$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147124.roa File: AS147124.roa (raw, json) Hash identifier: Pxnp7K4GtXJDCo9Iqvou6+Uw22AoyAJTf1+2Pn4hrok= Subject key identifier: 15:4A:05:6C:E7:E4:1E:8C:BF:53:45:34:74:D1:EC:B7:36:30:A6:12 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 293554D3F42173797C6843439BEFA332C4014AC5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147124.roa Signing time: Mon 31 Jul 2023 08:00:00 +0000 ROA not before: Mon 31 Jul 2023 07:55:00 +0000 ROA not after: Mon 29 Jul 2024 08:00:00 +0000 asID: 147124 IP address blocks: 2001:df1:1040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:35:54:d3:f4:21:73:79:7c:68:43:43:9b:ef:a3:32:c4:01:4a:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 07:55:00 2023 GMT Not After : Jul 29 08:00:00 2024 GMT Subject: CN=154A056CE7E41E8CBF53453474D1ECB73630A612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:12:7d:62:e8:b4:e5:b0:fd:4a:80:49:52:63: 7a:c8:d5:13:12:d0:4a:ea:be:3b:7b:ed:8d:8c:96: f0:bb:f1:dd:e8:7f:97:ae:5b:7f:6f:8b:25:3f:61: c2:c2:c0:80:18:00:cb:33:90:e1:23:e2:be:06:61: de:c5:af:71:7a:63:19:ad:ef:d3:94:76:99:43:ef: 84:39:d2:67:59:c5:2b:46:70:30:24:54:fa:b0:4b: e3:83:c1:85:7d:45:b0:23:a0:ce:69:42:d6:46:7d: 43:4f:43:82:2e:7f:bd:9d:4f:6e:9f:56:fb:ba:a7: 4e:93:9a:b9:f6:56:b3:db:d5:83:d8:01:1a:6d:26: 14:d9:5f:3c:4e:89:cd:c7:81:62:92:2d:5b:e4:76: 4c:22:9b:5a:47:36:4c:9b:6e:d0:42:ad:75:69:31: 8d:d7:ef:b5:36:2c:2a:46:ee:aa:0e:24:9d:60:5e: 31:d6:5d:07:c7:25:99:1e:ef:ee:71:9e:ac:c8:47: 20:b0:9a:71:63:1f:75:cc:2f:a8:92:ce:60:1b:1e: e2:86:5a:46:68:fe:2e:7b:8a:4e:19:89:36:e2:54: 2f:c5:e0:fa:f3:c3:5a:98:72:9c:22:26:a3:5e:6b: da:71:37:89:f1:cb:be:23:f9:6f:5f:8a:f0:92:89: b2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:4A:05:6C:E7:E4:1E:8C:BF:53:45:34:74:D1:EC:B7:36:30:A6:12 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147124.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1040::/48 Signature Algorithm: sha256WithRSAEncryption 7e:83:53:91:87:a7:2a:5a:54:db:b6:87:16:1e:15:35:cb:73: 82:0c:22:62:99:b0:80:25:c8:87:7f:bb:de:62:54:6b:84:d4: 0d:cd:d8:d2:bf:7f:56:1d:f2:fd:b8:df:49:2c:24:c4:5b:01: f0:6d:bb:04:67:27:18:4b:a7:cc:c5:c9:28:62:73:02:57:c6: 9c:f0:03:c1:f9:c4:4e:6b:c8:a1:5a:9b:7f:62:35:fd:3c:71: d4:9e:c2:40:84:a0:9e:0f:cb:e9:7c:f2:6c:11:84:bd:02:da: c2:97:af:b5:6f:55:89:11:8f:fb:2b:4c:c2:da:ca:b9:7b:8b: 8e:b6:97:c7:83:ad:27:18:a8:c1:7e:4c:bd:6d:3c:71:5a:a6: 9f:16:41:30:a1:22:88:e8:bf:03:f0:60:f7:4a:2b:ae:98:2e: be:f6:dd:78:42:16:24:65:7d:c0:80:3b:85:a5:35:d6:d1:2b: b9:8e:96:20:fa:20:ba:e2:b5:e8:3e:44:f5:1c:48:c8:dc:ae: 46:b6:8a:cd:c2:75:d9:96:b1:f7:6b:67:6b:3a:c9:92:dd:44: 1b:1e:84:ca:67:69:a2:e2:0d:02:2c:23:b2:10:ab:32:7f:bd: 3f:7e:ae:aa:d0:65:f3:74:90:fd:8b:76:16:2c:35:82:21:0d: 9b:26:bb:6b -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUKTVU0/Qhc3l8aENDm++jMsQBSsUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA3NTUwMFoX DTI0MDcyOTA4MDAwMFowMzExMC8GA1UEAxMoMTU0QTA1NkNFN0U0MUU4Q0JGNTM0 NTM0NzREMUVDQjczNjMwQTYxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKoSfWLotOWw/UqASVJjesjVExLQSuq+O3vtjYyW8Lvx3eh/l65bf2+LJT9h wsLAgBgAyzOQ4SPivgZh3sWvcXpjGa3v05R2mUPvhDnSZ1nFK0ZwMCRU+rBL44PB hX1FsCOgzmlC1kZ9Q09Dgi5/vZ1Pbp9W+7qnTpOaufZWs9vVg9gBGm0mFNlfPE6J zceBYpItW+R2TCKbWkc2TJtu0EKtdWkxjdfvtTYsKkbuqg4knWBeMdZdB8clmR7v 7nGerMhHILCacWMfdcwvqJLOYBse4oZaRmj+LnuKThmJNuJUL8Xg+vPDWphynCIm o15r2nE3ifHLviP5b1+K8JKJsksCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQVSgVs 5+QejL9TRTR00ey3NjCmEjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEyNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfEQQDANBgkqhkiG9w0BAQsFAAOCAQEAfoNTkYenKlpU27aH Fh4VNctzggwiYpmwgCXIh3+73mJUa4TUDc3Y0r9/Vh3y/bjfSSwkxFsB8G27BGcn GEunzMXJKGJzAlfGnPADwfnETmvIoVqbf2I1/Txx1J7CQISgng/L6XzybBGEvQLa wpevtW9ViRGP+ytMwtrKuXuLjraXx4OtJxiowX5MvW08cVqmnxZBMKEiiOi/A/Bg 90orrpguvvbdeEIWJGV9wIA7haU11tEruY6WIPoguuK16D5E9RxIyNyuRraKzcJ1 2Zax92tnazrJkt1EGx6EymdpouINAiwjshCrMn+9P36uqtBl83SQ/Yt2Fiw1giEN mya7aw== -----END CERTIFICATE-----Generated at Thu May 9 00:37:06 2024 by rpki-client on console-fra.rpki-client.org