$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149358.roa File: AS149358.roa (raw, json) Hash identifier: 0MFXLamBsCu4croBwVa4Y1UGyAmho5nE3J+Z062NVWo= Subject key identifier: FC:CD:C8:D8:92:DB:04:8C:5B:03:59:4B:72:47:97:F1:83:14:E4:FF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5B8D356EBA5644CDB1BB1C0E41B8FEA464EA3DE1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149358.roa Signing time: Mon 04 Mar 2024 02:51:48 +0000 ROA not before: Mon 04 Mar 2024 02:46:48 +0000 ROA not after: Mon 03 Mar 2025 02:51:48 +0000 asID: 149358 IP address blocks: 103.180.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:8d:35:6e:ba:56:44:cd:b1:bb:1c:0e:41:b8:fe:a4:64:ea:3d:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 4 02:46:48 2024 GMT Not After : Mar 3 02:51:48 2025 GMT Subject: CN=FCCDC8D892DB048C5B03594B724797F18314E4FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:37:b9:69:c8:88:c4:1e:68:71:57:41:32:a4: cd:53:27:31:c5:29:21:24:6a:f6:70:56:af:01:05: 3b:d1:7b:9e:b2:08:0b:01:50:f6:ee:e4:62:ec:05: e3:8c:6f:99:f4:6c:8b:8f:f0:c2:83:7f:e4:df:0f: 74:34:3d:ab:87:66:90:fa:f3:1a:b6:a8:b6:b9:76: ed:c1:ed:68:c1:ce:f9:d2:cf:7f:62:f6:fe:53:62: db:7f:da:54:f5:af:7f:5f:46:ba:59:8d:54:a8:86: dc:68:61:8e:21:e3:82:fe:a9:26:50:85:97:c2:5b: c6:c5:dc:8e:52:1b:19:fd:e3:ff:83:e0:9e:57:55: 5b:ca:97:50:98:a6:ad:93:d7:cf:74:3e:45:da:dd: ef:8f:26:32:f6:05:8e:55:cf:ba:f0:a5:f2:66:3f: 32:77:7b:3b:9a:a7:7b:97:ef:e7:57:89:4d:87:ff: e8:9f:ac:3c:56:ab:90:24:d2:46:3f:25:f1:b3:7b: 42:c3:fc:ce:bb:ea:0b:54:3e:a6:32:fb:31:e7:29: 67:68:de:08:09:6a:bb:ac:60:5c:8f:0e:a2:d7:40: 19:4d:09:16:da:85:7e:ca:27:54:16:12:ed:eb:f7: bf:2b:fe:5b:e8:72:f0:ae:eb:37:95:22:90:7b:37: 40:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:CD:C8:D8:92:DB:04:8C:5B:03:59:4B:72:47:97:F1:83:14:E4:FF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149358.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.180.95.0/24 Signature Algorithm: sha256WithRSAEncryption 54:44:91:48:dd:fd:5f:ba:9c:cb:d9:4b:55:f4:56:98:32:75: 6c:92:8c:6f:5e:5a:68:f0:6e:c3:c9:33:05:2c:f6:3f:40:3d: 54:ad:4e:da:d1:31:20:8d:0a:45:ee:d4:69:0e:19:4e:99:2d: 97:db:1f:54:a9:82:90:06:dd:18:7c:d7:c8:4e:7c:58:fb:33: 40:3f:f8:4a:e8:43:10:34:d2:f7:fe:37:b1:49:5b:86:61:98: 9a:fd:d0:45:4e:16:ae:7c:3a:3e:c3:ab:7e:89:75:f3:ad:43: 35:cf:41:c2:c6:b9:14:94:1c:e0:06:1c:89:3c:48:90:15:9a: b3:be:59:4c:c1:b8:c9:37:b8:f5:cb:a4:b5:78:7b:c2:dd:c7: d7:a1:b2:9b:8d:1a:97:51:0f:ad:a2:a6:16:fc:c3:9a:72:a9: ab:0a:68:9d:b5:87:e0:32:db:91:00:50:a8:59:fc:10:62:c3: 13:68:c4:50:3c:2c:81:a3:56:d0:61:95:4f:b8:e1:88:bc:74: 2a:1a:00:b4:50:b2:a2:8f:14:27:11:6c:34:86:c9:b8:ba:f5: 36:34:eb:ed:b9:b3:2f:72:3c:83:f0:30:a6:8d:a7:3a:8f:71: 27:db:9d:cb:1f:dd:50:96:b5:54:25:62:75:c4:c4:57:a2:a4: 07:74:66:6d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUW401brpWRM2xuxwOQbj+pGTqPeEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMwNDAyNDY0OFoX DTI1MDMwMzAyNTE0OFowMzExMC8GA1UEAxMoRkNDREM4RDg5MkRCMDQ4QzVCMDM1 OTRCNzI0Nzk3RjE4MzE0RTRGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM03uWnIiMQeaHFXQTKkzVMnMcUpISRq9nBWrwEFO9F7nrIICwFQ9u7kYuwF 44xvmfRsi4/wwoN/5N8PdDQ9q4dmkPrzGraotrl27cHtaMHO+dLPf2L2/lNi23/a VPWvf19GulmNVKiG3GhhjiHjgv6pJlCFl8JbxsXcjlIbGf3j/4PgnldVW8qXUJim rZPXz3Q+Rdrd748mMvYFjlXPuvCl8mY/Mnd7O5qne5fv51eJTYf/6J+sPFarkCTS Rj8l8bN7QsP8zrvqC1Q+pjL7MecpZ2jeCAlqu6xgXI8OotdAGU0JFtqFfsonVBYS 7ev3vyv+W+hy8K7rN5UikHs3QEMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT8zcjY ktsEjFsDWUtyR5fxgxTk/zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM1OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGe0XzANBgkqhkiG9w0BAQsFAAOCAQEAVESRSN39X7qcy9lLVfRW mDJ1bJKMb15aaPBuw8kzBSz2P0A9VK1O2tExII0KRe7UaQ4ZTpktl9sfVKmCkAbd GHzXyE58WPszQD/4SuhDEDTS9/43sUlbhmGYmv3QRU4Wrnw6PsOrfol1861DNc9B wsa5FJQc4AYciTxIkBWas75ZTMG4yTe49cuktXh7wt3H16Gym40al1EPraKmFvzD mnKpqwponbWH4DLbkQBQqFn8EGLDE2jEUDwsgaNW0GGVT7jhiLx0KhoAtFCyoo8U JxFsNIbJuLr1NjTr7bmzL3I8g/Awpo2nOo9xJ9udyx/dUJa1VCVidcTEV6KkB3Rm bQ== -----END CERTIFICATE-----Generated at Wed May 8 17:45:22 2024 by rpki-client on console-ams.rpki-client.org