$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147104.roa File: AS147104.roa (raw, json) Hash identifier: fipyk6yALHZltKqsp01jCLnyYROzY8s5yo4/jtvR8Ck= Subject key identifier: 73:C3:C6:7A:97:B0:D9:12:59:99:22:13:0F:DB:9C:FB:20:B3:9E:5B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 65EFC58C316334943BD85D444824079901C351D1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147104.roa Signing time: Thu 08 Feb 2024 03:00:00 +0000 ROA not before: Thu 08 Feb 2024 02:55:00 +0000 ROA not after: Thu 06 Feb 2025 03:00:00 +0000 asID: 147104 IP address blocks: 103.174.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ef:c5:8c:31:63:34:94:3b:d8:5d:44:48:24:07:99:01:c3:51:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 8 02:55:00 2024 GMT Not After : Feb 6 03:00:00 2025 GMT Subject: CN=73C3C67A97B0D912599922130FDB9CFB20B39E5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:5b:f7:0c:e1:25:49:ad:c2:bb:84:21:67:4c: 06:b4:60:4c:c4:6b:c8:2b:5c:60:10:13:f7:02:34: 41:28:f4:bf:0b:1f:ce:46:23:77:3e:7f:cd:ad:0e: f0:99:3c:2e:7b:17:ca:d9:d3:25:2a:de:46:f7:b4: b8:6d:0a:07:08:61:31:b4:6e:6e:f1:ae:8c:e7:7d: b7:bd:a3:0a:0f:89:4c:e7:23:b9:99:05:39:bf:ed: be:8d:b9:c0:2c:73:9f:c5:36:de:77:a0:ac:7a:fd: 59:2b:77:fa:06:ad:af:05:57:64:83:92:b9:7b:b0: e5:38:7a:7a:a6:d8:9f:7a:6d:f1:fc:1d:0d:de:7e: 00:b2:91:40:63:d5:ae:a8:26:00:0d:42:94:81:7e: 0d:e2:64:ba:40:6d:ed:fd:cc:2f:bf:fa:20:65:5c: 3a:7d:59:bb:7d:17:3e:48:cc:cf:b4:66:aa:2e:4d: f3:ee:81:bc:24:12:e8:ed:ea:99:f3:8e:30:b1:0f: 0d:88:e2:11:54:80:60:ce:0b:bd:3e:54:f4:d5:26: bf:67:8d:e8:00:a4:ad:a4:21:2f:01:10:ec:3c:87: 55:90:27:c4:45:c9:4b:ae:1f:d4:e9:1a:fd:08:28: ef:e2:00:52:74:df:53:ec:45:67:e0:8f:1d:e8:fa: c7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C3:C6:7A:97:B0:D9:12:59:99:22:13:0F:DB:9C:FB:20:B3:9E:5B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147104.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.172.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:3a:db:36:b7:67:67:c4:ef:d8:b4:52:01:0e:b2:67:8c:84: ae:52:06:58:4c:a2:4d:e0:af:04:57:3e:48:78:84:17:03:5d: dc:2d:fa:6f:94:2d:a4:a4:fd:5f:23:67:9a:3b:aa:30:f4:07: 89:ec:7e:68:d0:c8:46:e9:fc:f8:83:8d:42:c3:99:5e:85:48: b2:94:29:21:da:20:5f:d9:57:d5:e3:83:f0:a0:06:3f:e1:4e: 85:9e:ef:5f:c2:2a:f2:b9:ac:5c:04:75:0f:c7:a0:f1:2a:31: 80:5b:96:bd:89:45:79:4b:0d:c3:08:e0:20:07:e5:19:3e:05: 82:ec:1d:3f:96:e8:f5:99:4a:5e:a5:06:38:00:e5:83:74:13: b7:df:5e:47:e0:62:84:28:a9:4a:83:dc:5e:5c:df:64:05:a4: dc:c3:20:69:e0:51:8f:eb:2f:4d:29:f5:96:b7:ec:bb:5d:af: c3:3e:cc:4d:43:e2:4e:94:f4:f1:ea:86:89:21:79:e3:ed:82: 00:86:a6:fa:b5:0c:ad:0c:c3:07:d9:9e:af:4f:fb:f8:de:14: 19:12:c7:ad:ed:3d:0a:9e:af:27:f7:13:94:1a:58:7a:4b:5a: ba:45:dc:12:15:6f:45:a7:8e:c1:d5:2e:c7:ca:e3:66:0f:bb: 82:09:45:5e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZe/FjDFjNJQ72F1ESCQHmQHDUdEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIwODAyNTUwMFoX DTI1MDIwNjAzMDAwMFowMzExMC8GA1UEAxMoNzNDM0M2N0E5N0IwRDkxMjU5OTky MjEzMEZEQjlDRkIyMEIzOUU1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPRb9wzhJUmtwruEIWdMBrRgTMRryCtcYBAT9wI0QSj0vwsfzkYjdz5/za0O 8Jk8LnsXytnTJSreRve0uG0KBwhhMbRubvGujOd9t72jCg+JTOcjuZkFOb/tvo25 wCxzn8U23negrHr9WSt3+gatrwVXZIOSuXuw5Th6eqbYn3pt8fwdDd5+ALKRQGPV rqgmAA1ClIF+DeJkukBt7f3ML7/6IGVcOn1Zu30XPkjMz7Rmqi5N8+6BvCQS6O3q mfOOMLEPDYjiEVSAYM4LvT5U9NUmv2eN6ACkraQhLwEQ7DyHVZAnxEXJS64f1Oka /Qgo7+IAUnTfU+xFZ+CPHej6x6MCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRzw8Z6 l7DZElmZIhMP25z7ILOeWzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeurDANBgkqhkiG9w0BAQsFAAOCAQEAbDrbNrdnZ8Tv2LRSAQ6y Z4yErlIGWEyiTeCvBFc+SHiEFwNd3C36b5QtpKT9XyNnmjuqMPQHiex+aNDIRun8 +IONQsOZXoVIspQpIdogX9lX1eOD8KAGP+FOhZ7vX8Iq8rmsXAR1D8eg8SoxgFuW vYlFeUsNwwjgIAflGT4FguwdP5bo9ZlKXqUGOADlg3QTt99eR+BihCipSoPcXlzf ZAWk3MMgaeBRj+svTSn1lrfsu12vwz7MTUPiTpT08eqGiSF54+2CAIam+rUMrQzD B9mer0/7+N4UGRLHre09Cp6vJ/cTlBpYektaukXcEhVvRaeOwdUux8rjZg+7gglF Xg== -----END CERTIFICATE-----Generated at Wed May 8 21:02:22 2024 by rpki-client on console-fra.rpki-client.org