$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147081.roa File: AS147081.roa (raw, json) Hash identifier: NN0+lB2ORehSZJaKgMv/a593nMalBVyidv4CAoeARDQ= Subject key identifier: 47:5A:55:87:AF:74:F3:01:D2:18:CF:33:DD:F2:E4:37:ED:F9:73:23 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 565F8172B6149CF3DBEE17121ED99A587BB5422F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147081.roa Signing time: Tue 03 Dec 2024 03:00:00 +0000 ROA not before: Tue 03 Dec 2024 02:55:00 +0000 ROA not after: Tue 02 Dec 2025 03:00:00 +0000 asID: 147081 IP address blocks: 2401:5be0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:5f:81:72:b6:14:9c:f3:db:ee:17:12:1e:d9:9a:58:7b:b5:42:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 3 02:55:00 2024 GMT Not After : Dec 2 03:00:00 2025 GMT Subject: CN=475A5587AF74F301D218CF33DDF2E437EDF97323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ec:fc:b0:b9:2d:eb:2e:68:7f:8b:d3:f6:e5: ea:5c:f5:15:0d:ed:88:e1:7c:c3:1a:79:dd:66:c4: f9:85:07:22:66:d7:34:39:57:4a:f3:25:e0:cc:b7: 8b:1d:06:53:64:59:8e:fb:e6:2f:6a:5a:21:83:a7: f0:9f:22:60:17:cc:94:86:61:89:00:23:06:ae:d1: 77:17:20:30:7d:af:0b:f2:bb:1e:63:54:96:5f:54: ad:2c:6d:85:c3:1d:5f:62:22:a9:4c:7a:e2:cc:b8: 8a:8c:d6:c9:9b:59:0c:ca:00:dd:71:0d:f7:58:e4: bc:8b:b8:61:d1:cc:28:89:73:b8:46:0c:13:19:d5: 75:32:7d:11:6f:40:e4:9f:af:76:d0:cf:35:3a:32: ae:c5:7c:7e:94:86:5e:6e:e1:6e:29:24:15:d0:be: c3:bc:fe:62:5c:e1:42:3e:50:b0:a2:ca:77:7d:ae: 28:76:e6:63:7b:7f:aa:7d:04:eb:b0:8f:bf:e1:a4: 36:ec:da:fa:4f:81:78:e4:50:ea:3c:27:44:78:e7: 82:a1:dd:8e:84:04:b3:21:ed:71:0d:3d:2c:54:2d: ad:49:3e:b4:4c:f8:3d:50:2c:a3:23:e9:6a:04:c4: 98:44:65:3d:f0:d2:d7:62:8d:e3:06:a3:9b:dc:01: 65:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5A:55:87:AF:74:F3:01:D2:18:CF:33:DD:F2:E4:37:ED:F9:73:23 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147081.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:5be0::/32 Signature Algorithm: sha256WithRSAEncryption 6e:1c:7b:3a:59:75:55:68:0c:81:94:93:e1:1d:55:fb:31:a3: a7:da:04:8b:2e:3a:d5:37:3f:43:74:1d:ca:fb:9c:45:ca:bc: f7:60:35:b7:da:bb:64:12:bf:c6:58:81:29:9d:f6:5f:5e:d9: 5f:43:f0:ab:7a:ab:d5:c6:ca:a5:a4:fe:bb:1e:8f:1c:f7:62: eb:dc:19:91:b4:82:98:57:c4:e8:00:a7:33:b5:9d:c1:d2:fa: 8f:10:52:75:c2:9f:11:4c:a2:85:f6:d2:ce:a8:6d:e8:0f:9e: 32:55:1e:cd:35:33:26:0e:b2:3e:54:23:81:8b:11:78:6d:a9: 93:92:65:d5:f4:e5:7a:04:3d:b2:ec:1f:21:f3:8a:e4:36:a9: 2b:4f:a5:1f:3f:5c:80:74:d8:c8:a3:89:46:6b:cc:f5:e1:b7: 6f:d1:42:27:87:4a:e3:8d:e0:03:cb:46:a5:a9:43:ed:94:56: 59:5c:ec:7e:c4:f8:e9:d3:9f:e3:d8:1b:5c:29:3c:4a:7c:75: 6c:4e:9b:69:f4:8f:fb:08:45:7e:2c:e3:72:82:3c:0e:66:d0: 35:8e:80:cd:8e:50:a3:b1:c5:e0:ab:a8:37:7f:96:ca:ac:a2: 5f:3c:a1:7f:cf:c7:09:39:c2:07:11:ab:dd:20:fc:b8:62:69: cc:87:30:14 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUVl+BcrYUnPPb7hcSHtmaWHu1Qi8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwMzAyNTUwMFoX DTI1MTIwMjAzMDAwMFowMzExMC8GA1UEAxMoNDc1QTU1ODdBRjc0RjMwMUQyMThD RjMzRERGMkU0MzdFREY5NzMyMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/s/LC5LesuaH+L0/bl6lz1FQ3tiOF8wxp53WbE+YUHImbXNDlXSvMl4My3 ix0GU2RZjvvmL2paIYOn8J8iYBfMlIZhiQAjBq7RdxcgMH2vC/K7HmNUll9UrSxt hcMdX2IiqUx64sy4iozWyZtZDMoA3XEN91jkvIu4YdHMKIlzuEYMExnVdTJ9EW9A 5J+vdtDPNToyrsV8fpSGXm7hbikkFdC+w7z+YlzhQj5QsKLKd32uKHbmY3t/qn0E 67CPv+GkNuza+k+BeORQ6jwnRHjngqHdjoQEsyHtcQ09LFQtrUk+tEz4PVAsoyPp agTEmERlPfDS12KN4wajm9wBZbECAwEAAaOCAdEwggHNMB0GA1UdDgQWBBRHWlWH r3TzAdIYzzPd8uQ37flzIzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzA4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBW+AwDQYJKoZIhvcNAQELBQADggEBAG4cezpZdVVoDIGUk+Ed Vfsxo6faBIsuOtU3P0N0Hcr7nEXKvPdgNbfau2QSv8ZYgSmd9l9e2V9D8Kt6q9XG yqWk/rsejxz3YuvcGZG0gphXxOgApzO1ncHS+o8QUnXCnxFMooX20s6obegPnjJV Hs01MyYOsj5UI4GLEXhtqZOSZdX05XoEPbLsHyHziuQ2qStPpR8/XIB02MijiUZr zPXht2/RQieHSuON4APLRqWpQ+2UVllc7H7E+OnTn+PYG1wpPEp8dWxOm2n0j/sI RX4s43KCPA5m0DWOgM2OUKOxxeCrqDd/lsqsol88oX/Pxwk5wgcRq90g/LhiacyH MBQ= -----END CERTIFICATE-----Generated at Sun Feb 16 21:09:01 2025 by rpki-client