$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149327.roa File: AS149327.roa (raw, json) Hash identifier: txppFNKeGRC0KQPVSFgS2g2hxmcnius+3//tioMhZ/g= Subject key identifier: FC:61:83:F6:03:D0:1E:28:EF:B8:86:E6:71:44:8D:2D:02:0D:84:D3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1B080D15FDBDE548CC7BC52F95840786508B2690 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149327.roa Signing time: Tue 18 Jun 2024 13:32:15 +0000 ROA not before: Tue 18 Jun 2024 13:27:15 +0000 ROA not after: Tue 17 Jun 2025 13:32:15 +0000 asID: 149327 IP address blocks: 103.174.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:08:0d:15:fd:bd:e5:48:cc:7b:c5:2f:95:84:07:86:50:8b:26:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 18 13:27:15 2024 GMT Not After : Jun 17 13:32:15 2025 GMT Subject: CN=FC6183F603D01E28EFB886E671448D2D020D84D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:25:73:0b:ac:2e:8f:5e:ba:b2:ab:13:2b:54: 4c:4d:dd:c7:97:61:53:4c:66:3e:93:15:41:06:21: 31:d8:77:43:2e:81:51:bf:07:9c:63:a2:ee:aa:4c: 5f:66:d0:19:c0:d0:ce:fe:4a:da:28:6b:d1:12:6d: f1:ef:c5:56:7b:1e:10:79:b4:93:f4:d2:b4:74:99: 1b:65:e4:c4:04:8c:d9:f9:3d:e0:d7:45:a8:88:0b: 07:4c:f0:ae:2a:c9:16:03:6d:cf:3a:4f:e8:3f:a2: 06:24:c7:cc:a3:cb:db:d0:4b:96:74:e2:48:21:d9: c5:ad:7f:c0:72:9b:7d:2f:76:76:77:98:71:9d:ab: c8:52:6c:94:a4:62:ee:99:db:ce:a3:72:ac:6b:83: 33:ea:0b:f1:4d:73:ea:fe:27:03:9f:4f:f1:1d:43: 8e:1d:f2:fa:ae:02:15:ee:55:1a:bf:7c:4a:64:fb: 84:0a:86:73:4d:db:ec:71:20:48:97:fb:18:04:fc: 9d:45:22:ba:27:84:a5:af:37:cd:4f:17:ef:b7:71: 79:04:9d:9e:42:cf:c3:35:df:94:27:8f:b5:40:46: ec:96:0a:83:6f:53:76:d1:1c:b0:52:b5:2c:23:0c: 3f:23:7b:89:f2:84:ae:03:b3:84:94:7a:9e:69:d4: 35:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:61:83:F6:03:D0:1E:28:EF:B8:86:E6:71:44:8D:2D:02:0D:84:D3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149327.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.208.0/23 Signature Algorithm: sha256WithRSAEncryption 73:f9:1f:ed:3c:ba:b0:7e:6a:2f:98:12:5b:66:86:e6:bc:72: a0:01:93:94:76:96:d1:5d:2e:21:5c:92:98:11:02:ae:42:91: 29:c4:12:b4:8b:07:bd:dc:ee:49:64:fd:21:82:7e:0e:4c:d2: d0:22:49:0c:c9:5d:9e:62:bd:a9:84:84:5f:28:96:7c:97:da: 05:22:63:31:cf:a4:b3:37:aa:c3:f4:e7:30:ce:81:19:ba:6a: 99:ed:9e:90:5e:a2:91:ee:3b:2e:d5:59:94:7a:8d:e8:e5:ac: dd:90:36:8d:ad:a4:af:79:05:e8:1a:03:7b:1c:5d:bb:83:89: 78:b3:62:a6:90:a6:a0:c8:d3:fd:c1:62:c2:9b:e7:92:11:88: dd:ba:96:41:58:21:d3:1f:93:71:00:07:fc:88:a6:a7:86:9d: 2d:ff:d2:1d:03:1d:3e:b8:e7:7c:a7:f1:cb:bc:ce:37:39:6d: 61:e0:86:95:1d:9f:e9:65:b4:62:42:bc:9c:60:07:8a:9b:f3: f0:72:6f:da:08:95:b6:5e:80:8a:74:da:f6:fe:c5:11:fc:5b: fe:f6:af:8e:78:62:7a:ab:94:d3:c2:7a:e8:ef:f5:23:c7:0e: ac:5b:c3:71:79:17:1f:80:e7:2e:48:1b:b4:19:aa:46:ed:83: 8f:74:3d:b3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGwgNFf295UjMe8UvlYQHhlCLJpAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYxODEzMjcxNVoX DTI1MDYxNzEzMzIxNVowMzExMC8GA1UEAxMoRkM2MTgzRjYwM0QwMUUyOEVGQjg4 NkU2NzE0NDhEMkQwMjBEODREMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALwlcwusLo9eurKrEytUTE3dx5dhU0xmPpMVQQYhMdh3Qy6BUb8HnGOi7qpM X2bQGcDQzv5K2ihr0RJt8e/FVnseEHm0k/TStHSZG2XkxASM2fk94NdFqIgLB0zw rirJFgNtzzpP6D+iBiTHzKPL29BLlnTiSCHZxa1/wHKbfS92dneYcZ2ryFJslKRi 7pnbzqNyrGuDM+oL8U1z6v4nA59P8R1Djh3y+q4CFe5VGr98SmT7hAqGc03b7HEg SJf7GAT8nUUiuieEpa83zU8X77dxeQSdnkLPwzXflCePtUBG7JYKg29TdtEcsFK1 LCMMPyN7ifKErgOzhJR6nmnUNQUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT8YYP2 A9AeKO+4huZxRI0tAg2E0zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTMyNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeu0DANBgkqhkiG9w0BAQsFAAOCAQEAc/kf7Ty6sH5qL5gSW2aG 5rxyoAGTlHaW0V0uIVySmBECrkKRKcQStIsHvdzuSWT9IYJ+DkzS0CJJDMldnmK9 qYSEXyiWfJfaBSJjMc+kszeqw/TnMM6BGbpqme2ekF6ike47LtVZlHqN6OWs3ZA2 ja2kr3kF6BoDexxdu4OJeLNippCmoMjT/cFiwpvnkhGI3bqWQVgh0x+TcQAH/Iim p4adLf/SHQMdPrjnfKfxy7zONzltYeCGlR2f6WW0YkK8nGAHipvz8HJv2giVtl6A inTa9v7FEfxb/vavjnhiequU08J66O/1I8cOrFvDcXkXH4DnLkgbtBmqRu2Dj3Q9 sw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:26 2024 by rpki-client on console-fra.rpki-client.org