$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141945.roa File: AS141945.roa (raw, json) Hash identifier: 0yw1uE2Kpn0sEsW+FdWdayiiwslhNq6bHc+uDmKSN84= Subject key identifier: F1:6C:44:93:53:11:18:F1:CA:03:86:51:A4:AC:02:E9:CE:30:62:C7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7D6606B92E9255E429FBFEDB2B5459EC2BE4F361 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141945.roa Signing time: Wed 08 Nov 2023 08:32:39 +0000 ROA not before: Wed 08 Nov 2023 08:27:39 +0000 ROA not after: Wed 06 Nov 2024 08:32:39 +0000 asID: 141945 IP address blocks: 103.166.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:66:06:b9:2e:92:55:e4:29:fb:fe:db:2b:54:59:ec:2b:e4:f3:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 8 08:27:39 2023 GMT Not After : Nov 6 08:32:39 2024 GMT Subject: CN=F16C4493531118F1CA038651A4AC02E9CE3062C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3e:40:56:5a:76:ba:f4:5c:53:ad:cf:6b:5f: 59:8c:7e:15:92:89:34:8b:87:de:55:d4:0a:09:a6: 59:7d:7f:6f:b1:b7:86:e6:6f:06:d6:49:83:7a:1a: 65:66:95:f7:cf:3e:99:bc:bf:7a:76:7e:cb:e6:ef: 5f:a2:b7:d4:36:59:cc:19:01:e0:91:25:50:2c:72: b8:4b:4a:27:90:7f:1a:31:4e:b1:c7:80:55:48:e2: 69:49:3f:35:04:17:ac:d1:1c:47:88:bf:dd:6e:46: f3:22:5a:ec:28:fc:3d:37:42:7f:86:b3:cc:d7:5d: 8f:fa:01:6d:29:18:11:4e:af:06:08:58:65:d9:53: bb:04:89:a6:9f:f4:c3:a9:f6:0a:e9:64:87:20:7c: 73:f8:5a:15:1c:cc:28:b2:13:53:1f:f8:13:77:4e: 98:84:6f:d2:b3:75:49:7d:df:11:35:9f:94:0b:32: 74:2a:09:35:f9:8c:38:7e:da:18:20:a9:78:f9:96: 4b:53:9b:88:6e:e4:a5:fa:0f:a6:11:c7:12:ba:1d: 9b:4f:7f:8b:a9:4a:13:27:7d:10:4f:82:ea:4d:23: 66:00:ac:3a:4a:cc:d4:c5:ec:1d:a7:e2:e3:af:d9: 54:59:81:78:15:ac:b1:0c:96:ad:19:90:e6:04:28: 8b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6C:44:93:53:11:18:F1:CA:03:86:51:A4:AC:02:E9:CE:30:62:C7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141945.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.122.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:6b:91:e4:b1:e9:54:7f:df:53:04:a8:4e:c4:35:d2:03:89: a0:eb:6d:35:4a:9a:28:5e:1a:be:09:8f:32:00:56:e4:ad:60: d7:51:4f:27:15:5e:8c:1e:c3:d8:8f:be:7c:f1:5f:0e:19:b4: 8c:44:da:92:64:c8:08:53:10:75:76:a5:0c:04:7c:fc:08:8c: 5d:2c:fd:b0:0c:d4:6d:3d:61:30:71:49:6d:ec:7b:5b:ee:0f: 51:0f:af:65:bc:cc:8b:86:fe:d5:f9:aa:d9:4c:90:ef:f1:b4: b9:9b:c0:ed:3c:39:86:3c:84:c1:e4:d3:8e:ac:50:8f:9b:a9: 31:87:e5:cf:29:ae:e0:ac:62:f8:b0:0b:87:eb:a5:e4:a0:1a: 4e:29:f3:a4:7f:6e:46:a2:0c:7d:5e:81:a0:87:da:85:b1:1a: cd:4a:b2:13:f5:d0:69:1e:6d:5e:56:ee:3b:8e:f8:c3:4c:60: df:e0:38:3c:68:0e:ec:f9:79:f1:fd:fb:4d:d0:b2:e5:da:98: 86:52:12:6a:a1:7d:47:7a:47:54:af:22:ac:ff:50:e6:cc:ba: a4:d9:2d:04:62:54:38:8e:f9:d7:89:10:90:c5:53:0b:e0:80: 23:46:af:75:e6:88:9d:f7:fa:7a:87:30:9f:77:e7:c6:d5:a0: 86:cc:da:c0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfWYGuS6SVeQp+/7bK1RZ7Cvk82EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwODA4MjczOVoX DTI0MTEwNjA4MzIzOVowMzExMC8GA1UEAxMoRjE2QzQ0OTM1MzExMThGMUNBMDM4 NjUxQTRBQzAyRTlDRTMwNjJDNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMk+QFZadrr0XFOtz2tfWYx+FZKJNIuH3lXUCgmmWX1/b7G3huZvBtZJg3oa ZWaV988+mby/enZ+y+bvX6K31DZZzBkB4JElUCxyuEtKJ5B/GjFOsceAVUjiaUk/ NQQXrNEcR4i/3W5G8yJa7Cj8PTdCf4azzNddj/oBbSkYEU6vBghYZdlTuwSJpp/0 w6n2CulkhyB8c/haFRzMKLITUx/4E3dOmIRv0rN1SX3fETWflAsydCoJNfmMOH7a GCCpePmWS1ObiG7kpfoPphHHErodm09/i6lKEyd9EE+C6k0jZgCsOkrM1MXsHafi 46/ZVFmBeBWssQyWrRmQ5gQoiy8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTxbEST UxEY8coDhlGkrALpzjBixzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWemejANBgkqhkiG9w0BAQsFAAOCAQEATWuR5LHpVH/fUwSoTsQ1 0gOJoOttNUqaKF4avgmPMgBW5K1g11FPJxVejB7D2I++fPFfDhm0jETakmTICFMQ dXalDAR8/AiMXSz9sAzUbT1hMHFJbex7W+4PUQ+vZbzMi4b+1fmq2UyQ7/G0uZvA 7Tw5hjyEweTTjqxQj5upMYflzymu4Kxi+LALh+ul5KAaTinzpH9uRqIMfV6BoIfa hbEazUqyE/XQaR5tXlbuO474w0xg3+A4PGgO7Pl58f37TdCy5dqYhlISaqF9R3pH VK8irP9Q5sy6pNktBGJUOI7514kQkMVTC+CAI0avdeaInff6eocwn3fnxtWghsza wA== -----END CERTIFICATE-----Generated at Thu May 9 00:37:06 2024 by rpki-client on console-fra.rpki-client.org