$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147081.roa File: AS147081.roa (raw, json) Hash identifier: k+Y5F88x6lUSk/mNV2t/vCt/RfoJ+djyQpjsKYIdwOw= Subject key identifier: B0:59:CD:F0:1E:84:E0:1E:20:48:BA:0E:49:AD:A5:94:17:DE:19:7D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7C1B68C96C302448F31319575806E78A5A3C69A3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147081.roa Signing time: Tue 02 Jan 2024 02:39:48 +0000 ROA not before: Tue 02 Jan 2024 02:34:48 +0000 ROA not after: Tue 31 Dec 2024 02:39:48 +0000 asID: 147081 IP address blocks: 2401:5be0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:1b:68:c9:6c:30:24:48:f3:13:19:57:58:06:e7:8a:5a:3c:69:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 2 02:34:48 2024 GMT Not After : Dec 31 02:39:48 2024 GMT Subject: CN=B059CDF01E84E01E2048BA0E49ADA59417DE197D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e8:9a:5e:00:f2:2a:18:1f:d3:14:d7:2a:53: cb:ef:6a:20:09:16:51:a1:12:6f:10:48:f5:2d:04: 40:fe:a0:fc:2f:a1:74:bc:92:45:18:25:97:b4:21: e4:04:d8:77:5a:85:ae:ac:25:9c:14:19:b9:a7:d5: 8c:91:79:aa:40:cf:66:aa:1a:73:bb:9f:e1:a5:ed: 3e:0d:4f:b3:ff:75:88:bd:ca:27:30:57:c6:b0:c2: b9:82:49:85:c2:49:d5:c8:da:ca:0d:15:f8:b3:92: 24:71:1a:5c:91:e0:6a:ab:bb:02:b5:d8:ce:b6:a7: 90:32:04:5e:8a:01:f1:21:bf:ac:8d:50:e2:ce:ef: 30:89:b3:be:c7:74:b0:20:dc:1c:d9:68:d3:54:5c: 70:29:41:ca:42:8d:ec:7d:00:ce:af:2e:a4:c1:7b: da:c9:7b:bd:89:29:9e:ba:5b:d8:8c:18:df:db:6b: 8a:54:41:e4:6e:4d:09:31:a3:b6:b1:72:2c:96:bc: 58:18:c0:bb:43:a4:11:bd:26:62:ce:b7:fe:6a:e3: 80:e7:63:0c:2f:a7:40:26:ee:c9:f5:46:4f:91:e0: 18:ff:41:52:c8:cb:fb:56:76:e0:d3:0c:a4:6e:d3: c3:1b:e5:0c:24:59:e8:7c:44:72:03:06:1f:0d:6a: 1e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:59:CD:F0:1E:84:E0:1E:20:48:BA:0E:49:AD:A5:94:17:DE:19:7D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147081.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:5be0::/32 Signature Algorithm: sha256WithRSAEncryption 23:2a:d5:19:b0:92:9a:da:12:e1:d5:85:3b:5a:e3:45:7c:d1: e5:3d:57:39:33:42:1f:c3:12:5f:28:51:f6:70:14:ae:fd:70: fb:40:e5:62:84:da:6f:6b:95:8b:06:a2:76:b6:fd:68:ac:97: 25:37:e6:ae:6e:45:57:13:ae:b2:8f:56:0b:bd:dd:13:44:b9: 33:58:f3:ff:66:80:44:a1:27:0b:c7:6e:db:0a:4c:c4:c6:cf: fb:8e:5e:a1:18:73:75:e2:cb:b7:c4:20:51:29:17:9e:50:2b: ea:a2:18:51:cf:88:29:cd:e0:4d:5a:b6:15:f5:a7:d8:8b:5c: d7:8e:be:ed:b3:50:5d:b7:1d:a1:27:56:49:ab:58:74:39:15: 4b:49:94:15:dd:53:57:50:86:ef:a4:50:83:d6:11:8f:87:84: 66:31:5d:b4:9e:81:ef:ec:5f:d4:76:4d:c1:a3:04:45:9b:73: 53:dc:c1:68:a6:9a:0f:ee:76:7e:ac:90:db:9d:3d:88:84:12: 8b:98:a4:5a:f0:e2:c4:50:88:d6:d9:60:66:b1:67:79:2b:48: b0:ad:0c:b6:0d:1e:20:8b:4b:c4:2a:05:88:e0:62:98:ef:7a: 35:eb:9f:9b:a8:d8:08:4a:09:dd:b7:d1:3b:df:f8:8d:bb:80: 80:12:ed:06 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUfBtoyWwwJEjzExlXWAbnilo8aaMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwMjAyMzQ0OFoX DTI0MTIzMTAyMzk0OFowMzExMC8GA1UEAxMoQjA1OUNERjAxRTg0RTAxRTIwNDhC QTBFNDlBREE1OTQxN0RFMTk3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALboml4A8ioYH9MU1ypTy+9qIAkWUaESbxBI9S0EQP6g/C+hdLySRRgll7Qh 5ATYd1qFrqwlnBQZuafVjJF5qkDPZqoac7uf4aXtPg1Ps/91iL3KJzBXxrDCuYJJ hcJJ1cjayg0V+LOSJHEaXJHgaqu7ArXYzrankDIEXooB8SG/rI1Q4s7vMImzvsd0 sCDcHNlo01RccClBykKN7H0Azq8upMF72sl7vYkpnrpb2IwY39trilRB5G5NCTGj trFyLJa8WBjAu0OkEb0mYs63/mrjgOdjDC+nQCbuyfVGT5HgGP9BUsjL+1Z24NMM pG7TwxvlDCRZ6HxEcgMGHw1qHuMCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSwWc3w HoTgHiBIug5JraWUF94ZfTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzA4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBW+AwDQYJKoZIhvcNAQELBQADggEBACMq1RmwkpraEuHVhTta 40V80eU9VzkzQh/DEl8oUfZwFK79cPtA5WKE2m9rlYsGona2/WislyU35q5uRVcT rrKPVgu93RNEuTNY8/9mgEShJwvHbtsKTMTGz/uOXqEYc3Xiy7fEIFEpF55QK+qi GFHPiCnN4E1athX1p9iLXNeOvu2zUF23HaEnVkmrWHQ5FUtJlBXdU1dQhu+kUIPW EY+HhGYxXbSege/sX9R2TcGjBEWbc1PcwWimmg/udn6skNudPYiEEouYpFrw4sRQ iNbZYGaxZ3krSLCtDLYNHiCLS8QqBYjgYpjvejXrn5uo2AhKCd230Tvf+I27gIAS 7QY= -----END CERTIFICATE-----Generated at Wed May 8 09:50:38 2024 by rpki-client on console-fra.rpki-client.org