$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149412.roa File: AS149412.roa (raw, json) Hash identifier: 9yjq0nmhE/MdIElwV6ctFIhatqNz+21jcH5U4NBncPc= Subject key identifier: E5:F6:31:1D:5C:52:D9:BB:2D:11:44:6B:E4:08:FC:87:D2:83:20:E3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0ADF2F010BCD6312A3E4A073DFA7DF43DFC0F650 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149412.roa Signing time: Mon 19 Jun 2023 05:00:00 +0000 ROA not before: Mon 19 Jun 2023 04:55:00 +0000 ROA not after: Mon 17 Jun 2024 05:00:00 +0000 asID: 149412 IP address blocks: 103.183.94.0/24 maxlen: 24 103.191.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:df:2f:01:0b:cd:63:12:a3:e4:a0:73:df:a7:df:43:df:c0:f6:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 19 04:55:00 2023 GMT Not After : Jun 17 05:00:00 2024 GMT Subject: CN=E5F6311D5C52D9BB2D11446BE408FC87D28320E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:93:ab:f5:95:9f:0f:5f:39:74:56:26:de:ec: 5a:8b:69:55:dd:bb:9b:20:76:83:92:39:1a:b5:c7: dd:10:90:52:b8:c3:1c:b0:2a:d6:95:37:e1:3b:79: a7:5a:79:ff:0f:de:24:98:27:a2:33:5d:1d:03:32: 60:34:5f:6d:84:df:17:de:3d:09:fb:d7:0a:a7:1a: 49:f7:83:41:8e:c0:08:c2:13:93:be:8d:d8:e2:ec: e3:65:75:fa:9b:2c:f0:07:89:bd:a7:1a:54:24:24: ee:e8:28:c8:d1:ba:5f:74:51:d6:cb:dc:9b:e5:31: d0:8d:22:85:f1:da:93:74:47:9e:32:85:ed:4e:75: 33:b9:ea:4b:95:a8:f0:df:eb:6a:18:6d:53:67:33: 28:9e:d1:9b:4c:5c:45:90:6d:e4:9f:82:eb:33:85: 74:f0:93:93:81:17:42:e8:ff:44:62:6c:54:6a:59: 22:7e:00:f2:24:4f:c3:5d:6a:69:7f:98:14:cc:b4: 08:14:17:a9:b6:c1:f8:36:16:f8:40:3d:08:8b:4f: f4:98:06:87:09:d9:9b:7c:e5:c1:03:a8:e7:c0:c5: 8f:69:ee:00:93:f0:a5:c8:35:84:de:3d:f2:c7:02: 66:b5:f9:83:17:f3:cc:0f:f2:01:0e:84:c9:2f:17: a3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:F6:31:1D:5C:52:D9:BB:2D:11:44:6B:E4:08:FC:87:D2:83:20:E3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149412.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.94.0/24 103.191.94.0/24 Signature Algorithm: sha256WithRSAEncryption 05:b2:01:a4:08:3a:79:26:60:cd:e4:e9:04:ed:28:df:32:6d: dd:bf:39:9c:de:23:c2:89:17:fb:11:94:91:83:5e:60:b4:77: d1:d5:5b:6e:09:4c:f5:40:3e:90:bd:73:f4:82:54:f4:43:22: 3f:d0:23:bb:fa:36:03:fb:ef:23:07:e9:57:69:13:37:56:76: f7:e8:9a:8e:c4:ca:6c:22:64:e1:c7:0e:c5:88:57:0c:8f:25: e5:97:ce:e6:64:6e:58:fd:62:11:bf:bf:7a:af:3b:94:96:43: 4c:63:ad:23:6b:43:5f:34:29:62:82:1f:94:3e:4f:43:79:53: 0d:cd:50:bd:cd:d3:ec:25:5d:c5:8b:48:6d:4d:f9:e2:71:fd: 92:6f:73:16:66:6b:22:c2:88:72:7e:01:72:47:a6:7f:dd:a7: 28:db:e5:eb:ca:3a:f2:0c:8c:13:25:62:9a:ba:a9:db:74:ac: 4e:d8:37:ab:d0:04:7e:1a:cf:7e:34:02:65:c9:e2:53:7b:1e: 52:55:3f:ed:16:a3:ec:5f:d1:d4:1a:e4:00:e7:d8:31:ea:28: 39:aa:87:44:64:5f:42:fe:5e:c8:39:fd:72:f8:a2:ba:7d:13: e5:f3:e5:2b:df:99:49:19:65:e2:fc:4d:de:f2:bd:f1:40:26: b2:5e:56:3a -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUCt8vAQvNYxKj5KBz36ffQ9/A9lAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYxOTA0NTUwMFoX DTI0MDYxNzA1MDAwMFowMzExMC8GA1UEAxMoRTVGNjMxMUQ1QzUyRDlCQjJEMTE0 NDZCRTQwOEZDODdEMjgzMjBFMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOWTq/WVnw9fOXRWJt7sWotpVd27myB2g5I5GrXH3RCQUrjDHLAq1pU34Tt5 p1p5/w/eJJgnojNdHQMyYDRfbYTfF949CfvXCqcaSfeDQY7ACMITk76N2OLs42V1 +pss8AeJvacaVCQk7ugoyNG6X3RR1svcm+Ux0I0ihfHak3RHnjKF7U51M7nqS5Wo 8N/rahhtU2czKJ7Rm0xcRZBt5J+C6zOFdPCTk4EXQuj/RGJsVGpZIn4A8iRPw11q aX+YFMy0CBQXqbbB+DYW+EA9CItP9JgGhwnZm3zlwQOo58DFj2nuAJPwpcg1hN49 8scCZrX5gxfzzA/yAQ6EyS8Xo28CAwEAAaOCAdYwggHSMB0GA1UdDgQWBBTl9jEd XFLZuy0RRGvkCPyH0oMg4zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTQxMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGe3XgMEAGe/XjANBgkqhkiG9w0BAQsFAAOCAQEABbIBpAg6eSZg zeTpBO0o3zJt3b85nN4jwokX+xGUkYNeYLR30dVbbglM9UA+kL1z9IJU9EMiP9Aj u/o2A/vvIwfpV2kTN1Z29+iajsTKbCJk4ccOxYhXDI8l5ZfO5mRuWP1iEb+/eq87 lJZDTGOtI2tDXzQpYoIflD5PQ3lTDc1Qvc3T7CVdxYtIbU354nH9km9zFmZrIsKI cn4Bckemf92nKNvl68o68gyMEyVimrqp23SsTtg3q9AEfhrPfjQCZcniU3seUlU/ 7Raj7F/R1BrkAOfYMeooOaqHRGRfQv5eyDn9cviiun0T5fPlK9+ZSRll4vxN3vK9 8UAmsl5WOg== -----END CERTIFICATE-----Generated at Wed May 8 17:45:22 2024 by rpki-client on console-ams.rpki-client.org