$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147076.roa File: AS147076.roa (raw, json) Hash identifier: N0epJ5atUwMO/Lum4OWceBnDDy262wdYLxD3JGnHQd0= Subject key identifier: 39:7B:04:0F:D4:95:44:97:1C:FA:21:35:B6:8D:A5:2E:9A:FE:BA:57 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5E48C43FF7BA78DE49AE9CE84C04A9994D22C466 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147076.roa Signing time: Tue 12 Nov 2024 04:00:00 +0000 ROA not before: Tue 12 Nov 2024 03:55:00 +0000 ROA not after: Tue 11 Nov 2025 04:00:00 +0000 asID: 147076 IP address blocks: 103.172.96.0/24 maxlen: 24 103.189.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:48:c4:3f:f7:ba:78:de:49:ae:9c:e8:4c:04:a9:99:4d:22:c4:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 12 03:55:00 2024 GMT Not After : Nov 11 04:00:00 2025 GMT Subject: CN=397B040FD49544971CFA2135B68DA52E9AFEBA57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d7:e4:12:1f:2f:f4:8a:25:a3:a2:72:07:09: ec:10:2d:b2:0c:d1:f2:95:26:0c:28:7c:87:4e:45: 02:41:bd:b9:58:16:1b:95:3c:9f:99:d1:fd:85:b5: 06:33:44:43:93:bc:a2:e2:c9:33:37:76:35:43:96: 77:65:12:02:28:74:e1:42:4b:93:31:5a:3d:8f:0d: 8c:0b:c7:6e:46:d2:9c:9f:f2:82:16:ab:74:e2:40: c2:89:e8:79:8d:f2:f8:9f:51:b2:7a:4c:e8:e7:a1: ff:49:8a:29:e5:1d:3b:cd:96:9f:5d:cf:09:22:6c: b5:f5:16:14:e9:c3:24:6d:4a:41:e2:27:35:c2:dd: 56:27:ee:c4:6e:61:25:1d:17:12:74:ad:93:e8:56: 7c:3e:1e:0d:0e:ac:8c:41:09:58:15:d1:83:5c:72: 5b:39:27:c7:8e:a2:ef:3a:4c:40:07:a1:1b:04:d2: d6:08:61:96:79:a1:41:78:e8:03:b4:10:f0:f8:ba: ab:d5:da:71:33:11:2b:56:57:b8:36:33:d9:63:c9: f8:25:f7:f3:5c:76:34:e6:bb:e7:20:37:d2:14:cc: 2b:97:3f:e7:a0:e0:26:bd:83:76:8a:49:87:7b:19: 47:07:09:a5:d4:d6:86:25:59:c2:dd:f4:ee:63:d0: 0f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:7B:04:0F:D4:95:44:97:1C:FA:21:35:B6:8D:A5:2E:9A:FE:BA:57 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147076.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.96.0/24 103.189.229.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:69:ff:ca:37:27:4f:fc:04:e1:03:4d:27:52:67:d1:42:f9: bd:8b:07:97:c0:d3:ea:5d:00:40:c7:4e:43:9e:1b:d2:a5:81: bf:96:7b:9a:ca:cb:ed:c4:aa:1d:db:8c:f8:64:27:39:37:31: ce:76:ea:89:a1:7a:ca:2d:39:9c:e9:ad:38:fc:fd:87:2d:a3: 33:7c:57:56:15:d8:11:51:d0:97:46:24:5e:c2:34:c2:bc:ca: d7:6f:b5:ca:2a:91:74:3a:16:c6:82:c0:9c:13:d3:c3:05:b6: a5:6c:38:99:3e:2e:b3:1b:03:2f:9e:37:f1:3a:d1:64:92:eb: e3:7a:08:ad:66:20:36:9c:92:eb:dd:3d:2b:00:95:15:8f:71: f5:5c:ee:14:ea:7b:0d:82:34:cd:cb:b8:eb:18:68:45:72:29: c2:48:49:6f:b1:ea:37:40:11:81:e5:74:34:8c:96:3e:d0:d6: 94:5c:fd:c2:26:5c:59:77:ba:94:e8:62:da:28:17:6a:3f:7e: 1d:9d:95:e1:d5:39:1f:bc:01:f2:ad:dc:0d:a9:7e:59:8b:ce: 90:1c:74:95:79:ce:e4:4f:7b:4f:60:bd:5e:41:e6:41:1a:f0: 14:09:c6:48:d7:23:ce:38:1d:bd:aa:8f:69:4b:ac:a2:d3:10: 70:5f:8b:db -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUXkjEP/e6eN5JrpzoTASpmU0ixGYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExMjAzNTUwMFoX DTI1MTExMTA0MDAwMFowMzExMC8GA1UEAxMoMzk3QjA0MEZENDk1NDQ5NzFDRkEy MTM1QjY4REE1MkU5QUZFQkE1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOnX5BIfL/SKJaOicgcJ7BAtsgzR8pUmDCh8h05FAkG9uVgWG5U8n5nR/YW1 BjNEQ5O8ouLJMzd2NUOWd2USAih04UJLkzFaPY8NjAvHbkbSnJ/yghardOJAwono eY3y+J9RsnpM6Oeh/0mKKeUdO82Wn13PCSJstfUWFOnDJG1KQeInNcLdVifuxG5h JR0XEnStk+hWfD4eDQ6sjEEJWBXRg1xyWzknx46i7zpMQAehGwTS1ghhlnmhQXjo A7QQ8Pi6q9XacTMRK1ZXuDYz2WPJ+CX381x2NOa75yA30hTMK5c/56DgJr2DdopJ h3sZRwcJpdTWhiVZwt307mPQD3UCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQ5ewQP 1JVElxz6ITW2jaUumv66VzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzA3Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGesYAMEAGe95TANBgkqhkiG9w0BAQsFAAOCAQEAbmn/yjcnT/wE 4QNNJ1Jn0UL5vYsHl8DT6l0AQMdOQ54b0qWBv5Z7msrL7cSqHduM+GQnOTcxznbq iaF6yi05nOmtOPz9hy2jM3xXVhXYEVHQl0YkXsI0wrzK12+1yiqRdDoWxoLAnBPT wwW2pWw4mT4usxsDL5438TrRZJLr43oIrWYgNpyS6909KwCVFY9x9VzuFOp7DYI0 zcu46xhoRXIpwkhJb7HqN0ARgeV0NIyWPtDWlFz9wiZcWXe6lOhi2igXaj9+HZ2V 4dU5H7wB8q3cDal+WYvOkBx0lXnO5E97T2C9XkHmQRrwFAnGSNcjzjgdvaqPaUus otMQcF+L2w== -----END CERTIFICATE-----Generated at Sun Feb 16 21:09:00 2025 by rpki-client