$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149400.roa File: AS149400.roa (raw, json) Hash identifier: ys/vPagxMRS9YMCfAydMMiXB/ZgChhMBJehfqH53jg4= Subject key identifier: FC:90:59:26:36:4C:71:37:B9:FE:99:36:5A:7B:31:54:39:FD:9C:22 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 679C8CCDF7D117093B7D185F8E276AC36F5CE39A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149400.roa Signing time: Tue 11 Mar 2025 02:23:33 +0000 ROA not before: Tue 11 Mar 2025 02:18:33 +0000 ROA not after: Tue 10 Mar 2026 02:23:33 +0000 asID: 149400 IP address blocks: 103.70.94.0/23 maxlen: 24 202.164.220.0/23 maxlen: 24 2401:15a0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:9c:8c:cd:f7:d1:17:09:3b:7d:18:5f:8e:27:6a:c3:6f:5c:e3:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 11 02:18:33 2025 GMT Not After : Mar 10 02:23:33 2026 GMT Subject: CN=FC905926364C7137B9FE99365A7B315439FD9C22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:58:18:22:5a:7c:b9:16:a2:6d:1a:6b:5d:a6: d7:91:4a:e6:76:a3:59:30:b7:1a:92:5f:ce:5e:bc: a7:94:da:49:95:a7:d8:f9:4b:b7:67:87:50:2a:a6: 36:9b:3c:95:33:32:6a:64:c1:96:c0:ec:c3:13:bd: fa:79:65:23:76:00:89:5c:e5:a6:4b:d3:8a:db:47: 62:2b:d3:42:eb:8f:bb:db:a5:ff:05:59:3c:5a:3b: 91:40:90:8f:b2:5a:76:de:2d:3c:7d:0b:ce:5c:97: f8:09:86:24:0e:e8:b1:66:d8:ba:ab:18:43:b5:a0: 2d:44:76:38:f5:de:08:c0:78:0b:4f:57:2c:64:b7: b9:1e:df:8b:4f:25:ee:3e:de:0d:d4:f7:c2:be:ed: 0c:8e:96:62:a7:2e:14:42:2e:22:e5:8e:7e:77:73: 3b:b6:bb:e0:9b:eb:8d:6d:a0:e3:5e:49:be:1e:12: 58:5e:86:d8:94:21:d7:a5:c3:6a:65:74:38:2c:2b: f3:74:98:37:8b:1a:dd:11:9e:58:93:07:e2:30:13: a5:85:0b:42:6c:c6:41:8c:2a:dc:92:5e:8e:f3:39: 43:04:b5:c8:75:db:19:67:53:27:cf:08:55:ba:29: c9:0c:f4:f3:f9:1c:2e:54:4c:1c:f7:86:b5:05:dc: 25:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:90:59:26:36:4C:71:37:B9:FE:99:36:5A:7B:31:54:39:FD:9C:22 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149400.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.94.0/23 202.164.220.0/23 IPv6: 2401:15a0::/32 Signature Algorithm: sha256WithRSAEncryption 51:26:ba:36:19:9b:c9:3c:03:d1:9a:78:95:3f:3d:39:44:6d: 03:23:b6:10:3c:b3:9c:0d:73:cd:3c:17:fa:aa:a4:f6:96:b4: ac:a2:42:5d:a9:88:1e:29:33:f3:48:80:5e:3f:ad:ef:e5:f4: bf:41:a9:be:33:7d:61:d8:ce:45:79:d9:e1:2d:81:55:d5:c2: ea:db:31:b0:98:5e:10:0d:1d:58:b3:b2:3a:93:a8:5c:be:58: dc:aa:9c:8d:a7:65:7e:70:94:7b:8a:04:52:b2:a7:87:1f:f6: f5:3a:77:72:82:e6:3d:7f:72:5d:ac:5c:9f:71:fa:6f:b3:1b: 7b:27:24:20:e4:fb:c6:63:af:b1:81:98:37:4e:2f:55:86:c9: 8b:ce:f7:6a:40:bf:f5:6d:d6:1a:5c:8f:37:07:d8:b1:e0:1c: 0d:67:9c:83:78:7a:01:21:c1:50:92:01:a1:43:f5:50:78:66: a1:62:74:a1:ed:d8:12:a1:6f:78:de:2e:3f:71:5b:dd:2f:63: f7:2e:80:a7:4f:36:1f:c4:20:b0:cf:16:88:f9:a6:49:36:5f: f9:d2:13:70:d2:99:91:bd:02:41:20:ae:89:08:3e:1b:37:ef: 5a:10:a2:13:05:7a:4f:d9:da:03:50:c9:f9:d2:f1:a5:21:2a: c9:5d:ae:8e -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUZ5yMzffRFwk7fRhfjidqw29c45owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMxMTAyMTgzM1oX DTI2MDMxMDAyMjMzM1owMzExMC8GA1UEAxMoRkM5MDU5MjYzNjRDNzEzN0I5RkU5 OTM2NUE3QjMxNTQzOUZEOUMyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALFYGCJafLkWom0aa12m15FK5najWTC3GpJfzl68p5TaSZWn2PlLt2eHUCqm Nps8lTMyamTBlsDswxO9+nllI3YAiVzlpkvTittHYivTQuuPu9ul/wVZPFo7kUCQ j7Jadt4tPH0LzlyX+AmGJA7osWbYuqsYQ7WgLUR2OPXeCMB4C09XLGS3uR7fi08l 7j7eDdT3wr7tDI6WYqcuFEIuIuWOfndzO7a74JvrjW2g415Jvh4SWF6G2JQh16XD amV0OCwr83SYN4sa3RGeWJMH4jATpYULQmzGQYwq3JJejvM5QwS1yHXbGWdTJ88I VbopyQz08/kcLlRMHPeGtQXcJeUCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBT8kFkm NkxxN7n+mTZaezFUOf2cIjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTQwMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAWdGXgMEAcqk3DANBAIAAjAHAwUAJAEVoDANBgkqhkiG9w0BAQsF AAOCAQEAUSa6NhmbyTwD0Zp4lT89OURtAyO2EDyznA1zzTwX+qqk9pa0rKJCXamI Hikz80iAXj+t7+X0v0GpvjN9YdjORXnZ4S2BVdXC6tsxsJheEA0dWLOyOpOoXL5Y 3KqcjadlfnCUe4oEUrKnhx/29Tp3coLmPX9yXaxcn3H6b7MbeyckIOT7xmOvsYGY N04vVYbJi873akC/9W3WGlyPNwfYseAcDWecg3h6ASHBUJIBoUP1UHhmoWJ0oe3Y EqFveN4uP3Fb3S9j9y6Ap082H8QgsM8WiPmmSTZf+dITcNKZkb0CQSCuiQg+Gzfv WhCiEwV6T9naA1DJ+dLxpSEqyV2ujg== -----END CERTIFICATE-----Generated at Sat Apr 5 06:29:53 2025 by rpki-client