$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147141.roa File: AS147141.roa (raw, json) Hash identifier: Lj/ZK+YSOP5Un3ov2ayGHg1UbQCKO6gtu5tJwnUEyWU= Subject key identifier: D3:1C:82:40:C1:E9:FB:76:1F:60:E5:88:51:50:46:24:19:B2:1C:12 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 28DA920210B789FCA0C00BF4AB43D38BE5A3B995 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147141.roa Signing time: Mon 15 Jul 2024 08:00:00 +0000 ROA not before: Mon 15 Jul 2024 07:55:00 +0000 ROA not after: Mon 14 Jul 2025 08:00:00 +0000 asID: 147141 IP address blocks: 103.176.94.0/24 maxlen: 24 103.176.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:da:92:02:10:b7:89:fc:a0:c0:0b:f4:ab:43:d3:8b:e5:a3:b9:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 15 07:55:00 2024 GMT Not After : Jul 14 08:00:00 2025 GMT Subject: CN=D31C8240C1E9FB761F60E5885150462419B21C12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:57:6c:f9:77:b4:b4:18:46:9c:d8:54:a7:c7: af:df:8b:51:f3:d6:4c:1b:8f:77:d5:77:b6:54:28: 51:2a:97:e4:43:a0:eb:42:f2:8d:64:6a:33:b1:ac: 6b:a6:64:f8:ba:d8:fb:bb:46:e2:73:67:e8:2a:cb: a9:60:bf:59:4c:5d:03:1a:fd:e5:8a:aa:9b:51:33: fe:30:72:f5:2a:61:2b:16:c8:03:1f:35:af:91:67: c0:0f:90:e4:11:1a:6b:cc:6e:78:9a:4d:76:2a:0b: 1e:c4:c1:e0:96:1b:13:1e:1f:b2:18:2a:df:9c:a3: b2:7b:7b:a6:c1:b2:8c:7a:fa:18:b9:f9:33:97:03: ea:fe:73:d2:da:c3:37:49:9e:04:d5:60:0f:1a:e9: ea:43:cf:ab:55:1f:66:67:ef:9a:3d:d4:dc:96:ed: d1:2e:5f:b2:0a:38:80:af:a7:f1:d4:db:14:08:5f: 80:d4:6b:47:e8:89:ee:6f:20:2b:bf:41:0e:32:a2: 43:c1:36:ca:1d:99:c6:24:10:ea:7a:da:e7:4b:ca: 3a:a0:a3:0c:88:ed:ca:b8:18:15:48:28:df:f0:6a: 75:ac:19:9f:8f:47:8a:4b:ec:51:33:58:56:ea:e6: 12:2a:06:2a:74:e3:8b:e7:63:24:89:8a:2a:08:13: 84:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:1C:82:40:C1:E9:FB:76:1F:60:E5:88:51:50:46:24:19:B2:1C:12 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147141.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.94.0/23 Signature Algorithm: sha256WithRSAEncryption 80:41:3a:ec:55:70:00:c3:0d:8d:5e:7a:7c:e0:a6:eb:3f:c1: 86:f1:cb:ff:f0:93:36:28:62:91:4f:0a:6c:cb:ef:43:96:58: 88:ec:72:ca:d3:ec:fe:db:1d:58:5f:24:fc:51:b4:01:4b:32: 0e:aa:69:72:66:d2:54:a7:54:0d:94:60:87:c2:ed:a4:f3:bf: fb:34:10:2c:39:aa:59:f1:ad:38:55:11:9c:d8:3b:2d:29:26: e2:6a:aa:5f:4c:c0:ef:51:ef:f8:7d:66:d1:e3:28:6d:23:6e: 25:8d:33:03:0e:fb:0c:39:6f:18:78:28:da:5c:95:1b:c4:84: 48:4c:9e:f2:83:18:2a:c9:d6:04:fe:f7:10:45:04:c0:20:18: 36:30:cb:d6:fa:72:7f:5f:0b:23:12:c7:1f:08:16:9d:6c:78: 2f:77:50:28:e3:a7:a7:92:bc:02:97:ec:c4:79:12:a5:08:3d: 3b:5f:84:72:b4:2a:90:ea:cf:00:ee:f9:8f:c2:51:82:2b:df: eb:12:34:22:43:11:f4:83:e5:16:a6:04:22:4f:5b:06:ee:41: ae:da:6e:19:4b:24:84:12:26:48:dd:fe:a3:11:02:fe:7b:b4: 2e:ef:df:39:2b:cc:59:bd:ed:d8:01:29:5d:ba:44:43:f5:49: 3f:e0:69:21 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKNqSAhC3ifygwAv0q0PTi+WjuZUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcxNTA3NTUwMFoX DTI1MDcxNDA4MDAwMFowMzExMC8GA1UEAxMoRDMxQzgyNDBDMUU5RkI3NjFGNjBF NTg4NTE1MDQ2MjQxOUIyMUMxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKhXbPl3tLQYRpzYVKfHr9+LUfPWTBuPd9V3tlQoUSqX5EOg60LyjWRqM7Gs a6Zk+LrY+7tG4nNn6CrLqWC/WUxdAxr95Yqqm1Ez/jBy9SphKxbIAx81r5FnwA+Q 5BEaa8xueJpNdioLHsTB4JYbEx4fshgq35yjsnt7psGyjHr6GLn5M5cD6v5z0trD N0meBNVgDxrp6kPPq1UfZmfvmj3U3Jbt0S5fsgo4gK+n8dTbFAhfgNRrR+iJ7m8g K79BDjKiQ8E2yh2ZxiQQ6nra50vKOqCjDIjtyrgYFUgo3/BqdawZn49HikvsUTNY VurmEioGKnTji+djJImKKggThFECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTTHIJA wen7dh9g5YhRUEYkGbIcEjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzE0MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWewXjANBgkqhkiG9w0BAQsFAAOCAQEAgEE67FVwAMMNjV56fOCm 6z/BhvHL//CTNihikU8KbMvvQ5ZYiOxyytPs/tsdWF8k/FG0AUsyDqppcmbSVKdU DZRgh8LtpPO/+zQQLDmqWfGtOFURnNg7LSkm4mqqX0zA71Hv+H1m0eMobSNuJY0z Aw77DDlvGHgo2lyVG8SESEye8oMYKsnWBP73EEUEwCAYNjDL1vpyf18LIxLHHwgW nWx4L3dQKOOnp5K8ApfsxHkSpQg9O1+EcrQqkOrPAO75j8JRgivf6xI0IkMR9IPl FqYEIk9bBu5BrtpuGUskhBImSN3+oxEC/nu0Lu/fOSvMWb3t2AEpXbpEQ/VJP+Bp IQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:28 2024 by rpki-client on console-ams.rpki-client.org