$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141594.roa File: AS141594.roa (raw, json) Hash identifier: 6sG8wbWrPiH757XzWvCAyAyjA3Jp8QPm/pfJlJlG2NI= Subject key identifier: 3E:D4:D4:5A:C5:D3:55:FF:1F:5A:A6:A8:CF:A0:7B:12:06:1D:AB:81 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6FDFFB7AFD6E9C1969764359C293116299313175 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141594.roa Signing time: Thu 05 Jun 2025 03:00:00 +0000 ROA not before: Thu 05 Jun 2025 02:55:00 +0000 ROA not after: Thu 04 Jun 2026 03:00:00 +0000 asID: 141594 IP address blocks: 103.160.160.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 11:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:df:fb:7a:fd:6e:9c:19:69:76:43:59:c2:93:11:62:99:31:31:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 5 02:55:00 2025 GMT Not After : Jun 4 03:00:00 2026 GMT Subject: CN=3ED4D45AC5D355FF1F5AA6A8CFA07B12061DAB81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fb:22:96:3f:14:4e:67:c0:d6:5e:59:18:84: ed:94:5a:91:3f:2d:65:84:26:3e:a7:f3:b3:ff:9b: 73:db:1f:6e:02:77:05:66:01:79:15:0b:e7:1d:01: 03:4c:ab:88:06:a0:2c:d4:24:50:72:e1:ed:8b:08: 7f:63:38:28:09:49:b5:99:10:47:62:6d:5f:9c:f9: 08:94:c8:f9:49:ff:6e:bc:f6:4d:0b:19:47:5b:21: 6d:38:3a:db:57:7e:93:bc:7c:f2:04:da:36:29:39: 6c:2a:a8:e3:5b:8a:ab:56:7d:1e:cf:cc:8e:3e:3a: 34:75:a7:e6:d7:33:41:a2:b7:3d:22:bf:aa:f2:a3: 8e:46:4d:48:be:d6:58:09:ac:f1:f5:08:39:0d:a6: a7:19:0b:11:ec:a5:34:d0:50:5b:6d:71:1b:5a:da: 2c:46:7b:ae:13:db:d1:17:63:23:5c:90:91:26:4c: 61:01:a3:67:ed:3b:bd:4f:84:1c:ff:86:66:96:14: 9b:cf:56:8d:92:d3:92:0a:0d:e0:b4:8d:43:bd:20: 06:42:68:84:1a:87:04:96:c1:4c:f1:ee:a7:e9:36: 51:6b:a8:82:c6:47:1e:3c:3b:66:c4:43:7d:d9:37: 0e:2b:e3:23:72:ed:65:d1:57:17:bc:98:a6:51:70: 87:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:D4:D4:5A:C5:D3:55:FF:1F:5A:A6:A8:CF:A0:7B:12:06:1D:AB:81 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141594.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.160.0/23 Signature Algorithm: sha256WithRSAEncryption 07:9d:a3:0c:c9:13:93:e6:f0:0a:60:07:c3:b6:5d:b9:2a:55: 18:23:35:0a:ac:d1:7f:c4:64:f9:11:96:34:75:0b:4a:c6:1c: bb:41:50:e4:4b:1a:3f:32:89:16:9e:74:d6:c9:e4:9e:0a:32: 2d:e0:b9:89:01:e1:91:a5:5f:fc:d1:09:e8:76:c8:37:20:04: 48:4d:47:b6:de:3b:92:cb:e6:ed:df:c2:b1:9f:85:db:79:4e: cd:5d:ec:10:36:33:e1:88:ea:3f:b0:12:15:6b:74:5e:6a:5d: 9b:6f:40:bb:dc:e1:3d:ce:2c:a1:8f:d1:b4:6c:ab:0f:50:16: e1:28:a8:a1:99:30:bf:75:2c:1d:9f:8e:05:d3:0e:04:96:ea: 57:d0:04:9b:20:2b:34:58:d3:10:66:70:c9:6e:ca:8a:2b:f0: 86:63:65:34:2b:e7:3b:70:fa:d6:b5:4d:df:59:43:79:60:ef: 34:58:19:79:b2:53:7d:b3:05:64:b0:cd:61:47:c9:5e:59:86: ab:68:67:8b:83:c6:71:e4:54:2e:2b:5a:e9:0f:7b:ba:09:c1: 89:7c:63:c0:61:e9:c9:93:22:e1:cb:ad:0d:e9:75:57:e9:93: 21:87:67:29:d7:4c:1a:a7:6f:42:42:3e:76:4f:f1:f2:09:88: 38:34:88:e0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUb9/7ev1unBlpdkNZwpMRYpkxMXUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwNTAyNTUwMFoX DTI2MDYwNDAzMDAwMFowMzExMC8GA1UEAxMoM0VENEQ0NUFDNUQzNTVGRjFGNUFB NkE4Q0ZBMDdCMTIwNjFEQUI4MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANb7IpY/FE5nwNZeWRiE7ZRakT8tZYQmPqfzs/+bc9sfbgJ3BWYBeRUL5x0B A0yriAagLNQkUHLh7YsIf2M4KAlJtZkQR2JtX5z5CJTI+Un/brz2TQsZR1shbTg6 21d+k7x88gTaNik5bCqo41uKq1Z9Hs/Mjj46NHWn5tczQaK3PSK/qvKjjkZNSL7W WAms8fUIOQ2mpxkLEeylNNBQW21xG1raLEZ7rhPb0RdjI1yQkSZMYQGjZ+07vU+E HP+GZpYUm89WjZLTkgoN4LSNQ70gBkJohBqHBJbBTPHup+k2UWuogsZHHjw7ZsRD fdk3DivjI3LtZdFXF7yYplFwh/cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ+1NRa xdNV/x9apqjPoHsSBh2rgTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTU5NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWegoDANBgkqhkiG9w0BAQsFAAOCAQEAB52jDMkTk+bwCmAHw7Zd uSpVGCM1CqzRf8Rk+RGWNHULSsYcu0FQ5EsaPzKJFp501snkngoyLeC5iQHhkaVf /NEJ6HbINyAESE1Htt47ksvm7d/CsZ+F23lOzV3sEDYz4YjqP7ASFWt0Xmpdm29A u9zhPc4soY/RtGyrD1AW4SiooZkwv3UsHZ+OBdMOBJbqV9AEmyArNFjTEGZwyW7K iivwhmNlNCvnO3D61rVN31lDeWDvNFgZebJTfbMFZLDNYUfJXlmGq2hni4PGceRU Lita6Q97ugnBiXxjwGHpyZMi4cutDel1V+mTIYdnKddMGqdvQkI+dk/x8gmIODSI 4A== -----END CERTIFICATE-----Generated at Mon Jun 16 01:31:29 2025 by rpki-client