$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147165.roa File: AS147165.roa (raw, json) Hash identifier: fhuQOtjKe1rfmUZGbB269h/H417Nd1cGnHTpSOu/5R8= Subject key identifier: D3:F3:BB:FA:D9:8D:7E:A3:CA:71:1A:76:C1:B3:9C:8B:E2:EC:B2:27 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2621F3D4DDD34AFC485D8876DA170689BEFFD05B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147165.roa Signing time: Wed 26 Mar 2025 04:00:00 +0000 ROA not before: Wed 26 Mar 2025 03:55:00 +0000 ROA not after: Wed 25 Mar 2026 04:00:00 +0000 asID: 147165 IP address blocks: 2001:df2:6140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:21:f3:d4:dd:d3:4a:fc:48:5d:88:76:da:17:06:89:be:ff:d0:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 26 03:55:00 2025 GMT Not After : Mar 25 04:00:00 2026 GMT Subject: CN=D3F3BBFAD98D7EA3CA711A76C1B39C8BE2ECB227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:25:99:1a:92:34:bf:0f:e0:a0:eb:cf:1f:46: f2:ca:33:c3:d1:cc:e8:c6:2c:8b:6c:a3:4c:33:2f: 04:26:75:78:43:d0:15:94:87:bc:ce:70:82:96:2d: 1b:19:43:a2:f9:d1:96:d1:58:18:58:02:cf:0f:21: 1d:b1:b7:c0:44:29:1d:36:9e:b9:2a:8a:b8:45:bc: f4:ec:27:c0:67:cc:b9:b1:bf:37:54:0b:55:48:e2: 54:23:21:fe:f0:9c:fc:3e:d4:c5:38:fb:c5:23:26: 2a:da:ff:47:33:b7:13:02:4b:b5:cd:96:a0:0c:01: 84:ba:e0:2d:56:ca:dc:b7:fb:f6:72:02:b2:63:18: 90:30:90:c3:b1:c4:70:c4:f2:5a:8c:6a:e3:b8:01: 13:47:92:e8:f1:6e:27:9c:24:3d:96:aa:d5:48:55: 86:15:59:09:32:f6:31:b1:e2:84:ff:56:07:c7:a4: 78:c2:19:7b:87:5c:f7:6d:a0:2c:b7:66:f2:6c:50: ff:44:2f:41:93:a3:9b:33:3b:10:f2:9c:6e:2d:23: 9c:0c:c7:fd:49:74:c4:52:bd:a5:61:3a:c7:82:1f: f6:18:3e:75:5e:96:f9:9d:bd:e4:34:c5:9f:6f:19: aa:dd:57:86:80:ab:71:3f:07:a6:75:5d:34:86:68: 6f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:F3:BB:FA:D9:8D:7E:A3:CA:71:1A:76:C1:B3:9C:8B:E2:EC:B2:27 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147165.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:6140::/48 Signature Algorithm: sha256WithRSAEncryption 5c:26:37:98:fc:f4:4f:12:2d:aa:08:6c:ec:72:d6:c5:9d:c8: 67:ff:24:66:44:de:8b:0e:f0:a4:ca:b3:92:d4:16:19:0b:09: 0b:e8:01:a1:0b:98:5d:5a:0b:89:f2:7a:e1:6e:62:42:c8:f7: a0:3a:61:9e:4a:8c:35:59:4e:17:9a:13:4e:30:ba:20:6e:c6: 7a:68:c6:70:56:93:25:00:dd:cb:27:ea:b0:82:27:14:aa:41: 00:16:19:62:bc:b5:4f:06:9e:30:d3:5f:40:73:cd:c2:bf:4b: eb:f6:90:eb:ef:3c:20:e4:c4:05:80:eb:65:66:5a:c7:79:a9: f8:2d:2c:4d:1c:85:8d:b3:12:fe:98:7e:53:50:50:54:09:ab: f6:56:72:c0:7c:87:bf:f8:0b:dd:f4:ba:80:c7:47:d6:12:27: 01:db:cc:9a:f9:f0:58:1e:7e:2e:30:3a:95:77:11:bf:a6:47: 4c:04:70:1b:7b:5d:f8:12:5e:ca:d5:7a:39:4c:7a:21:6b:d3: 13:cf:77:03:26:a1:32:f2:1c:36:87:4b:fe:2d:83:c4:2f:51: d3:bf:22:dc:67:a9:dd:be:e0:f0:f4:32:0a:15:dc:7f:fc:f1: a1:d3:74:34:02:a5:46:3a:92:1f:f0:75:ee:65:c9:f2:25:a1: 9b:8d:77:6a -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUJiHz1N3TSvxIXYh22hcGib7/0FswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMyNjAzNTUwMFoX DTI2MDMyNTA0MDAwMFowMzExMC8GA1UEAxMoRDNGM0JCRkFEOThEN0VBM0NBNzEx QTc2QzFCMzlDOEJFMkVDQjIyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALslmRqSNL8P4KDrzx9G8sozw9HM6MYsi2yjTDMvBCZ1eEPQFZSHvM5wgpYt GxlDovnRltFYGFgCzw8hHbG3wEQpHTaeuSqKuEW89OwnwGfMubG/N1QLVUjiVCMh /vCc/D7UxTj7xSMmKtr/RzO3EwJLtc2WoAwBhLrgLVbK3Lf79nICsmMYkDCQw7HE cMTyWoxq47gBE0eS6PFuJ5wkPZaq1UhVhhVZCTL2MbHihP9WB8ekeMIZe4dc922g LLdm8mxQ/0QvQZOjmzM7EPKcbi0jnAzH/Ul0xFK9pWE6x4If9hg+dV6W+Z295DTF n28Zqt1XhoCrcT8HpnVdNIZob80CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTT87v6 2Y1+o8pxGnbBs5yL4uyyJzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzE2NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfJhQDANBgkqhkiG9w0BAQsFAAOCAQEAXCY3mPz0TxItqghs 7HLWxZ3IZ/8kZkTeiw7wpMqzktQWGQsJC+gBoQuYXVoLifJ64W5iQsj3oDphnkqM NVlOF5oTTjC6IG7GemjGcFaTJQDdyyfqsIInFKpBABYZYry1TwaeMNNfQHPNwr9L 6/aQ6+88IOTEBYDrZWZax3mp+C0sTRyFjbMS/ph+U1BQVAmr9lZywHyHv/gL3fS6 gMdH1hInAdvMmvnwWB5+LjA6lXcRv6ZHTARwG3td+BJeytV6OUx6IWvTE893Ayah MvIcNodL/i2DxC9R078i3Gep3b7g8PQyChXcf/zxodN0NAKlRjqSH/B17mXJ8iWh m413ag== -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:05 2025 by rpki-client