR7gjnl 2FvGvUlf2jGBgFvONZeqGTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWel+jANBgkqhkiG9w0BAQsFAAOCAQEASbOMQ8NATIv0AOb8Q64h 5GDQivqOQzZtx5z0Q8YvtjkYHzMj1azvyThEdQuqpnwOhZ+89bDFxf51tbLMOUZo ho2BRyE/ZUsdWIMyfbn3e6kE8hsgQ+GEAa5HI2IJ9pVR+pdLuS3UbcoyaBpnAagT 69qxkkR9eIer58kR9AAp14knpUdYUgvUMzc4MRDIwsrgu4NRYKFRMZ1uSnKpENau s4My06Bv2Zr8YDDxG1NPAVvoKIZV5WKZVIdkCsdMiAEGXJjzil6XLNcNu5+fMik8 nFFY5z88NqsqeQ8ckjdOG8uQ/rewmWf70gwxf58Jt2Zm1W+vqlvVV+UO4sy/Y8Zq Zg== -----END CERTIFICATE-----Generated at Fri May 3 04:42:26 2024 by rpki-client on console-fra.rpki-client.org