$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147142.roa File: AS147142.roa (raw, json) Hash identifier: kHOLEqTXiCIyaolWpEkYhe6BXcpg5kFkfyact1U9DN8= Subject key identifier: 7C:E0:80:1D:4A:9F:4F:AE:1C:A7:F3:41:22:3A:24:A0:D7:AA:D4:6F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 57EAF1F551720E87751A75C4D53F28CB37B1F9E4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147142.roa Signing time: Fri 06 Sep 2024 16:00:00 +0000 ROA not before: Fri 06 Sep 2024 15:55:00 +0000 ROA not after: Fri 05 Sep 2025 16:00:00 +0000 asID: 147142 IP address blocks: 103.177.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ea:f1:f5:51:72:0e:87:75:1a:75:c4:d5:3f:28:cb:37:b1:f9:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 6 15:55:00 2024 GMT Not After : Sep 5 16:00:00 2025 GMT Subject: CN=7CE0801D4A9F4FAE1CA7F341223A24A0D7AAD46F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bd:64:47:7e:73:13:07:ce:33:da:80:8b:8c: 77:af:17:42:a2:9c:64:38:4b:e6:92:1f:2d:bf:d1: bc:d7:a4:6d:e4:78:6d:e3:50:45:d6:94:2e:fa:46: 81:9d:d3:76:c0:30:34:48:03:85:a1:3a:64:a0:a4: ff:b5:d7:f5:3e:13:0f:e1:f4:ee:66:80:47:65:91: 26:f8:cd:cf:af:7b:bd:5c:78:ba:d0:40:7b:5e:de: ec:1a:cb:08:ea:9d:55:57:07:db:ae:02:6f:dd:05: 5a:91:bb:c0:66:d8:78:db:58:33:e9:54:4b:25:cc: 2b:e9:6f:87:8d:37:bd:1f:fa:27:d3:98:e9:4c:af: b7:f9:48:6b:68:85:d4:b1:b3:b4:7e:21:91:e8:8d: 3c:1f:a7:27:ea:85:cf:88:80:44:0c:6d:7b:db:85: c4:6d:6f:86:ca:08:11:94:c3:7f:39:5a:c6:d2:db: d7:c6:2b:eb:46:84:a0:b3:28:ac:bd:90:20:52:e0: d8:08:4b:bc:71:3c:e0:38:d6:ea:98:76:11:c3:d8: e4:d7:eb:b8:60:c9:1e:6d:28:18:85:b4:41:50:ee: 1b:dc:6b:4c:c5:b3:9d:d8:77:64:16:83:37:08:6c: d5:e2:75:0e:ce:cd:a3:e3:04:13:db:6a:08:c3:92: 09:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E0:80:1D:4A:9F:4F:AE:1C:A7:F3:41:22:3A:24:A0:D7:AA:D4:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147142.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.60.0/24 Signature Algorithm: sha256WithRSAEncryption 93:3c:1d:0b:c6:0d:5c:58:58:2a:23:32:3d:37:cf:2f:44:18: cb:b0:c8:76:8e:a0:78:2f:35:cd:2d:29:8b:2b:d5:07:47:21: 5f:70:d4:e9:4e:bc:5d:52:3a:d6:74:c3:6d:b3:b9:43:f6:be: 81:68:5e:a2:18:6f:b0:7b:fc:3f:fb:be:77:97:c2:0f:01:52: 5c:d5:6e:f8:5e:35:58:c0:49:28:f6:eb:64:fe:af:05:12:2b: f0:9e:fa:e9:d9:8f:ae:c1:68:9e:69:57:32:26:08:e4:98:a3: 76:c1:9b:93:f7:21:50:54:c7:ad:61:d4:7a:6e:e5:5c:f1:94: 28:6b:bb:89:32:75:45:51:b3:32:d2:10:79:b2:f2:7e:90:16: 3b:8e:27:d0:12:99:1b:00:3f:a1:8f:fe:88:4d:72:50:d8:bb: 32:f1:c2:e7:5a:46:c0:01:a1:63:41:ae:40:e9:67:53:cb:64: f2:fe:fe:2f:a7:95:0b:e7:75:a6:e3:f9:04:c5:1f:42:1a:e2: f0:5f:ed:20:2c:5e:dd:e2:94:50:b9:2d:e6:99:7b:aa:9a:d5: 5d:bd:b7:87:91:83:e5:ff:49:40:01:77:32:6a:84:52:a1:10: 7b:a2:68:c3:88:a9:9b:2a:f6:ae:ba:f0:fb:a9:f6:28:3e:30: 05:db:57:3d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUV+rx9VFyDod1GnXE1T8oyzex+eQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkwNjE1NTUwMFoX DTI1MDkwNTE2MDAwMFowMzExMC8GA1UEAxMoN0NFMDgwMUQ0QTlGNEZBRTFDQTdG MzQxMjIzQTI0QTBEN0FBRDQ2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMi9ZEd+cxMHzjPagIuMd68XQqKcZDhL5pIfLb/RvNekbeR4beNQRdaULvpG gZ3TdsAwNEgDhaE6ZKCk/7XX9T4TD+H07maAR2WRJvjNz697vVx4utBAe17e7BrL COqdVVcH264Cb90FWpG7wGbYeNtYM+lUSyXMK+lvh403vR/6J9OY6Uyvt/lIa2iF 1LGztH4hkeiNPB+nJ+qFz4iARAxte9uFxG1vhsoIEZTDfzlaxtLb18Yr60aEoLMo rL2QIFLg2AhLvHE84DjW6ph2EcPY5NfruGDJHm0oGIW0QVDuG9xrTMWzndh3ZBaD Nwhs1eJ1Ds7No+MEE9tqCMOSCRkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR84IAd Sp9Prhyn80EiOiSg16rUbzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzE0Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGexPDANBgkqhkiG9w0BAQsFAAOCAQEAkzwdC8YNXFhYKiMyPTfP L0QYy7DIdo6geC81zS0piyvVB0chX3DU6U68XVI61nTDbbO5Q/a+gWheohhvsHv8 P/u+d5fCDwFSXNVu+F41WMBJKPbrZP6vBRIr8J766dmPrsFonmlXMiYI5JijdsGb k/chUFTHrWHUem7lXPGUKGu7iTJ1RVGzMtIQebLyfpAWO44n0BKZGwA/oY/+iE1y UNi7MvHC51pGwAGhY0GuQOlnU8tk8v7+L6eVC+d1puP5BMUfQhri8F/tICxe3eKU ULkt5pl7qprVXb23h5GD5f9JQAF3MmqEUqEQe6Jow4ipmyr2rrrw+6n2KD4wBdtX PQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:26 2024 by rpki-client on console-fra.rpki-client.org