$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147165.roa File: AS147165.roa (raw, json) Hash identifier: YtdR9n5s0i6rU1YZoUaVFzbVsyTOD0jxIzyCdamhmEc= Subject key identifier: D6:36:41:3E:94:8C:06:81:61:4D:0B:64:1E:1B:A9:3F:4E:66:29:36 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0304AD71D0658B91511CAD9567CBC8C75DE84885 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147165.roa Signing time: Wed 24 Apr 2024 04:00:00 +0000 ROA not before: Wed 24 Apr 2024 03:55:00 +0000 ROA not after: Wed 23 Apr 2025 04:00:00 +0000 asID: 147165 IP address blocks: 2001:df2:6140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:04:ad:71:d0:65:8b:91:51:1c:ad:95:67:cb:c8:c7:5d:e8:48:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 24 03:55:00 2024 GMT Not After : Apr 23 04:00:00 2025 GMT Subject: CN=D636413E948C0681614D0B641E1BA93F4E662936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c7:a2:f1:7a:94:eb:b0:6b:76:f0:49:f7:96: d6:0f:8e:dd:43:7b:51:99:f5:48:53:d9:28:49:68: 73:07:5f:a2:e0:5b:c2:26:13:1d:f3:77:5c:48:24: 02:b0:9e:cf:21:57:e1:fd:34:99:2b:06:1b:24:ad: d0:b3:30:5d:92:75:0e:4c:1c:20:21:d1:a8:58:07: c8:41:dd:4c:ff:b9:d7:36:76:71:30:15:f8:a3:98: 2c:d8:91:50:df:dd:31:66:f9:76:fc:38:3f:e0:40: 39:a8:5b:f0:bd:08:34:c7:f8:7b:2f:85:31:b8:39: ed:b3:c2:ae:14:9f:91:e3:20:bd:c8:0e:54:77:0b: b8:c2:20:60:b1:fe:d6:80:9a:1b:bd:79:9d:9c:9d: 34:be:b9:b7:51:fa:b9:6d:af:29:59:18:bf:3c:81: 79:6d:f6:1f:ce:f3:b2:8f:b6:09:33:b0:79:52:4f: 4c:c7:d0:99:2f:e1:15:cd:7e:c1:f7:fe:a0:ae:f9: 98:fa:ac:b6:ea:d5:da:ea:ac:54:38:62:7f:35:9e: 59:17:0c:59:55:16:b6:15:f1:e5:84:88:16:0f:ea: 96:d7:19:60:66:c7:dd:6e:3f:ad:ba:ad:b7:be:6b: c9:0d:60:66:68:b4:8f:33:26:5f:90:ab:d6:6f:1a: 4e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:36:41:3E:94:8C:06:81:61:4D:0B:64:1E:1B:A9:3F:4E:66:29:36 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147165.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:6140::/48 Signature Algorithm: sha256WithRSAEncryption 16:74:86:e7:db:a2:be:c8:a0:c1:ef:fd:53:66:54:b3:70:a7: d1:15:33:9e:22:d0:26:e2:3e:14:26:cb:b4:de:75:d6:ca:9c: d3:a4:25:53:73:ce:bc:57:57:22:16:52:25:fa:a8:59:78:32: 22:3c:ea:d0:6b:96:bc:5c:fd:06:4a:50:23:76:b1:f3:14:8a: 74:7f:14:4b:52:49:e3:ad:49:4d:84:aa:7d:da:1d:22:36:c1: 44:48:2f:ef:d1:ee:0f:ba:1c:f9:8d:39:8e:58:1b:63:be:ae: eb:55:c4:2d:cf:d1:da:a5:e1:89:f3:af:e8:67:8f:66:c7:70: f3:77:ae:45:42:3d:74:71:59:d2:05:36:f0:83:c3:c6:24:d9: 24:2b:cd:3e:e9:e3:30:22:7d:ea:53:19:8e:d1:ae:0d:50:3d: e5:74:9c:46:14:f3:2c:c9:78:6b:5a:24:81:f0:32:d1:94:7d: 27:9e:f0:d7:4a:f1:27:ad:07:85:f2:53:da:9d:32:35:98:3d: 3d:97:d8:b8:24:27:93:58:33:e4:80:75:26:9a:ac:0c:27:70: e7:40:d6:aa:18:d2:b2:5d:c2:60:47:54:a7:67:2f:86:4a:50: 80:9a:6b:ac:02:8d:ad:73:51:97:78:56:b2:c0:a0:d1:53:28: 92:a2:63:f8 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUAwStcdBli5FRHK2VZ8vIx13oSIUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyNDAzNTUwMFoX DTI1MDQyMzA0MDAwMFowMzExMC8GA1UEAxMoRDYzNjQxM0U5NDhDMDY4MTYxNEQw QjY0MUUxQkE5M0Y0RTY2MjkzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKrHovF6lOuwa3bwSfeW1g+O3UN7UZn1SFPZKElocwdfouBbwiYTHfN3XEgk ArCezyFX4f00mSsGGySt0LMwXZJ1DkwcICHRqFgHyEHdTP+51zZ2cTAV+KOYLNiR UN/dMWb5dvw4P+BAOahb8L0INMf4ey+FMbg57bPCrhSfkeMgvcgOVHcLuMIgYLH+ 1oCaG715nZydNL65t1H6uW2vKVkYvzyBeW32H87zso+2CTOweVJPTMfQmS/hFc1+ wff+oK75mPqsturV2uqsVDhifzWeWRcMWVUWthXx5YSIFg/qltcZYGbH3W4/rbqt t75ryQ1gZmi0jzMmX5Cr1m8aTq8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTWNkE+ lIwGgWFNC2QeG6k/TmYpNjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzE2NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfJhQDANBgkqhkiG9w0BAQsFAAOCAQEAFnSG59uivsigwe/9 U2ZUs3Cn0RUzniLQJuI+FCbLtN511sqc06QlU3POvFdXIhZSJfqoWXgyIjzq0GuW vFz9BkpQI3ax8xSKdH8US1JJ461JTYSqfdodIjbBREgv79HuD7oc+Y05jlgbY76u 61XELc/R2qXhifOv6GePZsdw83euRUI9dHFZ0gU28IPDxiTZJCvNPunjMCJ96lMZ jtGuDVA95XScRhTzLMl4a1okgfAy0ZR9J57w10rxJ60HhfJT2p0yNZg9PZfYuCQn k1gz5IB1JpqsDCdw50DWqhjSsl3CYEdUp2cvhkpQgJprrAKNrXNRl3hWssCg0VMo kqJj+A== -----END CERTIFICATE-----Generated at Wed May 8 18:12:16 2024 by rpki-client on console-fra.rpki-client.org