$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149385.roa File: AS149385.roa (raw, json) Hash identifier: VszIduQl0yonszYUHFnyZDVA7uqFl1yfWVePBrB/MzM= Subject key identifier: 09:3A:38:8C:F9:27:7F:E7:64:F0:C2:DB:18:7E:E4:A0:B7:81:8B:D3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 50E1DE162C1A4F2D3317DDC48C8DB984FB0451EE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149385.roa Signing time: Mon 27 May 2024 04:00:00 +0000 ROA not before: Mon 27 May 2024 03:55:00 +0000 ROA not after: Mon 26 May 2025 04:00:00 +0000 asID: 149385 IP address blocks: 103.178.223.0/24 maxlen: 24 103.205.185.0/24 maxlen: 24 2001:df2:1ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e1:de:16:2c:1a:4f:2d:33:17:dd:c4:8c:8d:b9:84:fb:04:51:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 27 03:55:00 2024 GMT Not After : May 26 04:00:00 2025 GMT Subject: CN=093A388CF9277FE764F0C2DB187EE4A0B7818BD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8a:9e:b3:f5:88:88:69:a6:b1:d1:9e:7d:a1: b6:3b:8d:43:81:bb:05:fe:61:8c:5e:3e:3e:6e:3b: 31:90:c2:d9:a6:5e:e1:ba:f1:5f:98:3c:8f:f8:be: c1:2f:e7:60:a7:3d:82:04:0f:2a:1f:96:7e:1f:42: 6d:38:58:0b:76:a8:2e:2e:d8:25:24:07:89:f1:bb: 2b:7d:18:39:c9:cc:fd:75:ba:62:ff:95:7d:1e:e7: d2:37:3a:ce:cc:79:88:6b:a4:52:14:08:41:6e:5d: 08:b9:68:aa:92:fd:dc:e2:73:c4:74:5d:98:83:74: c8:dc:6f:61:f9:64:35:13:47:73:7c:b7:b8:fe:4a: ea:be:3c:74:77:42:f5:76:02:92:d1:ec:85:70:8d: 46:7f:84:30:3f:cc:af:62:83:28:50:22:ef:c3:b1: 99:91:c7:67:e7:33:61:4a:89:71:62:aa:f1:93:be: 44:5b:b9:a5:81:17:d5:4a:96:95:62:94:9d:b5:3a: 16:1b:2e:2a:56:a4:9d:19:28:8d:86:55:52:cc:e5: ae:a8:4d:0a:2a:9b:96:9f:c7:ca:c1:5d:70:51:59: 92:dc:68:35:5c:bd:97:19:7b:01:c1:a1:cb:3d:bf: 9c:15:f2:29:27:b0:b0:75:0f:5e:f6:d2:5f:89:e1: 2f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:3A:38:8C:F9:27:7F:E7:64:F0:C2:DB:18:7E:E4:A0:B7:81:8B:D3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149385.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.223.0/24 103.205.185.0/24 IPv6: 2001:df2:1ac0::/48 Signature Algorithm: sha256WithRSAEncryption 50:20:08:57:03:a0:e1:1c:1d:1b:da:1a:74:39:be:9e:ac:82: 35:50:6c:46:5b:8a:44:1b:2c:14:7c:5f:50:ec:d8:2c:f3:9a: 19:cf:e5:d0:31:61:c5:cc:96:f6:2f:b3:fe:b0:cd:6b:79:d2: d9:85:90:8d:29:6f:38:3d:47:28:55:28:11:ed:fd:79:b3:d8: f3:be:12:77:d9:03:d1:4b:80:05:7d:4e:be:86:d3:07:e1:c6: 6d:cc:1f:c2:1a:c4:6a:5f:94:78:4c:c3:7c:d6:1d:10:17:70: 3d:68:74:a5:e2:3a:f0:0f:cc:69:78:ca:38:93:e1:03:39:99: 26:87:b0:28:b1:5f:9d:08:78:8f:63:d1:0a:6f:fa:7c:1f:a9: 54:66:b1:90:0c:26:e6:90:47:6c:38:09:ac:85:e9:d7:9b:ea: 27:a8:e4:55:61:33:25:68:7a:17:65:7b:7b:06:05:fe:52:00: 36:47:37:6f:a4:f1:a4:66:19:ce:cd:43:6e:be:54:39:7d:69: a5:f6:76:24:63:45:4e:73:3c:cd:a8:79:d1:70:42:9e:34:b8: 98:eb:4c:da:d4:b2:bc:19:a7:31:91:ec:f3:c6:a3:ae:5a:c5: a6:a8:67:3d:6b:35:e5:a9:84:bf:74:47:26:a0:b3:26:1b:3f: 6f:1d:bc:19 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUUOHeFiwaTy0zF93EjI25hPsEUe4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUyNzAzNTUwMFoX DTI1MDUyNjA0MDAwMFowMzExMC8GA1UEAxMoMDkzQTM4OENGOTI3N0ZFNzY0RjBD MkRCMTg3RUU0QTBCNzgxOEJEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGKnrP1iIhpprHRnn2htjuNQ4G7Bf5hjF4+Pm47MZDC2aZe4brxX5g8j/i+ wS/nYKc9ggQPKh+Wfh9CbThYC3aoLi7YJSQHifG7K30YOcnM/XW6Yv+VfR7n0jc6 zsx5iGukUhQIQW5dCLloqpL93OJzxHRdmIN0yNxvYflkNRNHc3y3uP5K6r48dHdC 9XYCktHshXCNRn+EMD/Mr2KDKFAi78OxmZHHZ+czYUqJcWKq8ZO+RFu5pYEX1UqW lWKUnbU6FhsuKlaknRkojYZVUszlrqhNCiqblp/HysFdcFFZktxoNVy9lxl7AcGh yz2/nBXyKSewsHUPXvbSX4nhL+ECAwEAAaOCAecwggHjMB0GA1UdDgQWBBQJOjiM +Sd/52TwwtsYfuSgt4GL0zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM4NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAGey3wMEAGfNuTAPBAIAAjAJAwcAIAEN8hrAMA0GCSqGSIb3DQEB CwUAA4IBAQBQIAhXA6DhHB0b2hp0Ob6erII1UGxGW4pEGywUfF9Q7Ngs85oZz+XQ MWHFzJb2L7P+sM1redLZhZCNKW84PUcoVSgR7f15s9jzvhJ32QPRS4AFfU6+htMH 4cZtzB/CGsRqX5R4TMN81h0QF3A9aHSl4jrwD8xpeMo4k+EDOZkmh7AosV+dCHiP Y9EKb/p8H6lUZrGQDCbmkEdsOAmshenXm+onqORVYTMlaHoXZXt7BgX+UgA2Rzdv pPGkZhnOzUNuvlQ5fWml9nYkY0VOczzNqHnRcEKeNLiY60za1LK8GacxkezzxqOu WsWmqGc9azXlqYS/dEcmoLMmGz9vHbwZ -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:48 2024 by rpki-client on console-ams.rpki-client.org