$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147118.roa File: AS147118.roa (raw, json) Hash identifier: UBp/yXuZ5XiZZs/nvisCmiSse0OJ32DcVnhqe4Noo5g= Subject key identifier: F6:AD:95:90:03:B7:BE:7B:8F:98:8F:A5:8F:D1:37:0C:DF:CF:83:9B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 26A78BA5A862F9A75A1D07C9F303AE062FB1CA79 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147118.roa Signing time: Wed 29 Jan 2025 04:00:00 +0000 ROA not before: Wed 29 Jan 2025 03:55:00 +0000 ROA not after: Wed 28 Jan 2026 04:00:00 +0000 asID: 147118 IP address blocks: 103.175.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:a7:8b:a5:a8:62:f9:a7:5a:1d:07:c9:f3:03:ae:06:2f:b1:ca:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 29 03:55:00 2025 GMT Not After : Jan 28 04:00:00 2026 GMT Subject: CN=F6AD959003B7BE7B8F988FA58FD1370CDFCF839B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:73:ee:c6:93:e3:8b:b5:bc:20:0f:fa:89:87: 58:df:3c:cc:f0:6f:4e:01:26:d4:9a:ce:42:02:fe: b7:53:35:29:0b:4f:ce:ac:31:48:54:c1:1d:a6:6c: a2:80:34:97:6f:35:fb:14:c0:f1:61:2d:69:52:cb: 82:ac:e0:48:46:8e:f6:78:4b:b4:f2:bb:64:49:db: af:31:28:a3:c7:73:f0:27:16:74:37:60:88:c0:5b: 61:01:f5:d3:f3:1b:10:9c:e4:95:06:60:f2:d0:c6: 94:14:91:5f:ff:49:e0:0c:27:74:a2:fd:e1:ca:27: 04:bc:a3:76:b0:ce:05:31:a9:bb:57:91:69:12:48: f6:44:94:db:e8:75:29:ad:71:f8:dc:a8:50:89:f5: 72:03:32:ab:d3:e0:c5:7e:27:a3:79:9e:8d:11:3c: bc:f3:22:c2:86:d5:c4:02:c0:96:40:da:e5:38:ee: b9:57:88:e4:6b:6b:7d:40:0c:53:6f:08:69:bd:ee: 98:26:52:a5:b2:04:02:75:21:d8:5e:53:47:8e:49: f7:ae:40:10:30:a5:8c:d7:44:95:f5:37:34:83:27: 54:0a:9b:9b:d7:03:34:fd:88:e8:2d:ed:b0:1f:f3: e4:d1:0b:46:83:d6:0f:66:c2:51:47:7f:58:db:76: 39:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:AD:95:90:03:B7:BE:7B:8F:98:8F:A5:8F:D1:37:0C:DF:CF:83:9B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147118.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.202.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:a4:5b:e3:05:0b:f8:4c:d8:2b:c3:b1:4e:64:1d:61:47:1b: 74:ab:99:8c:77:7a:4f:50:45:f7:dd:b1:44:e7:e7:ff:7f:90: a9:0b:e2:62:5f:e5:2a:61:09:ee:28:6a:c8:c0:44:62:98:6b: b7:8a:5a:30:3e:7a:39:a9:5f:48:bd:11:1f:fc:d8:f3:65:b7: c3:c8:04:6f:19:05:c6:45:e5:fc:46:59:0b:01:41:d1:a7:92: cf:24:df:e0:f4:33:a2:1f:61:2a:3a:7e:52:a4:22:5f:c3:74: 1b:65:9c:2e:8c:ca:fd:f7:4e:9e:b9:21:05:d4:5e:db:48:de: 30:d8:5f:e7:f9:99:3c:27:d0:78:51:24:fd:cd:1d:6d:81:35: 08:ca:a2:2f:ae:8e:f2:4e:b4:c1:00:59:09:6b:c6:b3:8b:46: a6:17:d9:fb:6a:0b:23:f5:50:97:ab:47:62:7c:8e:96:ae:8b: 9a:1e:00:16:70:6c:01:70:41:c4:02:54:87:95:83:2c:66:02: 7c:31:65:a9:78:5c:aa:1e:f2:14:9e:bc:53:4f:84:6a:6d:ba: bc:47:d3:50:fb:79:40:87:2f:5e:ea:b5:88:03:7c:20:a1:f1: b5:2f:ee:6a:44:f1:81:15:d8:6f:2f:71:29:43:91:02:17:08: bf:d0:e7:78 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJqeLpahi+adaHQfJ8wOuBi+xynkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEyOTAzNTUwMFoX DTI2MDEyODA0MDAwMFowMzExMC8GA1UEAxMoRjZBRDk1OTAwM0I3QkU3QjhGOTg4 RkE1OEZEMTM3MENERkNGODM5QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPZz7saT44u1vCAP+omHWN88zPBvTgEm1JrOQgL+t1M1KQtPzqwxSFTBHaZs ooA0l281+xTA8WEtaVLLgqzgSEaO9nhLtPK7ZEnbrzEoo8dz8CcWdDdgiMBbYQH1 0/MbEJzklQZg8tDGlBSRX/9J4AwndKL94conBLyjdrDOBTGpu1eRaRJI9kSU2+h1 Ka1x+NyoUIn1cgMyq9PgxX4no3mejRE8vPMiwobVxALAlkDa5TjuuVeI5GtrfUAM U28Iab3umCZSpbIEAnUh2F5TR45J965AEDCljNdElfU3NIMnVAqbm9cDNP2I6C3t sB/z5NELRoPWD2bCUUd/WNt2OXsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT2rZWQ A7e+e4+Yj6WP0TcM38+DmzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzExOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWevyjANBgkqhkiG9w0BAQsFAAOCAQEAmqRb4wUL+EzYK8OxTmQd YUcbdKuZjHd6T1BF992xROfn/3+QqQviYl/lKmEJ7ihqyMBEYphrt4paMD56Oalf SL0RH/zY82W3w8gEbxkFxkXl/EZZCwFB0aeSzyTf4PQzoh9hKjp+UqQiX8N0G2Wc LozK/fdOnrkhBdRe20jeMNhf5/mZPCfQeFEk/c0dbYE1CMqiL66O8k60wQBZCWvG s4tGphfZ+2oLI/VQl6tHYnyOlq6Lmh4AFnBsAXBBxAJUh5WDLGYCfDFlqXhcqh7y FJ68U0+Eam26vEfTUPt5QIcvXuq1iAN8IKHxtS/uakTxgRXYby9xKUORAhcIv9Dn eA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:43 2025 by rpki-client