$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149350.roa File: AS149350.roa (raw, json) Hash identifier: xNNBtK4UoZhFOkXE4Vrh2s6rIBbTpSW+ZG+03Vz3lKw= Subject key identifier: 8A:1A:60:E2:72:D1:B5:C6:C0:78:28:6C:5E:23:B2:B0:16:E4:B2:5D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3EB3F988937B88A36E7163CF0DB5CC8E921AC191 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149350.roa Signing time: Tue 16 Jan 2024 09:00:00 +0000 ROA not before: Tue 16 Jan 2024 08:55:00 +0000 ROA not after: Tue 14 Jan 2025 09:00:00 +0000 asID: 149350 IP address blocks: 103.179.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:b3:f9:88:93:7b:88:a3:6e:71:63:cf:0d:b5:cc:8e:92:1a:c1:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 16 08:55:00 2024 GMT Not After : Jan 14 09:00:00 2025 GMT Subject: CN=8A1A60E272D1B5C6C078286C5E23B2B016E4B25D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:df:5e:87:75:73:bf:d4:eb:8b:0e:3b:78:dc: 1c:c4:cc:60:4c:d4:68:6f:e6:e1:c9:2b:cc:2d:f1: 4d:dd:11:77:f4:51:33:31:d9:f3:86:c1:2b:c8:86: 48:39:58:e4:13:af:77:49:89:58:c8:77:7e:17:64: 99:28:b6:73:75:03:14:7e:5f:b0:27:54:59:02:83: 8a:62:1f:7a:f5:88:ec:34:ee:cd:88:54:7f:20:a4: b0:f6:1e:a5:50:f2:67:0e:e0:49:07:b0:4b:4a:80: 52:d4:bf:5b:ea:08:c7:50:54:05:63:13:ab:be:e3: 08:55:56:b4:08:df:a6:51:82:b4:74:77:d9:4c:65: 32:28:3b:ea:d2:31:6f:2f:71:1f:47:4c:59:11:df: 4a:bc:fb:3d:93:98:8b:d3:66:3e:c1:75:60:33:d3: 45:76:b1:9a:d5:88:4a:32:40:e5:f5:d8:09:60:c6: 81:92:82:78:7b:cd:0c:0e:79:b7:f4:ba:91:8e:18: aa:6f:01:15:d1:94:36:bf:83:85:0a:91:de:64:e4: 2b:95:97:ff:a3:07:70:0d:5d:42:3d:98:7f:7f:71: 76:0f:b0:64:d5:63:9e:61:db:b4:50:ad:ce:b8:d9: 01:c2:d7:51:dd:ba:c6:fb:2c:c1:b5:9a:b0:56:2e: b9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1A:60:E2:72:D1:B5:C6:C0:78:28:6C:5E:23:B2:B0:16:E4:B2:5D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149350.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.252.0/23 Signature Algorithm: sha256WithRSAEncryption 14:9b:0d:11:43:77:a4:15:89:82:ff:e1:55:1e:e0:75:72:28: 96:c7:e3:5e:f4:99:c7:43:2c:aa:51:a2:e7:c8:37:ba:bb:7c: 0b:64:71:7c:29:a4:77:63:d0:01:5c:bb:d9:47:6e:81:41:6b: b1:6b:3a:1c:ac:84:9f:36:8d:0d:98:4a:5b:1b:fa:b6:de:c3: ab:5f:dd:e4:8c:6a:b2:ed:43:31:f8:da:b0:51:38:58:e0:49: d5:06:4b:b9:76:6a:47:d7:fd:2d:9c:7e:a7:60:fe:4d:b3:ea: 0f:e5:cc:cd:3a:61:f3:f6:24:6c:11:1a:9f:f0:45:fc:44:4f: 99:ea:f8:9a:28:e8:59:69:0c:ca:20:a1:60:8b:43:5a:86:2f: f6:d5:a3:d4:46:28:1a:61:12:0f:5f:dc:c2:3c:80:a5:2c:a8: 83:8a:09:9c:d8:93:f1:40:b4:32:80:93:75:7b:0d:79:a4:dd: 15:a7:b6:88:af:8d:65:33:94:73:0d:77:c4:9d:d7:d5:ff:5f: 68:40:92:51:40:a2:f1:cf:b9:7d:9a:43:5b:cc:85:31:d4:6b: 09:b0:c5:cf:e7:fa:21:6c:16:22:b5:67:13:6a:cb:d9:cb:df: 24:c6:d0:44:08:a6:0b:73:98:2b:c8:84:54:0e:9b:c0:ac:be: 3c:4f:cf:55 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPrP5iJN7iKNucWPPDbXMjpIawZEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExNjA4NTUwMFoX DTI1MDExNDA5MDAwMFowMzExMC8GA1UEAxMoOEExQTYwRTI3MkQxQjVDNkMwNzgy ODZDNUUyM0IyQjAxNkU0QjI1RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOrfXod1c7/U64sOO3jcHMTMYEzUaG/m4ckrzC3xTd0Rd/RRMzHZ84bBK8iG SDlY5BOvd0mJWMh3fhdkmSi2c3UDFH5fsCdUWQKDimIfevWI7DTuzYhUfyCksPYe pVDyZw7gSQewS0qAUtS/W+oIx1BUBWMTq77jCFVWtAjfplGCtHR32UxlMig76tIx by9xH0dMWRHfSrz7PZOYi9NmPsF1YDPTRXaxmtWISjJA5fXYCWDGgZKCeHvNDA55 t/S6kY4Yqm8BFdGUNr+DhQqR3mTkK5WX/6MHcA1dQj2Yf39xdg+wZNVjnmHbtFCt zrjZAcLXUd26xvsswbWasFYuuUcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSKGmDi ctG1xsB4KGxeI7KwFuSyXTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM1MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWez/DANBgkqhkiG9w0BAQsFAAOCAQEAFJsNEUN3pBWJgv/hVR7g dXIolsfjXvSZx0MsqlGi58g3urt8C2RxfCmkd2PQAVy72UdugUFrsWs6HKyEnzaN DZhKWxv6tt7Dq1/d5Ixqsu1DMfjasFE4WOBJ1QZLuXZqR9f9LZx+p2D+TbPqD+XM zTph8/YkbBEan/BF/ERPmer4mijoWWkMyiChYItDWoYv9tWj1EYoGmESD1/cwjyA pSyog4oJnNiT8UC0MoCTdXsNeaTdFae2iK+NZTOUcw13xJ3X1f9faECSUUCi8c+5 fZpDW8yFMdRrCbDFz+f6IWwWIrVnE2rL2cvfJMbQRAimC3OYK8iEVA6bwKy+PE/P VQ== -----END CERTIFICATE-----Generated at Wed May 8 17:45:22 2024 by rpki-client on console-ams.rpki-client.org