$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141981.roa File: AS141981.roa (raw, json) Hash identifier: 6mJNsYFkHxT+/+VZTE2iyBqSFv3K8qSmi1ue2/RwshY= Subject key identifier: C2:4E:B1:40:7C:50:4D:AE:6E:D6:47:6A:FB:A7:F3:0E:06:21:90:6D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0BAD2D1C9445F35C2919B099954D492485DE4954 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141981.roa Signing time: Tue 10 Dec 2024 05:00:02 +0000 ROA not before: Tue 10 Dec 2024 04:55:02 +0000 ROA not after: Tue 09 Dec 2025 05:00:02 +0000 asID: 141981 IP address blocks: 103.167.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:ad:2d:1c:94:45:f3:5c:29:19:b0:99:95:4d:49:24:85:de:49:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:02 2024 GMT Not After : Dec 9 05:00:02 2025 GMT Subject: CN=C24EB1407C504DAE6ED6476AFBA7F30E0621906D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:13:ad:06:d4:e5:6c:11:0c:af:8e:bc:3d:2e: 14:a6:a8:45:f6:f7:3d:a2:7f:ea:4d:10:f8:fe:f1: d4:23:b2:e8:65:e7:db:ae:42:b0:91:98:d2:d1:c5: 70:7d:89:48:fd:00:40:5b:41:27:b4:1a:92:51:98: 61:4f:79:58:47:49:3a:aa:ce:fb:ac:b7:23:aa:b4: 73:dd:04:4c:cb:08:02:e4:8b:6f:29:3b:d1:ca:86: 7d:5c:28:a4:73:f9:6f:73:5e:7b:ae:80:94:9b:7b: 9d:e1:ee:33:bc:36:cf:68:0e:a1:f1:91:34:47:29: 67:71:10:8b:fc:f7:e4:13:b4:3a:4a:71:f0:09:04: 3e:d0:73:33:02:c6:51:dd:33:5f:fa:5a:61:2e:27: dc:37:dc:4e:ef:a7:54:4a:f6:e3:39:8d:ff:f7:e5: 08:5a:ae:73:24:73:f6:98:7d:54:36:2c:34:3c:ac: c1:8c:6a:4a:a6:2b:fc:bc:47:3e:a7:5b:95:0a:57: 14:a5:2c:66:8c:65:a6:06:83:e4:8e:ea:32:64:73: dc:41:e6:88:1f:08:d8:4f:3f:f1:3c:f5:86:d6:5e: 7c:2d:d6:24:12:98:62:e6:65:de:c9:5d:13:64:6a: 46:44:59:0e:c9:fd:a1:50:9f:9d:b1:64:fa:17:aa: 23:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:4E:B1:40:7C:50:4D:AE:6E:D6:47:6A:FB:A7:F3:0E:06:21:90:6D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141981.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.110.0/23 Signature Algorithm: sha256WithRSAEncryption 75:d0:49:d8:ca:6f:92:13:29:c6:a7:be:c4:bf:cb:c4:ce:a3: 25:dd:21:65:a3:76:9c:07:c4:46:fc:d7:ad:28:a4:10:84:27: f2:9c:de:49:ee:79:84:0a:fc:ac:27:07:fa:0e:33:4f:82:71: 28:8f:43:02:6c:51:17:08:ea:62:df:70:6c:fb:71:39:8b:c1: c8:93:cc:38:27:8a:31:bc:75:83:a2:ad:f1:15:88:a7:3d:d9: 11:88:20:53:11:d3:8f:99:5f:df:57:d3:cd:59:08:23:5e:db: 59:e8:0c:f9:1c:06:bc:97:1f:12:46:21:52:e8:53:37:8f:94: dd:89:5f:01:2c:80:16:74:26:89:45:84:a2:74:e1:06:15:53: b7:51:64:da:34:02:cb:b5:45:40:ff:50:9d:e2:92:5b:01:3c: 1e:66:a7:a5:7e:24:90:7d:7f:78:18:d2:c5:ad:9c:c2:72:a6: c5:3d:be:e3:08:9d:13:85:28:21:e1:06:94:80:a3:3e:2d:a0: 06:f5:20:9b:c6:ce:62:f6:2b:49:9f:df:29:b7:12:f2:f7:a4: 93:24:ce:da:f0:a5:ee:72:59:a9:ae:83:a2:bb:8e:47:a8:d0: 0d:51:79:99:94:c1:7f:2e:0d:8d:fa:e3:b2:bf:70:a1:44:22: c5:6a:77:f3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUC60tHJRF81wpGbCZlU1JJIXeSVQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwMloX DTI1MTIwOTA1MDAwMlowMzExMC8GA1UEAxMoQzI0RUIxNDA3QzUwNERBRTZFRDY0 NzZBRkJBN0YzMEUwNjIxOTA2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKcTrQbU5WwRDK+OvD0uFKaoRfb3PaJ/6k0Q+P7x1COy6GXn265CsJGY0tHF cH2JSP0AQFtBJ7QaklGYYU95WEdJOqrO+6y3I6q0c90ETMsIAuSLbyk70cqGfVwo pHP5b3Nee66AlJt7neHuM7w2z2gOofGRNEcpZ3EQi/z35BO0Okpx8AkEPtBzMwLG Ud0zX/paYS4n3DfcTu+nVEr24zmN//flCFqucyRz9ph9VDYsNDyswYxqSqYr/LxH PqdblQpXFKUsZoxlpgaD5I7qMmRz3EHmiB8I2E8/8Tz1htZefC3WJBKYYuZl3sld E2RqRkRZDsn9oVCfnbFk+heqI0MCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTCTrFA fFBNrm7WR2r7p/MOBiGQbTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWenbjANBgkqhkiG9w0BAQsFAAOCAQEAddBJ2MpvkhMpxqe+xL/L xM6jJd0hZaN2nAfERvzXrSikEIQn8pzeSe55hAr8rCcH+g4zT4JxKI9DAmxRFwjq Yt9wbPtxOYvByJPMOCeKMbx1g6Kt8RWIpz3ZEYggUxHTj5lf31fTzVkII17bWegM +RwGvJcfEkYhUuhTN4+U3YlfASyAFnQmiUWEonThBhVTt1Fk2jQCy7VFQP9QneKS WwE8HmanpX4kkH1/eBjSxa2cwnKmxT2+4widE4UoIeEGlICjPi2gBvUgm8bOYvYr SZ/fKbcS8vekkyTO2vCl7nJZqa6DoruOR6jQDVF5mZTBfy4Njfrjsr9woUQixWp3 8w== -----END CERTIFICATE-----Generated at Sat Apr 5 06:18:08 2025 by rpki-client