$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147084.roa File: AS147084.roa (raw, json) Hash identifier: N+0aeByprxajJ8NxyYxXt19yHY6cIYmNaKEDr5ba0QQ= Subject key identifier: A9:06:1D:C3:2F:D5:EE:00:91:B8:9F:E9:F3:19:9A:5E:E7:36:BA:47 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 63EC9D3D8B65972C7999B5EA33589D3FD7286083 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147084.roa Signing time: Wed 01 Nov 2023 03:00:00 +0000 ROA not before: Wed 01 Nov 2023 02:55:00 +0000 ROA not after: Wed 30 Oct 2024 03:00:00 +0000 asID: 147084 IP address blocks: 103.63.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:ec:9d:3d:8b:65:97:2c:79:99:b5:ea:33:58:9d:3f:d7:28:60:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 1 02:55:00 2023 GMT Not After : Oct 30 03:00:00 2024 GMT Subject: CN=A9061DC32FD5EE0091B89FE9F3199A5EE736BA47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3f:c6:a4:c2:8e:80:5b:8c:d6:ce:8b:e1:2f: c7:be:3a:ed:0e:3a:cc:9d:b5:33:ab:67:c6:28:8a: d4:74:da:06:06:67:49:1e:39:e5:f5:7f:c3:6f:4e: 03:da:70:cc:6d:38:1e:3a:47:26:fb:7c:ee:cf:78: 68:6e:2f:fd:32:a5:8e:a5:be:d2:75:16:65:1f:11: 1f:7f:83:09:b2:35:83:e9:39:00:49:25:fb:90:fb: f7:3c:67:47:32:02:b8:12:38:68:51:3c:f0:d3:3d: 5b:9a:98:14:fa:71:3e:de:4c:64:66:92:42:b4:a7: 97:3a:ed:30:b0:fb:18:67:2e:40:e3:67:60:a0:56: ff:59:0d:9e:32:99:2d:eb:67:67:2b:1f:87:f5:99: c6:5f:f3:d8:73:54:a2:5e:b9:5d:80:42:11:85:ee: dd:77:11:51:33:6d:b6:0c:c9:17:a2:12:30:5e:0b: f8:7c:00:d6:9c:3b:2c:09:5c:fb:31:0f:7f:02:19: 1d:e3:ce:6b:bb:70:6f:94:42:e1:c0:a0:43:73:21: 98:7e:f5:cf:17:0d:82:bd:dd:f7:ae:57:56:74:11: ec:bf:aa:13:ee:87:3b:9e:19:86:a4:b4:6b:02:7b: 7e:d4:ec:f4:85:d4:7b:16:5d:a8:38:c2:df:5d:40: 79:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:06:1D:C3:2F:D5:EE:00:91:B8:9F:E9:F3:19:9A:5E:E7:36:BA:47 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147084.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.63.191.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:ce:14:20:1f:f3:c4:0c:bc:33:24:43:1b:a4:14:6e:a9:e4: ea:06:b9:58:8a:14:d8:1f:18:bf:f1:2c:0e:23:a2:66:c1:56: 44:3f:7c:68:d4:e7:5a:c5:28:51:41:98:78:87:12:7e:aa:ad: 81:9d:6e:ff:a5:f8:f1:98:50:b3:9c:05:1f:f4:c7:0f:19:78: 69:a9:c1:ba:fe:06:f0:1f:cc:ac:a8:80:3a:f3:6c:fe:15:42: 99:51:68:b2:e1:77:82:c8:3c:14:dc:75:b8:5b:0a:42:92:2f: 1c:fc:63:a5:77:12:97:6c:8f:f5:43:6f:bd:6e:d4:81:31:f6: 43:ad:50:8d:1b:cf:9a:b4:da:3d:df:d5:a5:61:64:28:c5:7c: 7f:62:2d:94:60:ff:d6:16:7e:1c:08:41:0e:ff:f8:70:3d:45: f1:77:c1:80:37:05:6d:b2:8b:b9:e6:3c:56:e5:19:04:18:bf: 07:2e:54:2e:2c:f8:c4:90:03:30:24:9e:ba:00:f2:42:29:84: 4c:5c:2b:4d:2b:32:93:56:fa:78:12:f1:d0:58:88:98:1a:6e: 45:fe:df:50:48:08:34:18:31:53:29:53:73:53:ba:a9:58:c2: 1b:0a:00:6b:34:26:5c:02:46:e5:db:f8:21:54:17:33:f5:4a: fc:32:e0:3d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUY+ydPYtllyx5mbXqM1idP9coYIMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwMTAyNTUwMFoX DTI0MTAzMDAzMDAwMFowMzExMC8GA1UEAxMoQTkwNjFEQzMyRkQ1RUUwMDkxQjg5 RkU5RjMxOTlBNUVFNzM2QkE0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJw/xqTCjoBbjNbOi+Evx7467Q46zJ21M6tnxiiK1HTaBgZnSR455fV/w29O A9pwzG04HjpHJvt87s94aG4v/TKljqW+0nUWZR8RH3+DCbI1g+k5AEkl+5D79zxn RzICuBI4aFE88NM9W5qYFPpxPt5MZGaSQrSnlzrtMLD7GGcuQONnYKBW/1kNnjKZ LetnZysfh/WZxl/z2HNUol65XYBCEYXu3XcRUTNttgzJF6ISMF4L+HwA1pw7LAlc +zEPfwIZHePOa7twb5RC4cCgQ3MhmH71zxcNgr3d965XVnQR7L+qE+6HO54ZhqS0 awJ7ftTs9IXUexZdqDjC311Aee0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSpBh3D L9XuAJG4n+nzGZpe5za6RzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzA4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGc/vzANBgkqhkiG9w0BAQsFAAOCAQEAL84UIB/zxAy8MyRDG6QU bqnk6ga5WIoU2B8Yv/EsDiOiZsFWRD98aNTnWsUoUUGYeIcSfqqtgZ1u/6X48ZhQ s5wFH/THDxl4aanBuv4G8B/MrKiAOvNs/hVCmVFosuF3gsg8FNx1uFsKQpIvHPxj pXcSl2yP9UNvvW7UgTH2Q61QjRvPmrTaPd/VpWFkKMV8f2ItlGD/1hZ+HAhBDv/4 cD1F8XfBgDcFbbKLueY8VuUZBBi/By5ULiz4xJADMCSeugDyQimETFwrTSsyk1b6 eBLx0FiImBpuRf7fUEgINBgxUylTc1O6qVjCGwoAazQmXAJG5dv4IVQXM/VK/DLg PQ== -----END CERTIFICATE-----Generated at Thu May 9 00:29:15 2024 by rpki-client on console-ams.rpki-client.org