$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147097.roa File: AS147097.roa (raw, json) Hash identifier: Ci6e8IvBD4NAXADoBu3EMru358wXp+HUCnECT5wZMRM= Subject key identifier: 4E:46:4A:08:E6:25:03:DF:B7:C8:F5:C5:D4:FE:09:57:91:40:7F:44 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3FC548D16847CA9FBE8F42F3D1A39588E1C89811 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147097.roa Signing time: Fri 13 Sep 2024 06:47:43 +0000 ROA not before: Fri 13 Sep 2024 06:42:43 +0000 ROA not after: Fri 12 Sep 2025 06:47:43 +0000 asID: 147097 IP address blocks: 2001:df2:4640::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Oct 2024 06:20:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:c5:48:d1:68:47:ca:9f:be:8f:42:f3:d1:a3:95:88:e1:c8:98:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 13 06:42:43 2024 GMT Not After : Sep 12 06:47:43 2025 GMT Subject: CN=4E464A08E62503DFB7C8F5C5D4FE095791407F44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a8:94:87:ea:0f:11:41:ba:de:23:a1:08:7b: 10:99:69:15:80:a0:e5:1c:ea:24:46:a0:3e:45:bb: 8b:01:0b:b5:9f:08:16:53:71:85:3c:87:47:7a:64: 23:b9:3c:2a:49:8f:ba:4d:6f:7d:ac:5d:9c:a1:a9: 82:30:9b:66:7e:09:bb:1c:ce:ec:17:a8:99:29:b2: 9d:8b:d9:5c:82:64:44:a8:02:d8:31:56:f0:23:09: f3:0d:67:08:f4:9b:29:a8:ac:38:aa:42:8c:1f:90: 7b:62:23:e2:ee:1f:d2:53:1c:c0:cc:e4:59:c2:e7: 7c:96:d4:20:32:8b:19:ba:58:67:5f:e1:d5:a6:bc: ce:77:01:2b:fd:21:bb:e5:06:94:83:3d:4b:16:1a: 85:bc:d5:1c:cb:89:5c:0a:96:61:4c:bf:19:ef:30: 7f:06:c4:6f:0d:b7:c0:aa:26:4e:60:d1:b4:41:e9: 6b:0c:b2:35:35:db:27:40:7d:4d:ce:89:b4:5e:c3: d3:77:2b:fd:50:b4:89:30:54:12:3b:4c:8f:f0:ca: 3b:9f:27:81:1a:a1:1b:3a:ad:57:90:d5:c8:9d:38: 81:c1:80:1b:d3:67:c5:68:76:7e:4d:7a:24:d7:29: fb:87:da:85:ba:f6:a3:ef:fe:ef:f1:39:d4:73:bd: 9e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:46:4A:08:E6:25:03:DF:B7:C8:F5:C5:D4:FE:09:57:91:40:7F:44 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147097.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:4640::/48 Signature Algorithm: sha256WithRSAEncryption 7b:1b:48:6e:71:7a:72:2a:2c:6c:29:4e:a8:a0:2a:4d:5d:04: 67:2e:23:7e:11:42:52:5c:67:3c:d0:ea:9f:28:0b:20:aa:fb: 42:2e:4b:05:4f:55:c8:2a:21:72:6c:29:f4:b9:5e:31:8c:1a: f1:08:ea:0e:92:d5:a7:20:fb:89:9f:13:fd:75:26:ac:59:5f: ca:cd:5e:3c:f4:ed:fb:c5:1f:dd:d9:04:ba:26:c7:8a:72:56: 18:f9:a2:67:9a:a1:9c:16:51:b0:92:45:66:65:ef:0d:50:75: bf:78:b1:60:ac:20:b0:bc:5a:f0:5c:3a:28:7b:06:99:f5:a5: 51:76:3b:ff:fa:88:56:78:de:eb:ac:a6:61:4c:4d:91:3c:c7: 65:93:7c:88:e0:a4:e5:14:29:67:c3:8c:f2:c3:e6:83:36:cb: ed:85:6b:9d:fa:83:a0:99:94:fc:19:b5:5c:34:41:d5:7c:84: 7b:75:d9:e7:cc:3d:11:0c:67:1c:65:c3:eb:8c:37:7f:c5:80: 6e:43:00:31:a3:29:f1:c7:99:70:3b:1b:af:1e:bf:f8:39:78: 2d:d5:fa:51:b2:99:96:c9:60:78:7d:2c:14:10:6c:5b:f9:ef: 91:c2:c9:c8:66:25:64:13:24:f0:be:92:b0:48:15:b1:55:30: 33:8b:4c:c5 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUP8VI0WhHyp++j0Lz0aOViOHImBEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxMzA2NDI0M1oX DTI1MDkxMjA2NDc0M1owMzExMC8GA1UEAxMoNEU0NjRBMDhFNjI1MDNERkI3QzhG NUM1RDRGRTA5NTc5MTQwN0Y0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMOolIfqDxFBut4joQh7EJlpFYCg5RzqJEagPkW7iwELtZ8IFlNxhTyHR3pk I7k8KkmPuk1vfaxdnKGpgjCbZn4JuxzO7BeomSmynYvZXIJkRKgC2DFW8CMJ8w1n CPSbKaisOKpCjB+Qe2Ij4u4f0lMcwMzkWcLnfJbUIDKLGbpYZ1/h1aa8zncBK/0h u+UGlIM9SxYahbzVHMuJXAqWYUy/Ge8wfwbEbw23wKomTmDRtEHpawyyNTXbJ0B9 Tc6JtF7D03cr/VC0iTBUEjtMj/DKO58ngRqhGzqtV5DVyJ04gcGAG9NnxWh2fk16 JNcp+4fahbr2o+/+7/E51HO9nv0CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRORkoI 5iUD37fI9cXU/glXkUB/RDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzA5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfJGQDANBgkqhkiG9w0BAQsFAAOCAQEAextIbnF6ciosbClO qKAqTV0EZy4jfhFCUlxnPNDqnygLIKr7Qi5LBU9VyCohcmwp9LleMYwa8QjqDpLV pyD7iZ8T/XUmrFlfys1ePPTt+8Uf3dkEuibHinJWGPmiZ5qhnBZRsJJFZmXvDVB1 v3ixYKwgsLxa8Fw6KHsGmfWlUXY7//qIVnje66ymYUxNkTzHZZN8iOCk5RQpZ8OM 8sPmgzbL7YVrnfqDoJmU/Bm1XDRB1XyEe3XZ58w9EQxnHGXD64w3f8WAbkMAMaMp 8ceZcDsbrx6/+Dl4LdX6UbKZlslgeH0sFBBsW/nvkcLJyGYlZBMk8L6SsEgVsVUw M4tMxQ== -----END CERTIFICATE-----Generated at Sat Sep 28 08:18:10 2024 by rpki-client on console-ams.rpki-client.org