$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147104.roa File: AS147104.roa (raw, json) Hash identifier: g/hR9BAYunb13U1xT6tzxT2XnHgv/h0ujHvzYJLrA6g= Subject key identifier: D4:5D:36:1D:43:FA:BB:0A:8D:EA:F9:82:B6:9D:77:37:8C:79:7D:8F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4D8934B3695C7C603B294CD30C76F8180531DFF5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147104.roa Signing time: Thu 09 Jan 2025 04:00:00 +0000 ROA not before: Thu 09 Jan 2025 03:55:00 +0000 ROA not after: Thu 08 Jan 2026 04:00:00 +0000 asID: 147104 IP address blocks: 103.174.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:89:34:b3:69:5c:7c:60:3b:29:4c:d3:0c:76:f8:18:05:31:df:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 9 03:55:00 2025 GMT Not After : Jan 8 04:00:00 2026 GMT Subject: CN=D45D361D43FABB0A8DEAF982B69D77378C797D8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:04:82:9f:98:a2:82:f5:a8:46:7f:8c:31:8a: 7c:3f:16:1b:5b:c7:f3:24:30:6f:32:3f:ab:34:1c: de:5c:bf:b3:1f:b7:0d:64:58:9c:51:b9:21:c9:cb: 5f:98:45:6d:7c:fc:4a:87:f7:a8:13:50:ed:a0:ec: a1:7b:42:25:6c:8a:d0:62:ee:1a:5e:02:af:f5:f5: 82:bf:e0:3a:e0:fc:42:44:7e:16:75:c2:7a:06:a0: c7:03:af:1d:72:1d:01:e2:ce:b8:0e:4f:80:de:f7: 93:5a:1d:43:8f:0f:64:0d:27:3c:c6:38:83:ae:59: da:f6:14:c1:21:50:c0:55:7f:ad:ad:2e:c1:e5:5f: b2:40:ad:c6:85:77:b7:4d:80:f7:e0:85:54:08:19: fb:2b:06:2f:e3:e1:f6:70:e1:cc:fa:7e:96:88:90: 90:63:69:dd:e8:ff:b6:8f:ba:b9:60:73:ce:96:3d: 97:32:02:a8:1d:a7:2d:b7:20:04:b3:8f:b6:d8:4d: ae:7e:3c:ab:df:ce:fe:20:43:36:ff:02:30:39:06: 37:de:9f:43:78:9d:6f:0c:e2:ea:9d:d0:05:6f:3e: f0:e3:9a:0f:ea:f5:b2:5a:1c:8c:33:56:e7:5c:30: 3b:f5:2e:93:06:8d:cb:90:5d:1b:f5:e8:46:cd:32: db:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:5D:36:1D:43:FA:BB:0A:8D:EA:F9:82:B6:9D:77:37:8C:79:7D:8F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147104.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.172.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:80:70:2a:f5:1b:56:1e:de:cb:2c:21:90:36:25:45:7a:71: c2:81:8e:1d:ad:6f:76:55:cf:2a:ab:d3:46:d1:6c:51:1d:db: 63:1c:71:2d:22:1f:52:be:17:24:76:4e:fc:b7:a3:c9:8b:d5: 27:a3:29:d1:47:58:7c:33:4c:a0:94:6a:fd:7d:47:ab:98:9c: 0a:97:dd:4c:34:ce:73:a4:19:63:c3:b2:79:7c:8c:ec:bc:ad: 55:a5:4b:7c:70:e1:00:b3:5d:7a:ff:e8:13:d0:c2:5e:af:35: ad:98:e5:01:df:fc:6c:4c:f9:56:f9:0e:79:14:41:b0:e5:a0: 10:1f:15:61:80:e6:74:ef:56:41:ba:b2:cf:3a:49:33:95:ae: 11:b4:3f:44:04:aa:a0:36:b4:66:0c:f9:74:c1:25:51:35:88: 4a:3e:90:86:b2:4a:fd:bc:1f:dd:e8:a6:e6:f0:40:91:3c:2b: d5:8a:c1:f1:0f:38:56:2b:c8:f6:73:69:a9:f6:2a:e5:96:a5: bb:4a:1f:3d:a9:9a:0f:2d:a6:bd:57:bf:d2:36:8c:3d:f8:b5: fc:62:6c:f7:59:f8:fc:49:5f:7c:cd:65:66:50:21:c0:63:17: cd:84:94:1c:1d:e1:70:d0:b7:5b:2f:be:07:85:d8:ca:84:37: 3c:60:5d:58 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTYk0s2lcfGA7KUzTDHb4GAUx3/UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEwOTAzNTUwMFoX DTI2MDEwODA0MDAwMFowMzExMC8GA1UEAxMoRDQ1RDM2MUQ0M0ZBQkIwQThERUFG OTgyQjY5RDc3Mzc4Qzc5N0Q4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKcEgp+YooL1qEZ/jDGKfD8WG1vH8yQwbzI/qzQc3ly/sx+3DWRYnFG5IcnL X5hFbXz8Sof3qBNQ7aDsoXtCJWyK0GLuGl4Cr/X1gr/gOuD8QkR+FnXCegagxwOv HXIdAeLOuA5PgN73k1odQ48PZA0nPMY4g65Z2vYUwSFQwFV/ra0uweVfskCtxoV3 t02A9+CFVAgZ+ysGL+Ph9nDhzPp+loiQkGNp3ej/to+6uWBzzpY9lzICqB2nLbcg BLOPtthNrn48q9/O/iBDNv8CMDkGN96fQ3idbwzi6p3QBW8+8OOaD+r1slocjDNW 51wwO/UukwaNy5BdG/XoRs0y24UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTUXTYd Q/q7Co3q+YK2nXc3jHl9jzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeurDANBgkqhkiG9w0BAQsFAAOCAQEAHoBwKvUbVh7eyywhkDYl RXpxwoGOHa1vdlXPKqvTRtFsUR3bYxxxLSIfUr4XJHZO/LejyYvVJ6Mp0UdYfDNM oJRq/X1Hq5icCpfdTDTOc6QZY8OyeXyM7LytVaVLfHDhALNdev/oE9DCXq81rZjl Ad/8bEz5VvkOeRRBsOWgEB8VYYDmdO9WQbqyzzpJM5WuEbQ/RASqoDa0Zgz5dMEl UTWISj6QhrJK/bwf3eim5vBAkTwr1YrB8Q84VivI9nNpqfYq5Zalu0ofPamaDy2m vVe/0jaMPfi1/GJs91n4/ElffM1lZlAhwGMXzYSUHB3hcNC3Wy++B4XYyoQ3PGBd WA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:03 2025 by rpki-client