$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141938.roa File: AS141938.roa (raw, json) Hash identifier: qxHSda/0ZFqrI+3W7i+SMGslvXNOmAe+h/uGIJvAryM= Subject key identifier: FE:08:10:15:6C:CA:57:77:2A:10:9E:40:B9:68:66:65:D8:4E:3E:3E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0278882CDABC474B114B66587AB31C24A4471C50 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141938.roa Signing time: Mon 05 Aug 2024 08:00:00 +0000 ROA not before: Mon 05 Aug 2024 07:55:00 +0000 ROA not after: Mon 04 Aug 2025 08:00:00 +0000 asID: 141938 IP address blocks: 103.164.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:78:88:2c:da:bc:47:4b:11:4b:66:58:7a:b3:1c:24:a4:47:1c:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 5 07:55:00 2024 GMT Not After : Aug 4 08:00:00 2025 GMT Subject: CN=FE0810156CCA57772A109E40B9686665D84E3E3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:49:a1:ef:a2:92:aa:f2:20:47:c2:a6:5d:0b: c3:c2:bd:59:a1:4f:d4:a9:12:44:7c:5c:c2:3e:e8: 3a:8b:04:b1:58:d4:b4:f7:d8:34:99:22:9d:3d:d9: fa:4e:a3:3f:0e:f9:d0:d2:da:72:35:d1:fc:fd:64: ca:8c:10:51:4e:89:8f:86:bd:73:7e:55:ed:93:fa: 01:24:c3:27:51:aa:69:f4:b7:64:aa:20:a7:8b:e7: df:a4:d8:c6:a2:ac:45:16:a2:30:f3:02:47:59:e0: 10:15:0c:3e:63:f3:0c:1f:33:a4:2b:7c:a8:ee:a1: f6:e2:3d:aa:12:ea:f0:2c:db:49:fe:d5:6c:36:10: 13:37:3e:89:4e:00:d4:76:33:5f:1e:b4:1e:7d:88: 4a:83:07:12:94:d9:20:83:1c:b1:70:e9:6f:31:83: dc:57:e1:10:af:b9:c5:38:07:11:62:61:d7:cc:fb: 98:2d:81:6e:f9:c3:7d:a2:32:95:1a:72:35:98:87: 62:55:0b:4d:5c:66:10:3f:88:9d:2d:f4:00:31:6f: 71:1c:3f:f9:64:3e:be:be:7e:da:bd:99:56:0d:d0: cd:70:f9:74:11:f8:2c:17:1f:81:10:77:a5:9f:46: ce:90:14:ea:4c:ec:01:3f:48:d7:a7:a2:a4:f8:a9: 77:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:08:10:15:6C:CA:57:77:2A:10:9E:40:B9:68:66:65:D8:4E:3E:3E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.186.0/23 Signature Algorithm: sha256WithRSAEncryption 65:99:14:43:c4:7b:ee:1b:78:bf:92:5b:42:3e:fd:f6:a9:21: 46:ef:58:aa:ed:9b:c2:5e:4f:60:8d:f3:0b:cf:a9:d9:3e:b4: 9f:47:e0:be:20:91:23:11:b8:56:48:94:3a:fc:53:d1:6f:e3: b4:a7:fe:94:d7:0d:d5:92:12:eb:ec:9a:72:7b:48:5b:a2:d5: fc:c0:a6:3e:3f:47:66:75:7c:91:7f:e3:81:17:66:19:e7:32: 67:43:ab:4b:b9:5a:c3:24:d0:c8:3c:9e:bb:fc:64:d7:a1:fb: 98:92:75:8d:df:e3:b3:5a:c4:02:f0:bf:df:5a:39:d7:22:14: 5c:3a:b2:85:d7:b9:82:9c:30:e0:01:37:7a:fd:11:15:af:48: e9:12:a5:2a:15:dc:db:e6:00:7e:1a:10:d1:09:6a:9c:d8:f2: 34:65:fd:e3:11:df:f1:62:60:00:58:06:83:f1:58:10:10:12: 66:cb:5e:39:e5:48:1b:98:07:9c:80:84:27:22:95:93:ca:3e: d7:2d:86:ed:47:c2:10:c8:49:8e:7f:aa:f0:ee:48:50:06:ca: bd:d7:79:3c:a7:47:3b:f5:15:bd:08:32:09:ed:63:d0:a1:f7: 16:24:e8:b7:d3:26:a5:4d:73:6c:74:e0:f0:2f:73:c9:13:88: b5:fd:6e:b1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAniILNq8R0sRS2ZYerMcJKRHHFAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwNTA3NTUwMFoX DTI1MDgwNDA4MDAwMFowMzExMC8GA1UEAxMoRkUwODEwMTU2Q0NBNTc3NzJBMTA5 RTQwQjk2ODY2NjVEODRFM0UzRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMBJoe+ikqryIEfCpl0Lw8K9WaFP1KkSRHxcwj7oOosEsVjUtPfYNJkinT3Z +k6jPw750NLacjXR/P1kyowQUU6Jj4a9c35V7ZP6ASTDJ1GqafS3ZKogp4vn36TY xqKsRRaiMPMCR1ngEBUMPmPzDB8zpCt8qO6h9uI9qhLq8CzbSf7VbDYQEzc+iU4A 1HYzXx60Hn2ISoMHEpTZIIMcsXDpbzGD3FfhEK+5xTgHEWJh18z7mC2BbvnDfaIy lRpyNZiHYlULTVxmED+InS30ADFvcRw/+WQ+vr5+2r2ZVg3QzXD5dBH4LBcfgRB3 pZ9GzpAU6kzsAT9I16eipPipd+UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT+CBAV bMpXdyoQnkC5aGZl2E4+PjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWekujANBgkqhkiG9w0BAQsFAAOCAQEAZZkUQ8R77ht4v5JbQj79 9qkhRu9Yqu2bwl5PYI3zC8+p2T60n0fgviCRIxG4VkiUOvxT0W/jtKf+lNcN1ZIS 6+yacntIW6LV/MCmPj9HZnV8kX/jgRdmGecyZ0OrS7lawyTQyDyeu/xk16H7mJJ1 jd/js1rEAvC/31o51yIUXDqyhde5gpww4AE3ev0RFa9I6RKlKhXc2+YAfhoQ0Qlq nNjyNGX94xHf8WJgAFgGg/FYEBASZsteOeVIG5gHnICEJyKVk8o+1y2G7UfCEMhJ jn+q8O5IUAbKvdd5PKdHO/UVvQgyCe1j0KH3FiTot9MmpU1zbHTg8C9zyROItf1u sQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:55 2024 by rpki-client on console-fra.rpki-client.org