$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149327.roa File: AS149327.roa (raw, json) Hash identifier: UNF+Esr7WO1bFFmzGEPopFLjfbVp/NPJRpcPDz/YGMo= Subject key identifier: D1:D5:D1:9B:15:D6:E1:BC:81:33:A4:61:DA:BC:E3:CD:52:67:4A:46 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1E3B2514DF810CA5E59D66CAAD7D1D8085EF9068 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149327.roa Signing time: Tue 20 May 2025 14:00:00 +0000 ROA not before: Tue 20 May 2025 13:55:00 +0000 ROA not after: Tue 19 May 2026 14:00:00 +0000 asID: 149327 IP address blocks: 103.174.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:3b:25:14:df:81:0c:a5:e5:9d:66:ca:ad:7d:1d:80:85:ef:90:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 20 13:55:00 2025 GMT Not After : May 19 14:00:00 2026 GMT Subject: CN=D1D5D19B15D6E1BC8133A461DABCE3CD52674A46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d1:34:f0:08:12:24:a9:f4:47:3d:55:50:d9: 6b:a9:1b:dd:7c:23:05:0d:ac:ba:65:22:8d:d2:76: e4:69:2c:21:14:cb:4d:2f:c2:23:e3:cb:b8:f2:71: 53:18:7f:04:f6:20:5e:da:d9:28:d2:42:29:5d:3d: d4:69:fe:9a:ea:50:51:e9:58:19:48:9f:69:24:61: 92:ac:6f:bf:df:1f:76:42:05:b1:ae:4b:e6:6d:01: 7b:e4:74:35:4d:fe:ec:3b:88:39:75:c2:af:16:00: 80:b1:db:2f:85:10:6d:02:74:86:89:22:fd:64:05: ce:01:09:4a:27:07:07:a6:d3:c5:47:d5:50:d8:1c: 11:0e:74:d3:df:33:a8:7a:ed:21:ae:ff:11:ee:7f: 8e:46:9d:5e:46:80:6a:f4:15:3d:7b:c4:46:cc:02: f6:27:89:16:fb:2b:98:4e:dc:22:dd:03:93:32:41: a6:df:1e:71:98:77:16:54:c3:83:be:45:45:95:3d: 0d:74:12:95:c9:25:c0:6c:f5:72:4d:7f:90:6d:fe: ac:1b:c6:5d:5c:a6:bf:cd:59:30:d3:39:01:5c:02: da:8e:08:c1:cd:29:f7:3b:ca:51:52:bc:14:9c:d6: a5:49:93:6e:a2:a5:d3:43:0c:e8:92:02:99:1a:23: 83:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:D5:D1:9B:15:D6:E1:BC:81:33:A4:61:DA:BC:E3:CD:52:67:4A:46 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149327.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.208.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:41:1c:b4:8a:5f:60:63:62:a2:f8:3b:02:4f:5b:3f:6f:97: 83:3a:98:4c:3e:66:38:32:98:06:fc:ee:bb:a6:18:c3:cb:c7: 45:0e:0b:d5:41:17:26:6e:ef:c6:10:05:0d:3f:53:d8:e4:5c: e1:54:8c:ba:90:89:77:a0:1f:69:aa:9f:81:c0:93:d0:89:4d: f7:e5:a0:b7:89:48:80:db:90:83:1d:40:7b:88:f7:6c:bb:da: bd:f2:f2:b9:58:bb:47:af:2f:ae:81:7d:ca:ed:a2:af:88:45: 18:0e:a2:5c:1d:fd:8b:db:21:78:ff:1d:1a:87:59:4e:17:a6: 0a:29:ef:70:d2:80:cd:ee:60:75:36:3c:db:77:54:82:76:dc: fc:bf:42:e3:0d:3f:d8:28:fc:17:35:09:43:97:2f:4a:ab:f9: f5:27:0c:43:aa:23:0d:bd:42:89:71:a4:da:4a:4e:b5:82:c6: 25:dc:58:00:a6:26:ab:fc:6b:13:43:f4:fe:59:03:f7:75:bd: 11:32:7e:f6:d0:c9:ca:1b:22:6e:da:c8:fe:2b:a2:fe:02:91: d6:0f:42:3c:4d:0f:e7:57:a5:6e:16:07:c2:95:b6:69:47:2d: 63:e2:06:be:b0:e1:be:f8:54:fc:e0:70:15:41:57:5a:a6:d6: 91:92:3a:1b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUHjslFN+BDKXlnWbKrX0dgIXvkGgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUyMDEzNTUwMFoX DTI2MDUxOTE0MDAwMFowMzExMC8GA1UEAxMoRDFENUQxOUIxNUQ2RTFCQzgxMzNB NDYxREFCQ0UzQ0Q1MjY3NEE0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMfRNPAIEiSp9Ec9VVDZa6kb3XwjBQ2sumUijdJ25GksIRTLTS/CI+PLuPJx Uxh/BPYgXtrZKNJCKV091Gn+mupQUelYGUifaSRhkqxvv98fdkIFsa5L5m0Be+R0 NU3+7DuIOXXCrxYAgLHbL4UQbQJ0hoki/WQFzgEJSicHB6bTxUfVUNgcEQ50098z qHrtIa7/Ee5/jkadXkaAavQVPXvERswC9ieJFvsrmE7cIt0DkzJBpt8ecZh3FlTD g75FRZU9DXQSlcklwGz1ck1/kG3+rBvGXVymv81ZMNM5AVwC2o4Iwc0p9zvKUVK8 FJzWpUmTbqKl00MM6JICmRojg4sCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTR1dGb FdbhvIEzpGHavOPNUmdKRjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTMyNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeu0DANBgkqhkiG9w0BAQsFAAOCAQEAfEEctIpfYGNiovg7Ak9b P2+XgzqYTD5mODKYBvzuu6YYw8vHRQ4L1UEXJm7vxhAFDT9T2ORc4VSMupCJd6Af aaqfgcCT0IlN9+Wgt4lIgNuQgx1Ae4j3bLvavfLyuVi7R68vroF9yu2ir4hFGA6i XB39i9sheP8dGodZThemCinvcNKAze5gdTY823dUgnbc/L9C4w0/2Cj8FzUJQ5cv Sqv59ScMQ6ojDb1CiXGk2kpOtYLGJdxYAKYmq/xrE0P0/lkD93W9ETJ+9tDJyhsi btrI/iui/gKR1g9CPE0P51elbhYHwpW2aUctY+IGvrDhvvhU/OBwFUFXWqbWkZI6 Gw== -----END CERTIFICATE-----Generated at Tue Jun 3 23:10:07 2025 by rpki-client