$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147141.roa File: AS147141.roa (raw, json) Hash identifier: BXDUgOAxvDgoZDrgqsaxdt5Jj7iaB+yk8EclSLNWB14= Subject key identifier: 1C:44:C3:F2:F5:C7:0D:DF:66:6E:41:5C:2C:8A:28:1F:97:56:21:06 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 52D62C75E8719C40BF6F46575506A2DE5576DC2E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147141.roa Signing time: Mon 14 Aug 2023 08:00:00 +0000 ROA not before: Mon 14 Aug 2023 07:55:00 +0000 ROA not after: Mon 12 Aug 2024 08:00:00 +0000 asID: 147141 IP address blocks: 103.176.94.0/24 maxlen: 24 103.176.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:d6:2c:75:e8:71:9c:40:bf:6f:46:57:55:06:a2:de:55:76:dc:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 14 07:55:00 2023 GMT Not After : Aug 12 08:00:00 2024 GMT Subject: CN=1C44C3F2F5C70DDF666E415C2C8A281F97562106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0d:79:ed:4b:d2:37:a2:df:96:65:fb:6a:96: e8:a1:4d:a5:4e:e0:30:4c:b4:4a:b4:f6:8b:9c:12: 5e:4e:7b:2c:c0:28:f8:ef:76:b7:f4:c1:70:76:f5: 97:ba:35:b6:0a:8c:02:a0:5c:09:2c:43:27:02:f1: 4e:ca:06:99:e8:ec:a7:ed:39:ca:ed:ef:c6:4a:0c: 8e:5e:b9:af:ba:c1:eb:d4:89:ee:01:f6:05:fc:21: 06:ee:14:5f:d8:2b:34:f8:fc:63:7e:62:2b:8a:a7: 69:90:57:67:c9:36:9b:d2:bb:91:a2:f0:9f:8b:4c: 7e:52:b3:4c:98:41:d4:a4:b3:d3:97:90:32:79:0b: f0:d0:9c:aa:4c:53:9a:29:a3:6c:1d:9a:1c:8e:38: 6e:0a:61:db:79:01:31:6e:17:7d:4d:19:81:37:29: 84:e6:8b:d3:38:05:85:63:b6:79:20:27:33:6c:75: 26:18:85:fc:8e:21:e1:a3:1d:f8:f1:6a:dc:2f:82: 51:47:07:c1:0d:e5:66:0d:3a:f3:77:37:58:01:ae: 0e:44:f7:1a:a7:87:da:56:c4:55:f6:a2:4b:31:59: 1f:f7:d0:c4:fe:a2:1a:0a:f9:b3:78:ce:06:9c:7e: b5:22:ec:31:d0:79:f9:1b:e9:79:7c:f9:85:da:bc: 82:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:44:C3:F2:F5:C7:0D:DF:66:6E:41:5C:2C:8A:28:1F:97:56:21:06 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147141.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.94.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:cc:86:a8:6d:d2:29:5c:79:e9:58:3a:1a:9d:ec:e2:6a:5c: 89:53:b6:69:02:22:b9:50:5f:e9:f6:ed:18:fe:19:28:db:23: e8:c2:72:f6:31:bc:5a:04:56:1d:a6:7a:46:da:88:92:4c:29: 47:6e:41:ea:2b:b4:a3:f2:ce:6c:7a:67:e4:ba:36:bb:2c:de: bd:8d:d3:5a:6b:51:16:5d:e2:26:e8:fe:0d:ca:8e:a0:b8:71: cf:26:05:00:c7:bf:cf:d7:9c:bf:ab:96:5d:b2:32:37:be:32: 53:50:b0:41:06:09:11:4c:c6:69:78:9f:d6:db:61:91:fd:27: 76:4e:7e:c1:02:a0:78:f8:a6:d7:ba:e8:7d:cb:67:4b:51:e4: c3:45:8a:d4:74:f5:9d:af:84:d2:72:0e:5c:b7:54:3e:c6:32: 84:3e:41:51:5f:84:3b:a9:dd:a5:31:3d:7c:aa:17:8c:fa:e1: e8:88:9e:fd:6e:00:46:fe:f5:c3:d8:ce:a8:9c:4e:e4:a1:55: 56:cd:10:29:92:8e:de:6b:37:71:3b:62:5a:84:9e:e3:2f:53: ce:66:44:65:67:6f:b5:9a:ea:26:7b:8c:c8:63:a0:76:69:17: 14:f5:c8:21:57:66:a2:34:cf:93:0f:b9:8d:6a:a5:a8:ff:21: 34:d6:a0:0b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUtYsdehxnEC/b0ZXVQai3lV23C4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgxNDA3NTUwMFoX DTI0MDgxMjA4MDAwMFowMzExMC8GA1UEAxMoMUM0NEMzRjJGNUM3MERERjY2NkU0 MTVDMkM4QTI4MUY5NzU2MjEwNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN0Nee1L0jei35Zl+2qW6KFNpU7gMEy0SrT2i5wSXk57LMAo+O92t/TBcHb1 l7o1tgqMAqBcCSxDJwLxTsoGmejsp+05yu3vxkoMjl65r7rB69SJ7gH2BfwhBu4U X9grNPj8Y35iK4qnaZBXZ8k2m9K7kaLwn4tMflKzTJhB1KSz05eQMnkL8NCcqkxT mimjbB2aHI44bgph23kBMW4XfU0ZgTcphOaL0zgFhWO2eSAnM2x1JhiF/I4h4aMd +PFq3C+CUUcHwQ3lZg0683c3WAGuDkT3GqeH2lbEVfaiSzFZH/fQxP6iGgr5s3jO Bpx+tSLsMdB5+RvpeXz5hdq8glECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQcRMPy 9ccN32ZuQVwsiigfl1YhBjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzE0MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWewXjANBgkqhkiG9w0BAQsFAAOCAQEAfsyGqG3SKVx56Vg6Gp3s 4mpciVO2aQIiuVBf6fbtGP4ZKNsj6MJy9jG8WgRWHaZ6RtqIkkwpR25B6iu0o/LO bHpn5Lo2uyzevY3TWmtRFl3iJuj+DcqOoLhxzyYFAMe/z9ecv6uWXbIyN74yU1Cw QQYJEUzGaXif1tthkf0ndk5+wQKgePim17rofctnS1Hkw0WK1HT1na+E0nIOXLdU PsYyhD5BUV+EO6ndpTE9fKoXjPrh6Iie/W4ARv71w9jOqJxO5KFVVs0QKZKO3ms3 cTtiWoSe4y9TzmZEZWdvtZrqJnuMyGOgdmkXFPXIIVdmojTPkw+5jWqlqP8hNNag Cw== -----END CERTIFICATE-----Generated at Wed May 8 10:06:53 2024 by rpki-client on console-ams.rpki-client.org