$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147072.roa File: AS147072.roa (raw, json) Hash identifier: /NURlU5BW7BYGgmz9lwz42DhPY29MxvCim+2wjW5puc= Subject key identifier: 00:8E:BA:68:54:83:E8:70:00:40:CD:D9:34:32:3F:B3:42:B7:4A:7B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 545AF464B5D35C1D74C84717F1BC7A85C6167175 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147072.roa Signing time: Tue 10 Dec 2024 05:00:18 +0000 ROA not before: Tue 10 Dec 2024 04:55:18 +0000 ROA not after: Tue 09 Dec 2025 05:00:18 +0000 asID: 147072 IP address blocks: 103.172.244.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:5a:f4:64:b5:d3:5c:1d:74:c8:47:17:f1:bc:7a:85:c6:16:71:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:18 2024 GMT Not After : Dec 9 05:00:18 2025 GMT Subject: CN=008EBA685483E8700040CDD934323FB342B74A7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:61:fe:ee:2b:c5:64:87:21:fc:1f:e9:17:90: f9:6a:93:32:dc:28:50:90:ee:fa:4a:b9:c8:f2:e4: 50:c0:80:f8:82:f8:69:b6:56:b6:a1:6b:99:12:86: 66:8f:31:45:0a:b6:2c:e3:e0:be:fb:6f:11:6c:4c: fb:d2:24:58:bf:22:9f:6c:f3:e0:9d:2a:01:78:05: 74:a6:d5:64:cf:1f:c8:c1:a8:c9:91:2f:3c:1d:94: 52:ef:16:1d:b2:d1:b2:25:88:37:d3:9b:e0:16:2f: 99:19:48:40:73:d1:3c:62:ec:d2:9f:b9:80:e0:58: ca:b8:9d:2f:cf:29:51:f8:11:32:c9:aa:67:4e:f7: a6:95:b7:f0:21:31:9e:e3:77:92:07:82:4c:20:a9: 0f:0d:0d:3f:53:47:01:bc:ec:88:cf:e6:89:7e:67: 10:9c:66:dd:d0:5d:01:5d:25:85:5a:e6:de:08:42: ce:59:ba:ad:47:2e:23:72:b3:85:95:c1:fb:b7:af: 08:6f:6f:b3:be:5a:cf:d3:7f:02:6d:21:5a:ce:a9: 43:69:63:c3:84:f1:15:6e:b0:ac:c4:80:41:9b:7a: 23:08:38:09:ee:3c:f7:11:1b:72:d2:38:c9:c3:41: d9:22:e3:b4:17:93:6c:95:6b:98:ae:8f:1e:07:a4: c5:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:8E:BA:68:54:83:E8:70:00:40:CD:D9:34:32:3F:B3:42:B7:4A:7B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147072.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.244.0/23 Signature Algorithm: sha256WithRSAEncryption 94:5b:21:92:d0:7e:b2:00:83:ee:de:8a:92:20:ac:2c:45:bf: cb:99:fd:b3:b6:85:a5:d7:7d:d8:a7:e1:43:09:8f:44:78:bd: 6c:13:09:31:38:ca:7f:39:fd:95:7a:26:d4:e3:24:4d:a4:32: 59:64:47:67:ce:9d:82:6d:3f:54:b4:6b:46:61:b3:cd:d5:19: 73:e4:e2:17:42:d4:4c:2d:68:e0:4f:65:e5:83:92:bd:25:41: 31:28:fe:22:9e:64:2c:c0:a2:86:f5:5a:0c:98:0a:f0:ab:04: a4:09:63:82:3e:6b:20:0c:1f:09:d8:2f:a8:7a:44:bb:b4:f2: a5:08:87:e0:35:3e:5b:65:85:ce:43:13:95:d2:07:c0:b6:90: 73:64:c9:b1:58:74:1c:ee:57:e0:43:c5:b1:37:a8:8d:e5:ee: 4b:d1:82:71:11:cb:1c:46:9c:71:5f:f8:e9:32:40:a8:6c:c4: c1:b7:52:6a:ed:b8:0f:40:e3:2b:bf:23:41:c5:7c:b1:1d:ab: 43:08:0d:72:44:5c:5b:86:7f:66:25:2b:79:8d:18:1a:54:05: 2d:d7:9b:b7:de:ac:34:f0:61:24:5a:ce:55:08:5a:aa:d5:24: 46:a6:08:63:59:62:5e:74:5a:d9:a9:1b:36:5d:a4:c3:5a:b9: 20:85:83:f0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVFr0ZLXTXB10yEcX8bx6hcYWcXUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxOFoX DTI1MTIwOTA1MDAxOFowMzExMC8GA1UEAxMoMDA4RUJBNjg1NDgzRTg3MDAwNDBD REQ5MzQzMjNGQjM0MkI3NEE3QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANBh/u4rxWSHIfwf6ReQ+WqTMtwoUJDu+kq5yPLkUMCA+IL4abZWtqFrmRKG Zo8xRQq2LOPgvvtvEWxM+9IkWL8in2zz4J0qAXgFdKbVZM8fyMGoyZEvPB2UUu8W HbLRsiWIN9Ob4BYvmRlIQHPRPGLs0p+5gOBYyridL88pUfgRMsmqZ073ppW38CEx nuN3kgeCTCCpDw0NP1NHAbzsiM/miX5nEJxm3dBdAV0lhVrm3ghCzlm6rUcuI3Kz hZXB+7evCG9vs75az9N/Am0hWs6pQ2ljw4TxFW6wrMSAQZt6Iwg4Ce489xEbctI4 ycNB2SLjtBeTbJVrmK6PHgekxTsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQAjrpo VIPocABAzdk0Mj+zQrdKezAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzA3Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWes9DANBgkqhkiG9w0BAQsFAAOCAQEAlFshktB+sgCD7t6KkiCs LEW/y5n9s7aFpdd92KfhQwmPRHi9bBMJMTjKfzn9lXom1OMkTaQyWWRHZ86dgm0/ VLRrRmGzzdUZc+TiF0LUTC1o4E9l5YOSvSVBMSj+Ip5kLMCihvVaDJgK8KsEpAlj gj5rIAwfCdgvqHpEu7TypQiH4DU+W2WFzkMTldIHwLaQc2TJsVh0HO5X4EPFsTeo jeXuS9GCcRHLHEaccV/46TJAqGzEwbdSau24D0DjK78jQcV8sR2rQwgNckRcW4Z/ ZiUreY0YGlQFLdebt96sNPBhJFrOVQhaqtUkRqYIY1liXnRa2akbNl2kw1q5IIWD 8A== -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:23 2025 by rpki-client