$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147113.roa File: AS147113.roa (raw, json) Hash identifier: BBVhVt5Nc1OAkhhYMPeqvZSVMztnuwHSvHQz18S8S6k= Subject key identifier: 90:E6:7B:8F:4A:A1:E6:DA:66:FA:5E:E0:13:8E:EF:08:B1:54:FD:D0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 25308D7414E8EF08FD1395FFBBB2BCA276ACE7B6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147113.roa Signing time: Mon 01 Jan 2024 05:00:00 +0000 ROA not before: Mon 01 Jan 2024 04:55:00 +0000 ROA not after: Mon 30 Dec 2024 05:00:00 +0000 asID: 147113 IP address blocks: 103.173.72.0/24 maxlen: 24 103.177.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:30:8d:74:14:e8:ef:08:fd:13:95:ff:bb:b2:bc:a2:76:ac:e7:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 1 04:55:00 2024 GMT Not After : Dec 30 05:00:00 2024 GMT Subject: CN=90E67B8F4AA1E6DA66FA5EE0138EEF08B154FDD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:fc:39:62:09:64:61:ae:a6:88:2c:71:93:6c: 10:b9:1b:fe:1f:9d:a6:90:5a:5b:d4:63:ae:05:9b: c8:4e:df:fd:78:dd:6a:c6:07:c5:4b:c7:e4:2e:c2: 98:ce:87:eb:f6:43:fc:53:da:28:c1:bb:5a:2b:a2: 31:b2:bd:53:63:a3:ad:84:48:3f:25:36:33:eb:65: 2c:33:13:31:f1:71:4a:8f:87:8c:48:75:64:a9:88: 91:51:56:80:23:24:2b:f7:87:06:e9:77:7a:e9:57: 14:8b:5f:24:12:17:c7:b6:d5:c4:94:f0:61:41:3a: 45:5d:c9:6c:17:23:93:70:63:43:50:0d:c5:ac:50: 70:24:df:6a:d9:26:4c:3e:4e:f7:f6:08:2a:0c:97: f1:49:44:d2:de:4e:d8:d8:4f:ba:6f:69:b3:57:4d: 0e:36:19:1f:dc:8f:6a:ac:a3:e4:db:55:34:51:a6: 9f:a9:38:3c:7f:49:d0:1e:6e:ee:4b:91:cd:2c:be: 4e:43:8e:75:88:f6:fb:4f:3b:f6:18:52:d0:5b:ae: ff:3e:92:d0:3b:78:71:2b:be:cb:18:82:2e:ff:ed: 61:4f:0e:55:ca:04:77:a1:e9:2f:f5:16:1f:b7:34: 16:ba:37:d5:d0:38:20:d1:2b:71:89:cd:09:08:23: 55:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:E6:7B:8F:4A:A1:E6:DA:66:FA:5E:E0:13:8E:EF:08:B1:54:FD:D0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147113.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.72.0/24 103.177.199.0/24 Signature Algorithm: sha256WithRSAEncryption 09:3f:c7:3e:20:ac:13:b5:46:05:14:a4:de:7b:81:0e:cb:6b: 9a:ab:cf:27:ba:fd:64:cd:ca:90:b3:2e:6a:bf:11:03:4a:0f: c3:74:02:ea:cf:30:93:ca:41:e1:b5:ec:78:38:12:8c:34:08: df:6f:1c:70:69:9e:66:af:ac:ba:f1:80:66:f4:63:4c:d5:40: 31:40:41:b4:86:a7:04:e3:b1:c7:0f:89:99:98:96:be:6c:48: 6f:d6:10:8d:4d:45:72:2b:9e:ec:40:04:1e:c7:fc:f9:ea:31: 40:c3:c6:36:e1:d1:46:9d:d9:15:0f:4a:2d:32:55:aa:c6:3f: 40:33:c8:da:f7:10:9f:61:b7:ac:d0:42:7e:a3:0c:6e:97:f4: 6e:59:eb:79:ab:38:e6:ea:3b:23:5b:de:74:e1:9f:9c:6a:72: a1:39:89:49:94:87:a6:46:95:aa:39:94:79:42:31:b9:44:c7: 54:76:22:96:37:62:b7:62:f7:8c:2d:5a:4d:e5:33:25:2d:0f: e6:52:03:29:17:58:c2:04:8c:15:42:d8:1a:ad:92:41:38:6b: 47:cc:b8:25:07:7b:29:8e:f0:60:1d:0b:d9:89:a8:8e:a6:9f: c1:cc:90:40:de:fe:42:8e:68:a6:87:bd:65:da:33:79:67:6a: b6:36:a0:ca -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUJTCNdBTo7wj9E5X/u7K8onas57YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwMTA0NTUwMFoX DTI0MTIzMDA1MDAwMFowMzExMC8GA1UEAxMoOTBFNjdCOEY0QUExRTZEQTY2RkE1 RUUwMTM4RUVGMDhCMTU0RkREMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOf8OWIJZGGupogscZNsELkb/h+dppBaW9RjrgWbyE7f/XjdasYHxUvH5C7C mM6H6/ZD/FPaKMG7WiuiMbK9U2OjrYRIPyU2M+tlLDMTMfFxSo+HjEh1ZKmIkVFW gCMkK/eHBul3eulXFItfJBIXx7bVxJTwYUE6RV3JbBcjk3BjQ1ANxaxQcCTfatkm TD5O9/YIKgyX8UlE0t5O2NhPum9ps1dNDjYZH9yPaqyj5NtVNFGmn6k4PH9J0B5u 7kuRzSy+TkOOdYj2+0879hhS0Fuu/z6S0Dt4cSu+yxiCLv/tYU8OVcoEd6HpL/UW H7c0Fro31dA4INErcYnNCQgjVZsCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBSQ5nuP SqHm2mb6XuATju8IsVT90DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzExMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGetSAMEAGexxzANBgkqhkiG9w0BAQsFAAOCAQEACT/HPiCsE7VG BRSk3nuBDstrmqvPJ7r9ZM3KkLMuar8RA0oPw3QC6s8wk8pB4bXseDgSjDQI328c cGmeZq+suvGAZvRjTNVAMUBBtIanBOOxxw+JmZiWvmxIb9YQjU1Fciue7EAEHsf8 +eoxQMPGNuHRRp3ZFQ9KLTJVqsY/QDPI2vcQn2G3rNBCfqMMbpf0blnreas45uo7 I1vedOGfnGpyoTmJSZSHpkaVqjmUeUIxuUTHVHYiljdit2L3jC1aTeUzJS0P5lID KRdYwgSMFULYGq2SQThrR8y4JQd7KY7wYB0L2YmojqafwcyQQN7+Qo5opoe9Zdoz eWdqtjagyg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:26 2024 by rpki-client on console-fra.rpki-client.org