$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS149353.roa File: AS149353.roa (raw, json) Hash identifier: 7p+mc9dkUUP4/bro3duQqksCzeTQzCQ1UMXPqFJ+eQo= Subject key identifier: D5:08:6D:1C:45:C1:BD:77:52:4B:80:5D:63:A5:AA:0C:59:B2:11:14 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4AD4347FA9C707B6C01E3AB5AD6FC03C72A46323 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS149353.roa Signing time: Thu 06 Feb 2025 10:44:55 +0000 ROA not before: Thu 06 Feb 2025 10:39:55 +0000 ROA not after: Thu 05 Feb 2026 10:44:55 +0000 asID: 149353 IP address blocks: 157.15.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:d4:34:7f:a9:c7:07:b6:c0:1e:3a:b5:ad:6f:c0:3c:72:a4:63:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 6 10:39:55 2025 GMT Not After : Feb 5 10:44:55 2026 GMT Subject: CN=D5086D1C45C1BD77524B805D63A5AA0C59B21114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:42:a1:05:0a:d8:a0:05:39:26:a0:05:4d:7c: 31:cc:c9:c9:88:76:23:ad:df:a9:c1:3a:15:5d:46: 3f:54:36:5b:c3:ee:04:f3:50:8c:46:17:56:d9:da: f6:1f:fa:db:b0:ca:9d:69:97:a2:e4:41:d1:7b:24: 3f:db:ed:39:f6:c0:8b:73:97:ef:55:23:2f:4a:34: 15:02:95:70:f0:57:a2:aa:f9:82:93:aa:29:eb:cd: b3:e4:26:a7:d5:37:54:95:5f:7f:98:ef:13:91:f1: fa:04:a3:15:51:32:c5:d9:5c:ea:5e:d9:48:85:4d: c4:18:e1:14:d9:dd:d2:d1:77:e1:13:f9:e3:ea:3a: a8:f4:d1:40:65:a2:51:ca:41:1b:de:a9:5e:4a:1f: c9:95:aa:84:bf:36:ae:b4:a9:48:f2:26:4b:ca:96: a7:60:05:ba:bd:9a:bd:1f:2b:2b:c4:69:1e:80:55: 25:71:bc:6e:5b:25:4b:59:52:0e:54:c3:7c:bc:97: 8b:78:fc:2c:5f:c2:8c:5d:24:6b:b0:57:a3:c6:b7: 2d:3d:28:1c:10:90:31:80:00:36:d8:1f:97:8a:85: d6:a8:4d:be:fa:3f:77:55:bf:5c:ff:37:42:f2:fc: a5:c9:8c:be:bc:20:c5:d2:7a:5c:85:b1:ac:90:97: 4f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:08:6D:1C:45:C1:BD:77:52:4B:80:5D:63:A5:AA:0C:59:B2:11:14 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS149353.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.48.0/23 Signature Algorithm: sha256WithRSAEncryption 57:6b:74:52:ec:b2:59:41:21:22:f4:ce:d6:cf:41:c4:b6:c4: 77:84:60:bb:bd:5c:59:65:38:05:75:e1:ae:02:99:ee:50:ec: 7d:ad:ae:07:a1:13:f5:30:33:34:10:8c:8a:d5:f8:8d:c0:df: 32:0f:6e:3a:08:3e:c1:94:fd:c0:8e:f4:bf:f4:f1:59:48:86: 1e:0a:28:a4:c7:8e:79:26:81:74:da:2d:80:81:8e:d5:ce:6f: 8f:4f:32:72:57:bb:a2:91:64:19:c0:39:ed:2b:d6:39:35:58: 47:3f:e2:42:7f:9d:b7:d7:0f:25:16:d0:b2:04:52:bc:1a:50: dd:d2:6c:3d:fc:6c:ea:e6:8e:35:ea:fc:b2:f1:2f:62:2b:22: d1:30:74:15:3a:d5:77:1b:6d:95:9e:03:50:c9:30:34:cd:01: a9:bd:bb:de:80:58:f9:ae:37:0b:3a:d1:73:0b:02:86:b7:2c: ac:eb:cf:d4:21:eb:ce:57:2a:d6:61:8b:9a:3a:da:36:12:53: 4f:7f:6b:01:64:ac:a4:bc:dd:4b:5a:6f:25:41:1b:ad:06:89: 03:b0:7f:1c:ea:84:cf:20:77:99:3b:af:9a:b8:cb:76:44:9c: c1:c8:74:92:6f:c4:9f:ac:b7:de:91:8d:4d:3b:32:36:76:36: d2:c0:05:b5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUStQ0f6nHB7bAHjq1rW/APHKkYyMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk1NVoX DTI2MDIwNTEwNDQ1NVowMzExMC8GA1UEAxMoRDUwODZEMUM0NUMxQkQ3NzUyNEI4 MDVENjNBNUFBMEM1OUIyMTExNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKJCoQUK2KAFOSagBU18MczJyYh2I63fqcE6FV1GP1Q2W8PuBPNQjEYXVtna 9h/627DKnWmXouRB0XskP9vtOfbAi3OX71UjL0o0FQKVcPBXoqr5gpOqKevNs+Qm p9U3VJVff5jvE5Hx+gSjFVEyxdlc6l7ZSIVNxBjhFNnd0tF34RP54+o6qPTRQGWi UcpBG96pXkofyZWqhL82rrSpSPImS8qWp2AFur2avR8rK8RpHoBVJXG8blslS1lS DlTDfLyXi3j8LF/CjF0ka7BXo8a3LT0oHBCQMYAANtgfl4qF1qhNvvo/d1W/XP83 QvL8pcmMvrwgxdJ6XIWxrJCXT0sCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTVCG0c RcG9d1JLgF1jpaoMWbIRFDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0OTM1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ0PMDANBgkqhkiG9w0BAQsFAAOCAQEAV2t0UuyyWUEhIvTO1s9B xLbEd4Rgu71cWWU4BXXhrgKZ7lDsfa2uB6ET9TAzNBCMitX4jcDfMg9uOgg+wZT9 wI70v/TxWUiGHgoopMeOeSaBdNotgIGO1c5vj08ycle7opFkGcA57SvWOTVYRz/i Qn+dt9cPJRbQsgRSvBpQ3dJsPfxs6uaONer8svEvYisi0TB0FTrVdxttlZ4DUMkw NM0Bqb273oBY+a43CzrRcwsChrcsrOvP1CHrzlcq1mGLmjraNhJTT39rAWSspLzd S1pvJUEbrQaJA7B/HOqEzyB3mTuvmrjLdkScwch0km/En6y33pGNTTsyNnY20sAF tQ== -----END CERTIFICATE-----Generated at Mon Apr 7 03:34:03 2025 by rpki-client