$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149402.roa File: AS149402.roa (raw, json) Hash identifier: f+z3ASQV9000PnlY6DGt8oOMAbbsPp+UesiHwyWNFlg= Subject key identifier: 22:66:F0:61:BB:D1:76:C6:44:42:4A:1E:02:FB:98:21:A2:47:1D:DF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5A8DF87D7DAAD0606FE9019F03AF0924182A5740 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149402.roa Signing time: Fri 12 Jan 2024 02:02:52 +0000 ROA not before: Fri 12 Jan 2024 01:57:52 +0000 ROA not after: Fri 10 Jan 2025 02:02:52 +0000 asID: 149402 IP address blocks: 103.182.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:8d:f8:7d:7d:aa:d0:60:6f:e9:01:9f:03:af:09:24:18:2a:57:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 12 01:57:52 2024 GMT Not After : Jan 10 02:02:52 2025 GMT Subject: CN=2266F061BBD176C644424A1E02FB9821A2471DDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:73:87:55:b6:46:c0:f9:80:b3:b4:3b:f0:b9: e0:09:15:6b:b5:42:1f:8d:78:7b:6e:ed:5a:7d:f8: 4f:69:ff:99:61:05:3e:f0:9b:1c:a9:8a:2e:6a:e5: 65:5c:4e:dc:57:32:d5:67:a0:5a:79:1b:b1:cf:d5: 80:52:3f:de:6f:57:86:d2:84:e5:85:e7:7f:14:f1: da:e7:5b:71:46:d6:68:2e:6e:30:94:1a:88:fb:6b: 0f:ba:70:30:0f:16:3b:2e:46:3c:5f:65:06:0f:6c: 31:fb:59:34:a5:dd:cd:0e:5e:56:87:22:46:87:bf: 46:b6:88:cb:bc:08:19:1c:73:41:b8:b3:72:17:96: 71:5c:f5:a1:cb:38:75:af:2b:cd:45:e4:e2:1d:6d: fa:14:1d:9d:6c:ee:a8:9a:20:6d:24:8b:10:a7:1e: 06:b8:d2:38:7d:df:e7:df:2e:fb:ab:de:24:a4:8c: 20:f0:18:e3:ad:b2:d7:9f:0a:17:41:b0:7e:f6:88: 29:88:d4:22:2b:bf:22:7e:0c:d7:81:99:93:fb:90: 20:ba:9c:e8:c2:16:2f:97:f0:6d:35:b2:a0:e3:c5: 42:3f:1a:f1:d3:06:b4:02:df:5d:67:e3:70:91:af: b0:a4:cc:8d:9e:40:f5:a2:5d:80:4c:78:20:e2:86: e2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:66:F0:61:BB:D1:76:C6:44:42:4A:1E:02:FB:98:21:A2:47:1D:DF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149402.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.182.48.0/23 Signature Algorithm: sha256WithRSAEncryption 04:a0:85:f5:39:b6:18:af:e7:d2:1b:c8:66:13:6b:99:4e:a2: 8b:7c:19:d1:8f:cd:2e:de:d8:c1:1f:e0:58:19:09:7f:07:ed: 62:f3:64:3d:22:45:4e:f3:6c:de:b1:88:c2:bd:1f:f7:8c:de: ce:19:0b:b3:ad:a9:5c:d3:72:0e:71:43:00:53:55:5d:7f:68: 57:8b:79:75:f2:22:a5:f6:77:85:4d:c3:b3:b0:98:4b:d6:88: b1:fe:95:3b:ed:a8:9e:bb:03:18:0b:0f:1f:61:26:f1:38:57: 81:90:ba:8b:49:5f:24:1b:2a:74:58:0e:bf:dd:15:35:60:50: 50:41:83:8b:57:b8:30:4a:ef:15:05:60:08:fe:2f:58:4a:0c: 49:7b:57:59:94:7b:4a:8e:bd:28:e1:ae:45:98:f8:2b:af:2e: d6:9f:17:a5:f6:b2:29:ee:97:b3:0d:5e:79:41:b5:cf:9e:22: f5:70:d6:a6:b5:2c:0c:f1:b6:d8:72:47:04:a8:bc:bd:44:34: b1:94:e6:de:8d:10:52:e2:33:50:ac:ed:da:10:2a:a6:98:e0: 02:df:af:07:72:e6:27:ad:a0:8f:f2:39:47:43:d5:44:22:2b: bc:26:1a:6d:fc:82:0b:28:1a:96:43:6c:83:f7:dc:1c:5d:bb: 94:ab:6f:a6 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWo34fX2q0GBv6QGfA68JJBgqV0AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExMjAxNTc1MloX DTI1MDExMDAyMDI1MlowMzExMC8GA1UEAxMoMjI2NkYwNjFCQkQxNzZDNjQ0NDI0 QTFFMDJGQjk4MjFBMjQ3MURERjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALhzh1W2RsD5gLO0O/C54AkVa7VCH414e27tWn34T2n/mWEFPvCbHKmKLmrl ZVxO3Fcy1WegWnkbsc/VgFI/3m9XhtKE5YXnfxTx2udbcUbWaC5uMJQaiPtrD7pw MA8WOy5GPF9lBg9sMftZNKXdzQ5eVociRoe/RraIy7wIGRxzQbizcheWcVz1ocs4 da8rzUXk4h1t+hQdnWzuqJogbSSLEKceBrjSOH3f598u+6veJKSMIPAY462y158K F0GwfvaIKYjUIiu/In4M14GZk/uQILqc6MIWL5fwbTWyoOPFQj8a8dMGtALfXWfj cJGvsKTMjZ5A9aJdgEx4IOKG4vkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQiZvBh u9F2xkRCSh4C+5ghokcd3zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTQwMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe2MDANBgkqhkiG9w0BAQsFAAOCAQEABKCF9Tm2GK/n0hvIZhNr mU6ii3wZ0Y/NLt7YwR/gWBkJfwftYvNkPSJFTvNs3rGIwr0f94zezhkLs62pXNNy DnFDAFNVXX9oV4t5dfIipfZ3hU3Ds7CYS9aIsf6VO+2onrsDGAsPH2Em8ThXgZC6 i0lfJBsqdFgOv90VNWBQUEGDi1e4MErvFQVgCP4vWEoMSXtXWZR7So69KOGuRZj4 K68u1p8XpfayKe6Xsw1eeUG1z54i9XDWprUsDPG22HJHBKi8vUQ0sZTm3o0QUuIz UKzt2hAqppjgAt+vB3LmJ62gj/I5R0PVRCIrvCYabfyCCygalkNsg/fcHF27lKtv pg== -----END CERTIFICATE-----Generated at Wed May 8 14:59:56 2024 by rpki-client on console-ams.rpki-client.org