$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141968.roa File: AS141968.roa (raw, json) Hash identifier: rg6ZCFKzxKQsQzhrsWSXPH48i/JzOhpRH3AosIN1uxY= Subject key identifier: 3D:F2:2F:FC:06:D5:D0:36:03:08:BB:A4:EB:BB:7A:B6:5C:54:7A:88 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1372791CF5492E04AC23905C6EAD75E863882BB6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141968.roa Signing time: Tue 09 Jan 2024 04:00:01 +0000 ROA not before: Tue 09 Jan 2024 03:55:01 +0000 ROA not after: Tue 07 Jan 2025 04:00:01 +0000 asID: 141968 IP address blocks: 103.177.94.0/23 maxlen: 24 103.180.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:72:79:1c:f5:49:2e:04:ac:23:90:5c:6e:ad:75:e8:63:88:2b:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:01 2024 GMT Not After : Jan 7 04:00:01 2025 GMT Subject: CN=3DF22FFC06D5D0360308BBA4EBBB7AB65C547A88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:33:70:70:f2:ba:76:39:0f:23:c6:58:42:c7: 6f:50:80:80:7d:5d:a9:0f:95:c2:71:53:b7:fc:cd: d6:58:e7:8b:02:c3:28:b4:93:36:3d:cb:93:bb:8a: 54:1a:2c:de:6e:da:13:3e:35:28:c9:15:7d:c0:a2: ce:2c:76:98:a1:06:28:9b:62:8a:76:8d:b3:c3:20: f8:63:e7:34:b4:38:85:ad:74:30:5b:4f:48:e6:c2: 62:39:63:98:9b:50:fb:15:fe:4e:fc:7a:18:98:7d: 5f:04:8c:d0:85:f7:52:ce:3f:b6:69:c7:26:df:18: 77:63:58:30:69:43:18:67:cd:d0:82:24:43:f0:12: d0:f6:3e:3b:7b:db:1c:70:0f:f9:43:04:31:8e:0c: ac:f2:ed:7d:40:bd:48:ae:10:72:45:ef:9c:25:5f: 5e:4e:f2:09:06:0e:bc:90:97:38:b2:cc:af:73:2b: 80:99:32:41:d3:62:03:f5:30:c5:1c:f1:e9:cc:99: 12:8a:e8:e8:24:f5:f4:0b:b1:84:81:37:71:4a:ac: 7f:e0:ba:5b:87:2c:e3:d7:52:ed:b9:22:9a:aa:99: 79:8e:72:03:6d:22:23:81:c1:ea:39:79:47:35:8b: 51:a7:b4:4b:a7:e5:21:bd:51:5a:ac:96:44:54:13: db:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F2:2F:FC:06:D5:D0:36:03:08:BB:A4:EB:BB:7A:B6:5C:54:7A:88 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141968.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.94.0/23 103.180.124.0/23 Signature Algorithm: sha256WithRSAEncryption 02:0e:b7:13:2f:39:c0:a8:20:b0:84:ca:48:4c:f2:1b:f5:87: 7f:d7:22:bb:9d:cd:b4:60:3a:76:84:79:a6:a7:5d:f9:28:f7: 55:94:e0:6b:18:11:4a:b4:08:e8:a5:8a:23:72:19:35:e2:9f: 21:3d:4e:ac:b2:36:d0:01:79:d1:94:59:58:56:ac:42:8c:f0: 23:cc:83:5e:47:da:8d:cf:14:11:24:8a:6f:4e:95:cf:53:4c: b1:19:1f:86:26:27:e6:c8:ba:c5:09:44:81:63:bf:d3:7e:fb: f8:37:52:d9:7f:41:8d:bc:7d:85:e7:6f:30:dd:48:8e:2e:31: 5a:c3:ad:58:c3:40:b2:95:b7:07:d3:68:c3:0b:cd:36:fb:c9: ce:1f:88:1f:7a:dc:7c:63:81:84:1d:aa:b2:3a:04:f9:fd:3b: 1f:da:c7:65:ae:da:f8:4a:ae:bf:b9:2f:0a:65:16:3d:ec:fe: 65:10:b9:23:ef:d0:73:43:2b:29:ed:73:91:68:b9:6b:5b:5e: 38:61:82:6c:cc:03:f9:48:9e:f5:ff:6d:57:3a:71:c6:e0:51: 92:a3:a9:f3:8a:95:53:94:57:90:70:e7:ab:58:65:6d:13:90: 2e:34:48:98:53:7b:14:05:4a:56:7a:a7:4f:c3:d9:c8:46:05: 84:ee:a8:f8 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUE3J5HPVJLgSsI5Bcbq116GOIK7YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwMVoX DTI1MDEwNzA0MDAwMVowMzExMC8GA1UEAxMoM0RGMjJGRkMwNkQ1RDAzNjAzMDhC QkE0RUJCQjdBQjY1QzU0N0E4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANozcHDyunY5DyPGWELHb1CAgH1dqQ+VwnFTt/zN1ljniwLDKLSTNj3Lk7uK VBos3m7aEz41KMkVfcCizix2mKEGKJtiinaNs8Mg+GPnNLQ4ha10MFtPSObCYjlj mJtQ+xX+Tvx6GJh9XwSM0IX3Us4/tmnHJt8Yd2NYMGlDGGfN0IIkQ/AS0PY+O3vb HHAP+UMEMY4MrPLtfUC9SK4QckXvnCVfXk7yCQYOvJCXOLLMr3MrgJkyQdNiA/Uw xRzx6cyZEoro6CT19AuxhIE3cUqsf+C6W4cs49dS7bkimqqZeY5yA20iI4HB6jl5 RzWLUae0S6flIb1RWqyWRFQT238CAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQ98i/8 BtXQNgMIu6Tru3q2XFR6iDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAWexXgMEAWe0fDANBgkqhkiG9w0BAQsFAAOCAQEAAg63Ey85wKgg sITKSEzyG/WHf9ciu53NtGA6doR5pqdd+Sj3VZTgaxgRSrQI6KWKI3IZNeKfIT1O rLI20AF50ZRZWFasQozwI8yDXkfajc8UESSKb06Vz1NMsRkfhiYn5si6xQlEgWO/ 0377+DdS2X9Bjbx9hedvMN1Iji4xWsOtWMNAspW3B9NowwvNNvvJzh+IH3rcfGOB hB2qsjoE+f07H9rHZa7a+Equv7kvCmUWPez+ZRC5I+/Qc0MrKe1zkWi5a1teOGGC bMwD+Uie9f9tVzpxxuBRkqOp84qVU5RXkHDnq1hlbROQLjRImFN7FAVKVnqnT8PZ yEYFhO6o+A== -----END CERTIFICATE-----Generated at Wed May 8 04:37:57 2024 by rpki-client on console-fra.rpki-client.org