$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/AS147168.roa File: AS147168.roa (raw, json) Hash identifier: qtkscozVxKiN9LXw2+hdo1VCOmB4Cuc5JMjtHDo09IQ= Subject key identifier: 2C:81:AA:3A:DB:9B:5C:04:4D:AD:65:C7:EC:80:55:36:FE:F4:07:58 Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512 Certificate serial: 17A7D9B599CDE97945BC56D01F17FC9035395F1E Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/AS147168.roa Signing time: Wed 22 Nov 2023 09:35:34 +0000 ROA not before: Wed 22 Nov 2023 09:30:34 +0000 ROA not after: Wed 20 Nov 2024 09:35:34 +0000 asID: 147168 IP address blocks: 103.178.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:a7:d9:b5:99:cd:e9:79:45:bc:56:d0:1f:17:fc:90:35:39:5f:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512 Validity Not Before: Nov 22 09:30:34 2023 GMT Not After : Nov 20 09:35:34 2024 GMT Subject: CN=2C81AA3ADB9B5C044DAD65C7EC805536FEF40758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a5:26:79:d7:af:bd:68:db:4b:76:b4:2d:62: d0:25:7d:0c:71:d5:c8:92:2d:58:d3:55:05:ac:04: 34:f7:db:9c:72:ed:da:7c:55:48:9e:8c:b6:b6:6c: 56:d3:f2:1a:b2:58:27:4f:2e:86:7e:aa:f0:0c:b0: 8e:37:5e:23:da:b9:fb:27:46:23:2c:91:c6:35:e7: c6:f9:49:7c:b0:f8:78:f1:07:37:b8:db:b5:4f:73: 16:79:15:76:45:90:36:75:00:94:b3:52:37:40:a6: b2:f4:71:20:d2:15:b4:21:76:86:8a:d5:79:11:58: c6:a6:eb:fb:5d:51:ef:4f:7f:a1:b2:6d:6b:63:ae: 0e:cf:66:71:52:29:48:04:d0:88:05:10:b0:0d:38: 3c:f8:20:ab:e4:d1:0f:b2:36:77:a9:8e:52:89:75: e0:fa:fc:53:b5:f5:02:54:b3:45:11:17:c2:a1:95: 0b:fa:dd:41:55:b7:78:8c:2c:2e:28:db:96:60:3f: 31:b4:ed:4a:fa:77:e6:f1:b1:b4:10:cf:1c:62:c0: 31:47:54:1e:a5:55:ed:ea:4b:35:6a:42:89:64:67: 72:c3:02:c5:4e:c1:c7:1a:51:ff:d9:2a:7c:0b:57: 0f:91:fd:7a:48:aa:51:50:37:e6:37:d6:27:a8:46: c4:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:81:AA:3A:DB:9B:5C:04:4D:AD:65:C7:EC:80:55:36:FE:F4:07:58 X509v3 Authority Key Identifier: keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/AS147168.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.8.0/24 Signature Algorithm: sha256WithRSAEncryption 65:db:71:b1:c1:2e:16:d5:b0:53:53:93:3b:f5:fa:87:c6:89: 77:f8:4f:87:e2:b3:13:a6:43:c7:33:9e:ca:8d:a2:3f:b5:68: 0f:de:9b:41:c3:f8:06:61:cd:45:04:7c:5a:ce:26:f5:f6:b6: bb:08:43:d8:87:8b:82:71:24:35:6c:59:b3:c9:a4:33:4c:f9: 40:dd:e7:4b:3b:3a:ab:59:00:00:14:fb:82:38:f9:54:d3:69: e4:b0:40:69:40:60:54:f1:56:67:bb:90:8f:b0:1b:72:53:98: 8f:30:a6:b0:10:1e:18:f0:52:cc:d4:75:ac:d4:25:21:c5:35: af:24:9b:3e:ca:42:7c:29:84:0c:3b:53:2a:7d:e9:4d:b8:5d: 18:5f:cf:c2:c8:5c:d5:db:9d:ec:1d:ea:42:b6:b3:af:00:ab: 26:7b:5c:9c:f8:09:c6:7b:4d:0e:f2:48:4e:62:5f:51:d4:5d: 48:e1:62:1c:c2:b6:64:ec:8d:af:b5:25:21:34:3b:9e:24:bf: 0c:44:43:b1:ae:49:e7:bf:79:6d:70:cb:63:1e:28:ea:6a:5d: 04:48:a3:61:04:90:f7:5d:b2:f3:bf:de:62:08:62:c3:c2:36: 1a:c7:a9:b0:dc:6e:db:34:c4:4b:91:ad:78:8b:90:3c:81:34: d2:aa:05:ae -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUF6fZtZnN6XlFvFbQHxf8kDU5Xx4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFF MkMzQjUxMjAeFw0yMzExMjIwOTMwMzRaFw0yNDExMjAwOTM1MzRaMDMxMTAvBgNV BAMTKDJDODFBQTNBREI5QjVDMDQ0REFENjVDN0VDODA1NTM2RkVGNDA3NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVpSZ516+9aNtLdrQtYtAlfQxx 1ciSLVjTVQWsBDT325xy7dp8VUiejLa2bFbT8hqyWCdPLoZ+qvAMsI43XiPaufsn RiMskcY158b5SXyw+HjxBze427VPcxZ5FXZFkDZ1AJSzUjdAprL0cSDSFbQhdoaK 1XkRWMam6/tdUe9Pf6GybWtjrg7PZnFSKUgE0IgFELANODz4IKvk0Q+yNnepjlKJ deD6/FO19QJUs0URF8KhlQv63UFVt3iMLC4o25ZgPzG07Ur6d+bxsbQQzxxiwDFH VB6lVe3qSzVqQolkZ3LDAsVOwccaUf/ZKnwLVw+R/XpIqlFQN+Y31ieoRsT/AgMB AAGjggH/MIIB+zAdBgNVHQ4EFgQULIGqOtubXARNrWXH7IBVNv70B1gwHwYDVR0j BBgwFoAUIphmUI1tYkUj7a0qDeHoKuLDtRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmI3MDgxOC0yMzY2LTQyZTAtOWRiZC0yNTQzODEwNjllNTcvMC8yMjk4NjY1MDhE NkQ2MjQ1MjNFREFEMkEwREUxRTgyQUUyQzNCNTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFFMkMz QjUxMi5jZXIwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUFBzALhlRyc3luYzovL3Jl cG8tcnBraS5pZG5pYy5uZXQvcmVwby8yZmI3MDgxOC0yMzY2LTQyZTAtOWRiZC0y NTQzODEwNjllNTcvMC9BUzE0NzE2OC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeyCDANBgkqhkiG9w0B AQsFAAOCAQEAZdtxscEuFtWwU1OTO/X6h8aJd/hPh+KzE6ZDxzOeyo2iP7VoD96b QcP4BmHNRQR8Ws4m9fa2uwhD2IeLgnEkNWxZs8mkM0z5QN3nSzs6q1kAABT7gjj5 VNNp5LBAaUBgVPFWZ7uQj7AbclOYjzCmsBAeGPBSzNR1rNQlIcU1rySbPspCfCmE DDtTKn3pTbhdGF/Pwshc1dud7B3qQrazrwCrJntcnPgJxntNDvJITmJfUdRdSOFi HMK2ZOyNr7UlITQ7niS/DERDsa5J5795bXDLYx4o6mpdBEijYQSQ912y87/eYghi w8I2GsepsNxu2zTES5GteIuQPIE00qoFrg== -----END CERTIFICATE-----Generated at Sun Jun 2 03:35:02 2024 by rpki-client on console-fra.rpki-client.org