$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141934.roa File: AS141934.roa (raw, json) Hash identifier: 7mKUDrJJ5sO5iOO6+UoOrFpHAYeuFfH6WkV+sGN7XaI= Subject key identifier: BA:7C:28:B0:08:BE:5E:DC:96:4E:CE:E3:86:07:68:DD:16:3D:73:D5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7F03844D7B8678F874322E2232B3E54E7D6AF8DD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141934.roa Signing time: Mon 05 May 2025 08:00:00 +0000 ROA not before: Mon 05 May 2025 07:55:00 +0000 ROA not after: Mon 04 May 2026 08:00:00 +0000 asID: 141934 IP address blocks: 103.4.82.0/23 maxlen: 24 2001:df1:5040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 14:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:03:84:4d:7b:86:78:f8:74:32:2e:22:32:b3:e5:4e:7d:6a:f8:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 5 07:55:00 2025 GMT Not After : May 4 08:00:00 2026 GMT Subject: CN=BA7C28B008BE5EDC964ECEE3860768DD163D73D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9c:b7:c3:82:61:c3:eb:17:7d:0d:4d:b0:c7: e4:ab:32:11:c8:42:38:cb:82:32:4f:80:30:d6:a4: cd:e0:ff:a1:5c:7f:31:b4:22:9f:4f:ca:7a:23:f4: aa:a2:1c:22:e0:39:f5:51:e2:c4:f4:ff:e9:7c:39: 4e:90:db:f4:02:c7:37:bc:f4:d9:b1:2b:36:4b:df: 27:71:4f:ec:df:94:6e:1a:1a:92:db:b8:5f:6a:15: de:d1:0d:a3:70:85:3b:24:55:e6:d0:63:19:04:8d: 14:d9:18:6f:5e:50:6e:c4:52:ca:02:11:c8:86:87: 7e:af:6e:61:03:8d:74:8a:59:b4:bb:5b:e3:c2:66: 69:27:e6:1f:bf:04:dd:d0:0a:ef:c0:e9:1a:00:f9: 78:96:64:9e:39:df:36:22:37:df:c6:1c:05:4b:6c: 7e:5a:14:a9:91:e6:51:ae:21:b6:1c:a8:33:f7:10: b6:a2:8a:dc:4a:3c:a1:1f:e0:c6:fc:6a:bb:84:13: 3d:03:22:de:91:4f:f4:83:0c:ac:b8:41:89:16:42: b7:4c:0f:ea:15:fe:13:6d:d8:d9:63:c2:2e:59:21: 03:9c:0a:42:fa:6a:37:68:b2:c7:63:33:8b:3e:7b: 8a:ee:5c:bf:2b:d6:bb:b3:da:3d:b6:0a:c2:bb:b7: f4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:7C:28:B0:08:BE:5E:DC:96:4E:CE:E3:86:07:68:DD:16:3D:73:D5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.82.0/23 IPv6: 2001:df1:5040::/48 Signature Algorithm: sha256WithRSAEncryption 47:34:4f:53:ba:fd:b1:08:9f:8d:33:f2:12:2e:23:fc:2e:49: 5f:f5:b6:00:70:a3:be:6c:f9:3b:53:f4:c8:35:c6:d2:70:a2: 37:e1:38:5d:a4:b4:f8:ca:4b:93:68:2a:08:1d:ab:d3:15:15: b2:f4:15:b9:8e:1a:d2:67:61:42:a0:5a:22:1c:84:cf:48:6e: b6:f4:62:b1:4a:09:2a:d7:c0:2f:15:ad:d9:3f:2c:a0:57:ee: 37:76:af:dc:94:26:76:30:71:5a:4a:16:5d:fe:5f:71:2f:72: 33:fc:c8:36:43:9a:77:17:f5:aa:4c:3e:00:62:2a:1c:0e:89: 18:85:f7:66:af:c4:77:aa:87:9b:b8:bd:f3:0a:a2:4a:17:7e: 3a:4b:8e:0a:81:cf:ce:e0:fb:2d:ed:7f:84:31:68:b3:e0:5a: d2:13:6d:da:69:8a:88:0d:57:c9:35:e2:47:3b:74:a5:a6:01: 18:53:71:01:fd:49:18:c5:ae:16:7f:04:5f:0c:d5:c6:83:ea: 2c:7d:dc:e3:bc:7c:e3:e4:66:bc:60:98:df:4d:a2:e6:2a:6b: f6:db:9f:3d:a2:3e:dd:61:9c:72:49:12:20:41:4b:bb:d7:bb: b3:99:7d:aa:c0:25:e8:10:9a:af:0e:7e:38:93:62:be:3a:da: a5:a6:5c:07 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUfwOETXuGePh0Mi4iMrPlTn1q+N0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUwNTA3NTUwMFoX DTI2MDUwNDA4MDAwMFowMzExMC8GA1UEAxMoQkE3QzI4QjAwOEJFNUVEQzk2NEVD RUUzODYwNzY4REQxNjNENzNENTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKct8OCYcPrF30NTbDH5KsyEchCOMuCMk+AMNakzeD/oVx/MbQin0/KeiP0 qqIcIuA59VHixPT/6Xw5TpDb9ALHN7z02bErNkvfJ3FP7N+Ubhoaktu4X2oV3tEN o3CFOyRV5tBjGQSNFNkYb15QbsRSygIRyIaHfq9uYQONdIpZtLtb48JmaSfmH78E 3dAK78DpGgD5eJZknjnfNiI338YcBUtsfloUqZHmUa4hthyoM/cQtqKK3Eo8oR/g xvxqu4QTPQMi3pFP9IMMrLhBiRZCt0wP6hX+E23Y2WPCLlkhA5wKQvpqN2iyx2Mz iz57iu5cvyvWu7PaPbYKwru39HcCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBS6fCiw CL5e3JZOzuOGB2jdFj1z1TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWcEUjAPBAIAAjAJAwcAIAEN8VBAMA0GCSqGSIb3DQEBCwUAA4IB AQBHNE9Tuv2xCJ+NM/ISLiP8Lklf9bYAcKO+bPk7U/TINcbScKI34ThdpLT4ykuT aCoIHavTFRWy9BW5jhrSZ2FCoFoiHITPSG629GKxSgkq18AvFa3ZPyygV+43dq/c lCZ2MHFaShZd/l9xL3Iz/Mg2Q5p3F/WqTD4AYiocDokYhfdmr8R3qoebuL3zCqJK F346S44Kgc/O4Pst7X+EMWiz4FrSE23aaYqIDVfJNeJHO3SlpgEYU3EB/UkYxa4W fwRfDNXGg+osfdzjvHzj5Ga8YJjfTaLmKmv22589oj7dYZxySRIgQUu717uzmX2q wCXoEJqvDn44k2K+OtqlplwH -----END CERTIFICATE-----Generated at Mon May 5 19:22:08 2025 by rpki-client