$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149364.roa File: AS149364.roa (raw, json) Hash identifier: EBvVBcyZ7KyHjMcio0UH+FLNQhQV/lpGwh/S7GV2AMg= Subject key identifier: 64:28:00:ED:61:68:75:F2:F6:DD:3F:45:67:EF:B3:1C:41:E7:CC:05 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 70AE849309C90D6EA7EE02BC36BB59F53B2E5057 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149364.roa Signing time: Mon 11 Dec 2023 01:00:00 +0000 ROA not before: Mon 11 Dec 2023 00:55:00 +0000 ROA not after: Mon 09 Dec 2024 01:00:00 +0000 asID: 149364 IP address blocks: 103.176.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:ae:84:93:09:c9:0d:6e:a7:ee:02:bc:36:bb:59:f5:3b:2e:50:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 11 00:55:00 2023 GMT Not After : Dec 9 01:00:00 2024 GMT Subject: CN=642800ED616875F2F6DD3F4567EFB31C41E7CC05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4b:1a:03:cb:b3:d1:34:f0:bc:d1:0b:1a:23: 87:7f:e9:c8:1d:08:2c:c4:21:51:3f:ed:61:d1:7f: 1d:4b:85:e6:99:dd:32:da:a7:eb:b7:79:00:73:52: 4d:77:41:c1:6a:d1:5c:f1:b9:cd:fd:b0:57:48:d1: b2:11:f6:86:af:16:65:c1:35:d7:aa:f9:62:14:b2: e2:58:f1:2d:08:ad:6c:77:f5:48:49:9d:f1:f0:72: c3:8b:f4:76:d1:e0:e8:03:0c:4a:1c:c1:08:ed:dc: 38:cd:c7:d3:19:6b:64:fc:dc:81:e7:14:3a:2f:06: 95:05:c2:f3:f9:ef:de:04:5b:d6:64:51:02:af:36: 2f:05:10:60:ef:cd:cc:f9:47:12:30:bf:fd:f9:0b: 0a:4a:d4:50:5e:a9:e4:22:80:7a:7e:40:11:68:93: 7a:2b:62:4c:66:09:d5:dd:67:d7:49:dd:65:14:fd: c5:ee:e0:91:67:0a:c8:a4:09:ff:f9:e6:98:95:17: 91:a7:e9:bb:84:76:28:bc:cf:7f:f3:7f:cc:dd:e6: d0:32:03:5e:00:db:37:71:0e:b3:b5:99:54:5f:42: 44:6e:11:7c:4b:be:c2:6b:bc:d6:c5:cf:e9:2c:29: 8f:d1:20:e6:13:a4:64:80:6a:e3:93:ab:88:63:89: 09:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:28:00:ED:61:68:75:F2:F6:DD:3F:45:67:EF:B3:1C:41:E7:CC:05 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149364.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.77.0/24 Signature Algorithm: sha256WithRSAEncryption 45:57:ee:cc:67:23:c1:f2:43:6d:07:06:e2:84:61:35:8c:d0: a4:49:50:87:ea:df:36:4d:55:dd:2d:be:ac:e7:31:d6:dc:00: 76:50:6d:85:e5:b0:e6:e3:25:47:25:c8:63:e8:fe:6f:fc:d2: 06:df:b7:1c:69:4e:a3:48:56:27:c6:1c:74:d1:4c:42:06:3b: c8:e5:56:b7:d1:c5:9d:b5:f1:89:3c:c6:17:4f:03:48:7a:ff: bf:9a:20:dc:a1:2f:4d:22:46:0f:cc:8f:92:7d:9b:50:2b:a8: 45:b0:b0:0a:10:9d:97:d7:ee:90:d9:38:80:bc:c7:e6:3a:e4: db:46:7d:17:5c:2c:c4:ac:12:e9:83:af:56:79:f1:47:c8:f0: d5:0b:e8:3b:9b:c4:ee:54:1a:ad:e7:94:23:57:08:7e:d3:31: 45:d1:1d:65:b5:33:e4:9f:7b:93:8e:4a:4a:01:6b:f5:8c:b2: 9c:d7:f0:23:c5:d0:c4:42:63:70:80:9e:c2:e0:d3:9d:ae:3f: 14:4c:92:9d:6e:25:39:99:00:20:69:34:97:e0:36:36:99:4e: 04:06:7b:ec:7e:1b:0a:2a:69:59:2e:ef:af:c3:9b:cc:f5:b7: da:03:1b:91:01:e7:bb:9f:41:c6:6a:21:42:96:7c:e9:a8:fb: 36:9b:de:46 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcK6EkwnJDW6n7gK8NrtZ9TsuUFcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxMTAwNTUwMFoX DTI0MTIwOTAxMDAwMFowMzExMC8GA1UEAxMoNjQyODAwRUQ2MTY4NzVGMkY2REQz RjQ1NjdFRkIzMUM0MUU3Q0MwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM9LGgPLs9E08LzRCxojh3/pyB0ILMQhUT/tYdF/HUuF5pndMtqn67d5AHNS TXdBwWrRXPG5zf2wV0jRshH2hq8WZcE116r5YhSy4ljxLQitbHf1SEmd8fByw4v0 dtHg6AMMShzBCO3cOM3H0xlrZPzcgecUOi8GlQXC8/nv3gRb1mRRAq82LwUQYO/N zPlHEjC//fkLCkrUUF6p5CKAen5AEWiTeitiTGYJ1d1n10ndZRT9xe7gkWcKyKQJ //nmmJUXkafpu4R2KLzPf/N/zN3m0DIDXgDbN3EOs7WZVF9CRG4RfEu+wmu81sXP 6Swpj9Eg5hOkZIBq45OriGOJCZsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRkKADt YWh18vbdP0Vn77McQefMBTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGewTTANBgkqhkiG9w0BAQsFAAOCAQEARVfuzGcjwfJDbQcG4oRh NYzQpElQh+rfNk1V3S2+rOcx1twAdlBtheWw5uMlRyXIY+j+b/zSBt+3HGlOo0hW J8YcdNFMQgY7yOVWt9HFnbXxiTzGF08DSHr/v5og3KEvTSJGD8yPkn2bUCuoRbCw ChCdl9fukNk4gLzH5jrk20Z9F1wsxKwS6YOvVnnxR8jw1QvoO5vE7lQareeUI1cI ftMxRdEdZbUz5J97k45KSgFr9YyynNfwI8XQxEJjcICewuDTna4/FEySnW4lOZkA IGk0l+A2NplOBAZ77H4bCippWS7vr8ObzPW32gMbkQHnu59BxmohQpZ86aj7Npve Rg== -----END CERTIFICATE-----Generated at Wed May 8 18:12:16 2024 by rpki-client on console-fra.rpki-client.org