$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147124.roa File: AS147124.roa (raw, json) Hash identifier: 9RYP1GeqepxszK3yQBylEcNCsQ243rEa4zexLOs9P4w= Subject key identifier: E8:25:69:CA:30:5D:20:30:F4:E2:58:1D:4C:1B:1A:85:04:5E:01:8D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 669D6FEE79C37E16C0A4A3BF3224C3C3DA41C090 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147124.roa Signing time: Mon 01 Jul 2024 08:00:00 +0000 ROA not before: Mon 01 Jul 2024 07:55:00 +0000 ROA not after: Mon 30 Jun 2025 08:00:00 +0000 asID: 147124 IP address blocks: 2001:df1:1040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:9d:6f:ee:79:c3:7e:16:c0:a4:a3:bf:32:24:c3:c3:da:41:c0:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 07:55:00 2024 GMT Not After : Jun 30 08:00:00 2025 GMT Subject: CN=E82569CA305D2030F4E2581D4C1B1A85045E018D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4d:fc:ad:89:38:60:44:c6:d1:63:1b:d7:cf: 2f:8b:ae:2c:10:93:c3:c9:56:25:3f:81:93:db:df: b9:83:8b:c6:d8:a5:17:b6:54:d4:58:b4:a3:fb:a7: c4:9b:15:00:45:25:b3:e6:cb:2a:72:41:68:62:d1: 98:8d:dd:cd:f7:02:56:16:12:97:50:ae:3d:bf:cb: f0:ba:2d:ed:1d:1e:70:66:6a:45:b7:6a:34:a6:47: f4:59:2c:78:f1:e8:1a:c5:02:af:ae:2c:20:44:08: 6c:ba:42:9d:d8:7a:3b:7e:2b:4f:59:83:a7:d6:45: ab:44:5d:ba:21:fe:61:78:d6:1f:c2:77:c9:db:f8: cd:44:d0:73:7d:a7:18:ff:3f:d0:9d:e7:b9:25:5d: 80:bb:84:81:81:b8:14:c3:ca:4f:9e:c9:eb:cf:e1: 41:b2:65:0a:a7:d4:8c:d5:c6:aa:56:ae:ce:c2:94: 14:a8:e6:c2:6f:02:42:06:c6:37:51:77:68:c5:a6: 85:10:7d:45:28:64:2a:06:6b:38:13:24:ca:c6:0f: 4a:84:95:96:fd:19:38:05:85:40:be:78:b4:fa:d9: c4:2d:3e:cc:df:60:3a:74:26:68:ef:71:ac:80:42: 46:75:29:7e:f7:07:96:f7:ba:2f:ff:27:b3:fe:b0: 4c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:25:69:CA:30:5D:20:30:F4:E2:58:1D:4C:1B:1A:85:04:5E:01:8D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147124.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1040::/48 Signature Algorithm: sha256WithRSAEncryption 85:46:e8:32:69:aa:91:d1:12:9a:fd:a7:f6:81:cf:83:cc:e0: c8:7a:0f:7b:43:95:a9:21:27:f9:1d:4f:01:7e:ec:64:c7:db: 3e:70:25:6c:f1:ed:31:c7:8e:89:ef:f0:94:58:d5:d2:69:31: 81:bb:50:64:89:f3:1e:06:eb:4c:e9:a8:88:26:e9:d2:cd:43: 35:78:3e:f9:b3:2e:dc:7c:11:e9:f9:e2:f6:85:1f:6d:26:46: ab:e6:50:94:10:90:13:7b:79:4f:11:a5:90:86:21:78:c4:ca: 4a:0a:cc:68:e3:c4:d7:a1:13:64:72:78:cc:ad:75:a8:64:28: 14:b7:9b:3a:9c:72:0c:39:01:eb:31:f1:e0:83:76:64:d2:f4: 47:20:0d:bf:d2:bd:a2:be:65:fe:dc:7c:c0:cd:17:8d:50:2d: 26:85:68:5a:5c:22:b4:d7:74:76:10:40:17:a3:c3:78:61:32: c0:5d:85:45:66:e0:cd:40:66:f4:a0:1b:5a:53:a0:94:2e:46: ad:18:72:1e:ba:ac:8a:c2:f2:69:6e:58:6c:02:b4:f9:9a:a3: e3:38:b6:b9:5e:8e:5b:0c:ab:55:f6:f6:3d:10:7f:74:1c:aa: 90:0e:50:2c:52:61:f5:1c:97:d2:b6:4b:fd:2c:0e:5b:fa:19: 82:f5:06:d6 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUZp1v7nnDfhbApKO/MiTDw9pBwJAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTA3NTUwMFoX DTI1MDYzMDA4MDAwMFowMzExMC8GA1UEAxMoRTgyNTY5Q0EzMDVEMjAzMEY0RTI1 ODFENEMxQjFBODUwNDVFMDE4RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMRN/K2JOGBExtFjG9fPL4uuLBCTw8lWJT+Bk9vfuYOLxtilF7ZU1Fi0o/un xJsVAEUls+bLKnJBaGLRmI3dzfcCVhYSl1CuPb/L8Lot7R0ecGZqRbdqNKZH9Fks ePHoGsUCr64sIEQIbLpCndh6O34rT1mDp9ZFq0RduiH+YXjWH8J3ydv4zUTQc32n GP8/0J3nuSVdgLuEgYG4FMPKT57J68/hQbJlCqfUjNXGqlauzsKUFKjmwm8CQgbG N1F3aMWmhRB9RShkKgZrOBMkysYPSoSVlv0ZOAWFQL54tPrZxC0+zN9gOnQmaO9x rIBCRnUpfvcHlve6L/8ns/6wTO0CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBToJWnK MF0gMPTiWB1MGxqFBF4BjTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEyNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfEQQDANBgkqhkiG9w0BAQsFAAOCAQEAhUboMmmqkdESmv2n 9oHPg8zgyHoPe0OVqSEn+R1PAX7sZMfbPnAlbPHtMceOie/wlFjV0mkxgbtQZInz HgbrTOmoiCbp0s1DNXg++bMu3HwR6fni9oUfbSZGq+ZQlBCQE3t5TxGlkIYheMTK SgrMaOPE16ETZHJ4zK11qGQoFLebOpxyDDkB6zHx4IN2ZNL0RyANv9K9or5l/tx8 wM0XjVAtJoVoWlwitNd0dhBAF6PDeGEywF2FRWbgzUBm9KAbWlOglC5GrRhyHrqs isLyaW5YbAK0+Zqj4zi2uV6OWwyrVfb2PRB/dByqkA5QLFJh9RyX0rZL/SwOW/oZ gvUG1g== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:26 2024 by rpki-client on console-fra.rpki-client.org