$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149689.roa File: AS149689.roa (raw, json) Hash identifier: vW0chthTSzALCsYgcL5HXuru0HtVhBslsfWiEiuQDA4= Subject key identifier: 6C:DE:40:13:D5:14:1E:1E:A4:9C:A8:7B:2C:98:56:7C:99:E1:D9:CC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 703E0C5E0A566323027BA874D997F753F64D0CAB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149689.roa Signing time: Fri 30 Jun 2023 05:00:00 +0000 ROA not before: Fri 30 Jun 2023 04:55:00 +0000 ROA not after: Fri 28 Jun 2024 05:00:00 +0000 asID: 149689 IP address blocks: 103.185.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:3e:0c:5e:0a:56:63:23:02:7b:a8:74:d9:97:f7:53:f6:4d:0c:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 30 04:55:00 2023 GMT Not After : Jun 28 05:00:00 2024 GMT Subject: CN=6CDE4013D5141E1EA49CA87B2C98567C99E1D9CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e1:d2:06:af:f7:cd:c7:7c:d2:ab:93:51:ed: f3:0c:7b:7a:ec:51:40:d1:4a:e3:74:90:9c:d7:b4: 08:64:f1:c4:77:b9:42:a4:c5:56:25:b0:a1:4b:ed: 30:82:51:55:fc:77:c3:f1:03:61:00:ee:2c:b5:fa: 61:72:12:b4:ae:1c:1a:41:a3:0a:71:e0:55:f3:9c: 65:77:af:b5:8b:7c:d6:75:94:70:e5:26:2b:a2:b6: 59:f9:e9:36:28:0e:17:93:76:a7:5d:96:10:a0:1b: c2:53:56:e6:75:bf:78:ac:0f:0b:97:4e:8d:a1:90: 99:00:89:6e:cf:de:7e:f1:0f:68:a3:4d:4c:90:40: 3a:ef:ed:8c:29:41:b3:d8:d0:98:76:0d:14:99:9c: b9:c1:15:69:16:e3:50:ac:30:87:bf:a3:51:19:be: 19:d9:ea:9b:d0:6b:b2:ea:0b:89:33:97:bb:fc:11: 61:14:92:d5:8c:6f:ca:1d:19:2c:81:ba:8e:f1:b2: 5d:05:82:f9:04:4d:17:2d:03:f3:8d:4b:cd:ae:2c: fa:44:48:45:e2:19:f2:99:56:14:22:26:81:67:82: 07:a2:72:7f:9f:a8:d8:4d:13:d2:00:ab:76:79:6e: bb:87:f7:ea:9e:e3:21:77:58:67:cb:ea:dd:3d:da: 95:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:DE:40:13:D5:14:1E:1E:A4:9C:A8:7B:2C:98:56:7C:99:E1:D9:CC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149689.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.252.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:c3:68:4d:c1:51:f7:5c:87:38:06:08:67:c7:c3:e4:8f:a3: 46:f3:57:55:fc:cb:9f:f9:33:94:b6:d4:68:56:92:e6:2e:cc: ab:10:35:d1:fe:ca:f4:4a:30:44:65:0b:8b:0f:61:54:8e:d2: b4:ea:42:96:5c:5f:ba:c9:2a:fe:19:a4:a5:da:02:8a:9c:ac: 95:43:19:d4:13:04:4e:cc:0b:8e:6f:f1:62:ff:39:3b:d7:b5: 83:f6:7a:db:c0:a6:ad:22:66:93:74:34:7a:2f:d8:e0:c4:67: 96:b4:b9:d8:4e:a4:7b:da:5c:1d:50:6d:88:98:4e:bf:f1:67: 47:02:87:8d:7f:40:ce:91:20:94:7a:9f:0e:4f:ce:27:94:17: 51:6c:b2:ae:09:05:61:2f:8a:40:79:b4:66:92:0f:c8:c7:b3: 6f:1e:71:98:93:a2:5a:2c:f4:1e:11:80:12:ca:20:29:7f:07: 4d:92:21:0d:1d:ec:8c:a2:f0:7a:ae:a2:c7:ce:40:2c:c3:79: 27:dc:0e:4f:5e:a3:c3:cd:05:9f:a5:95:b0:66:94:20:26:96: c7:5a:f7:62:63:1b:f4:d4:0a:4e:f2:c6:7c:c3:1f:c8:32:ef: 02:8b:f7:10:09:12:aa:cc:70:9d:8c:db:e7:d6:43:ca:3e:53: ec:46:a5:d8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcD4MXgpWYyMCe6h02Zf3U/ZNDKswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYzMDA0NTUwMFoX DTI0MDYyODA1MDAwMFowMzExMC8GA1UEAxMoNkNERTQwMTNENTE0MUUxRUE0OUNB ODdCMkM5ODU2N0M5OUUxRDlDQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALvh0gav983HfNKrk1Ht8wx7euxRQNFK43SQnNe0CGTxxHe5QqTFViWwoUvt MIJRVfx3w/EDYQDuLLX6YXIStK4cGkGjCnHgVfOcZXevtYt81nWUcOUmK6K2Wfnp NigOF5N2p12WEKAbwlNW5nW/eKwPC5dOjaGQmQCJbs/efvEPaKNNTJBAOu/tjClB s9jQmHYNFJmcucEVaRbjUKwwh7+jURm+Gdnqm9BrsuoLiTOXu/wRYRSS1Yxvyh0Z LIG6jvGyXQWC+QRNFy0D841Lza4s+kRIReIZ8plWFCImgWeCB6Jyf5+o2E0T0gCr dnluu4f36p7jIXdYZ8vq3T3alW0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRs3kAT 1RQeHqScqHssmFZ8meHZzDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTY4OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe5/DANBgkqhkiG9w0BAQsFAAOCAQEAW8NoTcFR91yHOAYIZ8fD 5I+jRvNXVfzLn/kzlLbUaFaS5i7MqxA10f7K9EowRGULiw9hVI7StOpCllxfuskq /hmkpdoCipyslUMZ1BMETswLjm/xYv85O9e1g/Z628CmrSJmk3Q0ei/Y4MRnlrS5 2E6ke9pcHVBtiJhOv/FnRwKHjX9AzpEglHqfDk/OJ5QXUWyyrgkFYS+KQHm0ZpIP yMezbx5xmJOiWiz0HhGAEsogKX8HTZIhDR3sjKLweq6ix85ALMN5J9wOT16jw80F n6WVsGaUICaWx1r3YmMb9NQKTvLGfMMfyDLvAov3EAkSqsxwnYzb59ZDyj5T7Eal 2A== -----END CERTIFICATE-----Generated at Thu May 9 00:37:07 2024 by rpki-client on console-fra.rpki-client.org