$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149368.roa File: AS149368.roa (raw, json) Hash identifier: vxCGGHzMZmDVQdVe+bTSdsw+kxPMQlfSS9VNZFlO4cw= Subject key identifier: 3B:06:30:7A:7F:8D:A1:57:56:DE:2C:87:82:14:BE:98:25:8A:62:5E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 50284AFF0A3EFAC753F63AE6EADC6C39A255D70C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149368.roa Signing time: Thu 11 Jan 2024 03:00:00 +0000 ROA not before: Thu 11 Jan 2024 02:55:00 +0000 ROA not after: Thu 09 Jan 2025 03:00:00 +0000 asID: 149368 IP address blocks: 103.180.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:28:4a:ff:0a:3e:fa:c7:53:f6:3a:e6:ea:dc:6c:39:a2:55:d7:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 11 02:55:00 2024 GMT Not After : Jan 9 03:00:00 2025 GMT Subject: CN=3B06307A7F8DA15756DE2C878214BE98258A625E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:90:83:b5:31:97:9c:1d:e4:bc:dd:ec:7a:88: c8:ce:07:e0:47:ab:0c:21:52:53:32:1f:d7:70:b0: 02:c8:41:aa:20:3c:48:ad:db:25:b0:3d:d4:a1:9b: e9:5b:cd:e2:42:4b:25:73:bc:13:2a:13:de:6f:90: 4e:40:c7:58:7b:d5:18:12:4b:65:e9:7a:3a:2b:fa: 3d:35:07:98:97:51:1e:5e:7e:91:3e:99:7f:6b:83: 89:34:f5:7d:5b:94:8b:77:02:45:cc:2e:7b:1d:bb: d6:7f:1f:60:87:2d:a9:57:39:92:5d:ce:7a:7c:a1: 05:e6:c3:b3:8e:1f:63:53:48:03:71:19:47:41:cf: c6:ff:e2:3b:fa:d2:4a:f4:6e:38:34:9e:bd:c8:dd: f1:5e:ee:1f:5a:3a:90:f7:67:71:64:a2:ed:57:39: 96:b1:84:93:89:1e:bc:33:cf:4f:d5:c8:9c:10:47: 5c:2c:b6:41:ab:65:57:41:23:0e:5d:40:36:5c:d5: bb:6c:e8:1a:bf:8c:a4:7b:61:e2:57:11:c0:da:10: 33:fb:0b:a6:26:f8:d6:2b:8c:65:b3:6a:98:19:b1: 97:d0:02:9a:c7:e1:97:0c:d0:0e:a7:62:7d:7c:3d: 44:c6:1f:29:18:8f:a5:42:cd:07:7e:81:50:1e:48: 47:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:06:30:7A:7F:8D:A1:57:56:DE:2C:87:82:14:BE:98:25:8A:62:5E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149368.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.180.198.0/23 Signature Algorithm: sha256WithRSAEncryption 71:65:98:34:b1:05:9b:4c:7d:86:f8:9f:f3:56:9d:6f:f7:94: 5d:5b:c0:a0:aa:d1:d9:47:4e:8a:6b:61:53:71:f4:fa:17:58: 28:59:a4:69:92:7d:1c:99:da:50:0d:4e:65:6a:27:b3:4f:31: 20:66:dc:c3:bf:6d:30:5e:78:61:74:7e:e0:7d:98:e9:a0:4c: 3e:cd:fe:6c:67:35:9b:6e:7b:7a:b6:d0:7c:fe:38:90:47:e8: ac:b5:e2:22:58:bd:48:74:fe:18:e4:73:3f:cd:f9:f9:e9:08: 8b:46:13:da:e7:29:95:2e:b1:b2:20:f0:a9:f5:5c:af:b0:00: cb:8c:fe:66:bb:fd:7a:0e:89:78:e4:9e:a7:a0:70:cc:18:40: e3:30:13:3d:26:d4:4e:5c:7a:82:a5:8d:b4:8c:c0:11:94:45: 4c:83:26:be:07:93:1e:c7:4d:0a:cc:de:a8:31:d7:2f:0b:9a: 3e:4e:20:39:95:2c:4d:df:b5:45:03:3e:34:fb:d1:c0:69:8a: 72:54:c6:df:31:40:52:d1:e8:df:75:6a:fa:50:ef:a3:7c:4b: b2:4d:96:cc:b3:cc:64:75:31:fe:4e:3b:dd:4b:a8:27:cc:0e: 56:fa:1b:6e:5e:08:8c:d8:39:10:a2:d4:0f:c5:3b:8b:c7:c8: c7:5c:89:37 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUChK/wo++sdT9jrm6txsOaJV1wwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExMTAyNTUwMFoX DTI1MDEwOTAzMDAwMFowMzExMC8GA1UEAxMoM0IwNjMwN0E3RjhEQTE1NzU2REUy Qzg3ODIxNEJFOTgyNThBNjI1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOCQg7Uxl5wd5Lzd7HqIyM4H4EerDCFSUzIf13CwAshBqiA8SK3bJbA91KGb 6VvN4kJLJXO8EyoT3m+QTkDHWHvVGBJLZel6Oiv6PTUHmJdRHl5+kT6Zf2uDiTT1 fVuUi3cCRcwuex271n8fYIctqVc5kl3OenyhBebDs44fY1NIA3EZR0HPxv/iO/rS SvRuODSevcjd8V7uH1o6kPdncWSi7Vc5lrGEk4kevDPPT9XInBBHXCy2QatlV0Ej Dl1ANlzVu2zoGr+MpHth4lcRwNoQM/sLpib41iuMZbNqmBmxl9ACmsfhlwzQDqdi fXw9RMYfKRiPpULNB36BUB5IRx8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ7BjB6 f42hV1beLIeCFL6YJYpiXjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe0xjANBgkqhkiG9w0BAQsFAAOCAQEAcWWYNLEFm0x9hvif81ad b/eUXVvAoKrR2UdOimthU3H0+hdYKFmkaZJ9HJnaUA1OZWons08xIGbcw79tMF54 YXR+4H2Y6aBMPs3+bGc1m257erbQfP44kEforLXiIli9SHT+GORzP835+ekIi0YT 2ucplS6xsiDwqfVcr7AAy4z+Zrv9eg6JeOSep6BwzBhA4zATPSbUTlx6gqWNtIzA EZRFTIMmvgeTHsdNCszeqDHXLwuaPk4gOZUsTd+1RQM+NPvRwGmKclTG3zFAUtHo 33Vq+lDvo3xLsk2WzLPMZHUx/k473UuoJ8wOVvobbl4IjNg5EKLUD8U7i8fIx1yJ Nw== -----END CERTIFICATE-----Generated at Thu May 9 00:29:15 2024 by rpki-client on console-ams.rpki-client.org