$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147113.roa File: AS147113.roa (raw, json) Hash identifier: v510gtqtrqfl3BQo2aPFIabMpbzk/PLmbUys5GGKhTA= Subject key identifier: 35:A7:BC:79:B8:0B:CB:94:5F:46:99:2F:D6:F8:6E:43:08:E7:48:C2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0B30E32BABEC0B9A1DD8065AE7C6214B6560C3E2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147113.roa Signing time: Mon 02 Dec 2024 05:00:00 +0000 ROA not before: Mon 02 Dec 2024 04:55:00 +0000 ROA not after: Mon 01 Dec 2025 05:00:00 +0000 asID: 147113 IP address blocks: 103.173.72.0/24 maxlen: 24 103.177.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:30:e3:2b:ab:ec:0b:9a:1d:d8:06:5a:e7:c6:21:4b:65:60:c3:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 2 04:55:00 2024 GMT Not After : Dec 1 05:00:00 2025 GMT Subject: CN=35A7BC79B80BCB945F46992FD6F86E4308E748C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:53:6b:f1:94:7a:ab:03:d9:7c:b4:44:09:34: df:e9:85:c5:0a:25:71:d1:55:28:db:03:e7:30:af: 57:2c:1c:61:48:db:e8:5b:73:73:89:00:20:a6:4b: 93:07:31:36:b3:4e:5e:ac:39:bd:d1:20:3c:03:3b: b9:3a:e1:59:d5:08:da:9c:cb:4e:85:b7:99:48:e4: 74:5c:24:24:09:ba:52:c2:76:6c:c0:83:de:c7:0c: 22:0a:78:fe:3b:37:e2:5e:8a:8f:21:0e:b0:fa:95: 39:5f:bb:13:b5:22:8a:2e:ab:de:91:80:18:fe:40: 2d:bd:2d:e8:a6:04:06:e1:83:c8:fc:5f:9b:23:6b: 74:06:d8:39:5e:07:21:10:66:f3:cf:5f:ae:42:74: 34:48:1f:7a:93:45:c8:8a:d1:8d:a9:ac:ac:5f:7b: c4:0d:72:41:33:6e:73:67:0d:3d:cd:a1:13:6c:a1: 59:22:0a:3d:fc:85:8c:f2:54:1d:ea:f9:7e:31:11: d4:b9:b2:b1:3a:e7:e1:4c:bb:fc:ac:a3:0c:9f:61: de:85:a7:99:94:67:84:7a:16:12:70:2e:50:ed:f9: dd:99:af:0a:cc:1e:6d:91:3a:e4:8a:f9:ac:46:67: b8:2a:e7:f2:63:e0:e7:51:7c:f8:20:d1:d7:76:16: 5c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:A7:BC:79:B8:0B:CB:94:5F:46:99:2F:D6:F8:6E:43:08:E7:48:C2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147113.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.72.0/24 103.177.199.0/24 Signature Algorithm: sha256WithRSAEncryption 56:01:07:2c:77:27:04:bf:d9:48:9c:01:29:87:e6:f4:31:54: f4:ea:f0:71:bc:1e:fd:0b:42:f5:96:6b:ab:f2:ba:ab:7c:d3: c3:ac:ec:9e:bc:90:10:af:02:96:70:e6:c8:e5:40:dd:b8:db: bc:c0:87:ea:89:eb:d5:0c:cc:45:87:6b:5b:db:67:49:0c:84: 12:e3:63:0b:09:39:0e:66:12:6f:66:62:f3:00:98:f7:77:86: 2d:88:2f:7c:c3:d9:32:64:2e:6f:08:b2:b1:ac:fd:c5:31:a6: 07:19:3e:15:ec:ba:78:bd:59:a0:6b:00:8a:ba:a4:de:1c:b4: d2:c8:21:18:d3:20:6b:8c:f8:e3:5b:e4:32:6f:ad:57:1b:aa: c1:03:57:a0:82:47:ff:f6:3b:f2:b9:43:6c:ba:29:d1:b4:c1: a2:df:2b:ab:61:d3:ed:e4:aa:ac:af:3a:2a:65:2c:8f:1b:bf: 1d:85:4e:13:c7:7d:b8:bf:07:82:65:cb:d6:67:a8:d4:54:a2: 14:13:e3:52:52:33:7a:34:02:09:84:32:b0:3d:c6:e7:6c:55: ed:04:e0:f0:4c:8a:db:c2:21:ed:50:77:07:7a:85:0c:b8:86: 9f:98:50:24:f3:bc:1d:a0:fd:5f:fb:e5:48:85:63:22:fb:e3: a1:08:f6:3d -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUCzDjK6vsC5od2AZa58YhS2Vgw+IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwMjA0NTUwMFoX DTI1MTIwMTA1MDAwMFowMzExMC8GA1UEAxMoMzVBN0JDNzlCODBCQ0I5NDVGNDY5 OTJGRDZGODZFNDMwOEU3NDhDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALRTa/GUeqsD2Xy0RAk03+mFxQolcdFVKNsD5zCvVywcYUjb6Ftzc4kAIKZL kwcxNrNOXqw5vdEgPAM7uTrhWdUI2pzLToW3mUjkdFwkJAm6UsJ2bMCD3scMIgp4 /js34l6KjyEOsPqVOV+7E7Uiii6r3pGAGP5ALb0t6KYEBuGDyPxfmyNrdAbYOV4H IRBm889frkJ0NEgfepNFyIrRjamsrF97xA1yQTNuc2cNPc2hE2yhWSIKPfyFjPJU Her5fjER1LmysTrn4Uy7/KyjDJ9h3oWnmZRnhHoWEnAuUO353ZmvCswebZE65Ir5 rEZnuCrn8mPg51F8+CDR13YWXJkCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQ1p7x5 uAvLlF9GmS/W+G5DCOdIwjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzExMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGetSAMEAGexxzANBgkqhkiG9w0BAQsFAAOCAQEAVgEHLHcnBL/Z SJwBKYfm9DFU9Orwcbwe/QtC9ZZrq/K6q3zTw6zsnryQEK8ClnDmyOVA3bjbvMCH 6onr1QzMRYdrW9tnSQyEEuNjCwk5DmYSb2Zi8wCY93eGLYgvfMPZMmQubwiysaz9 xTGmBxk+Fey6eL1ZoGsAirqk3hy00sghGNMga4z441vkMm+tVxuqwQNXoIJH//Y7 8rlDbLop0bTBot8rq2HT7eSqrK86KmUsjxu/HYVOE8d9uL8HgmXL1meo1FSiFBPj UlIzejQCCYQysD3G52xV7QTg8EyK28Ih7VB3B3qFDLiGn5hQJPO8HaD9X/vlSIVj IvvjoQj2PQ== -----END CERTIFICATE-----Generated at Sat Apr 5 08:32:11 2025 by rpki-client