$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147109.roa File: AS147109.roa (raw, json) Hash identifier: QcYPcxs6ZplZ1EtJu3pfZD6fKnUwZCcf6LDTgq2jXoA= Subject key identifier: 1A:B9:2B:44:9A:16:0B:E6:CC:BD:F7:52:0F:D4:70:E2:38:AD:79:F5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 52C5B71D2267E55B4D8AA1430C3DB8AC4698AB23 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147109.roa Signing time: Tue 10 Dec 2024 05:00:13 +0000 ROA not before: Tue 10 Dec 2024 04:55:13 +0000 ROA not after: Tue 09 Dec 2025 05:00:13 +0000 asID: 147109 IP address blocks: 103.175.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:c5:b7:1d:22:67:e5:5b:4d:8a:a1:43:0c:3d:b8:ac:46:98:ab:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:13 2024 GMT Not After : Dec 9 05:00:13 2025 GMT Subject: CN=1AB92B449A160BE6CCBDF7520FD470E238AD79F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:39:8c:93:d8:c6:72:8f:d8:6f:f0:9c:d0:ca: 68:da:b1:a9:5b:93:0b:da:38:da:ef:08:2c:7d:dc: 43:87:c8:fd:30:85:85:e4:e7:d4:1d:40:c9:39:29: 78:6a:87:46:8b:23:8f:60:49:a2:42:97:8f:97:e3: 9b:d3:97:ab:27:4a:97:48:54:ff:08:e4:63:96:e3: fa:4d:ed:55:fd:39:06:bd:43:92:03:8b:f4:f0:53: eb:6b:d4:04:c1:06:c5:6b:ea:3b:d8:64:e5:73:73: a4:2c:6f:21:cf:73:d3:ec:51:e0:e6:80:bb:2d:83: 01:dc:b6:34:51:29:34:35:6b:1c:bf:6d:64:3c:a8: f5:cb:b9:94:a2:23:59:51:e0:44:5e:30:88:23:fb: fd:a6:ad:c3:70:87:87:08:ad:b4:27:bf:33:1f:52: 88:a3:2e:01:70:ab:ed:88:89:1b:bf:84:43:8c:33: 4b:75:db:d5:7c:79:44:5a:e4:fd:63:67:79:01:e7: 7e:5b:80:1d:8f:8b:d0:c8:12:67:a3:55:30:7d:45: 43:a4:b9:4f:9a:fc:bd:ac:62:7d:eb:b6:3b:f6:d3: 27:cc:01:bb:14:2a:22:37:28:b3:8b:a8:f9:56:93: d2:9b:09:0c:28:71:cf:dc:ef:25:6a:50:98:03:4b: 40:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:B9:2B:44:9A:16:0B:E6:CC:BD:F7:52:0F:D4:70:E2:38:AD:79:F5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147109.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.46.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:83:05:c3:61:db:fe:14:a9:bf:99:b4:64:74:98:00:23:af: 53:7a:28:a5:7b:41:d2:8c:f7:89:d1:1f:c6:7a:dd:13:d1:fe: d6:1c:b5:8f:f6:86:9b:b3:f8:75:20:cb:44:a2:23:c8:01:c6: 77:2a:7e:2a:ca:e3:9e:30:8a:3a:76:69:18:35:b1:34:7c:7c: db:df:9a:06:04:80:d3:35:6b:05:37:16:12:c5:e6:3f:a3:96: b3:83:2e:d1:c7:fa:b3:da:ea:51:31:4e:db:31:0b:0f:d6:fb: 9c:52:d4:17:3a:fb:2d:f3:68:46:4f:62:15:5c:9c:ba:61:1f: c3:7e:b9:1e:99:a5:7d:55:7c:38:da:7b:0c:98:df:bf:91:66: ca:ef:a9:4c:fb:77:ea:65:9c:44:4f:94:83:e4:42:c6:cc:29: ce:8a:10:02:3b:0c:ee:86:91:13:3e:b7:f5:37:ef:aa:e0:52: 45:f6:6f:ed:2b:a4:00:3a:cd:54:42:a6:2d:b2:be:37:1f:0a: b6:da:0c:59:72:71:06:2a:26:20:09:d8:19:7c:81:5a:c2:7d: 4a:cc:3d:21:d6:7c:b9:ab:b8:7f:0d:fe:76:2f:b0:4b:11:e0: 7d:45:a5:09:70:37:36:f2:0b:09:29:df:a5:a5:74:ca:a1:64: 37:97:18:87 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUsW3HSJn5VtNiqFDDD24rEaYqyMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxM1oX DTI1MTIwOTA1MDAxM1owMzExMC8GA1UEAxMoMUFCOTJCNDQ5QTE2MEJFNkNDQkRG NzUyMEZENDcwRTIzOEFENzlGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOc5jJPYxnKP2G/wnNDKaNqxqVuTC9o42u8ILH3cQ4fI/TCFheTn1B1AyTkp eGqHRosjj2BJokKXj5fjm9OXqydKl0hU/wjkY5bj+k3tVf05Br1DkgOL9PBT62vU BMEGxWvqO9hk5XNzpCxvIc9z0+xR4OaAuy2DAdy2NFEpNDVrHL9tZDyo9cu5lKIj WVHgRF4wiCP7/aatw3CHhwittCe/Mx9SiKMuAXCr7YiJG7+EQ4wzS3Xb1Xx5RFrk /WNneQHnfluAHY+L0MgSZ6NVMH1FQ6S5T5r8vaxifeu2O/bTJ8wBuxQqIjcos4uo +VaT0psJDChxz9zvJWpQmANLQIsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQauStE mhYL5sy991IP1HDiOK159TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEwOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWevLjANBgkqhkiG9w0BAQsFAAOCAQEAOoMFw2Hb/hSpv5m0ZHSY ACOvU3oopXtB0oz3idEfxnrdE9H+1hy1j/aGm7P4dSDLRKIjyAHGdyp+KsrjnjCK OnZpGDWxNHx829+aBgSA0zVrBTcWEsXmP6OWs4Mu0cf6s9rqUTFO2zELD9b7nFLU Fzr7LfNoRk9iFVycumEfw365HpmlfVV8ONp7DJjfv5Fmyu+pTPt36mWcRE+Ug+RC xswpzooQAjsM7oaREz639TfvquBSRfZv7SukADrNVEKmLbK+Nx8KttoMWXJxBiom IAnYGXyBWsJ9Ssw9IdZ8uau4fw3+di+wSxHgfUWlCXA3NvILCSnfpaV0yqFkN5cY hw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:08 2025 by rpki-client