$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147109.roa File: AS147109.roa (raw, json) Hash identifier: dhD4MCqTEOLWJl9MjdJFBoZ3VSu+V8K+1xY2aH1HYi4= Subject key identifier: 3C:8B:75:22:52:ED:B5:B8:12:83:9B:64:33:1E:57:1B:86:67:54:28 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2CFC360A99E9F4B00D4ED9DE635F2226CAA92340 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147109.roa Signing time: Tue 09 Jan 2024 04:00:17 +0000 ROA not before: Tue 09 Jan 2024 03:55:17 +0000 ROA not after: Tue 07 Jan 2025 04:00:17 +0000 asID: 147109 IP address blocks: 103.175.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:fc:36:0a:99:e9:f4:b0:0d:4e:d9:de:63:5f:22:26:ca:a9:23:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:17 2024 GMT Not After : Jan 7 04:00:17 2025 GMT Subject: CN=3C8B752252EDB5B812839B64331E571B86675428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e7:1a:da:9e:f9:43:40:92:85:8a:c3:aa:e1: 19:b3:07:ce:4e:33:06:0d:28:47:95:d7:df:69:b5: 6b:0d:bc:09:43:7b:65:f5:21:93:d7:4c:ab:63:d0: 2f:3a:64:74:ed:56:3b:93:a3:6d:6e:b0:57:1e:d6: ee:90:8f:c9:36:fd:3e:1c:06:05:6b:79:ef:da:65: a2:aa:d7:e8:f6:37:3b:1e:96:7c:dd:18:cf:35:0f: 15:d9:35:e5:ca:93:a8:ba:7c:c4:ba:0c:8f:6b:b4: ca:4c:6f:29:4c:2d:5a:0c:a3:3a:ea:c9:a9:fe:d5: 33:b6:ec:14:4c:4c:4f:2c:f6:71:40:04:c7:09:f9: 31:78:a8:1d:61:c5:91:fa:fa:6c:d4:48:54:a9:4b: 3a:b1:07:9a:0e:ee:83:3e:d5:a0:e8:30:d3:29:3d: dc:aa:b2:91:64:67:12:f9:4b:8a:60:e6:ba:51:08: 73:e0:0f:6d:47:1f:dd:91:4f:b9:0f:1d:0e:d4:91: d3:65:87:7c:21:8b:ad:d3:8b:39:73:fc:2d:48:d3: ac:b3:00:6e:42:53:64:ad:3c:23:e0:ac:ff:0a:b3: 26:88:12:61:61:18:b7:62:f4:05:1b:d2:a3:d5:4d: 71:36:d0:20:00:35:be:6b:77:b0:de:d3:87:34:04: 82:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:8B:75:22:52:ED:B5:B8:12:83:9B:64:33:1E:57:1B:86:67:54:28 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147109.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.46.0/23 Signature Algorithm: sha256WithRSAEncryption 92:94:6e:0c:8c:5f:d6:25:d5:40:d5:15:4e:48:b3:12:59:80: c6:ae:c9:69:f5:19:d0:ee:85:94:51:18:bd:ff:a1:5d:36:b3: d5:09:f9:90:7b:7f:1e:81:1f:09:fe:41:e4:f8:05:7e:71:3c: 89:58:d4:19:32:51:26:26:c2:7d:f4:a0:b5:bd:1f:32:77:7d: e8:72:a8:06:63:f5:f6:bb:ef:00:31:a4:87:0d:88:1a:80:6e: 2c:d9:20:e8:1b:30:4d:22:a0:4e:b1:fc:1e:c8:cc:c4:7a:0a: 72:17:01:4d:8f:d0:5b:4f:2d:4f:69:39:2f:1a:99:8c:2c:2d: e9:32:66:ed:2e:b2:b1:ce:cc:1f:09:c9:67:34:7e:3b:99:0a: 9a:bf:2a:76:b1:1a:c7:bf:7b:4a:90:7c:6f:ba:e3:36:df:f1: 47:e9:08:97:1c:3d:7a:56:11:f1:a6:e6:98:6a:2b:ba:2d:b1: f2:0b:3e:7b:04:c7:bf:10:ce:dd:5b:cd:a4:91:ca:c5:29:32: e9:0d:28:0d:50:23:71:85:fe:00:65:6c:98:20:9d:ec:34:68: 22:a3:5a:e7:5c:b8:0a:41:2d:dc:40:f0:35:2f:db:78:c9:9f: 63:13:62:9a:d2:45:2a:7b:a9:86:8f:d3:6c:a2:6a:a6:87:8e: 47:f8:84:73 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULPw2Cpnp9LANTtneY18iJsqpI0AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxN1oX DTI1MDEwNzA0MDAxN1owMzExMC8GA1UEAxMoM0M4Qjc1MjI1MkVEQjVCODEyODM5 QjY0MzMxRTU3MUI4NjY3NTQyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKnnGtqe+UNAkoWKw6rhGbMHzk4zBg0oR5XX32m1aw28CUN7ZfUhk9dMq2PQ LzpkdO1WO5OjbW6wVx7W7pCPyTb9PhwGBWt579ploqrX6PY3Ox6WfN0YzzUPFdk1 5cqTqLp8xLoMj2u0ykxvKUwtWgyjOurJqf7VM7bsFExMTyz2cUAExwn5MXioHWHF kfr6bNRIVKlLOrEHmg7ugz7VoOgw0yk93KqykWRnEvlLimDmulEIc+APbUcf3ZFP uQ8dDtSR02WHfCGLrdOLOXP8LUjTrLMAbkJTZK08I+Cs/wqzJogSYWEYt2L0BRvS o9VNcTbQIAA1vmt3sN7ThzQEgikCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ8i3Ui Uu21uBKDm2QzHlcbhmdUKDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEwOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWevLjANBgkqhkiG9w0BAQsFAAOCAQEAkpRuDIxf1iXVQNUVTkiz ElmAxq7JafUZ0O6FlFEYvf+hXTaz1Qn5kHt/HoEfCf5B5PgFfnE8iVjUGTJRJibC ffSgtb0fMnd96HKoBmP19rvvADGkhw2IGoBuLNkg6BswTSKgTrH8HsjMxHoKchcB TY/QW08tT2k5LxqZjCwt6TJm7S6ysc7MHwnJZzR+O5kKmr8qdrEax797SpB8b7rj Nt/xR+kIlxw9elYR8abmmGorui2x8gs+ewTHvxDO3VvNpJHKxSky6Q0oDVAjcYX+ AGVsmCCd7DRoIqNa51y4CkEt3EDwNS/beMmfYxNimtJFKnupho/TbKJqpoeOR/iE cw== -----END CERTIFICATE-----Generated at Wed May 8 09:50:38 2024 by rpki-client on console-fra.rpki-client.org