$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149375.roa File: AS149375.roa (raw, json) Hash identifier: BtQjDKM6XkMSWbYdtwxHrrbvPPLE0s7mvc5aBCdcYCQ= Subject key identifier: 2D:40:6F:C8:43:C4:1C:33:F3:3C:D7:14:EC:E1:30:68:F9:1E:00:94 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 53FF991D6D7C33A706B2CDDE7D49A92DC9276C12 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149375.roa Signing time: Tue 10 Dec 2024 05:00:07 +0000 ROA not before: Tue 10 Dec 2024 04:55:07 +0000 ROA not after: Tue 09 Dec 2025 05:00:07 +0000 asID: 149375 IP address blocks: 2001:df0:6b40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:ff:99:1d:6d:7c:33:a7:06:b2:cd:de:7d:49:a9:2d:c9:27:6c:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:07 2024 GMT Not After : Dec 9 05:00:07 2025 GMT Subject: CN=2D406FC843C41C33F33CD714ECE13068F91E0094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f9:1b:5f:85:3e:e2:1f:d9:ef:76:72:61:0e: 0f:64:26:4d:ad:99:df:df:b8:3b:bd:61:5b:f6:63: 83:15:a3:bb:1f:2f:87:04:fc:22:94:d4:80:06:f1: 9f:78:17:47:fc:2f:8a:a1:c5:4e:c6:7c:31:38:19: 3e:a9:7d:f9:02:75:1c:b9:9e:17:5a:9a:35:61:d9: 5e:1f:63:25:71:b5:8c:56:af:f5:e1:21:4c:61:10: 28:ed:f3:94:23:d5:2c:4d:1a:93:77:65:7e:89:37: f9:27:8f:50:e9:67:9e:1f:f7:d8:d5:34:52:74:de: 5a:60:9b:6b:ed:e0:c1:ed:8f:72:84:b9:aa:18:40: ce:ed:de:6a:09:0d:94:61:2e:09:9d:e0:45:93:0d: 06:f4:b4:b1:b2:8e:f7:b6:38:43:99:68:d7:5d:b4: 6f:4e:05:29:b8:cf:a1:18:86:a9:3a:95:dc:b6:9a: de:77:f0:4c:41:34:46:92:29:9d:85:28:63:45:42: a7:67:b6:62:d2:1c:73:3e:4f:c5:c8:e8:a3:d7:3e: d9:fb:1e:11:3a:79:a6:ea:38:4c:bf:a0:80:d8:9f: bd:3b:8e:08:79:03:f7:d1:53:e3:10:51:8e:46:33: 6b:22:0c:0a:81:8a:72:f3:ff:b4:7c:20:e6:60:98: c2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:40:6F:C8:43:C4:1C:33:F3:3C:D7:14:EC:E1:30:68:F9:1E:00:94 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149375.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:6b40::/48 Signature Algorithm: sha256WithRSAEncryption 9b:13:f2:e5:14:68:63:a1:9b:fa:c6:5b:39:62:b7:35:a6:0c: f3:75:80:e4:2a:60:9a:a3:2a:95:65:c8:91:fb:eb:47:2f:08: 20:68:9a:ca:1d:97:7b:b2:1a:c4:bf:b7:ec:fe:85:a6:5b:dc: 37:ec:5c:65:b1:94:4e:9e:0b:fc:7d:bf:ad:9e:1d:14:47:6f: 12:09:78:29:0a:ba:a0:e7:fd:39:a2:cc:6d:b5:be:02:42:75: 3d:c7:3e:23:b7:87:08:5f:de:d8:7b:ba:d2:32:ed:85:35:28: 95:1c:1d:1d:d5:eb:e9:ef:cc:bb:95:95:dc:e5:69:fe:c5:c5: ed:14:3c:23:31:23:71:6e:df:76:7e:f7:c0:39:7d:f8:04:d8: f2:55:93:41:e2:2f:59:b2:a6:d2:67:90:81:7d:1a:3f:30:55: a7:b7:3a:fe:48:3c:b3:35:67:f8:19:e5:37:1a:a0:5c:e8:73: db:8f:5e:b9:d9:c9:9b:17:89:1b:fb:5a:81:f7:cc:50:6f:db: 82:63:a1:cc:30:03:5b:5c:ac:54:19:f4:44:26:e3:aa:64:bc: 11:ea:81:f6:0d:c4:78:ab:7a:8b:76:bb:00:8c:38:42:49:c1: a8:fa:90:e7:5b:64:d8:20:84:1f:84:2d:ad:d6:83:99:56:0b: 92:c5:c6:b3 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUU/+ZHW18M6cGss3efUmpLcknbBIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwN1oX DTI1MTIwOTA1MDAwN1owMzExMC8GA1UEAxMoMkQ0MDZGQzg0M0M0MUMzM0YzM0NE NzE0RUNFMTMwNjhGOTFFMDA5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALT5G1+FPuIf2e92cmEOD2QmTa2Z39+4O71hW/ZjgxWjux8vhwT8IpTUgAbx n3gXR/wviqHFTsZ8MTgZPql9+QJ1HLmeF1qaNWHZXh9jJXG1jFav9eEhTGEQKO3z lCPVLE0ak3dlfok3+SePUOlnnh/32NU0UnTeWmCba+3gwe2PcoS5qhhAzu3eagkN lGEuCZ3gRZMNBvS0sbKO97Y4Q5lo1120b04FKbjPoRiGqTqV3Laa3nfwTEE0RpIp nYUoY0VCp2e2YtIccz5Pxcjoo9c+2fseETp5puo4TL+ggNifvTuOCHkD99FT4xBR jkYzayIMCoGKcvP/tHwg5mCYwq8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQtQG/I Q8QcM/M81xTs4TBo+R4AlDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM3NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfBrQDANBgkqhkiG9w0BAQsFAAOCAQEAmxPy5RRoY6Gb+sZb OWK3NaYM83WA5CpgmqMqlWXIkfvrRy8IIGiayh2Xe7IaxL+37P6FplvcN+xcZbGU Tp4L/H2/rZ4dFEdvEgl4KQq6oOf9OaLMbbW+AkJ1Pcc+I7eHCF/e2Hu60jLthTUo lRwdHdXr6e/Mu5WV3OVp/sXF7RQ8IzEjcW7fdn73wDl9+ATY8lWTQeIvWbKm0meQ gX0aPzBVp7c6/kg8szVn+BnlNxqgXOhz249eudnJmxeJG/tagffMUG/bgmOhzDAD W1ysVBn0RCbjqmS8EeqB9g3EeKt6i3a7AIw4QknBqPqQ51tk2CCEH4QtrdaDmVYL ksXGsw== -----END CERTIFICATE-----Generated at Sun Feb 16 20:53:49 2025 by rpki-client