$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149412.roa File: AS149412.roa (raw, json) Hash identifier: XxkBqHlE+aRwbU+YQTmf7rTWH2ErTO8Tbm34WcKRQ+M= Subject key identifier: 2D:00:29:F1:AE:22:D1:B1:6E:44:7E:D4:A0:8D:07:1B:76:81:B6:C8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 66C8E06A43371B20A29D089A3D7CCDB0E8E9D47A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149412.roa Signing time: Mon 20 May 2024 05:00:00 +0000 ROA not before: Mon 20 May 2024 04:55:00 +0000 ROA not after: Mon 19 May 2025 05:00:00 +0000 asID: 149412 IP address blocks: 103.183.94.0/24 maxlen: 24 103.191.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:c8:e0:6a:43:37:1b:20:a2:9d:08:9a:3d:7c:cd:b0:e8:e9:d4:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 20 04:55:00 2024 GMT Not After : May 19 05:00:00 2025 GMT Subject: CN=2D0029F1AE22D1B16E447ED4A08D071B7681B6C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:de:1e:00:45:79:2b:92:ab:aa:52:52:e9:25: 16:16:9c:e2:74:05:30:94:3f:70:a3:22:41:da:f2: 02:e8:82:a3:bb:7e:48:8e:73:06:e3:3a:e6:43:c4: fd:e4:6c:cd:5f:eb:2b:f3:ad:1e:18:29:bf:4e:04: fa:b0:52:7c:38:1e:c1:20:8a:6b:58:01:bb:0d:9f: 30:fe:b5:20:38:77:19:c4:35:f0:f3:4e:97:04:3e: 70:5e:6f:01:70:96:43:44:13:05:4e:e2:37:9a:a9: 5f:b0:39:4b:5d:df:92:f5:c9:b3:61:e4:96:0f:f9: fa:53:4e:50:68:2b:11:e5:17:d8:39:21:c1:af:cb: c1:07:a1:72:c8:d9:ba:07:23:ef:ae:98:b0:92:8d: f5:ef:fa:be:17:0c:0f:ee:7e:b4:64:60:62:fb:51: 00:0a:89:60:a1:83:7e:ce:4e:3e:9d:4d:f5:7d:c9: ac:6a:67:76:47:74:df:a6:2b:0f:f8:5d:0d:b6:0a: b3:7d:92:54:6b:9d:cd:a0:cd:4d:a2:5e:83:b9:5f: fc:1e:c1:59:81:fb:08:45:6b:99:7f:fd:1a:ac:4c: 58:fe:fa:25:37:35:96:47:be:5a:db:b5:e3:b8:01: d9:8a:87:d5:4b:d8:02:79:56:04:39:c5:38:33:43: 46:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:00:29:F1:AE:22:D1:B1:6E:44:7E:D4:A0:8D:07:1B:76:81:B6:C8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149412.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.94.0/24 103.191.94.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:45:1b:90:d2:54:50:93:8b:88:85:45:1a:bd:c4:bd:ec:40: c8:73:b6:6d:71:b9:b3:6c:de:3a:f0:eb:f7:eb:08:47:69:16: ed:4d:ae:00:ff:07:f2:fd:ad:31:da:00:e6:76:a6:58:e9:68: f7:f4:87:6c:4c:b7:de:3b:fb:76:7a:6b:e5:b3:cf:73:73:08: d4:c0:f4:25:e8:2d:48:97:e5:56:47:4f:39:50:0b:98:e3:60: 87:d3:db:d8:df:c5:8e:aa:52:6c:d9:70:88:88:c6:4f:5d:6e: 63:ae:1d:f7:f0:9e:23:8a:ff:d4:6a:2a:33:84:25:38:4e:ee: 4d:fa:bc:3a:f0:5e:3e:68:e5:02:2c:fa:ae:72:8b:c4:d0:1c: 66:84:0d:db:4c:1f:69:d9:90:9d:74:8b:5e:a2:c1:b0:d1:cc: d3:1b:0e:0f:0e:32:83:01:2d:34:dc:5d:cf:31:1d:58:62:44: 46:db:eb:5d:7c:b6:6b:b2:9b:ba:62:df:99:40:6f:29:41:2e: cc:b3:c9:56:a9:99:e4:d4:d1:be:bb:08:c0:36:96:00:43:6f: 42:15:60:68:9e:b2:f0:c7:20:39:aa:cc:42:00:d3:59:b7:46: 83:aa:20:7a:d2:2c:0a:ca:bf:1d:0f:d4:ca:0d:74:bb:40:a0: 75:62:4a:3a -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUZsjgakM3GyCinQiaPXzNsOjp1HowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUyMDA0NTUwMFoX DTI1MDUxOTA1MDAwMFowMzExMC8GA1UEAxMoMkQwMDI5RjFBRTIyRDFCMTZFNDQ3 RUQ0QTA4RDA3MUI3NjgxQjZDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALzeHgBFeSuSq6pSUuklFhac4nQFMJQ/cKMiQdryAuiCo7t+SI5zBuM65kPE /eRszV/rK/OtHhgpv04E+rBSfDgewSCKa1gBuw2fMP61IDh3GcQ18PNOlwQ+cF5v AXCWQ0QTBU7iN5qpX7A5S13fkvXJs2Hklg/5+lNOUGgrEeUX2Dkhwa/LwQehcsjZ ugcj766YsJKN9e/6vhcMD+5+tGRgYvtRAAqJYKGDfs5OPp1N9X3JrGpndkd036Yr D/hdDbYKs32SVGudzaDNTaJeg7lf/B7BWYH7CEVrmX/9GqxMWP76JTc1lke+Wtu1 47gB2YqH1UvYAnlWBDnFODNDRi8CAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQtACnx riLRsW5EftSgjQcbdoG2yDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTQxMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGe3XgMEAGe/XjANBgkqhkiG9w0BAQsFAAOCAQEAX0UbkNJUUJOL iIVFGr3EvexAyHO2bXG5s2zeOvDr9+sIR2kW7U2uAP8H8v2tMdoA5namWOlo9/SH bEy33jv7dnpr5bPPc3MI1MD0JegtSJflVkdPOVALmONgh9Pb2N/FjqpSbNlwiIjG T11uY64d9/CeI4r/1GoqM4QlOE7uTfq8OvBePmjlAiz6rnKLxNAcZoQN20wfadmQ nXSLXqLBsNHM0xsODw4ygwEtNNxdzzEdWGJERtvrXXy2a7KbumLfmUBvKUEuzLPJ VqmZ5NTRvrsIwDaWAENvQhVgaJ6y8McgOarMQgDTWbdGg6ogetIsCsq/HQ/Uyg10 u0CgdWJKOg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:48 2024 by rpki-client on console-ams.rpki-client.org