$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147124.roa File: AS147124.roa (raw, json) Hash identifier: jCBSqND2gteIp6c+cZRnhVK0UKngQCypfK6u5CiN0iA= Subject key identifier: 2D:61:95:DF:A9:29:DE:D4:D2:B4:71:C2:66:B2:3C:E3:74:AE:6F:0A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7C20CD143C838908A60031261FFFFCF3BD01BB4E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147124.roa Signing time: Mon 02 Jun 2025 08:00:00 +0000 ROA not before: Mon 02 Jun 2025 07:55:00 +0000 ROA not after: Mon 01 Jun 2026 08:00:00 +0000 asID: 147124 IP address blocks: 2001:df1:1040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:20:cd:14:3c:83:89:08:a6:00:31:26:1f:ff:fc:f3:bd:01:bb:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 2 07:55:00 2025 GMT Not After : Jun 1 08:00:00 2026 GMT Subject: CN=2D6195DFA929DED4D2B471C266B23CE374AE6F0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a1:ef:3d:7a:26:46:65:ab:17:e4:fb:dd:05: ec:bc:2c:51:f4:58:b7:8d:15:e5:1b:bb:63:7f:20: 21:4f:d5:c9:23:cf:08:bd:3a:0b:fc:bb:d8:ae:af: b1:80:7d:12:57:93:da:5e:0e:a7:89:5a:ca:48:01: bf:a6:a4:4e:86:f8:a4:94:8b:05:aa:0d:05:19:41: e5:26:42:9c:aa:91:f2:32:fe:fb:70:5a:6b:55:ff: dd:d8:79:81:0d:4f:98:95:27:9d:20:62:14:27:e7: 4f:ff:70:42:9b:cb:7c:ed:88:2f:f1:0b:72:80:70: a8:5d:e3:31:cf:80:cf:80:9d:f8:e6:87:ab:79:5c: 35:8f:d5:62:2e:f8:e5:7b:6b:b3:5a:28:9c:f8:be: 37:74:da:52:9f:ae:f7:4e:55:7e:fa:57:cf:37:59: 3e:13:d2:09:9c:69:34:3e:4e:05:3e:df:90:ba:66: d2:49:99:12:bb:2c:36:ce:4a:8e:b9:27:e4:1d:d5: e2:ad:fe:1e:a7:b6:ce:6d:3d:33:74:2a:bd:76:b8: 22:30:24:93:91:41:0d:77:ad:cc:b2:85:c3:09:74: 9a:1d:13:85:e9:d2:d5:4b:42:ac:49:26:cc:c2:b1: a0:a9:86:4f:ec:a1:4d:92:47:18:a0:07:b9:6c:58: be:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:61:95:DF:A9:29:DE:D4:D2:B4:71:C2:66:B2:3C:E3:74:AE:6F:0A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147124.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1040::/48 Signature Algorithm: sha256WithRSAEncryption 58:91:80:1a:4b:90:6f:ea:14:68:d4:9d:cb:b0:5c:7d:2a:bf: 04:46:f4:46:77:37:ef:ea:c3:18:48:07:81:ee:3f:ce:e3:93: 68:e9:3c:b3:31:02:4f:1c:11:8a:11:45:3f:b5:2f:be:78:00: 39:95:5e:e1:57:54:5e:6e:d7:17:14:3f:08:8b:45:17:d2:60: 92:75:d6:38:3a:81:c1:bb:34:07:d3:88:db:ab:d7:32:56:df: 70:88:6a:a3:66:ae:85:c7:9b:15:d4:1e:a6:67:21:97:7b:a9: fa:40:dc:37:e6:d1:9d:17:ff:5e:b7:e8:70:9f:03:26:47:19: 63:b5:c6:59:7a:5d:32:46:45:07:4e:80:15:4a:23:3c:12:13: f0:ed:87:67:ca:3a:50:cf:a8:8a:32:e4:bb:b7:e1:38:d3:11: cd:0f:c4:df:36:c8:b0:2e:25:7a:a2:0d:ca:b3:78:a1:44:1d: 57:9f:06:fc:3b:07:52:df:57:58:2d:22:41:0c:58:c0:97:ad: 44:d2:c9:aa:cb:6d:22:2d:ea:c4:d0:f2:20:fe:01:a2:4b:8e: 7f:34:5a:8f:4e:e5:bf:5e:b2:1d:82:40:bb:b6:f7:3f:8d:c7: d3:95:dd:5c:c8:ba:61:f9:03:ee:b4:1f:8b:32:2f:01:a8:90: 74:a2:be:13 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUfCDNFDyDiQimADEmH//8870Bu04wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMjA3NTUwMFoX DTI2MDYwMTA4MDAwMFowMzExMC8GA1UEAxMoMkQ2MTk1REZBOTI5REVENEQyQjQ3 MUMyNjZCMjNDRTM3NEFFNkYwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCh7z16JkZlqxfk+90F7LwsUfRYt40V5Ru7Y38gIU/VySPPCL06C/y72K6v sYB9EleT2l4Op4laykgBv6akTob4pJSLBaoNBRlB5SZCnKqR8jL++3Baa1X/3dh5 gQ1PmJUnnSBiFCfnT/9wQpvLfO2IL/ELcoBwqF3jMc+Az4Cd+OaHq3lcNY/VYi74 5Xtrs1oonPi+N3TaUp+u905VfvpXzzdZPhPSCZxpND5OBT7fkLpm0kmZErssNs5K jrkn5B3V4q3+Hqe2zm09M3QqvXa4IjAkk5FBDXetzLKFwwl0mh0ThenS1UtCrEkm zMKxoKmGT+yhTZJHGKAHuWxYvjcCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQtYZXf qSne1NK0ccJmsjzjdK5vCjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEyNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfEQQDANBgkqhkiG9w0BAQsFAAOCAQEAWJGAGkuQb+oUaNSd y7BcfSq/BEb0Rnc37+rDGEgHge4/zuOTaOk8szECTxwRihFFP7UvvngAOZVe4VdU Xm7XFxQ/CItFF9JgknXWODqBwbs0B9OI26vXMlbfcIhqo2auhcebFdQepmchl3up +kDcN+bRnRf/XrfocJ8DJkcZY7XGWXpdMkZFB06AFUojPBIT8O2HZ8o6UM+oijLk u7fhONMRzQ/E3zbIsC4leqINyrN4oUQdV58G/DsHUt9XWC0iQQxYwJetRNLJqstt Ii3qxNDyIP4BokuOfzRaj07lv16yHYJAu7b3P43H05XdXMi6YfkD7rQfizIvAaiQ dKK+Ew== -----END CERTIFICATE-----Generated at Tue Jun 3 23:10:16 2025 by rpki-client