$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149358.roa File: AS149358.roa (raw, json) Hash identifier: QXq+Yc04M8DOMv7j4zyURL2IKg3ndfCSu317uYQbv6U= Subject key identifier: 6D:34:B3:D9:07:FC:9C:04:B8:74:99:CF:A5:2F:65:87:6E:FC:C9:50 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 54F64A9BD0C81B532A4035B6534E0A0032D0597C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149358.roa Signing time: Mon 03 Feb 2025 03:00:00 +0000 ROA not before: Mon 03 Feb 2025 02:55:00 +0000 ROA not after: Mon 02 Feb 2026 03:00:00 +0000 asID: 149358 IP address blocks: 103.180.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f6:4a:9b:d0:c8:1b:53:2a:40:35:b6:53:4e:0a:00:32:d0:59:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 3 02:55:00 2025 GMT Not After : Feb 2 03:00:00 2026 GMT Subject: CN=6D34B3D907FC9C04B87499CFA52F65876EFCC950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:73:00:26:7c:35:04:5e:28:6e:45:92:65:64: 0e:c5:ca:cb:fe:e8:25:96:6d:00:74:ac:5e:87:d0: b3:39:16:1d:29:73:48:73:25:c6:74:1c:33:f1:ba: 6e:5e:0b:b9:99:79:7b:e8:45:7d:d4:ee:2e:cb:fe: 99:81:91:ea:bb:7a:1f:c6:59:53:3b:06:31:cb:61: 70:2d:fc:fa:b6:dd:6f:38:94:74:e5:cb:0d:1b:b5: 3d:4e:8c:e9:04:ee:b6:f4:b8:fd:48:5a:cb:3d:23: 57:db:44:96:cc:d1:b5:79:ac:fd:4b:2f:11:7b:f4: 81:81:fd:6c:a1:45:1e:df:5b:8a:f6:6e:88:52:07: ab:04:61:4c:81:54:92:f3:b1:ad:b7:19:6e:2e:7f: d2:fb:ae:51:68:98:a9:61:f7:3f:2a:25:59:10:b3: f7:6e:5f:75:ac:b0:c0:ca:5c:50:db:36:1d:05:e8: 04:67:fb:ab:a6:a8:2e:88:f9:44:8f:b4:df:39:0d: e2:db:42:ac:5b:ef:06:d0:4e:ea:65:f8:12:15:27: eb:ac:c2:b1:4d:7b:f4:2d:7f:24:ae:b2:9d:04:0f: ad:7d:7d:86:3c:3d:a5:ea:af:01:26:70:6e:6f:45: 80:d7:94:3f:77:8d:e7:b7:c3:32:2f:ce:f2:95:47: a3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:34:B3:D9:07:FC:9C:04:B8:74:99:CF:A5:2F:65:87:6E:FC:C9:50 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149358.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.180.95.0/24 Signature Algorithm: sha256WithRSAEncryption 00:1e:2e:2c:ec:c6:f0:ce:6c:ef:26:f3:07:72:3e:3b:45:f8: 5e:53:2d:81:23:bd:7f:e2:0b:76:06:1a:6c:1c:80:cf:f6:b4: 32:5c:8e:a1:c1:12:8b:64:ca:bd:93:bb:28:ae:76:5b:f5:8f: e1:ef:43:de:bf:5f:d1:b6:af:77:e5:ba:bc:01:63:5c:e3:98: 6f:22:41:13:fa:90:30:4b:f8:f6:f7:8b:50:34:e2:98:69:20: 91:9b:45:6f:c6:c0:a0:99:c3:bb:36:85:84:a0:e6:a6:a1:b5: 8d:9b:7a:de:59:6f:0f:71:17:63:24:9c:0b:a6:41:9a:62:ff: 3d:3d:c6:60:9a:58:b5:97:0b:21:09:0e:ff:94:a1:fa:e4:58: 16:2e:be:bd:02:2b:04:fd:ef:a9:66:49:87:3b:99:28:9f:15: 16:cc:df:3c:c8:e2:ba:e9:9d:c7:6e:34:5e:d8:cd:91:59:47: d7:f0:9a:1d:69:ab:d9:2e:f0:62:53:62:2f:10:4a:f6:62:f4: c7:23:d3:12:e2:42:35:4f:0e:0c:57:bb:17:ae:1c:39:d6:33: 92:ef:c8:57:4c:28:2c:92:ba:e3:65:2d:1a:45:c4:06:cf:48: cc:a0:b1:4a:50:c3:88:00:4e:4d:d0:58:4a:cd:b9:05:93:39: 5a:5c:1d:0f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVPZKm9DIG1MqQDW2U04KADLQWXwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIwMzAyNTUwMFoX DTI2MDIwMjAzMDAwMFowMzExMC8GA1UEAxMoNkQzNEIzRDkwN0ZDOUMwNEI4NzQ5 OUNGQTUyRjY1ODc2RUZDQzk1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAORzACZ8NQReKG5FkmVkDsXKy/7oJZZtAHSsXofQszkWHSlzSHMlxnQcM/G6 bl4LuZl5e+hFfdTuLsv+mYGR6rt6H8ZZUzsGMcthcC38+rbdbziUdOXLDRu1PU6M 6QTutvS4/Uhayz0jV9tElszRtXms/UsvEXv0gYH9bKFFHt9bivZuiFIHqwRhTIFU kvOxrbcZbi5/0vuuUWiYqWH3PyolWRCz925fdaywwMpcUNs2HQXoBGf7q6aoLoj5 RI+03zkN4ttCrFvvBtBO6mX4EhUn66zCsU179C1/JK6ynQQPrX19hjw9peqvASZw bm9FgNeUP3eN57fDMi/O8pVHo80CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRtNLPZ B/ycBLh0mc+lL2WHbvzJUDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM1OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGe0XzANBgkqhkiG9w0BAQsFAAOCAQEAAB4uLOzG8M5s7ybzB3I+ O0X4XlMtgSO9f+ILdgYabByAz/a0MlyOocESi2TKvZO7KK52W/WP4e9D3r9f0bav d+W6vAFjXOOYbyJBE/qQMEv49veLUDTimGkgkZtFb8bAoJnDuzaFhKDmpqG1jZt6 3llvD3EXYyScC6ZBmmL/PT3GYJpYtZcLIQkO/5Sh+uRYFi6+vQIrBP3vqWZJhzuZ KJ8VFszfPMjiuumdx240XtjNkVlH1/CaHWmr2S7wYlNiLxBK9mL0xyPTEuJCNU8O DFe7F64cOdYzku/IV0woLJK642UtGkXEBs9IzKCxSlDDiABOTdBYSs25BZM5Wlwd Dw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:19:57 2025 by rpki-client