$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147142.roa File: AS147142.roa (raw, json) Hash identifier: 6iiVlgmV9SHp0ujOAhgRIKWTbCHp4/595kWCRenAtPE= Subject key identifier: 05:30:F6:DB:80:A1:2F:BC:8E:E8:04:CF:25:46:17:CD:EF:ED:C9:6F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2034440081E0978312A7FFD75C28F2CDF2B08875 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147142.roa Signing time: Fri 06 Oct 2023 15:33:33 +0000 ROA not before: Fri 06 Oct 2023 15:28:33 +0000 ROA not after: Fri 04 Oct 2024 15:33:33 +0000 asID: 147142 IP address blocks: 103.177.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:34:44:00:81:e0:97:83:12:a7:ff:d7:5c:28:f2:cd:f2:b0:88:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 6 15:28:33 2023 GMT Not After : Oct 4 15:33:33 2024 GMT Subject: CN=0530F6DB80A12FBC8EE804CF254617CDEFEDC96F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3e:92:12:1a:82:9a:9e:05:3c:37:ba:2b:fd: d3:c5:c4:ab:78:1f:ab:dd:50:d7:c2:29:d0:b1:01: 4e:5d:24:41:3f:f9:3e:11:af:b0:b6:7a:cf:bc:9b: c3:52:c9:6e:98:38:d7:12:00:bd:f2:c4:54:d3:89: c4:d1:9f:5f:d9:30:d6:41:e0:12:b9:ed:63:bc:ce: 51:c7:05:0e:88:69:77:4d:71:6b:47:de:86:26:53: 9d:e0:d9:aa:79:82:f5:70:b3:59:d0:1a:4d:81:1b: a5:ce:6f:e4:68:cb:bd:7b:a7:9d:6f:65:a3:98:1a: be:3c:3b:db:3b:d8:ec:ad:35:e5:1c:af:b3:0f:13: 3f:ea:19:90:3f:a5:aa:ca:a5:10:93:29:82:dd:ba: 5e:59:3e:a0:b2:66:0d:b6:9d:b0:e5:c0:76:66:35: 2e:1a:c3:d2:cb:19:2d:b9:d3:59:d9:4c:22:31:36: cc:e8:de:bd:11:73:32:18:47:dd:31:ef:87:22:02: 16:6c:fb:96:fd:4c:85:d9:4e:ac:64:44:59:a8:0c: fd:5c:d0:3b:da:7e:9f:95:6b:77:d3:db:f4:75:73: e8:84:86:ae:91:63:de:8c:8d:41:53:c5:21:c5:0a: fc:04:4d:e6:68:2e:99:20:cf:91:43:3b:2c:0a:40: 58:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:30:F6:DB:80:A1:2F:BC:8E:E8:04:CF:25:46:17:CD:EF:ED:C9:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147142.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.60.0/24 Signature Algorithm: sha256WithRSAEncryption 26:25:a8:ce:93:66:6a:ef:4b:80:e3:1f:07:45:ef:ff:8f:55: 27:38:be:1a:ec:fb:b9:20:ac:d8:5e:56:3d:6a:82:df:6b:ea: 9e:54:36:d7:f1:65:84:4d:f6:97:d8:a8:e6:16:7d:71:ef:b6: c3:31:91:3c:2a:b1:52:a3:81:9a:8e:95:af:9f:91:8c:c7:93: 7a:95:dc:8a:6d:05:c8:bf:8d:93:b0:e3:e7:1d:6b:a7:84:6a: 2f:03:db:8c:ea:1f:b7:f5:18:15:88:f6:33:87:25:6e:51:d3: b2:a9:30:44:ca:f1:f8:d6:d6:49:4f:77:bf:35:45:fc:71:37: 2f:ae:d8:4e:3b:a3:bd:e9:18:a0:b9:61:94:a1:43:b9:bd:f0: 14:d0:6c:24:07:a5:f3:45:15:94:37:a2:47:8c:0d:ec:76:37: c2:a0:aa:67:37:b6:f0:f7:07:77:1d:2d:3c:f3:97:55:62:c0: 09:dc:c7:79:0f:77:f8:5f:28:6e:f5:f4:aa:24:b8:21:71:1f: c2:93:45:8d:23:14:c2:20:ac:c4:fa:eb:33:e9:6b:be:79:46: 32:1e:a6:e8:c8:79:da:03:b8:b8:29:65:b7:9d:67:43:20:c9: e6:83:54:c8:15:33:11:b0:12:2f:26:4e:f4:3e:3b:47:1e:bf: ba:71:20:c0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUIDREAIHgl4MSp//XXCjyzfKwiHUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwNjE1MjgzM1oX DTI0MTAwNDE1MzMzM1owMzExMC8GA1UEAxMoMDUzMEY2REI4MEExMkZCQzhFRTgw NENGMjU0NjE3Q0RFRkVEQzk2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKI+khIagpqeBTw3uiv908XEq3gfq91Q18Ip0LEBTl0kQT/5PhGvsLZ6z7yb w1LJbpg41xIAvfLEVNOJxNGfX9kw1kHgErntY7zOUccFDohpd01xa0fehiZTneDZ qnmC9XCzWdAaTYEbpc5v5GjLvXunnW9lo5gavjw72zvY7K015Ryvsw8TP+oZkD+l qsqlEJMpgt26Xlk+oLJmDbadsOXAdmY1LhrD0ssZLbnTWdlMIjE2zOjevRFzMhhH 3THvhyICFmz7lv1MhdlOrGREWagM/VzQO9p+n5Vrd9Pb9HVz6ISGrpFj3oyNQVPF IcUK/ARN5mgumSDPkUM7LApAWFMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQFMPbb gKEvvI7oBM8lRhfN7+3JbzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzE0Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGexPDANBgkqhkiG9w0BAQsFAAOCAQEAJiWozpNmau9LgOMfB0Xv /49VJzi+Guz7uSCs2F5WPWqC32vqnlQ21/FlhE32l9io5hZ9ce+2wzGRPCqxUqOB mo6Vr5+RjMeTepXcim0FyL+Nk7Dj5x1rp4RqLwPbjOoft/UYFYj2M4clblHTsqkw RMrx+NbWSU93vzVF/HE3L67YTjujvekYoLlhlKFDub3wFNBsJAel80UVlDeiR4wN 7HY3wqCqZze28PcHdx0tPPOXVWLACdzHeQ93+F8obvX0qiS4IXEfwpNFjSMUwiCs xPrrM+lrvnlGMh6m6Mh52gO4uCllt51nQyDJ5oNUyBUzEbASLyZO9D47Rx6/unEg wA== -----END CERTIFICATE-----Generated at Wed May 8 21:02:23 2024 by rpki-client on console-fra.rpki-client.org