$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149385.roa File: AS149385.roa (raw, json) Hash identifier: OPbiCkTE6zNPhpD0R3GpMe6htXjnzzPnvXA20djN+nc= Subject key identifier: 43:DD:C8:F0:CD:0A:7D:FD:0C:54:A3:46:9C:C6:48:47:FF:E9:8C:05 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1FAD82E945EEBC6591B7F9B08191DD9E7A866235 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149385.roa Signing time: Mon 26 Jun 2023 03:23:17 +0000 ROA not before: Mon 26 Jun 2023 03:18:17 +0000 ROA not after: Mon 24 Jun 2024 03:23:17 +0000 asID: 149385 IP address blocks: 103.178.223.0/24 maxlen: 24 103.205.185.0/24 maxlen: 24 2001:df2:1ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ad:82:e9:45:ee:bc:65:91:b7:f9:b0:81:91:dd:9e:7a:86:62:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 26 03:18:17 2023 GMT Not After : Jun 24 03:23:17 2024 GMT Subject: CN=43DDC8F0CD0A7DFD0C54A3469CC64847FFE98C05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ea:70:ea:a0:33:17:cd:3a:ac:9f:9d:a5:1e: 91:c3:13:04:e3:7f:aa:24:23:73:b7:f5:a2:dd:7f: 78:bd:b2:1e:6a:20:fb:6e:df:2b:dc:1b:15:bd:23: 9f:bc:1e:97:53:d0:e7:90:45:e6:c8:5f:9b:60:66: 37:dd:61:2e:16:04:2e:a6:10:63:6b:99:9c:9b:e9: e5:db:e1:ac:45:fb:18:69:24:b0:4b:e5:70:7d:97: 7d:6b:c4:1e:e9:0d:c2:ee:7a:5e:c1:ab:4c:f5:93: 8b:b1:d9:64:68:c9:9d:cd:57:e9:a8:87:56:7f:98: d3:84:cc:d1:59:ff:21:2b:a3:10:ee:7c:c1:38:d9: ff:03:86:28:c7:4b:68:30:81:a7:7d:4d:76:b4:e1: 5e:53:66:80:71:6f:a7:31:c0:2c:85:e4:c3:e1:32: 45:87:91:e9:92:1b:ac:9c:8b:df:5f:76:cf:f5:89: 8a:56:f6:8f:1e:64:92:de:72:d8:1b:ae:b4:b0:06: 76:a0:4c:49:13:80:31:c1:ff:f9:c6:80:87:1b:0b: ad:86:a3:e7:14:93:14:78:b2:c2:9e:2f:74:cb:72: 9f:92:23:72:70:92:90:fd:50:46:64:89:e4:64:42: bc:8a:f7:a7:94:ba:92:91:f5:e9:60:3f:ff:43:25: 48:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:DD:C8:F0:CD:0A:7D:FD:0C:54:A3:46:9C:C6:48:47:FF:E9:8C:05 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149385.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.223.0/24 103.205.185.0/24 IPv6: 2001:df2:1ac0::/48 Signature Algorithm: sha256WithRSAEncryption 51:60:33:2d:aa:54:00:da:4d:4f:88:e1:10:65:cf:61:27:87: d6:f5:cf:71:2c:ca:a6:28:5d:59:0f:47:e2:d8:c3:a1:c4:39: c2:48:0a:17:10:db:c6:6e:06:5a:12:bb:b6:01:09:9e:2d:7d: ba:9b:84:8d:63:75:6a:c9:9e:5c:de:34:a8:fa:ac:9e:68:9a: d3:97:ff:ff:4b:dd:94:8e:00:cf:37:21:be:60:1f:8b:6d:27: af:46:e1:5c:94:50:2c:dc:d8:ae:77:8c:df:4f:57:aa:40:f3: d2:12:44:7c:8d:7a:50:f1:54:7f:36:94:94:9a:88:43:c1:ae: 50:d1:76:0c:66:4d:b9:79:a2:b0:34:05:8e:61:2b:25:9c:8b: aa:3c:c4:72:7d:ea:3b:57:72:d3:ad:af:52:fb:45:48:55:a4: 7c:c5:cc:09:61:63:4c:84:52:92:5d:95:3e:38:37:30:78:81: 73:07:e0:d9:da:74:f0:80:8e:0a:d2:6a:c0:54:c9:c2:ef:41: fd:ba:3a:98:a4:24:71:ff:e3:06:8b:ea:c6:90:50:ab:d2:33: 44:bb:0b:ce:8c:78:fb:c3:ca:1c:85:04:8f:b0:e5:9e:d5:7a: 2c:fa:fe:73:02:fd:b3:d5:9e:48:da:24:b1:15:ff:ed:3b:38: 97:c4:90:27 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUH62C6UXuvGWRt/mwgZHdnnqGYjUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYyNjAzMTgxN1oX DTI0MDYyNDAzMjMxN1owMzExMC8GA1UEAxMoNDNEREM4RjBDRDBBN0RGRDBDNTRB MzQ2OUNDNjQ4NDdGRkU5OEMwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMDqcOqgMxfNOqyfnaUekcMTBON/qiQjc7f1ot1/eL2yHmog+27fK9wbFb0j n7wel1PQ55BF5shfm2BmN91hLhYELqYQY2uZnJvp5dvhrEX7GGkksEvlcH2XfWvE HukNwu56XsGrTPWTi7HZZGjJnc1X6aiHVn+Y04TM0Vn/ISujEO58wTjZ/wOGKMdL aDCBp31NdrThXlNmgHFvpzHALIXkw+EyRYeR6ZIbrJyL3192z/WJilb2jx5kkt5y 2BuutLAGdqBMSROAMcH/+caAhxsLrYaj5xSTFHiywp4vdMtyn5IjcnCSkP1QRmSJ 5GRCvIr3p5S6kpH16WA//0MlSEECAwEAAaOCAecwggHjMB0GA1UdDgQWBBRD3cjw zQp9/QxUo0acxkhH/+mMBTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM4NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAGey3wMEAGfNuTAPBAIAAjAJAwcAIAEN8hrAMA0GCSqGSIb3DQEB CwUAA4IBAQBRYDMtqlQA2k1PiOEQZc9hJ4fW9c9xLMqmKF1ZD0fi2MOhxDnCSAoX ENvGbgZaEru2AQmeLX26m4SNY3VqyZ5c3jSo+qyeaJrTl///S92UjgDPNyG+YB+L bSevRuFclFAs3Niud4zfT1eqQPPSEkR8jXpQ8VR/NpSUmohDwa5Q0XYMZk25eaKw NAWOYSslnIuqPMRyfeo7V3LTra9S+0VIVaR8xcwJYWNMhFKSXZU+ODcweIFzB+DZ 2nTwgI4K0mrAVMnC70H9ujqYpCRx/+MGi+rGkFCr0jNEuwvOjHj7w8ochQSPsOWe 1Xos+v5zAv2z1Z5I2iSxFf/tOziXxJAn -----END CERTIFICATE-----Generated at Wed May 8 22:46:43 2024 by rpki-client on console-ams.rpki-client.org