$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141968.roa File: AS141968.roa (raw, json) Hash identifier: Q9MYvRJpJsD3879A46bR6APGCdNYNscu9EiCafKz2Xg= Subject key identifier: 99:9C:4B:3D:11:18:8C:55:1E:0D:00:84:C6:7C:69:B2:A4:32:01:C3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 282C99BD5DE21240BCB252ADCCB66E8BB1CE1D97 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141968.roa Signing time: Tue 10 Dec 2024 05:00:00 +0000 ROA not before: Tue 10 Dec 2024 04:55:00 +0000 ROA not after: Tue 09 Dec 2025 05:00:00 +0000 asID: 141968 IP address blocks: 103.177.94.0/23 maxlen: 24 103.180.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:2c:99:bd:5d:e2:12:40:bc:b2:52:ad:cc:b6:6e:8b:b1:ce:1d:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:00 2024 GMT Not After : Dec 9 05:00:00 2025 GMT Subject: CN=999C4B3D11188C551E0D0084C67C69B2A43201C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b6:ec:7e:1d:7a:5c:6d:4c:42:af:09:ca:97: d5:dd:af:ce:80:53:d4:0b:42:2b:9c:02:67:bf:5d: 39:b3:9b:be:42:c6:a7:8e:45:5b:3f:b9:21:93:91: 7a:81:c7:0d:e9:c6:f9:af:7a:50:16:6c:c2:81:c6: e3:67:15:3d:5d:25:aa:b0:ef:06:07:ec:e1:ce:a1: 7d:d5:e1:eb:c9:a4:23:c6:b3:26:b3:24:a8:ca:7b: 7d:b7:84:96:c8:24:e8:aa:1d:68:24:92:79:8c:cf: 15:42:1a:31:76:ff:a7:46:80:1a:f1:1e:ca:ae:3d: 89:46:e5:46:b1:79:10:76:ff:c3:a0:ef:ff:be:34: 02:72:9d:47:a9:63:9c:8f:95:6d:60:5c:9a:c9:48: 95:82:47:5c:9d:6c:57:27:33:ff:98:dc:fc:de:9b: a9:27:45:5e:74:c8:b2:9b:a4:3a:45:99:ee:60:94: f8:7e:f7:8d:04:b1:22:dd:38:70:e7:fc:73:59:cb: bf:d4:e2:ec:8e:cc:cb:4e:d6:3e:79:29:48:fc:8f: 4c:5b:98:48:3e:9c:4a:9c:d4:16:fa:29:ea:c1:d7: 48:9d:62:57:9f:39:7f:66:54:1d:72:7a:ac:d5:48: 29:7f:94:b5:7a:85:6a:2f:fd:be:50:ab:72:5d:f6: 6d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:9C:4B:3D:11:18:8C:55:1E:0D:00:84:C6:7C:69:B2:A4:32:01:C3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141968.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.94.0/23 103.180.124.0/23 Signature Algorithm: sha256WithRSAEncryption 34:86:db:3c:91:8c:eb:15:e7:1e:d2:16:51:b3:f3:a7:29:64: c1:bd:67:89:c7:da:52:57:87:b2:db:58:4c:28:dd:30:0e:ff: 9e:a4:1d:d0:c9:ae:bc:dd:23:e4:46:f0:76:5d:17:24:88:99: cf:0e:58:7b:5c:68:81:cf:f7:c2:99:6a:75:92:98:b0:60:2f: 4b:8e:51:5c:4f:84:da:6d:cf:1e:d2:ca:8d:a6:af:8e:17:81: 4b:53:58:1b:74:71:9f:2b:11:fd:4a:f2:97:b3:89:ea:b9:4b: 31:d5:4e:90:ed:7d:44:e9:d8:47:1c:9e:e3:01:34:ba:7a:1a: fc:34:c5:ff:9c:0c:2e:ac:4e:ae:f7:2d:58:7a:63:37:62:5f: b9:68:cb:61:96:b0:02:dd:31:43:5d:3b:e6:23:2f:cf:42:e4: f0:ea:ee:2b:3b:b3:25:6b:d3:ec:3e:e9:ca:e4:94:73:be:ec: d2:f5:10:7d:dd:c0:a8:25:c1:f0:de:66:cf:e8:f5:4e:a2:49: f5:1a:c1:e7:32:31:33:18:4e:d9:7b:de:0b:dd:72:f8:8d:77: fa:a8:47:56:c1:be:23:2f:a3:a4:3e:f8:8f:5d:5f:34:f3:4a: 89:0e:c0:6f:40:6b:76:f5:79:0e:9b:a6:f1:1e:8d:04:64:1d: 09:61:de:44 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUKCyZvV3iEkC8slKtzLZui7HOHZcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwMFoX DTI1MTIwOTA1MDAwMFowMzExMC8GA1UEAxMoOTk5QzRCM0QxMTE4OEM1NTFFMEQw MDg0QzY3QzY5QjJBNDMyMDFDMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMS27H4delxtTEKvCcqX1d2vzoBT1AtCK5wCZ79dObObvkLGp45FWz+5IZOR eoHHDenG+a96UBZswoHG42cVPV0lqrDvBgfs4c6hfdXh68mkI8azJrMkqMp7fbeE lsgk6KodaCSSeYzPFUIaMXb/p0aAGvEeyq49iUblRrF5EHb/w6Dv/740AnKdR6lj nI+VbWBcmslIlYJHXJ1sVycz/5jc/N6bqSdFXnTIspukOkWZ7mCU+H73jQSxIt04 cOf8c1nLv9Ti7I7My07WPnkpSPyPTFuYSD6cSpzUFvop6sHXSJ1iV585f2ZUHXJ6 rNVIKX+UtXqFai/9vlCrcl32bbUCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBSZnEs9 ERiMVR4NAITGfGmypDIBwzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAWexXgMEAWe0fDANBgkqhkiG9w0BAQsFAAOCAQEANIbbPJGM6xXn HtIWUbPzpylkwb1nicfaUleHsttYTCjdMA7/nqQd0MmuvN0j5Ebwdl0XJIiZzw5Y e1xogc/3wplqdZKYsGAvS45RXE+E2m3PHtLKjaavjheBS1NYG3RxnysR/Uryl7OJ 6rlLMdVOkO19ROnYRxye4wE0unoa/DTF/5wMLqxOrvctWHpjN2JfuWjLYZawAt0x Q1075iMvz0Lk8OruKzuzJWvT7D7pyuSUc77s0vUQfd3AqCXB8N5mz+j1TqJJ9RrB 5zIxMxhO2XveC91y+I13+qhHVsG+Iy+jpD74j11fNPNKiQ7Ab0BrdvV5Dpum8R6N BGQdCWHeRA== -----END CERTIFICATE-----Generated at Sun Feb 16 20:55:44 2025 by rpki-client