$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149353.roa File: AS149353.roa (raw, json) Hash identifier: jF8zS2VF74f4G/NWX9FVsGWnyk2kpedO+cITm9axjNo= Subject key identifier: AB:E1:E8:9E:C5:0D:1C:19:BA:76:6F:6D:FC:2B:5D:86:94:21:BE:53 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7771391BF156CFF08FB1BF2552DB3D0C6D16A4E5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149353.roa Signing time: Fri 09 Feb 2024 07:00:00 +0000 ROA not before: Fri 09 Feb 2024 06:55:00 +0000 ROA not after: Fri 07 Feb 2025 07:00:00 +0000 asID: 149353 IP address blocks: 2001:df2:1340::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:71:39:1b:f1:56:cf:f0:8f:b1:bf:25:52:db:3d:0c:6d:16:a4:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 9 06:55:00 2024 GMT Not After : Feb 7 07:00:00 2025 GMT Subject: CN=ABE1E89EC50D1C19BA766F6DFC2B5D869421BE53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e3:2d:f5:87:72:e9:14:66:c3:ff:22:67:18: 59:ac:1b:a2:28:6c:3c:9a:5a:87:b2:26:3d:56:5f: bb:cc:19:88:2b:d0:22:74:a3:7d:71:8a:d4:c8:33: 65:c7:a5:52:f3:9e:b7:35:94:08:04:f3:bc:ab:85: c9:b8:9a:93:b9:8c:46:7d:65:1b:38:55:ac:c7:c8: d6:01:96:92:13:53:7e:b9:14:eb:ff:02:8b:1f:4e: 4d:b2:1f:3d:06:34:35:4a:f6:53:a3:78:69:6b:cf: d7:5e:d5:cb:a7:35:5f:f1:2b:e6:08:33:24:b1:99: f2:b4:5a:58:d6:31:7c:f5:de:a6:0c:e3:da:b9:9a: ee:20:60:54:33:f5:50:c6:79:1a:d5:1f:bf:81:ca: 97:c1:c8:c8:69:ae:2f:bc:fc:b7:5f:11:43:4e:c6: 1b:01:ce:ff:57:37:f3:57:4f:5a:8f:10:b1:47:50: 68:e9:69:20:7c:12:77:df:0f:04:f5:3b:bc:17:70: e0:5a:0f:8f:10:11:66:b7:cd:09:4a:91:1b:bf:e4: 70:43:08:36:a9:16:f6:b7:2c:36:77:b6:25:56:cf: 49:85:48:a8:67:8b:82:e1:35:95:5e:d6:20:56:4d: dd:1a:a2:f7:c3:c4:c7:49:31:48:e2:d5:fd:7d:bd: 55:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E1:E8:9E:C5:0D:1C:19:BA:76:6F:6D:FC:2B:5D:86:94:21:BE:53 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149353.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:1340::/48 Signature Algorithm: sha256WithRSAEncryption 00:ef:5d:47:ac:a4:8c:e8:c8:bc:3d:fb:33:1e:8e:d3:a1:58: 36:ea:78:db:ed:42:e4:07:8c:50:1d:48:88:66:7c:f1:e7:51: f3:21:ce:2e:b2:44:cc:d2:e8:97:a9:a4:e8:5c:58:97:18:41: c9:0e:31:86:6a:a1:13:16:03:4f:61:45:6c:aa:6e:a4:1f:8f: d1:63:70:4f:56:6c:09:0c:ff:84:1b:fd:52:c5:77:7b:a1:ac: b4:a7:92:d7:c6:91:45:af:dc:7c:14:09:43:1a:05:c3:24:6d: b0:67:35:4d:e7:28:de:66:7e:21:07:70:02:47:14:d5:64:50: b6:8e:7f:45:e8:d0:a3:07:1c:07:1f:08:b4:d6:00:39:6c:c9: 9a:eb:93:fb:3b:4b:73:ba:7c:dc:c8:54:ad:af:eb:10:08:ad: 13:59:69:78:41:42:9c:0d:26:aa:8b:93:57:89:19:6c:23:b6: dc:b5:f2:a2:f7:c3:a8:4a:72:46:e1:82:23:98:3d:d5:41:d9: ea:b3:27:cd:f5:93:a5:66:7a:d4:8a:09:0b:1d:0a:38:d8:f6: ef:ec:aa:7a:68:06:d3:a6:92:a8:c5:50:bf:09:d6:41:de:ba: 93:fa:6f:ca:5a:ad:3b:28:ed:e7:69:94:04:87:3c:df:36:75: e3:0e:a3:18 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUd3E5G/FWz/CPsb8lUts9DG0WpOUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIwOTA2NTUwMFoX DTI1MDIwNzA3MDAwMFowMzExMC8GA1UEAxMoQUJFMUU4OUVDNTBEMUMxOUJBNzY2 RjZERkMyQjVEODY5NDIxQkU1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANPjLfWHcukUZsP/ImcYWawboihsPJpah7ImPVZfu8wZiCvQInSjfXGK1Mgz ZcelUvOetzWUCATzvKuFybiak7mMRn1lGzhVrMfI1gGWkhNTfrkU6/8Cix9OTbIf PQY0NUr2U6N4aWvP117Vy6c1X/Er5ggzJLGZ8rRaWNYxfPXepgzj2rma7iBgVDP1 UMZ5GtUfv4HKl8HIyGmuL7z8t18RQ07GGwHO/1c381dPWo8QsUdQaOlpIHwSd98P BPU7vBdw4FoPjxARZrfNCUqRG7/kcEMINqkW9rcsNne2JVbPSYVIqGeLguE1lV7W IFZN3Rqi98PEx0kxSOLV/X29VVUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSr4eie xQ0cGbp2b238K12GlCG+UzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfITQDANBgkqhkiG9w0BAQsFAAOCAQEAAO9dR6ykjOjIvD37 Mx6O06FYNup42+1C5AeMUB1IiGZ88edR8yHOLrJEzNLol6mk6FxYlxhByQ4xhmqh ExYDT2FFbKpupB+P0WNwT1ZsCQz/hBv9UsV3e6GstKeS18aRRa/cfBQJQxoFwyRt sGc1Teco3mZ+IQdwAkcU1WRQto5/RejQowccBx8ItNYAOWzJmuuT+ztLc7p83MhU ra/rEAitE1lpeEFCnA0mqouTV4kZbCO23LXyovfDqEpyRuGCI5g91UHZ6rMnzfWT pWZ61IoJCx0KONj27+yqemgG06aSqMVQvwnWQd66k/pvylqtOyjt52mUBIc83zZ1 4w6jGA== -----END CERTIFICATE-----Generated at Wed May 8 21:02:23 2024 by rpki-client on console-fra.rpki-client.org