$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141981.roa File: AS141981.roa (raw, json) Hash identifier: BZnBpO1+2WCKLDffUSh5AoV1s7zgAppjLSqg5sxNEJs= Subject key identifier: A6:A8:AA:1D:FA:7B:20:84:46:F3:78:25:09:D9:65:59:AE:24:0D:AA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5D4E7A0C89D27697692510A411A5ACDC2DEB8346 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141981.roa Signing time: Tue 09 Jan 2024 04:00:03 +0000 ROA not before: Tue 09 Jan 2024 03:55:03 +0000 ROA not after: Tue 07 Jan 2025 04:00:03 +0000 asID: 141981 IP address blocks: 103.167.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:4e:7a:0c:89:d2:76:97:69:25:10:a4:11:a5:ac:dc:2d:eb:83:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:03 2024 GMT Not After : Jan 7 04:00:03 2025 GMT Subject: CN=A6A8AA1DFA7B208446F3782509D96559AE240DAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:90:b0:f5:b3:3d:17:14:90:c7:b6:4b:f4:bd: 2b:e4:3f:df:d8:83:9b:da:59:7d:0a:a0:66:6d:fe: 9e:8b:ef:97:12:08:73:10:2f:14:85:15:f7:b0:ff: 24:42:d5:39:e0:4b:9b:21:aa:5b:ee:e0:85:69:15: 21:3a:6e:3f:10:7a:db:3a:23:f1:3b:03:1c:47:a4: 3b:33:7e:e0:f5:3b:14:8b:65:eb:24:03:05:5c:f6: e9:c1:f1:04:13:03:69:fb:7e:c5:fa:fa:91:2d:d6: fc:9a:fb:7f:5d:aa:ea:d5:8c:86:6e:b5:e5:e4:90: 85:bb:4c:c2:81:0e:0b:f5:13:55:ef:0d:9d:73:f1: a8:2f:03:54:75:87:19:cd:f6:06:c0:83:96:ce:e1: bc:d5:82:5a:7a:6a:65:83:03:45:12:d8:68:10:5e: ae:35:98:c1:84:b1:7a:71:fc:8f:8c:16:61:5f:1f: 53:57:92:05:b2:57:6f:8f:ef:86:5a:4e:a9:fe:6c: 39:9e:4b:bc:76:ab:bf:db:7e:28:c5:29:2e:3d:12: fb:b6:02:1a:5d:c8:5e:c5:67:ed:e6:aa:6d:25:62: b5:99:a7:8f:ee:ed:ec:f3:7f:76:6d:bf:88:87:53: 3c:e9:06:2a:b6:2d:5d:de:8e:13:7b:9a:ee:00:a3: d0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:A8:AA:1D:FA:7B:20:84:46:F3:78:25:09:D9:65:59:AE:24:0D:AA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141981.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.110.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:f0:0c:55:97:f9:b7:ff:6c:6a:cb:89:ee:88:6a:e9:67:33: d4:99:74:cb:a5:a5:d4:85:b9:b5:b6:05:d8:8b:cf:8e:bf:69: d8:8f:ce:d7:0a:e5:78:f6:2d:2c:fc:e6:db:c4:99:95:3d:de: b4:96:00:5c:20:17:61:0a:42:21:2a:51:3a:e2:d7:e4:ba:22: 16:b0:35:c9:ce:29:81:3f:6f:4f:e4:91:ac:76:2a:11:38:15: f7:e1:d4:1c:d6:5d:df:87:ad:f1:b5:5d:95:8d:6a:85:5b:46: 6e:91:2b:63:27:89:13:a9:6d:99:d5:04:62:0c:ac:09:33:9e: 41:01:f7:64:34:21:39:94:2e:8b:b1:8d:38:06:a9:17:10:6b: 53:dd:38:10:13:56:6b:6c:5d:89:72:a5:22:79:ea:6d:6e:96: 68:25:18:0f:5f:49:a2:45:ed:1d:67:8f:92:09:24:94:d1:b9: 3a:77:d0:73:ae:40:7d:a1:71:e5:68:bf:9b:53:7f:db:ca:11: 0c:8f:75:a2:40:2d:19:77:06:c6:a3:fb:70:4d:99:8b:86:bd: 2f:f0:e8:55:be:92:5e:a3:c0:62:4f:b4:c4:91:04:e7:1b:ff: 6b:40:96:34:6d:94:2c:61:ec:54:c9:6d:d6:2d:6e:30:17:71: ce:17:aa:ab -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXU56DInSdpdpJRCkEaWs3C3rg0YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwM1oX DTI1MDEwNzA0MDAwM1owMzExMC8GA1UEAxMoQTZBOEFBMURGQTdCMjA4NDQ2RjM3 ODI1MDlEOTY1NTlBRTI0MERBQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKOQsPWzPRcUkMe2S/S9K+Q/39iDm9pZfQqgZm3+novvlxIIcxAvFIUV97D/ JELVOeBLmyGqW+7ghWkVITpuPxB62zoj8TsDHEekOzN+4PU7FItl6yQDBVz26cHx BBMDaft+xfr6kS3W/Jr7f12q6tWMhm615eSQhbtMwoEOC/UTVe8NnXPxqC8DVHWH Gc32BsCDls7hvNWCWnpqZYMDRRLYaBBerjWYwYSxenH8j4wWYV8fU1eSBbJXb4/v hlpOqf5sOZ5LvHarv9t+KMUpLj0S+7YCGl3IXsVn7eaqbSVitZmnj+7t7PN/dm2/ iIdTPOkGKrYtXd6OE3ua7gCj0BUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSmqKod +nsghEbzeCUJ2WVZriQNqjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWenbjANBgkqhkiG9w0BAQsFAAOCAQEAe/AMVZf5t/9sasuJ7ohq 6Wcz1Jl0y6Wl1IW5tbYF2IvPjr9p2I/O1wrlePYtLPzm28SZlT3etJYAXCAXYQpC ISpROuLX5LoiFrA1yc4pgT9vT+SRrHYqETgV9+HUHNZd34et8bVdlY1qhVtGbpEr YyeJE6ltmdUEYgysCTOeQQH3ZDQhOZQui7GNOAapFxBrU904EBNWa2xdiXKlInnq bW6WaCUYD19JokXtHWePkgkklNG5OnfQc65AfaFx5Wi/m1N/28oRDI91okAtGXcG xqP7cE2Zi4a9L/DoVb6SXqPAYk+0xJEE5xv/a0CWNG2ULGHsVMlt1i1uMBdxzheq qw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:28 2024 by rpki-client on console-ams.rpki-client.org