$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149675.roa File: AS149675.roa (raw, json) Hash identifier: zuNXkMvmubUqdRCDsrS7bdjmTbJDYl5Uf5D1C9VKcyA= Subject key identifier: 68:3E:91:CC:6A:E1:0A:A5:5C:FB:57:5E:52:C0:29:79:C5:19:74:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 245E96117911903A256E5397A7B9FFB59B62B308 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149675.roa Signing time: Mon 04 Mar 2024 04:01:30 +0000 ROA not before: Mon 04 Mar 2024 03:56:30 +0000 ROA not after: Mon 03 Mar 2025 04:01:30 +0000 asID: 149675 IP address blocks: 2001:df2:5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:5e:96:11:79:11:90:3a:25:6e:53:97:a7:b9:ff:b5:9b:62:b3:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 4 03:56:30 2024 GMT Not After : Mar 3 04:01:30 2025 GMT Subject: CN=683E91CC6AE10AA55CFB575E52C02979C519746B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5d:16:f3:47:1a:9f:5e:6c:38:9c:b0:cf:97: 33:6b:78:86:f0:e2:a0:d0:f0:83:9b:4b:eb:f4:a9: 63:0b:50:59:74:28:fa:1c:46:98:69:30:69:93:53: 76:6f:d7:1b:70:9d:76:af:7c:49:e4:df:47:dd:c5: 04:2b:ba:62:8f:7d:86:33:87:ad:d4:bf:eb:e9:ac: 43:6d:93:9d:c7:53:73:7b:46:b5:b0:14:78:16:31: e8:be:39:9f:a0:c9:9a:16:7c:ba:55:29:d0:fd:69: 68:14:3a:74:14:35:05:cc:dc:04:4d:cd:ba:bf:e0: f5:c8:4f:ed:db:86:55:50:f0:05:93:95:d7:78:2a: aa:49:17:ca:81:05:92:5f:eb:2a:34:8e:c6:1e:49: b4:f8:7b:fd:29:86:e2:a4:e6:c3:a7:59:81:4f:b5: 66:9e:e2:69:fb:4a:e8:02:b9:c6:84:ba:4b:15:ea: 07:96:02:1c:53:f1:0f:25:cb:ad:84:79:c8:43:31: 3a:5a:8b:30:90:00:e9:3b:98:f7:5c:46:0d:57:24: 67:20:7d:68:c2:63:54:6d:04:80:55:b9:8c:58:37: 87:90:dd:a7:63:3f:68:5d:33:15:83:13:3c:1d:02: 37:71:83:6d:a9:f5:b2:b9:45:91:2c:fa:63:11:51: 8c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:3E:91:CC:6A:E1:0A:A5:5C:FB:57:5E:52:C0:29:79:C5:19:74:6B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149675.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:5c0::/48 Signature Algorithm: sha256WithRSAEncryption 5d:b7:ad:06:fb:dd:11:82:96:3f:da:04:96:8d:ec:11:d3:5b: 52:f9:89:7b:08:65:cf:d0:13:31:ab:8f:82:b9:78:db:80:96: 7e:d5:b2:d0:c0:50:36:dc:c9:7b:c9:c8:c3:c3:06:33:9e:40: ce:92:5c:9e:53:a5:e3:db:c3:c9:14:df:9f:17:89:fe:da:e4: 54:02:e4:f2:8a:71:09:14:e1:97:e5:e6:8e:ba:1e:25:e6:01: 8a:8e:70:a0:30:8b:cf:3c:eb:2b:a5:6d:b7:69:46:af:05:de: dc:d4:9e:83:64:41:92:5a:a0:fc:8a:82:f3:71:b7:f5:4f:4b: 7a:b6:40:46:64:b6:95:47:a5:9a:82:a6:10:ba:b5:4a:fa:99: 80:c2:5b:39:45:27:6c:99:57:b4:2d:df:b1:16:90:4b:ed:df: e8:14:15:2d:0b:2a:66:82:d9:10:00:a2:92:30:72:f1:b0:e2: 46:63:f6:a1:ae:99:14:fc:7f:b5:a6:e7:4b:5f:a4:8e:f0:f6: e7:27:48:c8:67:4c:f3:11:1d:cf:0e:62:fe:7f:95:87:55:96: 2a:52:6f:50:c2:90:df:ae:e5:5f:8f:28:13:41:42:c8:1c:44: 75:74:9d:0b:e1:c7:51:82:a3:2a:6e:e4:0d:98:4c:8c:e7:5c: 4c:9b:09:ba -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUJF6WEXkRkDolblOXp7n/tZtiswgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMwNDAzNTYzMFoX DTI1MDMwMzA0MDEzMFowMzExMC8GA1UEAxMoNjgzRTkxQ0M2QUUxMEFBNTVDRkI1 NzVFNTJDMDI5NzlDNTE5NzQ2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKhdFvNHGp9ebDicsM+XM2t4hvDioNDwg5tL6/SpYwtQWXQo+hxGmGkwaZNT dm/XG3Cddq98SeTfR93FBCu6Yo99hjOHrdS/6+msQ22TncdTc3tGtbAUeBYx6L45 n6DJmhZ8ulUp0P1paBQ6dBQ1BczcBE3Nur/g9chP7duGVVDwBZOV13gqqkkXyoEF kl/rKjSOxh5JtPh7/SmG4qTmw6dZgU+1Zp7iaftK6AK5xoS6SxXqB5YCHFPxDyXL rYR5yEMxOlqLMJAA6TuY91xGDVckZyB9aMJjVG0EgFW5jFg3h5Ddp2M/aF0zFYMT PB0CN3GDban1srlFkSz6YxFRjFUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRoPpHM auEKpVz7V15SwCl5xRl0azAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTY3NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfIFwDANBgkqhkiG9w0BAQsFAAOCAQEAXbetBvvdEYKWP9oE lo3sEdNbUvmJewhlz9ATMauPgrl424CWftWy0MBQNtzJe8nIw8MGM55AzpJcnlOl 49vDyRTfnxeJ/trkVALk8opxCRThl+XmjroeJeYBio5woDCLzzzrK6Vtt2lGrwXe 3NSeg2RBklqg/IqC83G39U9LerZARmS2lUelmoKmELq1SvqZgMJbOUUnbJlXtC3f sRaQS+3f6BQVLQsqZoLZEACikjBy8bDiRmP2oa6ZFPx/tabnS1+kjvD25ydIyGdM 8xEdzw5i/n+Vh1WWKlJvUMKQ367lX48oE0FCyBxEdXSdC+HHUYKjKm7kDZhMjOdc TJsJug== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:28 2024 by rpki-client on console-ams.rpki-client.org