$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149364.roa File: AS149364.roa (raw, json) Hash identifier: p2plMeBGeoDkT7gkK2V4yEDzhHjaUtrXd2gkldwUhO8= Subject key identifier: A6:5E:3D:8E:0C:A5:B8:4F:99:D4:D1:3F:66:85:A9:C9:58:77:09:C9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 30D852B88E2A252E9E1CFE9EE4A22907D0F98FBC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149364.roa Signing time: Mon 11 Nov 2024 01:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:55:00 +0000 ROA not after: Mon 10 Nov 2025 01:00:00 +0000 asID: 149364 IP address blocks: 103.176.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:d8:52:b8:8e:2a:25:2e:9e:1c:fe:9e:e4:a2:29:07:d0:f9:8f:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 11 00:55:00 2024 GMT Not After : Nov 10 01:00:00 2025 GMT Subject: CN=A65E3D8E0CA5B84F99D4D13F6685A9C9587709C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3b:15:89:b6:55:33:dd:99:24:3f:4c:34:ce: 4a:2c:14:6e:ee:40:23:09:f5:31:9b:3a:fa:cb:48: d6:f9:cf:6c:69:42:f0:0e:02:31:b2:2d:92:39:af: 8b:1f:51:b5:8e:3a:af:91:e6:7e:c1:bf:83:38:27: bd:7d:5f:93:8e:39:6f:26:c7:ba:a2:1d:a0:c5:da: 7c:55:5e:34:bb:ce:4b:e2:24:84:ac:5e:a6:ea:5c: 4e:d6:97:4f:f9:64:cc:d4:a4:f1:f4:28:95:06:a0: de:b9:86:61:c4:cc:95:5e:b0:aa:4b:34:e4:1c:cb: 1c:65:e2:0e:00:ff:a5:ff:75:36:5a:c2:65:d3:bf: f1:3b:21:fe:ee:e9:29:bb:f9:57:c7:5d:54:79:40: 6a:79:19:d6:18:85:eb:5b:d2:4e:7d:00:00:d0:dc: da:07:b1:3f:01:b5:9c:2a:55:1b:0c:65:1c:e4:88: ab:0d:9e:c8:56:ed:47:8c:c8:00:28:6e:6f:00:8e: 6e:bf:1f:50:e7:7b:e1:ce:ac:78:4f:53:ee:61:18: 87:8b:14:be:82:7e:1c:59:0a:7f:f2:8d:65:f1:dd: 11:1b:a6:11:d9:a9:7f:ad:db:01:aa:7c:d2:dd:44: 43:ef:3a:28:66:26:a5:3f:7c:71:24:71:ca:0f:67: b1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5E:3D:8E:0C:A5:B8:4F:99:D4:D1:3F:66:85:A9:C9:58:77:09:C9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149364.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.77.0/24 Signature Algorithm: sha256WithRSAEncryption 50:9d:32:5c:07:95:28:31:73:f4:1a:02:c8:01:9f:95:c6:6f: 9d:64:b7:ba:78:eb:7a:9d:b1:f0:26:c6:4e:e0:b9:5e:99:47: 8c:94:35:e2:31:87:dc:b4:3e:fb:b3:48:84:3e:e4:d7:6f:82: 5d:3d:97:42:9e:e2:14:b2:04:f5:03:fa:7b:9a:50:03:43:de: 3b:a6:32:87:29:c1:2a:f4:71:57:8a:f5:af:56:17:b1:d4:a2: ca:7e:d3:8c:66:07:00:61:59:3b:07:80:11:1b:f7:41:7c:f0: 7a:10:af:eb:61:2e:c1:45:89:9c:eb:a6:38:2a:11:d6:48:da: e2:0d:2f:37:76:3d:da:a9:4d:13:08:f4:f6:af:3f:e4:69:af: 90:53:fa:95:3e:c1:f2:c4:41:02:fc:c4:1c:ed:2b:fe:fd:a0: 2c:9c:9d:bb:3e:29:bd:0a:48:66:a7:a2:fb:dc:95:df:be:f5: 74:38:2d:bd:da:53:ae:d4:fa:ee:84:96:76:0a:8c:b1:3b:22: 5a:68:a4:35:3d:a6:d1:3c:29:bb:3e:10:21:98:95:dc:72:54: a2:04:45:ee:2d:94:92:e1:a6:a8:65:74:08:68:c6:ea:1e:60: 2d:28:e7:fe:81:d2:5a:12:3c:e5:19:8a:68:0f:a0:4d:1c:1c: 22:26:82:b9 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMNhSuI4qJS6eHP6e5KIpB9D5j7wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExMTAwNTUwMFoX DTI1MTExMDAxMDAwMFowMzExMC8GA1UEAxMoQTY1RTNEOEUwQ0E1Qjg0Rjk5RDRE MTNGNjY4NUE5Qzk1ODc3MDlDOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM07FYm2VTPdmSQ/TDTOSiwUbu5AIwn1MZs6+stI1vnPbGlC8A4CMbItkjmv ix9RtY46r5HmfsG/gzgnvX1fk445bybHuqIdoMXafFVeNLvOS+IkhKxepupcTtaX T/lkzNSk8fQolQag3rmGYcTMlV6wqks05BzLHGXiDgD/pf91NlrCZdO/8Tsh/u7p Kbv5V8ddVHlAankZ1hiF61vSTn0AANDc2gexPwG1nCpVGwxlHOSIqw2eyFbtR4zI AChubwCObr8fUOd74c6seE9T7mEYh4sUvoJ+HFkKf/KNZfHdERumEdmpf63bAap8 0t1EQ+86KGYmpT98cSRxyg9nsRkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSmXj2O DKW4T5nU0T9mhanJWHcJyTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGewTTANBgkqhkiG9w0BAQsFAAOCAQEAUJ0yXAeVKDFz9BoCyAGf lcZvnWS3unjrep2x8CbGTuC5XplHjJQ14jGH3LQ++7NIhD7k12+CXT2XQp7iFLIE 9QP6e5pQA0PeO6YyhynBKvRxV4r1r1YXsdSiyn7TjGYHAGFZOweAERv3QXzwehCv 62EuwUWJnOumOCoR1kja4g0vN3Y92qlNEwj09q8/5GmvkFP6lT7B8sRBAvzEHO0r /v2gLJyduz4pvQpIZqei+9yV3771dDgtvdpTrtT67oSWdgqMsTsiWmikNT2m0Twp uz4QIZiV3HJUogRF7i2UkuGmqGV0CGjG6h5gLSjn/oHSWhI85RmKaA+gTRwcIiaC uQ== -----END CERTIFICATE-----Generated at Sun Feb 16 20:42:31 2025 by rpki-client