$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147106.roa File: AS147106.roa (raw, json) Hash identifier: SsZ0XK0C17pZMu+F8PniOpMbFDO0JrSyFismBxJnLUY= Subject key identifier: E2:B9:30:D5:2B:D1:3E:F9:FD:80:E0:29:79:29:E1:94:24:90:35:E7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3A7791C0A24BDE6C757396AE4AB75F2C46B4DE26 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147106.roa Signing time: Tue 09 Jan 2024 04:00:30 +0000 ROA not before: Tue 09 Jan 2024 03:55:30 +0000 ROA not after: Tue 07 Jan 2025 04:00:30 +0000 asID: 147106 IP address blocks: 103.174.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:77:91:c0:a2:4b:de:6c:75:73:96:ae:4a:b7:5f:2c:46:b4:de:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:30 2024 GMT Not After : Jan 7 04:00:30 2025 GMT Subject: CN=E2B930D52BD13EF9FD80E0297929E194249035E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0e:54:19:4b:3b:3f:41:94:6e:8a:8f:55:d5: dc:5a:fe:f9:18:05:aa:74:d7:83:f9:05:8b:57:6e: eb:49:5c:29:b4:24:21:bc:6d:b9:c0:49:39:34:02: ea:de:d0:3b:0a:3c:92:50:dd:e8:f1:61:6d:b8:29: c9:76:e3:37:e7:fe:ae:56:67:71:82:ea:a9:eb:38: 66:50:a0:1f:f9:61:60:f1:ca:5a:32:6e:d8:1d:b1: 82:b5:06:63:99:df:21:a1:a7:8c:7d:06:6d:dd:06: 0f:5c:ca:21:ca:2e:96:83:18:65:6f:82:39:67:21: 48:6d:0b:c3:00:b7:1c:5c:36:e8:6e:22:bb:ad:3e: 54:aa:65:97:a3:c8:d4:a7:9c:db:35:05:99:bc:41: 0a:e1:a6:8a:7f:e4:e8:7c:31:53:93:fe:cf:93:32: b7:dc:5f:91:f0:dd:19:12:17:65:b5:ac:4a:42:58: 44:e3:df:ea:e7:39:a4:8e:31:d1:59:0e:b6:eb:0d: b0:92:e9:43:2e:f3:59:14:84:fb:d2:e5:78:ee:e7: 61:5a:ad:54:9f:06:5f:3f:4c:91:de:cb:b0:67:13: 68:25:11:0e:af:d6:c3:58:d3:93:0e:08:5f:21:a7: 3a:1c:c2:88:c2:eb:4a:f3:36:b2:7d:76:2d:88:33: 85:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:B9:30:D5:2B:D1:3E:F9:FD:80:E0:29:79:29:E1:94:24:90:35:E7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147106.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.236.0/23 Signature Algorithm: sha256WithRSAEncryption 19:e7:fe:d9:fa:58:ac:2c:a0:e8:5f:6b:58:13:ce:93:85:36: 2f:a6:cc:0f:96:39:5e:92:fa:d8:16:a3:ae:bf:07:48:48:d3: 6f:6c:e6:c1:4b:bf:dd:53:fb:c8:6d:95:32:ae:d0:88:b3:63: c5:8f:78:0c:c4:47:9b:36:a4:f6:57:7a:04:e0:eb:8c:1d:7a: d0:a8:cd:5b:45:31:b2:e2:3f:46:f3:7e:8e:0f:a4:48:31:56: 49:59:98:81:74:34:7d:b7:64:07:f2:98:51:e0:27:ac:ec:6e: a7:b0:ca:56:de:70:0e:80:98:aa:5c:24:71:be:b6:8f:e1:ce: a4:50:a8:49:62:97:05:eb:4a:0e:fa:1e:a0:f8:9a:e1:74:b8: 47:a4:be:24:0a:d9:28:3c:51:35:05:49:14:94:5c:f7:7f:e1: 18:9d:58:3b:c8:16:7e:c1:f7:00:58:1e:7f:de:95:15:ad:2c: 1f:d5:9b:a3:e2:44:1f:d7:a0:1d:a9:0b:1e:24:1a:3b:20:db: ce:55:0d:dc:20:09:4b:1c:17:b3:9f:a2:de:54:84:24:86:68: bc:ec:a8:04:54:02:67:04:be:64:16:b6:d3:ba:eb:03:fd:3a: 3f:2c:b2:72:02:c2:52:be:fc:35:e3:1d:0a:da:44:3d:15:df: e3:91:c7:08 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOneRwKJL3mx1c5auSrdfLEa03iYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUzMFoX DTI1MDEwNzA0MDAzMFowMzExMC8GA1UEAxMoRTJCOTMwRDUyQkQxM0VGOUZEODBF MDI5NzkyOUUxOTQyNDkwMzVFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANcOVBlLOz9BlG6Kj1XV3Fr++RgFqnTXg/kFi1du60lcKbQkIbxtucBJOTQC 6t7QOwo8klDd6PFhbbgpyXbjN+f+rlZncYLqqes4ZlCgH/lhYPHKWjJu2B2xgrUG Y5nfIaGnjH0Gbd0GD1zKIcouloMYZW+COWchSG0LwwC3HFw26G4iu60+VKpll6PI 1Kec2zUFmbxBCuGmin/k6HwxU5P+z5Myt9xfkfDdGRIXZbWsSkJYROPf6uc5pI4x 0VkOtusNsJLpQy7zWRSE+9LleO7nYVqtVJ8GXz9Mkd7LsGcTaCURDq/Ww1jTkw4I XyGnOhzCiMLrSvM2sn12LYgzhYECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTiuTDV K9E++f2A4Cl5KeGUJJA15zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEwNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeu7DANBgkqhkiG9w0BAQsFAAOCAQEAGef+2fpYrCyg6F9rWBPO k4U2L6bMD5Y5XpL62Bajrr8HSEjTb2zmwUu/3VP7yG2VMq7QiLNjxY94DMRHmzak 9ld6BODrjB160KjNW0UxsuI/RvN+jg+kSDFWSVmYgXQ0fbdkB/KYUeAnrOxup7DK Vt5wDoCYqlwkcb62j+HOpFCoSWKXBetKDvoeoPia4XS4R6S+JArZKDxRNQVJFJRc 93/hGJ1YO8gWfsH3AFgef96VFa0sH9Wbo+JEH9egHakLHiQaOyDbzlUN3CAJSxwX s5+i3lSEJIZovOyoBFQCZwS+ZBa207rrA/06PyyycgLCUr78NeMdCtpEPRXf45HH CA== -----END CERTIFICATE-----Generated at Thu May 9 00:37:06 2024 by rpki-client on console-fra.rpki-client.org