$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141938.roa File: AS141938.roa (raw, json) Hash identifier: E0wr5eJKFg78mm7lK8Ux4YNjy06xvC2XMco5biTbjl4= Subject key identifier: 30:25:A1:49:07:DA:D4:8F:B4:55:2A:EC:9E:FC:A5:DF:9E:8B:53:B6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 64D7498A7BF945B9667CF7535371E062AAB6CF5A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141938.roa Signing time: Mon 04 Sep 2023 07:02:56 +0000 ROA not before: Mon 04 Sep 2023 06:57:56 +0000 ROA not after: Mon 02 Sep 2024 07:02:56 +0000 asID: 141938 IP address blocks: 103.164.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:d7:49:8a:7b:f9:45:b9:66:7c:f7:53:53:71:e0:62:aa:b6:cf:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 4 06:57:56 2023 GMT Not After : Sep 2 07:02:56 2024 GMT Subject: CN=3025A14907DAD48FB4552AEC9EFCA5DF9E8B53B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:fd:1b:8b:c8:2b:23:f8:e0:42:53:a6:60:5c: 19:1e:4d:76:73:23:32:06:f1:fa:ef:b0:bb:c4:e0: d8:3a:ba:4e:5c:fc:03:46:5f:0c:33:68:d9:3b:ef: 2d:cc:a0:e4:64:55:f6:91:54:31:3e:c8:bc:6b:db: 58:0f:39:39:34:89:c0:bd:17:01:0d:3b:23:27:5e: c0:08:08:dd:50:22:f7:d2:d7:ed:a9:d9:7c:8c:bb: 67:17:e4:b9:af:24:3d:44:a4:f2:e6:0f:06:30:b3: 13:ee:5a:b0:fd:34:3a:44:ce:fb:f4:d6:92:e4:9b: 84:de:cc:b6:e7:d2:b4:8e:69:48:20:52:dc:8f:b0: 89:a2:2d:06:32:fe:ba:c1:e8:70:13:4b:13:e9:55: c6:50:e9:54:7f:c5:80:2c:bd:85:a0:0e:6c:9a:d6: 36:58:c6:de:69:8d:b8:b2:38:11:c7:b0:1d:1e:4d: 91:97:fc:7f:b6:ff:58:af:ce:6e:67:1c:35:a5:c3: 32:a3:4b:cd:7a:81:2f:34:e7:d8:e8:39:01:c2:f4: 22:10:8e:4a:c8:09:5f:c9:9d:c2:71:c8:23:e5:0c: 61:18:88:fb:22:3f:18:79:5e:ff:74:f8:30:b4:98: 12:94:8a:40:16:d8:1b:7e:00:54:a4:1c:9e:4f:19: 76:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:25:A1:49:07:DA:D4:8F:B4:55:2A:EC:9E:FC:A5:DF:9E:8B:53:B6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.186.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:80:61:14:cc:78:41:5a:b0:f8:80:a4:62:73:8d:39:b3:f0: 08:47:8a:7d:19:43:ef:cf:31:c5:e6:99:bf:10:d4:39:a6:ca: a1:76:75:f2:02:54:df:a2:75:bf:db:e0:26:39:28:31:2c:b2: f5:23:50:33:4d:71:2e:c0:52:b0:92:76:d5:0a:3b:2c:89:f2: 57:9a:47:70:1e:4e:f8:ff:38:4b:87:ce:84:29:65:8c:b1:e3: 4f:3e:03:71:65:16:95:9d:d8:e3:57:e5:31:40:20:27:65:de: e3:9b:f2:60:89:b3:36:26:92:71:bd:42:24:76:95:92:a3:36: 70:6f:47:cd:35:20:5a:fc:3f:10:1a:3a:96:6b:e0:ef:3e:3e: 5e:be:c5:30:39:93:b7:9a:4a:52:f5:de:f4:79:4c:95:25:f4: c1:09:0b:fc:6f:70:84:d6:f2:ac:aa:d5:bf:b7:7d:fa:83:a2: 80:25:50:c7:4c:41:8b:81:f0:b6:30:7d:1e:bb:26:3e:06:69: 11:f8:0d:10:10:4a:13:b7:b5:aa:b0:82:58:98:e2:ec:86:26: 24:c3:b2:91:57:b7:8d:b5:68:ce:ea:0d:c2:12:37:73:c3:8c: 3f:ce:c6:9d:a1:53:4b:75:92:7a:75:e9:3e:d1:3e:4d:87:5b: 83:62:6e:3b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZNdJinv5RblmfPdTU3HgYqq2z1owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwNDA2NTc1NloX DTI0MDkwMjA3MDI1NlowMzExMC8GA1UEAxMoMzAyNUExNDkwN0RBRDQ4RkI0NTUy QUVDOUVGQ0E1REY5RThCNTNCNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKT9G4vIKyP44EJTpmBcGR5NdnMjMgbx+u+wu8Tg2Dq6Tlz8A0ZfDDNo2Tvv Lcyg5GRV9pFUMT7IvGvbWA85OTSJwL0XAQ07IydewAgI3VAi99LX7anZfIy7Zxfk ua8kPUSk8uYPBjCzE+5asP00OkTO+/TWkuSbhN7MtufStI5pSCBS3I+wiaItBjL+ usHocBNLE+lVxlDpVH/FgCy9haAObJrWNljG3mmNuLI4EcewHR5NkZf8f7b/WK/O bmccNaXDMqNLzXqBLzTn2Og5AcL0IhCOSsgJX8mdwnHII+UMYRiI+yI/GHle/3T4 MLSYEpSKQBbYG34AVKQcnk8Zdm0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQwJaFJ B9rUj7RVKuye/KXfnotTtjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWekujANBgkqhkiG9w0BAQsFAAOCAQEAjoBhFMx4QVqw+ICkYnON ObPwCEeKfRlD788xxeaZvxDUOabKoXZ18gJU36J1v9vgJjkoMSyy9SNQM01xLsBS sJJ21Qo7LInyV5pHcB5O+P84S4fOhClljLHjTz4DcWUWlZ3Y41flMUAgJ2Xe45vy YImzNiaScb1CJHaVkqM2cG9HzTUgWvw/EBo6lmvg7z4+Xr7FMDmTt5pKUvXe9HlM lSX0wQkL/G9whNbyrKrVv7d9+oOigCVQx0xBi4HwtjB9HrsmPgZpEfgNEBBKE7e1 qrCCWJji7IYmJMOykVe3jbVozuoNwhI3c8OMP87GnaFTS3WSenXpPtE+TYdbg2Ju Ow== -----END CERTIFICATE-----Generated at Wed May 8 07:45:27 2024 by rpki-client on console-ams.rpki-client.org