$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147084.roa File: AS147084.roa (raw, json) Hash identifier: /yrAqNGHB0t+ADRPOBHls8TuKNC5jmDxgFx4zJFjrqU= Subject key identifier: 0C:48:2F:D7:43:87:CF:FC:A2:F2:31:29:EA:EA:E6:85:29:9D:52:B8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2216A1A92AB033E4E92F4FB2988F0B130816EA5C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147084.roa Signing time: Wed 02 Oct 2024 03:00:00 +0000 ROA not before: Wed 02 Oct 2024 02:55:00 +0000 ROA not after: Wed 01 Oct 2025 03:00:00 +0000 asID: 147084 IP address blocks: 103.63.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:16:a1:a9:2a:b0:33:e4:e9:2f:4f:b2:98:8f:0b:13:08:16:ea:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 2 02:55:00 2024 GMT Not After : Oct 1 03:00:00 2025 GMT Subject: CN=0C482FD74387CFFCA2F23129EAEAE685299D52B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:08:ff:46:69:e0:31:34:b8:45:e4:35:14:3d: ac:ff:e3:61:0b:7b:6d:d6:92:91:2f:74:3d:65:ee: a0:22:52:c9:80:bd:80:a2:23:b5:f4:f9:c7:5c:36: 7b:23:8d:be:2d:8c:29:ae:cf:6c:c7:80:39:72:d7: c6:ac:a8:cc:7e:62:ee:b7:98:d6:e9:98:d5:17:3e: c3:a4:45:1c:7a:aa:4d:ff:ed:03:a1:2f:7e:16:53: 35:79:84:70:c0:45:94:a9:ee:df:c6:fd:93:d0:db: be:71:57:af:8f:01:ee:10:21:fa:f0:b0:03:d2:bf: 9a:ff:b9:d0:e0:d0:48:62:e7:04:5d:77:c1:d2:89: 60:2b:1d:bf:87:8a:ea:cd:a4:bc:4b:c5:f3:d9:5a: 18:f3:1a:b1:39:47:3b:6a:a0:e5:0b:6b:2d:ac:f7: 32:0e:e1:fe:4c:68:2e:91:8e:0b:83:2f:8d:4b:9d: f6:10:05:ca:ff:db:c9:bb:0e:45:97:39:01:81:72: 59:64:22:9e:3a:5f:fb:50:4b:60:bf:e3:c1:b4:e6: f9:47:4d:03:24:63:b0:c2:af:d8:57:22:b3:51:6f: 0f:27:c6:49:7f:7a:06:46:36:e5:01:6b:40:3a:f5: f5:c2:ef:7f:7b:65:99:96:ca:bd:0a:2f:06:64:12: e3:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:48:2F:D7:43:87:CF:FC:A2:F2:31:29:EA:EA:E6:85:29:9D:52:B8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147084.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.63.191.0/24 Signature Algorithm: sha256WithRSAEncryption 50:26:13:ee:46:af:8b:d1:ab:65:55:63:7c:63:cd:d0:b3:51: 71:5c:23:71:0f:18:7e:b9:93:43:31:e1:03:69:03:b9:a1:05: 4e:61:d3:f8:0e:2b:7f:e8:09:bd:db:42:b1:c7:da:0e:2b:a0: 0f:62:63:c1:1c:72:99:c1:b8:a0:3e:bf:1b:47:de:0b:d1:e4: d2:43:00:8b:33:ce:16:b2:ce:9e:04:28:fd:c6:a0:9c:d7:3a: 52:40:08:31:fd:a4:78:62:3a:56:b1:dd:ab:e8:59:12:12:70: 89:ed:3f:78:b2:0b:af:21:dd:9b:ec:cb:21:a8:81:de:29:0a: 77:02:d5:78:8b:23:63:60:6f:61:e9:13:d4:0f:55:cf:d9:e9: f5:6b:d3:cb:67:c0:7f:29:db:72:c1:9b:bd:43:d6:ad:ea:89: 81:1e:61:34:3f:00:e4:a6:60:9f:35:43:cf:b2:73:b1:c0:bd: 8e:4d:d4:64:f5:fe:9d:41:20:60:0c:ca:5d:54:45:ad:46:84: 66:4f:8a:08:41:6c:99:7f:d2:e1:32:f8:f8:be:0f:76:42:05: d6:42:fd:34:d8:fd:81:6b:38:db:42:d1:dd:8b:26:0e:92:90: 2f:d1:d8:78:01:11:ea:72:fe:87:39:1a:da:9d:c3:16:f7:9a: e3:ff:cd:4d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUIhahqSqwM+TpL0+ymI8LEwgW6lwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwMjAyNTUwMFoX DTI1MTAwMTAzMDAwMFowMzExMC8GA1UEAxMoMEM0ODJGRDc0Mzg3Q0ZGQ0EyRjIz MTI5RUFFQUU2ODUyOTlENTJCODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL4I/0Zp4DE0uEXkNRQ9rP/jYQt7bdaSkS90PWXuoCJSyYC9gKIjtfT5x1w2 eyONvi2MKa7PbMeAOXLXxqyozH5i7reY1umY1Rc+w6RFHHqqTf/tA6EvfhZTNXmE cMBFlKnu38b9k9DbvnFXr48B7hAh+vCwA9K/mv+50ODQSGLnBF13wdKJYCsdv4eK 6s2kvEvF89laGPMasTlHO2qg5QtrLaz3Mg7h/kxoLpGOC4MvjUud9hAFyv/bybsO RZc5AYFyWWQinjpf+1BLYL/jwbTm+UdNAyRjsMKv2Fcis1FvDyfGSX96BkY25QFr QDr19cLvf3tlmZbKvQovBmQS4wECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQMSC/X Q4fP/KLyMSnq6uaFKZ1SuDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzA4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGc/vzANBgkqhkiG9w0BAQsFAAOCAQEAUCYT7kavi9GrZVVjfGPN 0LNRcVwjcQ8YfrmTQzHhA2kDuaEFTmHT+A4rf+gJvdtCscfaDiugD2JjwRxymcG4 oD6/G0feC9Hk0kMAizPOFrLOngQo/cagnNc6UkAIMf2keGI6VrHdq+hZEhJwie0/ eLILryHdm+zLIaiB3ikKdwLVeIsjY2BvYekT1A9Vz9np9WvTy2fAfynbcsGbvUPW reqJgR5hND8A5KZgnzVDz7JzscC9jk3UZPX+nUEgYAzKXVRFrUaEZk+KCEFsmX/S 4TL4+L4PdkIF1kL9NNj9gWs420LR3YsmDpKQL9HYeAER6nL+hzka2p3DFvea4//N TQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:26 2024 by rpki-client on console-fra.rpki-client.org