$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141960.roa File: AS141960.roa (raw, json) Hash identifier: 0AX58TY7TeEyBPFwGyhhYF8oNEP3ih3ceKsW1oF/7m4= Subject key identifier: 76:C3:39:AF:E8:FE:64:37:33:46:AB:2B:24:C1:B9:15:67:BC:66:55 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 68D5EA256798305E880ED8FBC791C7417254C60B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141960.roa Signing time: Tue 09 Jan 2024 04:00:11 +0000 ROA not before: Tue 09 Jan 2024 03:55:11 +0000 ROA not after: Tue 07 Jan 2025 04:00:11 +0000 asID: 141960 IP address blocks: 103.165.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d5:ea:25:67:98:30:5e:88:0e:d8:fb:c7:91:c7:41:72:54:c6:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:11 2024 GMT Not After : Jan 7 04:00:11 2025 GMT Subject: CN=76C339AFE8FE64373346AB2B24C1B91567BC6655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ca:71:7f:7e:21:87:a9:5f:fb:46:b4:97:f0: d6:16:99:af:d6:68:5c:38:a9:fe:05:02:5f:8d:75: 3f:18:1a:6a:eb:32:29:82:19:8f:b0:67:88:9c:3a: 1f:ee:7d:83:ad:00:5e:36:2d:70:13:89:69:d4:b7: c2:31:20:4d:2b:62:81:e9:82:ac:77:e9:d8:96:7c: a4:6e:25:cc:ac:c1:df:83:70:70:26:c9:a4:ee:bf: f3:dc:22:e7:cb:02:e0:91:b6:9c:bf:3a:28:02:80: 09:bf:e8:86:5b:0d:e6:83:79:fc:42:40:66:aa:07: 3f:3d:af:79:0e:41:ac:f7:db:34:bd:6c:f5:cd:71: d3:34:e4:f8:c9:89:8d:76:3f:1f:90:dd:7c:72:fe: 21:98:dc:0d:9e:db:7a:2e:c1:18:a2:ed:45:0f:8c: 5e:d3:80:cf:33:46:af:c1:11:48:e4:cd:49:ab:e0: bb:68:4e:3f:fc:41:1f:e5:dd:34:30:67:c7:e8:5c: e8:f2:6e:df:2c:30:0a:b6:fb:7a:71:7c:d6:76:90: 99:35:2b:73:42:b5:69:b4:c1:88:e4:40:32:55:e5: 4c:eb:02:80:e9:cc:09:5c:2d:2c:7c:f1:ba:f2:fa: ce:29:f7:e2:c5:45:0c:a1:a0:48:0a:b3:ad:d0:b5: fa:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:C3:39:AF:E8:FE:64:37:33:46:AB:2B:24:C1:B9:15:67:BC:66:55 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141960.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.253.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:d5:d3:e0:b1:3c:46:35:11:ee:8a:82:60:2b:28:92:db:7c: 80:21:8d:d6:40:4b:ab:cd:8f:64:65:01:b7:87:65:e8:db:7b: 79:74:32:07:49:cd:7d:9c:aa:44:c6:cf:4a:6b:95:0c:91:93: e5:cf:2a:33:55:e2:c4:8b:0d:60:4c:bb:38:68:11:e7:9b:dc: 9d:0e:c0:a0:e7:5f:22:8f:00:32:06:69:62:bd:0c:50:69:1f: 95:2d:86:5d:d5:de:64:fa:4f:d9:e6:b2:14:62:86:cc:14:b1: 4c:95:04:ca:da:f1:25:5a:3d:58:13:19:8e:38:e2:82:74:6b: 0d:05:dc:ca:ff:b0:a0:53:dc:c8:3a:72:83:19:98:f7:17:8d: b7:bd:88:37:1b:dc:ae:b8:b3:44:12:b7:68:8f:ea:75:12:fb: cf:b4:fa:4e:bc:57:d3:21:bb:00:bd:c2:7f:99:09:0d:f4:81: 5e:29:28:b0:5e:f9:f9:82:99:4e:52:f2:3d:5b:80:c4:7b:e3: 6c:b6:ed:3e:46:31:d1:d5:73:1a:7c:8a:5e:80:45:97:c1:be: 28:9d:66:c7:dd:a8:07:ae:46:95:73:46:a1:f2:5e:c4:60:74: eb:4e:6e:db:eb:ca:1c:e8:02:c7:80:db:ec:d7:01:f1:8d:b9: dd:81:3e:80 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUaNXqJWeYMF6IDtj7x5HHQXJUxgswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxMVoX DTI1MDEwNzA0MDAxMVowMzExMC8GA1UEAxMoNzZDMzM5QUZFOEZFNjQzNzMzNDZB QjJCMjRDMUI5MTU2N0JDNjY1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMrKcX9+IYepX/tGtJfw1haZr9ZoXDip/gUCX411PxgaausyKYIZj7BniJw6 H+59g60AXjYtcBOJadS3wjEgTStigemCrHfp2JZ8pG4lzKzB34NwcCbJpO6/89wi 58sC4JG2nL86KAKACb/ohlsN5oN5/EJAZqoHPz2veQ5BrPfbNL1s9c1x0zTk+MmJ jXY/H5DdfHL+IZjcDZ7bei7BGKLtRQ+MXtOAzzNGr8ERSOTNSavgu2hOP/xBH+Xd NDBnx+hc6PJu3ywwCrb7enF81naQmTUrc0K1abTBiORAMlXlTOsCgOnMCVwtLHzx uvL6zin34sVFDKGgSAqzrdC1+okCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR2wzmv 6P5kNzNGqyskwbkVZ7xmVTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk2MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGel/TANBgkqhkiG9w0BAQsFAAOCAQEAP9XT4LE8RjUR7oqCYCso ktt8gCGN1kBLq82PZGUBt4dl6Nt7eXQyB0nNfZyqRMbPSmuVDJGT5c8qM1XixIsN YEy7OGgR55vcnQ7AoOdfIo8AMgZpYr0MUGkflS2GXdXeZPpP2eayFGKGzBSxTJUE ytrxJVo9WBMZjjjignRrDQXcyv+woFPcyDpygxmY9xeNt72INxvcrrizRBK3aI/q dRL7z7T6TrxX0yG7AL3Cf5kJDfSBXikosF75+YKZTlLyPVuAxHvjbLbtPkYx0dVz GnyKXoBFl8G+KJ1mx92oB65GlXNGofJexGB0605u2+vKHOgCx4Db7NcB8Y253YE+ gA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:55 2024 by rpki-client on console-fra.rpki-client.org