$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149362.roa File: AS149362.roa (raw, json) Hash identifier: g/VnWC7X21XpPmCHJTIMctgVKclz5H7trrXGZ9i0ml0= Subject key identifier: 65:BF:E7:66:18:5E:A5:BD:38:FF:4A:12:80:DF:E4:C7:2C:4E:67:38 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5E9C015C6653C5C566DA005CA9D0F541964F3095 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149362.roa Signing time: Fri 12 Jan 2024 09:00:00 +0000 ROA not before: Fri 12 Jan 2024 08:55:00 +0000 ROA not after: Fri 10 Jan 2025 09:00:00 +0000 asID: 149362 IP address blocks: 103.178.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:9c:01:5c:66:53:c5:c5:66:da:00:5c:a9:d0:f5:41:96:4f:30:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 12 08:55:00 2024 GMT Not After : Jan 10 09:00:00 2025 GMT Subject: CN=65BFE766185EA5BD38FF4A1280DFE4C72C4E6738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:dc:13:05:9b:d0:b6:91:d4:4d:bb:ec:35:36: a1:c5:67:c7:32:9e:d1:81:d5:3d:15:8b:7a:e2:73: 6d:76:29:90:dc:80:aa:c6:67:0b:4c:ea:c2:d5:3c: 20:18:2f:4c:11:67:f5:a9:f0:37:ce:8a:67:d9:e2: 12:9c:37:ff:55:4a:f1:e0:b7:07:9d:ab:5b:3d:3b: c1:4b:fa:ef:3c:41:06:1f:9c:ef:ac:1e:3e:fa:34: c5:3c:a6:45:df:1a:dd:66:52:a6:64:11:ae:d2:2b: 0d:98:bc:24:40:1d:ca:25:44:ef:e0:c7:ae:51:1a: 74:b5:05:24:4d:9f:33:24:8a:02:fb:09:a8:9f:e1: 96:2d:7a:83:6d:19:67:a8:85:73:a1:7f:c0:9f:20: 4c:a9:bf:5a:31:7e:b1:ba:02:c3:cc:95:5c:30:d1: 0f:53:4c:5d:b8:a5:c7:38:fd:24:3d:ea:99:a2:c7: 9b:ed:8d:74:f2:85:c3:58:46:cb:e5:e3:6e:9f:99: 2d:06:d2:02:48:22:80:1d:f4:0f:a4:69:95:09:e1: 00:20:f4:b5:05:1b:a4:ff:c5:66:82:8a:9d:7d:97: 5e:cf:04:0e:00:a8:4c:ba:11:c3:38:a1:6f:d3:9c: 9d:ee:3f:39:b2:5a:e9:e7:75:8d:77:79:d4:28:90: f6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:BF:E7:66:18:5E:A5:BD:38:FF:4A:12:80:DF:E4:C7:2C:4E:67:38 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149362.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.89.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:fa:9b:05:9a:7b:12:48:c8:45:ad:77:d4:e6:e7:d6:17:ca: f4:36:be:06:9b:e3:17:41:06:13:c4:fe:64:f3:c5:e5:0e:55: 10:cb:45:ea:13:f3:21:31:f1:34:9e:c3:7a:c1:f9:f9:56:cc: 94:82:c0:c7:54:da:9f:69:39:14:3f:9a:56:ca:c7:e9:5b:5c: 29:a5:f6:40:3c:c0:2b:44:c7:66:18:2a:43:af:aa:cc:3d:ba: db:35:99:6d:d6:0f:d4:f6:e3:7f:b7:a3:5c:f1:01:61:b0:7d: 1a:54:96:64:27:00:01:37:83:0f:14:b0:94:c8:ed:c4:9c:9d: 9a:56:b8:60:5c:83:ae:ca:48:e6:b6:62:97:9c:96:7b:17:96: 15:13:e5:77:63:62:18:5c:e0:aa:fa:1c:98:06:07:40:0d:20: d7:74:41:e2:01:e0:d2:d8:4f:d9:c7:ea:76:00:5f:7e:c0:18: 37:05:5a:cb:93:90:7c:05:0c:13:9f:d5:ca:ee:7b:11:bd:28: 6f:84:b5:9d:3b:3e:6e:66:07:ea:c4:3a:c7:38:30:5b:ea:79: d5:dd:54:5b:a3:2c:66:f1:bf:4d:49:7d:42:b8:87:79:2c:a1: 99:41:14:9b:9e:97:47:21:3b:0a:ee:04:8b:66:be:1e:60:d6: 85:2a:33:5d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXpwBXGZTxcVm2gBcqdD1QZZPMJUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExMjA4NTUwMFoX DTI1MDExMDA5MDAwMFowMzExMC8GA1UEAxMoNjVCRkU3NjYxODVFQTVCRDM4RkY0 QTEyODBERkU0QzcyQzRFNjczODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALncEwWb0LaR1E277DU2ocVnxzKe0YHVPRWLeuJzbXYpkNyAqsZnC0zqwtU8 IBgvTBFn9anwN86KZ9niEpw3/1VK8eC3B52rWz07wUv67zxBBh+c76wePvo0xTym Rd8a3WZSpmQRrtIrDZi8JEAdyiVE7+DHrlEadLUFJE2fMySKAvsJqJ/hli16g20Z Z6iFc6F/wJ8gTKm/WjF+sboCw8yVXDDRD1NMXbilxzj9JD3qmaLHm+2NdPKFw1hG y+Xjbp+ZLQbSAkgigB30D6RplQnhACD0tQUbpP/FZoKKnX2XXs8EDgCoTLoRwzih b9Ocne4/ObJa6ed1jXd51CiQ9n0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRlv+dm GF6lvTj/ShKA3+THLE5nODAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM2Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeyWTANBgkqhkiG9w0BAQsFAAOCAQEAjfqbBZp7EkjIRa131Obn 1hfK9Da+BpvjF0EGE8T+ZPPF5Q5VEMtF6hPzITHxNJ7DesH5+VbMlILAx1Tan2k5 FD+aVsrH6VtcKaX2QDzAK0THZhgqQ6+qzD262zWZbdYP1Pbjf7ejXPEBYbB9GlSW ZCcAATeDDxSwlMjtxJydmla4YFyDrspI5rZil5yWexeWFRPld2NiGFzgqvocmAYH QA0g13RB4gHg0thP2cfqdgBffsAYNwVay5OQfAUME5/Vyu57Eb0ob4S1nTs+bmYH 6sQ6xzgwW+p51d1UW6MsZvG/TUl9QriHeSyhmUEUm56XRyE7Cu4Ei2a+HmDWhSoz XQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:48 2024 by rpki-client on console-ams.rpki-client.org