$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147118.roa File: AS147118.roa (raw, json) Hash identifier: iSZMGxOHUJDvLOvf4IE6dEjTLvIZS+SWn0sCFwskSjk= Subject key identifier: C2:24:BB:94:84:F7:5E:C7:AB:47:BE:13:59:D3:1C:2F:C8:CD:68:FE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 172FEC92CB6448C5E881A92D79955F987769F525 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147118.roa Signing time: Wed 28 Feb 2024 03:41:15 +0000 ROA not before: Wed 28 Feb 2024 03:36:15 +0000 ROA not after: Wed 26 Feb 2025 03:41:15 +0000 asID: 147118 IP address blocks: 103.175.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:2f:ec:92:cb:64:48:c5:e8:81:a9:2d:79:95:5f:98:77:69:f5:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 28 03:36:15 2024 GMT Not After : Feb 26 03:41:15 2025 GMT Subject: CN=C224BB9484F75EC7AB47BE1359D31C2FC8CD68FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b5:f8:11:65:1a:d2:69:fa:4c:ba:89:b5:80: 03:08:c7:be:22:15:73:18:43:43:9a:55:51:da:a9: aa:fb:3d:fe:32:c7:b0:bb:8a:b5:66:5e:b7:04:c8: 61:8d:f2:68:e6:19:af:2e:f4:53:2c:25:4b:1c:5c: 79:3c:15:44:2f:ee:c1:09:f7:c4:b5:6c:bd:b8:36: 7c:61:e4:29:f1:3a:5d:9f:fd:ba:27:02:4e:67:82: 83:81:db:e4:98:72:fe:94:41:f5:28:3b:64:d6:d1: 8a:43:84:0e:03:29:6d:44:ba:4f:00:bf:12:64:a5: 30:c9:77:b4:1d:d4:68:ce:e3:10:d4:79:72:24:59: 57:9c:06:1e:f7:00:39:52:e6:29:52:b1:4e:33:36: f5:11:5f:49:98:ca:0d:21:db:c0:72:cd:e0:97:0c: 65:16:41:84:ff:77:ec:63:e9:37:e8:b0:80:ea:cd: d1:ee:cf:cb:0e:1f:0c:2d:0f:ee:73:e1:76:e6:72: d6:a3:f8:11:97:e7:d8:0d:dd:36:d9:cd:16:44:04: a6:18:9c:d5:68:61:1b:b0:e4:fe:15:f4:55:64:ef: 8a:dd:68:64:31:9f:1b:15:21:49:8d:47:b7:7b:71: a4:76:d4:18:5a:00:0e:43:e3:6c:58:57:d5:a3:1c: 64:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:24:BB:94:84:F7:5E:C7:AB:47:BE:13:59:D3:1C:2F:C8:CD:68:FE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147118.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.202.0/23 Signature Algorithm: sha256WithRSAEncryption 56:a2:4b:ec:69:74:54:26:da:a8:76:6b:a5:33:b5:8c:4f:0e: 0c:4c:60:fe:64:ca:d3:42:4e:d8:10:aa:34:98:c4:4b:0f:d0: af:d0:93:25:ae:8d:e4:58:36:24:b5:69:8e:fc:14:4f:2b:5e: 4d:0a:a1:c5:dd:a0:1d:d4:99:76:da:c9:64:90:20:44:13:33: 5b:bf:02:6f:d9:5a:8e:0e:85:ec:a9:78:83:57:88:ab:c9:8c: 88:0f:88:73:43:3d:0a:a4:b8:6e:c3:83:9d:94:5a:d1:73:7d: a2:43:e6:50:1c:4c:2d:46:50:5b:d7:91:c5:74:3c:65:0b:a0: 48:d5:08:f1:8a:13:fe:01:d9:30:c0:61:bf:22:0a:e8:e5:6b: 62:f5:e7:3a:f1:69:64:16:31:21:1a:70:b1:82:20:80:ea:35: e5:75:67:f7:f1:91:f1:e1:2c:72:c9:5d:12:b4:08:d0:81:11: 33:59:ba:aa:27:ce:0c:6f:76:84:a5:d9:ac:a1:26:1e:d3:81: 4e:02:3d:3a:e6:52:8b:d5:d1:62:5c:6d:2e:78:ef:89:88:20: f6:2c:f6:ed:3d:be:43:6e:4c:4d:c7:1a:1c:97:c9:93:66:e8: 47:58:6b:54:3b:d8:cd:75:40:87:7c:9c:d1:de:b6:19:a5:6e: 7f:13:7d:49 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFy/skstkSMXogakteZVfmHdp9SUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIyODAzMzYxNVoX DTI1MDIyNjAzNDExNVowMzExMC8GA1UEAxMoQzIyNEJCOTQ4NEY3NUVDN0FCNDdC RTEzNTlEMzFDMkZDOENENjhGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ21+BFlGtJp+ky6ibWAAwjHviIVcxhDQ5pVUdqpqvs9/jLHsLuKtWZetwTI YY3yaOYZry70UywlSxxceTwVRC/uwQn3xLVsvbg2fGHkKfE6XZ/9uicCTmeCg4Hb 5Jhy/pRB9Sg7ZNbRikOEDgMpbUS6TwC/EmSlMMl3tB3UaM7jENR5ciRZV5wGHvcA OVLmKVKxTjM29RFfSZjKDSHbwHLN4JcMZRZBhP937GPpN+iwgOrN0e7Pyw4fDC0P 7nPhduZy1qP4EZfn2A3dNtnNFkQEphic1WhhG7Dk/hX0VWTvit1oZDGfGxUhSY1H t3txpHbUGFoADkPjbFhX1aMcZC0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTCJLuU hPdex6tHvhNZ0xwvyM1o/jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzExOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWevyjANBgkqhkiG9w0BAQsFAAOCAQEAVqJL7Gl0VCbaqHZrpTO1 jE8ODExg/mTK00JO2BCqNJjESw/Qr9CTJa6N5Fg2JLVpjvwUTyteTQqhxd2gHdSZ dtrJZJAgRBMzW78Cb9lajg6F7Kl4g1eIq8mMiA+Ic0M9CqS4bsODnZRa0XN9okPm UBxMLUZQW9eRxXQ8ZQugSNUI8YoT/gHZMMBhvyIK6OVrYvXnOvFpZBYxIRpwsYIg gOo15XVn9/GR8eEscsldErQI0IERM1m6qifODG92hKXZrKEmHtOBTgI9OuZSi9XR YlxtLnjviYgg9iz27T2+Q25MTccaHJfJk2boR1hrVDvYzXVAh3yc0d62GaVufxN9 SQ== -----END CERTIFICATE-----Generated at Wed May 8 10:06:53 2024 by rpki-client on console-ams.rpki-client.org