$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147103.roa File: AS147103.roa (raw, json) Hash identifier: 3XSNBUy3tJ0ScbFrHt8easmCH6AZ9M5JawjDTdZSzDQ= Subject key identifier: B7:3E:3E:B8:84:7B:26:D4:FA:B2:A0:D9:FC:0A:43:3E:C4:CE:AF:1C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4AD6AB0D5EE9D14FAE45B0282AFB984E22F2A24C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147103.roa Signing time: Tue 09 Jan 2024 04:00:30 +0000 ROA not before: Tue 09 Jan 2024 03:55:30 +0000 ROA not after: Tue 07 Jan 2025 04:00:30 +0000 asID: 147103 IP address blocks: 103.174.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:d6:ab:0d:5e:e9:d1:4f:ae:45:b0:28:2a:fb:98:4e:22:f2:a2:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:30 2024 GMT Not After : Jan 7 04:00:30 2025 GMT Subject: CN=B73E3EB8847B26D4FAB2A0D9FC0A433EC4CEAF1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8a:9b:a7:a2:91:93:b5:87:82:66:08:38:9f: 44:60:35:1c:c7:8e:be:a0:fd:71:b7:81:6e:76:f5: 6d:85:1e:b5:7e:29:66:a5:19:e5:b1:00:32:51:82: 87:5e:9e:19:4c:4f:a5:f6:35:bd:fb:e8:c1:c5:3f: c0:a4:8f:83:e8:b8:10:cc:19:51:10:aa:8d:84:8c: 05:d9:b2:a0:1b:e2:dd:b3:8f:95:2b:e6:e8:d9:e6: 51:e5:61:bb:36:5b:23:d1:49:6a:2b:34:ec:bb:c1: 0e:59:95:2b:d2:16:27:21:07:f2:0d:3c:41:f9:b9: 14:9c:a4:98:57:4b:e6:da:32:ea:6e:8e:2b:b7:79: 7c:75:0f:d6:1e:e7:5c:c0:b8:19:d4:9f:91:9f:96: 0a:8b:86:c8:05:48:0c:64:b6:1f:d4:6a:9a:1e:26: f1:21:43:28:a1:f3:df:01:de:65:2d:14:8c:33:cc: e1:c1:05:fb:ab:57:22:c9:12:f3:eb:dc:d7:bb:b1: 09:83:ac:58:87:86:f7:2e:5d:19:64:e7:82:ee:ee: 5f:09:45:77:b8:90:b7:be:f3:f6:6d:25:b9:7b:23: e9:15:6e:20:c8:52:8d:6a:ee:1f:e8:29:66:e7:0e: 6f:34:28:0f:dd:5f:59:49:d7:4e:d2:22:f3:90:9f: 84:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:3E:3E:B8:84:7B:26:D4:FA:B2:A0:D9:FC:0A:43:3E:C4:CE:AF:1C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147103.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.223.0/24 Signature Algorithm: sha256WithRSAEncryption 16:b7:96:b6:16:85:1c:9a:37:12:f8:12:fb:a3:c8:ad:f9:54: a9:53:a5:de:76:8b:e2:bb:71:30:cd:24:5f:de:ee:cd:55:13: 8c:c1:f3:e9:1d:dc:04:2b:76:5f:ae:7b:08:29:f4:4d:b7:fe: f8:57:e8:ed:fe:c7:ec:cd:7c:b0:a1:d1:91:2f:c2:0c:9c:23: c6:77:99:31:03:fa:2a:ee:19:cf:c0:ec:c5:90:42:fe:2d:c9: 4a:a5:10:5e:1c:53:bc:ea:ff:08:a5:c5:f5:ca:ee:84:e6:d1: 32:17:50:cf:c1:52:76:a1:44:8c:6a:7d:a0:ac:ff:f5:a8:29: 17:75:fe:f4:ae:4e:6d:61:ed:65:50:2c:f4:c0:8c:e9:a6:ee: 18:1c:58:90:44:be:34:e6:aa:c9:f9:d2:10:74:9f:49:79:71: a4:99:f6:18:cb:44:d4:1a:a4:e2:3d:aa:bb:7b:a8:bf:b1:f1: 55:b4:e1:c0:97:e7:a5:fa:78:69:5c:e9:10:a4:c5:2b:cf:77: 29:a5:ad:ee:9c:f2:e1:bd:51:7f:d7:d8:44:de:fc:af:45:46: 04:6f:38:6b:c3:6b:33:39:48:97:42:e2:58:98:13:ee:b9:63: 02:d9:bc:98:8f:1f:08:1f:e5:49:8f:de:af:6e:30:60:3f:35: 61:ad:fe:a5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUStarDV7p0U+uRbAoKvuYTiLyokwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUzMFoX DTI1MDEwNzA0MDAzMFowMzExMC8GA1UEAxMoQjczRTNFQjg4NDdCMjZENEZBQjJB MEQ5RkMwQTQzM0VDNENFQUYxQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMuKm6eikZO1h4JmCDifRGA1HMeOvqD9cbeBbnb1bYUetX4pZqUZ5bEAMlGC h16eGUxPpfY1vfvowcU/wKSPg+i4EMwZURCqjYSMBdmyoBvi3bOPlSvm6NnmUeVh uzZbI9FJais07LvBDlmVK9IWJyEH8g08Qfm5FJykmFdL5toy6m6OK7d5fHUP1h7n XMC4GdSfkZ+WCouGyAVIDGS2H9Rqmh4m8SFDKKHz3wHeZS0UjDPM4cEF+6tXIskS 8+vc17uxCYOsWIeG9y5dGWTngu7uXwlFd7iQt77z9m0luXsj6RVuIMhSjWruH+gp ZucObzQoD91fWUnXTtIi85CfhIcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS3Pj64 hHsm1PqyoNn8CkM+xM6vHDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEwMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeu3zANBgkqhkiG9w0BAQsFAAOCAQEAFreWthaFHJo3EvgS+6PI rflUqVOl3naL4rtxMM0kX97uzVUTjMHz6R3cBCt2X657CCn0Tbf++Ffo7f7H7M18 sKHRkS/CDJwjxneZMQP6Ku4Zz8DsxZBC/i3JSqUQXhxTvOr/CKXF9cruhObRMhdQ z8FSdqFEjGp9oKz/9agpF3X+9K5ObWHtZVAs9MCM6abuGBxYkES+NOaqyfnSEHSf SXlxpJn2GMtE1Bqk4j2qu3uov7HxVbThwJfnpfp4aVzpEKTFK893KaWt7pzy4b1R f9fYRN78r0VGBG84a8NrMzlIl0LiWJgT7rljAtm8mI8fCB/lSY/er24wYD81Ya3+ pQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:48 2024 by rpki-client on console-ams.rpki-client.org