$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141942.roa File: AS141942.roa (raw, json) Hash identifier: K8/2jl2Xq0QGmY7r+ckRsxFt1ipVruDAxJVsRlu4fiM= Subject key identifier: 60:A2:95:63:01:26:55:87:4A:21:EC:F4:EA:66:70:41:08:CE:55:F7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0834554F20255AFAD68E3B809458898D55B28DA7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141942.roa Signing time: Tue 09 Jan 2024 04:00:23 +0000 ROA not before: Tue 09 Jan 2024 03:55:23 +0000 ROA not after: Tue 07 Jan 2025 04:00:23 +0000 asID: 141942 IP address blocks: 103.166.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 00:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:34:55:4f:20:25:5a:fa:d6:8e:3b:80:94:58:89:8d:55:b2:8d:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:23 2024 GMT Not After : Jan 7 04:00:23 2025 GMT Subject: CN=60A29563012655874A21ECF4EA66704108CE55F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:53:5c:08:42:a5:f6:37:7b:43:b7:d0:36:50: 20:9c:26:9b:ae:50:2e:41:5f:8c:37:d5:48:1a:96: 2b:45:07:20:86:ea:97:f0:9f:7d:07:1f:05:78:89: d1:d5:2c:d8:30:fc:61:f6:75:39:44:8a:a7:37:43: 44:bf:f1:f2:25:f9:d5:ee:b0:25:17:9a:61:66:11: 06:b2:85:76:1f:9e:d1:07:e2:a4:0e:f0:21:fd:5f: b8:7e:0d:88:c8:70:e7:20:d1:a2:af:2d:9f:43:41: 98:ba:b1:c5:40:bd:36:d7:bc:2b:02:31:cf:c4:0d: 3e:02:a6:d9:26:79:52:db:71:21:0f:94:d1:ed:a4: b4:46:df:66:98:cf:fc:d7:69:77:1a:8f:50:a9:eb: 20:aa:a8:a7:a3:f5:33:6c:e8:8d:a9:ff:ae:35:76: 44:99:8c:5a:05:e8:14:83:80:e0:9d:2c:13:9d:9c: 6a:0c:e5:c3:bb:1f:6a:fc:99:91:83:35:83:fb:7e: 30:f3:49:30:07:f0:40:23:51:e0:f9:a9:d5:b8:94: 81:a6:7d:0a:3d:5e:d6:32:10:eb:b2:42:00:bc:55: a2:eb:1d:d7:22:57:6e:33:da:97:16:f0:4e:74:05: 3d:3c:99:3a:c1:27:12:ef:3d:4b:a0:40:73:1c:3e: 5e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A2:95:63:01:26:55:87:4A:21:EC:F4:EA:66:70:41:08:CE:55:F7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141942.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.92.0/23 Signature Algorithm: sha256WithRSAEncryption 46:16:2e:6c:5b:fe:3f:9e:ef:29:a0:b3:76:b6:4c:57:a5:8d: 37:d0:6b:f4:04:27:d6:d0:1b:0b:80:05:e6:5d:09:07:51:d2: 32:86:2d:1a:0d:e9:fa:2a:06:06:29:ec:fd:74:8f:90:d1:b9: 0a:67:7f:b5:50:21:3b:97:3c:e0:c6:74:25:ae:a5:3e:d1:d6: 90:7c:ef:06:88:3c:9f:59:5f:14:7b:b6:34:1e:64:78:9c:e6: af:5c:8b:7f:f5:98:8e:cf:7d:24:66:94:08:9b:d7:0a:84:97: 3d:4d:58:67:f6:f3:72:d8:e4:27:49:2e:f9:3a:4e:c9:69:92: e0:e0:49:67:c6:d8:c9:fa:32:cb:70:32:fe:a8:42:72:57:e7: 1d:e6:c1:1f:5e:17:5b:e5:8f:38:e6:b3:52:06:15:db:99:25: 6c:2a:5e:98:fe:40:3a:d6:1c:b0:df:da:4d:41:d2:06:64:d6: 17:d1:3f:85:b5:90:2a:2a:f4:c9:fb:30:3e:a7:73:53:b9:43: e6:03:d5:01:60:4a:60:89:93:f6:8a:f0:76:a2:d1:44:05:a3: 3b:e2:0f:2b:85:06:36:c1:ea:5a:17:c2:21:4b:a9:ab:b3:09: 0a:4e:06:3a:d2:bf:8b:c9:7b:c9:a9:4a:60:d3:47:f2:1c:92: ef:14:26:47 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCDRVTyAlWvrWjjuAlFiJjVWyjacwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyM1oX DTI1MDEwNzA0MDAyM1owMzExMC8GA1UEAxMoNjBBMjk1NjMwMTI2NTU4NzRBMjFF Q0Y0RUE2NjcwNDEwOENFNTVGNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1TXAhCpfY3e0O30DZQIJwmm65QLkFfjDfVSBqWK0UHIIbql/CffQcfBXiJ 0dUs2DD8YfZ1OUSKpzdDRL/x8iX51e6wJReaYWYRBrKFdh+e0QfipA7wIf1fuH4N iMhw5yDRoq8tn0NBmLqxxUC9Nte8KwIxz8QNPgKm2SZ5UttxIQ+U0e2ktEbfZpjP /NdpdxqPUKnrIKqop6P1M2zojan/rjV2RJmMWgXoFIOA4J0sE52cagzlw7sfavyZ kYM1g/t+MPNJMAfwQCNR4Pmp1biUgaZ9Cj1e1jIQ67JCALxVousd1yJXbjPalxbw TnQFPTyZOsEnEu89S6BAcxw+XkMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRgopVj ASZVh0oh7PTqZnBBCM5V9zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk0Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWemXDANBgkqhkiG9w0BAQsFAAOCAQEARhYubFv+P57vKaCzdrZM V6WNN9Br9AQn1tAbC4AF5l0JB1HSMoYtGg3p+ioGBins/XSPkNG5Cmd/tVAhO5c8 4MZ0Ja6lPtHWkHzvBog8n1lfFHu2NB5keJzmr1yLf/WYjs99JGaUCJvXCoSXPU1Y Z/bzctjkJ0ku+TpOyWmS4OBJZ8bYyfoyy3Ay/qhCclfnHebBH14XW+WPOOazUgYV 25klbCpemP5AOtYcsN/aTUHSBmTWF9E/hbWQKir0yfswPqdzU7lD5gPVAWBKYImT 9orwdqLRRAWjO+IPK4UGNsHqWhfCIUupq7MJCk4GOtK/i8l7yalKYNNH8hyS7xQm Rw== -----END CERTIFICATE-----Generated at Thu May 2 17:40:07 2024 by rpki-client on console-fra.rpki-client.org