$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141945.roa File: AS141945.roa (raw, json) Hash identifier: 3RrFCaZDmQixibMG/glsFB90iKan4Tjkm00WNLZ5dJY= Subject key identifier: F2:15:1D:9D:18:B0:67:A7:DA:B9:6B:12:A0:2F:6D:2F:ED:20:F8:C2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0EAD94FB9E71AA8B5F8F31069901EA387A78884B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141945.roa Signing time: Wed 09 Oct 2024 09:00:00 +0000 ROA not before: Wed 09 Oct 2024 08:55:00 +0000 ROA not after: Wed 08 Oct 2025 09:00:00 +0000 asID: 141945 IP address blocks: 103.166.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ad:94:fb:9e:71:aa:8b:5f:8f:31:06:99:01:ea:38:7a:78:88:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 9 08:55:00 2024 GMT Not After : Oct 8 09:00:00 2025 GMT Subject: CN=F2151D9D18B067A7DAB96B12A02F6D2FED20F8C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bf:0b:e1:45:72:66:eb:4b:73:b2:8e:45:f5: c4:c0:1f:52:6c:af:14:d7:51:b4:5b:e4:7a:b9:1e: 04:5f:86:58:30:c2:00:79:7f:ce:97:fe:da:5c:14: 6d:6d:53:cd:8d:8a:6f:28:6d:b3:17:b6:04:e8:34: cf:5a:2f:4a:6f:bf:0e:3b:37:59:ea:d8:a8:c1:db: fd:ab:e7:0b:26:a1:26:43:93:42:99:8c:00:41:f7: f9:c6:ce:cf:52:d5:60:40:47:cd:f5:c8:14:12:b6: 3f:2f:3c:e3:78:db:4c:f4:4d:fc:96:23:35:4a:09: f3:85:78:e5:32:ea:9d:9a:6d:be:68:2a:78:e4:a2: b3:1b:84:ee:f8:d6:d2:32:d2:b0:01:d0:3e:6e:ab: 68:79:e1:68:fc:9d:13:16:2e:89:a2:84:41:0a:9b: 96:32:78:50:56:cc:a0:41:5d:6f:a8:ae:68:5d:34: 9f:88:a4:55:04:20:9e:6b:8b:e7:f1:47:ca:17:42: d6:3f:04:78:72:55:21:c1:f9:60:39:b2:83:02:4d: 71:65:f9:ff:df:05:aa:78:7e:e2:85:75:4f:4a:1e: 53:46:a3:ce:72:b7:e6:03:e0:9f:4c:f4:81:69:4c: 40:e1:26:ed:4d:7b:14:93:ea:fd:b0:1d:31:39:a0: 8b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:15:1D:9D:18:B0:67:A7:DA:B9:6B:12:A0:2F:6D:2F:ED:20:F8:C2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141945.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.122.0/23 Signature Algorithm: sha256WithRSAEncryption 70:91:0b:cb:44:b4:08:5f:6c:99:cb:f8:2f:54:b1:fe:9c:28: 83:18:ef:5c:a3:a8:b2:86:34:5d:f0:46:d0:16:e8:b9:7f:a2: b2:21:78:af:ba:a1:ed:dd:58:67:25:21:5a:8c:c7:a0:74:ad: c3:de:4f:59:a1:ae:63:7b:29:c7:04:04:49:84:1a:a9:f1:56: 00:f6:b7:4e:68:6b:f5:f0:a3:46:9b:e8:fd:51:05:86:aa:65: ee:2a:4c:a0:ae:03:ae:77:c3:32:68:cb:85:85:c2:4e:d8:fa: cd:20:5e:24:60:2b:6b:a5:10:4b:dd:cc:5d:66:cc:79:0b:db: a9:8e:08:ba:03:62:74:28:89:3c:ee:4e:58:07:2d:09:2b:20: ec:d8:66:d2:fc:3c:a5:39:1d:5e:f8:fb:29:a1:cf:99:f7:f9: 05:6b:e5:fb:27:3f:89:66:f1:d5:c5:3f:bc:41:f3:b2:a5:36: ed:4b:d7:b2:d2:83:57:f5:8c:61:c0:12:3c:16:23:c2:b3:5a: fa:8b:bd:30:44:c1:3e:de:83:a2:6c:32:a4:cb:e9:8e:f9:c8: e3:fc:12:a8:e5:83:06:af:ab:aa:08:bb:cf:3b:56:df:f6:7e: f7:2a:b1:30:f1:f8:ef:73:42:c0:d4:8c:46:68:5f:b9:07:a4: 1f:da:1c:c9 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDq2U+55xqotfjzEGmQHqOHp4iEswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwOTA4NTUwMFoX DTI1MTAwODA5MDAwMFowMzExMC8GA1UEAxMoRjIxNTFEOUQxOEIwNjdBN0RBQjk2 QjEyQTAyRjZEMkZFRDIwRjhDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN6/C+FFcmbrS3OyjkX1xMAfUmyvFNdRtFvkerkeBF+GWDDCAHl/zpf+2lwU bW1TzY2Kbyhtsxe2BOg0z1ovSm+/Djs3WerYqMHb/avnCyahJkOTQpmMAEH3+cbO z1LVYEBHzfXIFBK2Py8843jbTPRN/JYjNUoJ84V45TLqnZptvmgqeOSisxuE7vjW 0jLSsAHQPm6raHnhaPydExYuiaKEQQqbljJ4UFbMoEFdb6iuaF00n4ikVQQgnmuL 5/FHyhdC1j8EeHJVIcH5YDmygwJNcWX5/98Fqnh+4oV1T0oeU0ajznK35gPgn0z0 gWlMQOEm7U17FJPq/bAdMTmgiwECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTyFR2d GLBnp9q5axKgL20v7SD4wjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWemejANBgkqhkiG9w0BAQsFAAOCAQEAcJELy0S0CF9smcv4L1Sx /pwogxjvXKOosoY0XfBG0BbouX+isiF4r7qh7d1YZyUhWozHoHStw95PWaGuY3sp xwQESYQaqfFWAPa3Tmhr9fCjRpvo/VEFhqpl7ipMoK4DrnfDMmjLhYXCTtj6zSBe JGAra6UQS93MXWbMeQvbqY4IugNidCiJPO5OWActCSsg7Nhm0vw8pTkdXvj7KaHP mff5BWvl+yc/iWbx1cU/vEHzsqU27UvXstKDV/WMYcASPBYjwrNa+ou9METBPt6D omwypMvpjvnI4/wSqOWDBq+rqgi7zztW3/Z+9yqxMPH473NCwNSMRmhfuQekH9oc yQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:48 2024 by rpki-client on console-ams.rpki-client.org