$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147106.roa File: AS147106.roa (raw, json) Hash identifier: YRe2lY+uJZjjp0Vfyz0IeCudiFXH4quZf/Ese1l278s= Subject key identifier: AA:86:FA:7E:1E:8F:FA:C6:9A:65:24:44:8A:EF:E6:84:98:89:4F:DC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 51CFEF05C1D73B2E571F75179B6BAE22A2678059 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147106.roa Signing time: Fri 09 Aug 2024 02:53:58 +0000 ROA not before: Fri 09 Aug 2024 02:48:58 +0000 ROA not after: Fri 08 Aug 2025 02:53:58 +0000 asID: 147106 IP address blocks: 103.174.236.0/23 maxlen: 24 2401:1fa0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:cf:ef:05:c1:d7:3b:2e:57:1f:75:17:9b:6b:ae:22:a2:67:80:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 9 02:48:58 2024 GMT Not After : Aug 8 02:53:58 2025 GMT Subject: CN=AA86FA7E1E8FFAC69A6524448AEFE68498894FDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:65:95:0a:20:35:62:b5:28:a2:f1:74:f4:c8: 4a:98:6d:8e:48:46:40:ed:47:e5:73:32:b0:08:1f: 89:5d:a6:e4:4e:8a:45:47:d7:73:e5:77:a9:d0:f0: fa:9a:10:7b:f2:b7:8b:4e:0c:7b:b1:3f:27:73:cc: ea:02:c9:f0:7f:e6:17:2b:b8:11:10:c1:7c:4b:9f: 0c:5c:23:f8:56:39:40:21:45:57:2d:4f:15:f2:de: 5e:55:4c:13:4d:85:31:3d:66:2b:51:0b:70:51:5e: 83:12:c4:39:56:69:0c:89:ef:a2:e1:1e:36:6d:80: 99:a4:c7:5e:6f:3f:f7:ea:43:d3:93:86:ce:15:ae: 83:88:63:e5:34:a0:13:93:87:f9:b2:fb:22:af:f1: e4:33:53:f1:77:2d:93:13:ee:97:24:f5:14:f9:e6: 11:8a:db:69:0d:35:42:55:eb:46:9f:09:bf:cd:a2: 4e:a1:95:42:0c:d1:4f:c4:0c:c7:5b:6e:17:00:a9: 85:17:8c:a5:62:46:df:7a:29:47:85:c8:2d:d3:bd: f7:d0:75:9e:9d:ea:6f:96:34:19:db:57:c3:75:20: c6:59:7c:f1:5d:5e:76:6a:8c:43:cd:86:51:66:f5: 40:a3:8a:e7:45:c6:35:34:67:a8:16:7f:a4:e2:32: b6:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:86:FA:7E:1E:8F:FA:C6:9A:65:24:44:8A:EF:E6:84:98:89:4F:DC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147106.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.236.0/23 IPv6: 2401:1fa0::/32 Signature Algorithm: sha256WithRSAEncryption 8b:74:3e:3c:df:1a:75:5c:75:04:81:25:cc:92:4a:94:5c:fa: 15:e9:ee:fe:6c:da:1c:6d:c0:d4:18:f6:7b:82:21:5e:cb:6a: ab:cf:35:b6:6e:2e:df:ed:0a:e8:88:9c:d7:b6:b5:69:67:3e: 01:dd:fc:0f:37:25:19:b6:7b:69:a6:46:f3:da:08:d2:25:d7: 3f:21:45:8f:fd:c6:85:63:e5:df:52:ba:df:dd:76:f2:f1:72: 5a:03:2e:ed:5d:c5:23:93:19:d2:5a:fa:60:c2:2e:bf:68:df: 60:32:d9:a1:19:92:ae:c8:26:49:ac:ba:63:d0:36:a6:47:54: 38:74:64:66:90:33:e4:ff:6a:93:2f:3d:23:fd:dc:93:ad:fe: cc:f4:aa:a5:84:6d:61:c2:bd:10:e3:b9:6c:91:d2:6b:c9:69: e9:d8:c3:f4:e3:5c:25:49:79:51:c8:d8:a6:25:7c:01:e5:26: 5a:39:be:07:d6:46:c6:72:a6:50:53:29:6b:7b:97:fe:22:f9: 8f:c1:85:a7:f7:34:a4:11:6c:28:72:6b:28:aa:ed:3a:cb:66: 28:c3:f0:ba:17:4c:1e:00:77:0b:10:20:1d:f1:7a:e7:fa:1d: 66:4d:c7:e6:de:9a:f4:97:74:96:63:c0:94:19:33:cd:df:62: 79:ae:e9:d3 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUUc/vBcHXOy5XH3UXm2uuIqJngFkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwOTAyNDg1OFoX DTI1MDgwODAyNTM1OFowMzExMC8GA1UEAxMoQUE4NkZBN0UxRThGRkFDNjlBNjUy NDQ0OEFFRkU2ODQ5ODg5NEZEQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOpllQogNWK1KKLxdPTISphtjkhGQO1H5XMysAgfiV2m5E6KRUfXc+V3qdDw +poQe/K3i04Me7E/J3PM6gLJ8H/mFyu4ERDBfEufDFwj+FY5QCFFVy1PFfLeXlVM E02FMT1mK1ELcFFegxLEOVZpDInvouEeNm2AmaTHXm8/9+pD05OGzhWug4hj5TSg E5OH+bL7Iq/x5DNT8XctkxPulyT1FPnmEYrbaQ01QlXrRp8Jv82iTqGVQgzRT8QM x1tuFwCphReMpWJG33opR4XILdO999B1np3qb5Y0GdtXw3Ugxll88V1edmqMQ82G UWb1QKOK50XGNTRnqBZ/pOIytjkCAwEAAaOCAd8wggHbMB0GA1UdDgQWBBSqhvp+ Ho/6xpplJESK7+aEmIlP3DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEwNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWeu7DANBAIAAjAHAwUAJAEfoDANBgkqhkiG9w0BAQsFAAOCAQEA i3Q+PN8adVx1BIElzJJKlFz6Fenu/mzaHG3A1Bj2e4IhXstqq881tm4u3+0K6Iic 17a1aWc+Ad38DzclGbZ7aaZG89oI0iXXPyFFj/3GhWPl31K639128vFyWgMu7V3F I5MZ0lr6YMIuv2jfYDLZoRmSrsgmSay6Y9A2pkdUOHRkZpAz5P9qky89I/3ck63+ zPSqpYRtYcK9EOO5bJHSa8lp6djD9ONcJUl5UcjYpiV8AeUmWjm+B9ZGxnKmUFMp a3uX/iL5j8GFp/c0pBFsKHJrKKrtOstmKMPwuhdMHgB3CxAgHfF65/odZk3H5t6a 9Jd0lmPAlBkzzd9iea7p0w== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:48 2024 by rpki-client on console-ams.rpki-client.org