$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149362.roa File: AS149362.roa (raw, json) Hash identifier: mgpUF7PPeKHArr6CcdTAZLZi0teWkqvOysGEFyp2yyU= Subject key identifier: 84:23:11:A2:A6:37:D5:BD:73:3A:52:15:B3:47:A3:65:71:98:0A:35 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 389E90992F7E67A10EC2C4D9585AA832DD716652 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149362.roa Signing time: Fri 13 Dec 2024 09:00:00 +0000 ROA not before: Fri 13 Dec 2024 08:55:00 +0000 ROA not after: Fri 12 Dec 2025 09:00:00 +0000 asID: 149362 IP address blocks: 103.178.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:9e:90:99:2f:7e:67:a1:0e:c2:c4:d9:58:5a:a8:32:dd:71:66:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 13 08:55:00 2024 GMT Not After : Dec 12 09:00:00 2025 GMT Subject: CN=842311A2A637D5BD733A5215B347A36571980A35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d6:18:cd:fe:bc:df:67:c0:59:87:e4:4b:12: 3d:d3:1c:13:6b:67:ea:0d:be:c5:0f:81:b5:1c:8b: 88:14:b7:ab:23:b2:0a:29:09:05:c4:5f:d0:dc:3e: 3e:3b:56:18:c9:ab:e5:a2:7a:67:c4:30:dd:74:fc: 11:9d:c4:a8:5d:89:65:77:41:4a:fd:9f:3c:b6:3e: bc:0a:b3:f9:a8:d5:29:8f:d3:37:1b:c1:89:e0:23: 54:70:a9:de:64:8a:05:85:27:d5:24:a8:94:8f:d2: e4:f7:c0:99:5d:2f:3c:23:cb:27:b5:8e:35:28:35: b7:06:be:59:34:07:e4:59:cb:26:e9:23:34:9a:a0: 11:b9:db:5b:89:6c:70:36:e4:b1:5a:6d:80:65:b5: 9d:7a:74:0d:6d:b7:81:6f:0d:0b:dd:8b:41:78:0d: fb:1a:3d:34:cb:aa:fa:c2:93:b7:f7:dc:de:ed:95: 2c:78:71:6f:69:aa:4e:a5:15:ab:e6:57:cb:8d:f7: 3c:40:19:ca:ef:aa:b4:a9:39:7d:15:3a:b8:f6:59: da:36:82:d4:94:1d:03:1f:cb:ad:1c:df:33:5f:0c: b2:db:d9:fe:8d:50:51:38:b3:8d:73:fd:1c:ec:d6: ad:b4:01:ce:3e:89:e7:10:0e:e0:e9:c9:93:e6:e5: 2b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:23:11:A2:A6:37:D5:BD:73:3A:52:15:B3:47:A3:65:71:98:0A:35 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149362.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.89.0/24 Signature Algorithm: sha256WithRSAEncryption 66:48:e5:f8:ee:d8:f6:80:08:d4:57:fd:75:0f:2f:f9:cb:75: 1f:eb:26:ae:da:46:b9:a1:3f:32:ca:2a:ef:73:78:2e:29:0d: 9c:7f:28:98:a4:b0:01:a0:47:b2:8b:ea:79:db:9f:e0:99:0a: f8:95:cf:61:04:ad:66:a5:8d:f4:22:b0:a4:dc:00:c7:d9:2a: 9b:91:be:1f:1f:77:74:98:0a:9e:0d:50:df:b7:86:33:83:82: 35:23:17:b1:ff:4f:7a:83:0d:e8:73:31:5a:fe:68:0a:35:18: fc:07:63:9e:fe:7c:27:ce:36:87:48:14:ec:bb:ca:cb:63:4d: a5:1c:b6:49:05:8d:36:7b:5f:d2:48:a5:92:88:d3:75:f6:99: 9b:30:e9:aa:6e:2b:da:8d:5e:37:4e:e1:d3:73:76:38:82:94: 79:16:21:ff:ad:e9:d6:18:60:f5:53:60:fd:b0:0d:68:6b:72: 7c:7c:c4:68:64:40:71:11:0a:25:c0:71:e0:e3:04:e0:cb:a1: 1e:a9:08:3a:57:46:14:7e:46:f3:4c:38:89:f7:68:09:e1:2d: ae:83:b5:17:f4:09:cb:0a:b5:26:d2:af:bd:15:23:00:1c:0c: 2a:fe:f3:9e:4a:54:10:c9:58:6d:dc:af:e0:ba:b0:4f:65:28: c3:58:ad:d7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOJ6QmS9+Z6EOwsTZWFqoMt1xZlIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMzA4NTUwMFoX DTI1MTIxMjA5MDAwMFowMzExMC8GA1UEAxMoODQyMzExQTJBNjM3RDVCRDczM0E1 MjE1QjM0N0EzNjU3MTk4MEEzNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOnWGM3+vN9nwFmH5EsSPdMcE2tn6g2+xQ+BtRyLiBS3qyOyCikJBcRf0Nw+ PjtWGMmr5aJ6Z8Qw3XT8EZ3EqF2JZXdBSv2fPLY+vAqz+ajVKY/TNxvBieAjVHCp 3mSKBYUn1SSolI/S5PfAmV0vPCPLJ7WONSg1twa+WTQH5FnLJukjNJqgEbnbW4ls cDbksVptgGW1nXp0DW23gW8NC92LQXgN+xo9NMuq+sKTt/fc3u2VLHhxb2mqTqUV q+ZXy433PEAZyu+qtKk5fRU6uPZZ2jaC1JQdAx/LrRzfM18MstvZ/o1QUTizjXP9 HOzWrbQBzj6J5xAO4OnJk+blKyECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSEIxGi pjfVvXM6UhWzR6NlcZgKNTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM2Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeyWTANBgkqhkiG9w0BAQsFAAOCAQEAZkjl+O7Y9oAI1Ff9dQ8v +ct1H+smrtpGuaE/Msoq73N4LikNnH8omKSwAaBHsovqeduf4JkK+JXPYQStZqWN 9CKwpNwAx9kqm5G+Hx93dJgKng1Q37eGM4OCNSMXsf9PeoMN6HMxWv5oCjUY/Adj nv58J842h0gU7LvKy2NNpRy2SQWNNntf0kilkojTdfaZmzDpqm4r2o1eN07h03N2 OIKUeRYh/63p1hhg9VNg/bANaGtyfHzEaGRAcREKJcBx4OME4MuhHqkIOldGFH5G 80w4ifdoCeEtroO1F/QJywq1JtKvvRUjABwMKv7znkpUEMlYbdyv4LqwT2Uow1it 1w== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:27 2025 by rpki-client