$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147103.roa File: AS147103.roa (raw, json) Hash identifier: ufcbgs5NjMWS4FszaowYk9HjdXvEqTlHim7xIQE3mlg= Subject key identifier: FA:8E:9C:DA:23:FC:0A:F4:37:3D:F0:4E:9A:A2:5B:E8:09:9C:48:77 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7E414EA890B13040A7BFD78502558255A4E304B0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147103.roa Signing time: Tue 10 Dec 2024 05:00:27 +0000 ROA not before: Tue 10 Dec 2024 04:55:27 +0000 ROA not after: Tue 09 Dec 2025 05:00:27 +0000 asID: 147103 IP address blocks: 103.174.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:41:4e:a8:90:b1:30:40:a7:bf:d7:85:02:55:82:55:a4:e3:04:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:27 2024 GMT Not After : Dec 9 05:00:27 2025 GMT Subject: CN=FA8E9CDA23FC0AF4373DF04E9AA25BE8099C4877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f7:8e:70:78:ee:28:ec:14:ee:e4:a7:7c:5d: c1:71:49:cd:64:d5:15:d3:3b:d6:d3:c4:5f:64:e0: ea:7c:d0:40:ea:14:f5:7b:3a:b5:0a:15:1f:92:46: e8:65:21:6e:42:b1:d5:d5:67:0e:26:41:1e:9f:b0: 10:f7:98:57:74:ff:d1:76:56:45:51:6b:fe:9b:fa: 63:a6:81:86:1c:39:66:77:0b:05:ae:8f:aa:c9:7c: ce:dd:ea:05:39:01:b4:e8:47:e2:22:e1:99:d6:7b: c2:82:d9:ff:c8:99:f6:11:05:57:08:64:4a:55:05: 70:f1:91:53:5b:fc:9c:72:b9:ca:5a:4c:5a:cb:5b: 3e:5c:1a:2d:b6:d4:9d:bc:59:0a:4f:9c:27:70:4a: ab:05:70:1b:db:19:6d:06:9d:c7:37:1d:11:5b:36: 30:12:b0:e8:77:7c:68:9d:e4:15:32:b8:af:9d:8d: 3e:9b:da:09:eb:61:d6:9c:c6:ed:fb:d7:22:1a:d6: 43:18:74:8b:74:e8:ba:30:97:4a:cd:bc:ad:e3:d4: 86:b1:1e:73:b8:22:92:31:4f:93:da:a2:36:e6:d3: b2:b5:c8:b3:1c:bc:8b:b4:cc:4b:b8:5e:ef:94:96: e4:d3:ae:7f:e8:e8:db:54:e1:33:8f:19:ac:f1:d4: 5c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:8E:9C:DA:23:FC:0A:F4:37:3D:F0:4E:9A:A2:5B:E8:09:9C:48:77 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147103.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.223.0/24 Signature Algorithm: sha256WithRSAEncryption 37:5b:09:f9:12:d5:fe:e7:45:78:03:0c:f6:75:80:97:78:62: a8:3b:cc:65:6b:cd:08:06:e6:e3:95:26:f4:d9:73:7f:bd:78: 17:c6:98:43:b2:87:ca:e5:71:88:72:ea:28:25:64:f4:a9:d7: 14:e9:b4:97:48:fc:9f:04:33:23:83:88:27:73:db:ef:d2:af: 96:a4:6d:f4:25:c3:ab:75:9c:2d:7e:35:dc:af:d4:bd:f1:d8: 42:fd:39:63:34:ad:91:00:f8:5c:8c:8a:eb:ff:e1:59:89:d8: 21:7e:34:90:79:ab:14:0f:ea:8f:a9:15:c4:db:f5:f5:65:18: 73:c7:90:0a:ad:e8:94:d3:69:4c:a3:25:f2:b8:5b:49:da:00: 9c:75:8d:5d:88:52:1f:c8:ce:74:2d:dc:84:88:45:d4:80:48: bc:e7:e5:5d:db:d7:39:3b:40:0b:94:f1:fc:a7:e1:d7:55:21: ba:73:b3:e3:d1:f1:ea:f5:54:0c:da:21:e7:1c:35:18:8f:8b: 88:a1:6f:55:81:b7:e7:76:34:df:f9:ea:00:12:58:e6:58:ae: 64:d1:57:69:10:53:89:99:25:b3:7c:2f:a9:ee:b7:47:f1:25: 95:60:39:09:a2:65:4f:6d:34:7c:08:7f:3e:86:32:8a:dc:f7: eb:f7:0f:c4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfkFOqJCxMECnv9eFAlWCVaTjBLAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyN1oX DTI1MTIwOTA1MDAyN1owMzExMC8GA1UEAxMoRkE4RTlDREEyM0ZDMEFGNDM3M0RG MDRFOUFBMjVCRTgwOTlDNDg3NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKX3jnB47ijsFO7kp3xdwXFJzWTVFdM71tPEX2Tg6nzQQOoU9Xs6tQoVH5JG 6GUhbkKx1dVnDiZBHp+wEPeYV3T/0XZWRVFr/pv6Y6aBhhw5ZncLBa6Pqsl8zt3q BTkBtOhH4iLhmdZ7woLZ/8iZ9hEFVwhkSlUFcPGRU1v8nHK5ylpMWstbPlwaLbbU nbxZCk+cJ3BKqwVwG9sZbQadxzcdEVs2MBKw6Hd8aJ3kFTK4r52NPpvaCeth1pzG 7fvXIhrWQxh0i3ToujCXSs28rePUhrEec7gikjFPk9qiNubTsrXIsxy8i7TMS7he 75SW5NOuf+jo21ThM48ZrPHUXJUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT6jpza I/wK9Dc98E6aolvoCZxIdzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEwMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeu3zANBgkqhkiG9w0BAQsFAAOCAQEAN1sJ+RLV/udFeAMM9nWA l3hiqDvMZWvNCAbm45Um9Nlzf714F8aYQ7KHyuVxiHLqKCVk9KnXFOm0l0j8nwQz I4OIJ3Pb79KvlqRt9CXDq3WcLX413K/UvfHYQv05YzStkQD4XIyK6//hWYnYIX40 kHmrFA/qj6kVxNv19WUYc8eQCq3olNNpTKMl8rhbSdoAnHWNXYhSH8jOdC3chIhF 1IBIvOflXdvXOTtAC5Tx/Kfh11UhunOz49Hx6vVUDNoh5xw1GI+LiKFvVYG353Y0 3/nqABJY5liuZNFXaRBTiZkls3wvqe63R/EllWA5CaJlT200fAh/PoYyitz36/cP xA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:48 2025 by rpki-client