$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141942.roa File: AS141942.roa (raw, json) Hash identifier: X3K3HMOwidqpQ7/1x/l6NnoD7Da24EJbECbBlhW4EH8= Subject key identifier: EF:78:F2:0A:A3:CC:56:58:2D:FC:AF:F4:63:12:3E:95:72:75:DF:E1 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 53FD64B827243BA980FB8C813691B4EE58685D2B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141942.roa Signing time: Tue 10 Dec 2024 05:00:19 +0000 ROA not before: Tue 10 Dec 2024 04:55:19 +0000 ROA not after: Tue 09 Dec 2025 05:00:19 +0000 asID: 141942 IP address blocks: 103.166.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:fd:64:b8:27:24:3b:a9:80:fb:8c:81:36:91:b4:ee:58:68:5d:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:19 2024 GMT Not After : Dec 9 05:00:19 2025 GMT Subject: CN=EF78F20AA3CC56582DFCAFF463123E957275DFE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a0:3a:58:14:98:f8:41:e1:bc:79:59:29:8c: 44:3e:84:d2:4d:cc:fd:8f:4f:95:a0:08:84:21:cd: 4c:74:34:76:70:1b:6a:39:d2:1a:0a:8b:15:66:97: 3e:22:7a:3b:55:56:53:19:a1:6e:97:d9:4d:9d:49: 7d:5a:36:89:44:0b:e5:5e:19:b1:cb:2f:e9:3b:c6: 3b:b7:15:e7:98:20:8e:07:67:7b:3f:47:34:3c:25: f4:90:2c:53:9e:07:a3:b0:a1:a9:c8:4b:77:68:33: 52:f7:29:f0:04:19:d4:ed:f0:cc:c4:9e:50:86:18: fa:c8:50:e0:64:49:37:38:3d:1f:d1:2c:54:ec:d2: 5d:19:31:e5:23:5c:ed:18:93:e2:87:9e:47:66:e9: eb:66:fa:88:c2:1d:bd:54:17:5e:6e:40:9f:4a:d3: d3:22:52:9f:05:fd:da:04:53:7b:b5:c4:0d:30:7f: e0:e0:aa:1c:77:07:2f:9f:31:57:06:5f:6b:5b:e0: f0:3a:a7:b8:49:3f:96:91:dd:00:36:b5:ed:4c:52: fc:9d:ab:98:bf:83:dc:8d:e2:fa:34:4d:c2:a4:ff: bd:a4:6c:72:08:a3:40:bd:5e:ec:f1:2d:6d:a9:1f: f4:fc:f3:18:c5:c8:9d:0e:51:9e:e1:69:93:3c:19: ce:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:78:F2:0A:A3:CC:56:58:2D:FC:AF:F4:63:12:3E:95:72:75:DF:E1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141942.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.92.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:da:d8:f4:b3:8e:11:fb:93:74:8c:4c:cb:64:67:23:a3:44: 29:77:cc:42:b8:1e:d2:0a:7f:a4:48:d2:16:0e:59:82:79:54: a6:01:40:5f:d3:63:98:06:96:b1:9a:78:d0:10:dd:e1:38:c8: 7c:21:90:c0:82:fc:79:54:54:d6:0a:34:5c:38:39:04:e9:0c: 6e:d3:94:4c:5c:55:37:b9:f7:69:ac:91:d0:19:34:72:6a:ad: af:12:af:43:91:53:40:d7:77:bc:27:16:a0:6c:cf:f1:b0:e2: 6f:2a:ec:aa:93:b6:a2:63:6f:84:9d:56:24:f3:40:a6:da:5a: 1a:e0:2c:a8:61:f3:1b:68:46:6b:a4:4e:46:ed:72:33:c0:3a: f0:e9:f3:20:8b:51:c4:8a:43:a2:d4:14:27:ef:dc:c3:ee:b1: 5a:78:dc:ba:d0:ce:85:09:69:b6:96:5b:03:ac:eb:1c:1b:eb: 3f:48:cb:58:b0:75:61:12:88:5d:31:84:8e:87:dc:7b:21:26: d5:de:6d:a9:c9:54:eb:b9:36:04:53:f6:6a:01:eb:3d:17:73: 9e:c8:6d:ff:85:14:a8:a7:c4:55:b6:bc:24:4c:b5:15:c8:f6: e3:99:89:a7:69:2e:10:44:2b:31:8a:74:5f:76:aa:1e:9d:39: ac:be:7c:e0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUU/1kuCckO6mA+4yBNpG07lhoXSswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxOVoX DTI1MTIwOTA1MDAxOVowMzExMC8GA1UEAxMoRUY3OEYyMEFBM0NDNTY1ODJERkNB RkY0NjMxMjNFOTU3Mjc1REZFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKqgOlgUmPhB4bx5WSmMRD6E0k3M/Y9PlaAIhCHNTHQ0dnAbajnSGgqLFWaX PiJ6O1VWUxmhbpfZTZ1JfVo2iUQL5V4Zscsv6TvGO7cV55ggjgdnez9HNDwl9JAs U54Ho7ChqchLd2gzUvcp8AQZ1O3wzMSeUIYY+shQ4GRJNzg9H9EsVOzSXRkx5SNc 7RiT4oeeR2bp62b6iMIdvVQXXm5An0rT0yJSnwX92gRTe7XEDTB/4OCqHHcHL58x VwZfa1vg8DqnuEk/lpHdADa17UxS/J2rmL+D3I3i+jRNwqT/vaRscgijQL1e7PEt bakf9PzzGMXInQ5RnuFpkzwZzpECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTvePIK o8xWWC38r/RjEj6VcnXf4TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk0Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWemXDANBgkqhkiG9w0BAQsFAAOCAQEAm9rY9LOOEfuTdIxMy2Rn I6NEKXfMQrge0gp/pEjSFg5ZgnlUpgFAX9NjmAaWsZp40BDd4TjIfCGQwIL8eVRU 1go0XDg5BOkMbtOUTFxVN7n3aayR0Bk0cmqtrxKvQ5FTQNd3vCcWoGzP8bDibyrs qpO2omNvhJ1WJPNAptpaGuAsqGHzG2hGa6RORu1yM8A68OnzIItRxIpDotQUJ+/c w+6xWnjcutDOhQlptpZbA6zrHBvrP0jLWLB1YRKIXTGEjofceyEm1d5tqclU67k2 BFP2agHrPRdznsht/4UUqKfEVba8JEy1Fcj245mJp2kuEEQrMYp0X3aqHp05rL58 4A== -----END CERTIFICATE-----Generated at Sun Feb 16 20:46:27 2025 by rpki-client