$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149315.roa File: AS149315.roa (raw, json) Hash identifier: vmKmv56t7V6UnbMyT6QIyc4GZwptOWn1UOqCf4M2swY= Subject key identifier: 95:2E:3D:18:0D:5D:E1:49:FC:24:09:14:64:0C:E4:3A:92:17:79:65 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 51F9375F21A42F7D56EE7CA16C249E640756C9D1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149315.roa Signing time: Tue 19 Mar 2024 07:00:00 +0000 ROA not before: Tue 19 Mar 2024 06:55:00 +0000 ROA not after: Tue 18 Mar 2025 07:00:00 +0000 asID: 149315 IP address blocks: 2407:7c0:200::/40 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:f9:37:5f:21:a4:2f:7d:56:ee:7c:a1:6c:24:9e:64:07:56:c9:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 19 06:55:00 2024 GMT Not After : Mar 18 07:00:00 2025 GMT Subject: CN=952E3D180D5DE149FC240914640CE43A92177965 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1b:8c:ba:d4:20:1a:2e:33:a2:16:60:03:be: fa:57:3d:94:b7:63:28:ee:3a:fd:91:db:3e:d9:58: bc:e7:38:7c:78:88:fa:3f:f8:87:a6:13:67:8b:e0: c2:e1:00:f0:da:dc:84:d4:50:0b:4c:0b:f8:9b:72: db:df:14:46:a8:e5:68:a2:2e:86:24:8a:3a:b6:46: 93:39:eb:98:10:3a:36:c4:8b:37:62:6b:72:f5:69: 76:aa:c3:e3:b3:b5:38:c1:d4:b4:23:6b:2f:ac:21: 3b:f8:a6:f3:af:c8:e5:95:0c:1f:33:36:0a:16:4f: 93:85:cb:94:ed:89:37:2e:90:01:cc:5a:69:9e:13: cd:b1:54:5a:c9:46:5c:6d:96:09:d7:8f:aa:74:48: 78:dc:1c:60:8a:09:2c:7f:94:77:92:ba:af:3b:60: b5:3f:99:76:c0:54:35:42:80:31:2f:66:3d:59:bf: 1b:6c:08:bb:4f:3a:1a:b9:62:9b:65:49:0e:60:fa: f2:18:2f:1e:30:6c:94:dc:fd:dc:e3:49:bd:d5:9a: 06:25:b7:58:08:05:f0:45:55:53:eb:2e:fa:49:28: ca:58:c2:9c:d2:88:60:b9:d2:70:a0:16:c0:51:8b: ed:d5:4b:22:25:b8:99:13:41:a6:31:ee:c5:da:2e: 26:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:2E:3D:18:0D:5D:E1:49:FC:24:09:14:64:0C:E4:3A:92:17:79:65 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149315.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:7c0:200::/40 Signature Algorithm: sha256WithRSAEncryption 7a:05:c2:fc:ef:4e:86:f9:3b:7b:01:25:03:69:1e:21:8c:09: 31:97:d2:f4:fa:4d:3f:ba:3f:09:34:f1:ea:12:bd:19:33:ca: d0:a5:47:40:d2:8a:1e:0a:6e:dd:0d:3d:2e:f2:49:d3:f6:d5: 0f:02:fb:14:8d:18:b3:46:cf:76:96:cd:4a:68:c0:48:37:78: 9d:11:36:68:19:9f:6f:ec:7b:2f:f2:29:76:11:cc:57:46:b0: 4b:5e:1f:78:8c:e3:e3:67:d5:dc:ed:ba:45:e4:03:f6:d9:83: a5:3f:5d:ef:2b:8f:86:e0:ff:7d:b1:6d:bc:eb:53:a5:d0:5f: 3c:aa:83:be:f4:33:a8:ca:7d:7b:14:34:4e:61:11:bb:f6:bd: 04:8f:f4:2c:1d:03:de:bf:3f:70:de:e0:18:c3:b1:4b:4e:0b: 2c:61:58:5b:6e:dd:56:e5:f1:07:ab:fc:24:ea:77:b5:56:9d: de:cd:60:ab:90:63:64:dc:be:c3:d0:3c:cd:4e:7b:2c:b1:cd: 3b:2e:35:6e:48:4c:52:ca:bc:54:29:81:82:97:9c:75:3e:b5: 82:d8:51:3e:42:28:f8:84:14:6e:31:e2:34:76:7c:fa:c5:aa: 1f:4e:bb:5b:32:2a:eb:d6:84:57:7d:05:d7:a6:90:66:d4:d9: d3:f8:04:14 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUUfk3XyGkL31W7nyhbCSeZAdWydEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxOTA2NTUwMFoX DTI1MDMxODA3MDAwMFowMzExMC8GA1UEAxMoOTUyRTNEMTgwRDVERTE0OUZDMjQw OTE0NjQwQ0U0M0E5MjE3Nzk2NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM4bjLrUIBouM6IWYAO++lc9lLdjKO46/ZHbPtlYvOc4fHiI+j/4h6YTZ4vg wuEA8NrchNRQC0wL+Jty298URqjlaKIuhiSKOrZGkznrmBA6NsSLN2JrcvVpdqrD 47O1OMHUtCNrL6whO/im86/I5ZUMHzM2ChZPk4XLlO2JNy6QAcxaaZ4TzbFUWslG XG2WCdePqnRIeNwcYIoJLH+Ud5K6rztgtT+ZdsBUNUKAMS9mPVm/G2wIu086Grli m2VJDmD68hgvHjBslNz93ONJvdWaBiW3WAgF8EVVU+su+kkoyljCnNKIYLnScKAW wFGL7dVLIiW4mRNBpjHuxdouJjsCAwEAAaOCAdIwggHOMB0GA1UdDgQWBBSVLj0Y DV3hSfwkCRRkDOQ6khd5ZTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTMxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACQHB8ACMA0GCSqGSIb3DQEBCwUAA4IBAQB6BcL8706G+Tt7ASUD aR4hjAkxl9L0+k0/uj8JNPHqEr0ZM8rQpUdA0ooeCm7dDT0u8knT9tUPAvsUjRiz Rs92ls1KaMBIN3idETZoGZ9v7Hsv8il2EcxXRrBLXh94jOPjZ9Xc7bpF5AP22YOl P13vK4+G4P99sW2861Ol0F88qoO+9DOoyn17FDROYRG79r0Ej/QsHQPevz9w3uAY w7FLTgssYVhbbt1W5fEHq/wk6ne1Vp3ezWCrkGNk3L7D0DzNTnsssc07LjVuSExS yrxUKYGCl5x1PrWC2FE+Qij4hBRuMeI0dnz6xaofTrtbMirr1oRXfQXXppBm1NnT +AQU -----END CERTIFICATE-----Generated at Wed May 8 21:02:23 2024 by rpki-client on console-fra.rpki-client.org