$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149325.roa File: AS149325.roa (raw, json) Hash identifier: 5Pggg0kQ7z/boT9O7cFQ7lqZSE8x5bzy25dAscwsY7M= Subject key identifier: 4F:55:58:E7:A0:C5:7C:BC:29:B8:35:C8:DD:C6:07:99:70:DB:03:02 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 34A79BEE867AE7D0B5BDFEEDEC7C28993F142408 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149325.roa Signing time: Thu 09 Jan 2025 03:00:00 +0000 ROA not before: Thu 09 Jan 2025 02:55:00 +0000 ROA not after: Thu 08 Jan 2026 03:00:00 +0000 asID: 149325 IP address blocks: 103.178.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:a7:9b:ee:86:7a:e7:d0:b5:bd:fe:ed:ec:7c:28:99:3f:14:24:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 9 02:55:00 2025 GMT Not After : Jan 8 03:00:00 2026 GMT Subject: CN=4F5558E7A0C57CBC29B835C8DDC6079970DB0302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ef:fc:aa:25:d7:99:60:a5:f2:f9:e0:1a:99: 55:07:ab:9e:c9:17:e0:4e:e6:0b:3f:5d:51:04:87: 64:5d:a5:9a:a7:61:ea:0f:63:57:0d:14:aa:ba:d9: 09:17:b3:86:a3:28:63:cb:f3:2e:a6:b0:7c:43:38: a9:9a:da:5f:69:b1:45:61:96:f5:6f:dd:2a:ba:8f: 4d:43:25:61:2c:ab:1f:0a:9c:ff:34:8d:8b:0e:4f: 83:52:89:f3:96:bc:53:ee:b5:9d:80:5e:c1:59:02: 33:89:5f:74:36:05:69:c4:70:c0:24:0b:b8:3e:03: e2:73:83:f4:52:bd:26:b3:4b:60:3a:7e:4d:75:75: 07:db:9e:24:f1:42:11:8a:81:93:b1:a5:4d:26:e0: 6d:63:71:75:0d:95:85:8d:aa:c5:bd:e1:5d:9d:71: 60:09:90:db:b0:17:3a:90:4d:13:89:6b:82:fc:54: a6:db:51:4f:79:89:ae:e5:dc:9e:81:12:e7:19:27: 7d:bd:1c:b7:63:81:59:57:05:e1:6d:d3:78:ef:c3: df:a8:f4:73:38:9e:0f:75:22:82:bc:d8:78:e0:90: 90:ad:c5:4d:36:2f:77:dd:c7:6e:6e:56:2c:da:39: 81:7e:11:33:94:0a:22:19:49:9c:9b:6b:5d:95:e1: 74:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:55:58:E7:A0:C5:7C:BC:29:B8:35:C8:DD:C6:07:99:70:DB:03:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149325.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.172.0/23 Signature Algorithm: sha256WithRSAEncryption 32:30:e8:3f:69:d6:5d:e2:c3:17:01:64:16:a8:7f:e8:50:be: 34:83:97:4d:f6:f7:6c:c0:aa:06:e6:8c:46:69:09:bb:7c:8a: 44:b4:7f:a0:30:40:3c:93:0a:bb:91:31:f2:bd:81:4a:5d:5e: a4:0b:a8:39:c7:3a:97:0f:f5:49:cb:2b:ed:52:66:19:0d:fe: 6d:f9:28:1e:5d:f0:a3:12:30:cc:6a:a6:3f:21:61:52:ec:2d: d8:86:16:67:94:b1:31:1e:6e:07:d7:b8:09:c8:e4:ff:ef:fd: ab:71:76:dc:aa:e1:7b:e0:ed:95:75:2d:22:05:18:98:fe:13: 47:b5:22:be:aa:e9:5f:50:76:16:aa:89:3c:f6:b2:5d:18:2e: 8f:03:0b:42:01:8a:27:f6:4e:a4:df:4d:4d:15:70:af:90:ea: 8f:37:77:d6:a1:63:67:a7:d6:bd:34:99:4e:7e:21:ed:a5:2a: b0:95:97:8a:bc:0e:55:ce:73:93:e6:fe:1d:62:37:a9:a8:86: 5c:aa:44:31:d6:d5:33:28:f0:47:9d:40:56:a2:00:69:31:b6: 90:de:38:7b:4b:88:98:c3:8f:5c:4b:fa:e0:57:b1:5d:61:ab: 89:4a:4c:52:76:15:67:b9:af:6c:bf:18:ce:e1:28:21:29:ba: f5:a2:08:5b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUNKeb7oZ659C1vf7t7HwomT8UJAgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEwOTAyNTUwMFoX DTI2MDEwODAzMDAwMFowMzExMC8GA1UEAxMoNEY1NTU4RTdBMEM1N0NCQzI5Qjgz NUM4RERDNjA3OTk3MERCMDMwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMDv/Kol15lgpfL54BqZVQernskX4E7mCz9dUQSHZF2lmqdh6g9jVw0UqrrZ CRezhqMoY8vzLqawfEM4qZraX2mxRWGW9W/dKrqPTUMlYSyrHwqc/zSNiw5Pg1KJ 85a8U+61nYBewVkCM4lfdDYFacRwwCQLuD4D4nOD9FK9JrNLYDp+TXV1B9ueJPFC EYqBk7GlTSbgbWNxdQ2VhY2qxb3hXZ1xYAmQ27AXOpBNE4lrgvxUpttRT3mJruXc noES5xknfb0ct2OBWVcF4W3TeO/D36j0czieD3UigrzYeOCQkK3FTTYvd93Hbm5W LNo5gX4RM5QKIhlJnJtrXZXhdNsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRPVVjn oMV8vCm4NcjdxgeZcNsDAjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTMyNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeyrDANBgkqhkiG9w0BAQsFAAOCAQEAMjDoP2nWXeLDFwFkFqh/ 6FC+NIOXTfb3bMCqBuaMRmkJu3yKRLR/oDBAPJMKu5Ex8r2BSl1epAuoOcc6lw/1 Scsr7VJmGQ3+bfkoHl3woxIwzGqmPyFhUuwt2IYWZ5SxMR5uB9e4Ccjk/+/9q3F2 3Krhe+DtlXUtIgUYmP4TR7UivqrpX1B2FqqJPPayXRgujwMLQgGKJ/ZOpN9NTRVw r5Dqjzd31qFjZ6fWvTSZTn4h7aUqsJWXirwOVc5zk+b+HWI3qaiGXKpEMdbVMyjw R51AVqIAaTG2kN44e0uImMOPXEv64FexXWGriUpMUnYVZ7mvbL8YzuEoISm69aII Ww== -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:23 2025 by rpki-client