$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149689.roa File: AS149689.roa (raw, json) Hash identifier: T1IjkkrtDRb/J60foK0QLhzY3CNx53vnjtZVJkah6Us= Subject key identifier: 5D:87:0A:DF:41:96:D8:31:FD:DA:24:FD:C1:02:77:E1:46:A3:6F:B8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 26C206AB0DB9A31D55C08ED183A836B4EDA8227B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149689.roa Signing time: Fri 31 May 2024 05:00:00 +0000 ROA not before: Fri 31 May 2024 04:55:00 +0000 ROA not after: Fri 30 May 2025 05:00:00 +0000 asID: 149689 IP address blocks: 103.185.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:c2:06:ab:0d:b9:a3:1d:55:c0:8e:d1:83:a8:36:b4:ed:a8:22:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 31 04:55:00 2024 GMT Not After : May 30 05:00:00 2025 GMT Subject: CN=5D870ADF4196D831FDDA24FDC10277E146A36FB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b2:97:f7:80:0d:4e:a5:97:91:1a:ac:31:2f: 2a:6d:80:a9:b2:ee:fe:61:cc:f7:a0:6d:47:93:70: dd:41:34:a4:47:05:8c:cd:79:fd:71:18:43:91:a8: ee:e2:eb:dc:9a:34:da:36:65:e6:81:4b:5c:0a:7b: 25:f6:11:2b:e5:0a:65:03:20:02:88:08:06:a4:ef: 58:66:01:89:0b:2f:e2:2b:e3:0e:dc:9c:3f:3f:ea: e7:b0:34:4d:3d:75:84:b5:b8:33:4c:df:35:1e:68: 30:2d:2d:84:81:12:27:6c:e1:22:af:9d:e3:5e:bc: 25:47:5f:e3:7a:c6:28:be:18:b2:71:56:50:51:96: 44:09:4a:0a:6a:45:0b:c1:1b:02:3e:79:7e:9a:ef: 52:d8:19:e7:04:6e:e7:f4:73:79:19:84:f9:c3:8a: 67:85:9d:62:de:4f:c8:ab:f3:98:98:00:be:d6:c2: 98:5d:8a:e1:c7:fe:24:1d:6a:63:ae:ff:c0:2f:5b: 97:97:2d:66:56:38:fd:80:d5:39:00:87:f7:a6:49: a7:00:95:1c:62:c3:1b:7a:0a:e3:9c:ed:0a:56:0c: 74:e8:af:13:0e:5a:71:6c:23:d0:5d:07:34:b3:71: e2:00:16:74:bb:43:bf:17:31:e9:a7:08:b5:89:ac: 30:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:87:0A:DF:41:96:D8:31:FD:DA:24:FD:C1:02:77:E1:46:A3:6F:B8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149689.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.252.0/23 Signature Algorithm: sha256WithRSAEncryption 59:5a:6a:56:d3:3e:f1:7d:8f:d2:86:b4:19:c8:ba:e1:81:17: eb:33:50:c8:6d:de:3a:e8:3a:7c:6b:5a:f1:c2:01:1b:1d:92: 87:50:04:64:1c:c5:6a:d3:62:17:9c:40:05:6c:41:fb:d7:0d: e9:af:d8:b1:65:5b:57:ee:46:0f:4b:19:94:08:b5:86:92:5e: 9f:bf:6f:68:8b:7b:db:19:24:9f:88:b2:3e:0b:09:67:b6:2d: fc:87:39:61:e2:4a:49:2f:72:22:ab:3d:8b:be:8c:10:f0:b0: ef:7d:fc:e4:2b:41:a0:77:ef:90:fe:df:6a:ed:09:61:20:64: 4a:7b:95:0d:c7:63:47:37:29:ee:da:1f:26:c2:26:67:e6:26: d8:bf:43:b1:70:cc:20:92:36:74:bc:30:c4:06:c6:d6:81:de: 26:14:9d:3b:ca:2e:69:6a:87:34:bc:83:bf:e7:fe:64:75:a0: 23:a0:8f:a7:30:0a:63:55:02:69:28:1f:1f:da:d5:51:b5:a2: 71:28:5c:d9:8b:1c:f6:6a:f6:84:87:6b:f8:4c:ec:2e:7b:2a: 6e:0a:6a:95:2f:68:a7:ea:0b:b4:9c:ca:45:3a:f2:f1:1d:01: 5c:c5:f9:2b:57:5f:99:03:75:b4:c5:9e:cb:db:87:d4:0b:ef: 68:19:79:67 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJsIGqw25ox1VwI7Rg6g2tO2oInswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUzMTA0NTUwMFoX DTI1MDUzMDA1MDAwMFowMzExMC8GA1UEAxMoNUQ4NzBBREY0MTk2RDgzMUZEREEy NEZEQzEwMjc3RTE0NkEzNkZCODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmyl/eADU6ll5EarDEvKm2AqbLu/mHM96BtR5Nw3UE0pEcFjM15/XEYQ5Go 7uLr3Jo02jZl5oFLXAp7JfYRK+UKZQMgAogIBqTvWGYBiQsv4ivjDtycPz/q57A0 TT11hLW4M0zfNR5oMC0thIESJ2zhIq+d4168JUdf43rGKL4YsnFWUFGWRAlKCmpF C8EbAj55fprvUtgZ5wRu5/RzeRmE+cOKZ4WdYt5PyKvzmJgAvtbCmF2K4cf+JB1q Y67/wC9bl5ctZlY4/YDVOQCH96ZJpwCVHGLDG3oK45ztClYMdOivEw5acWwj0F0H NLNx4gAWdLtDvxcx6acItYmsMI0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRdhwrf QZbYMf3aJP3BAnfhRqNvuDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTY4OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe5/DANBgkqhkiG9w0BAQsFAAOCAQEAWVpqVtM+8X2P0oa0Gci6 4YEX6zNQyG3eOug6fGta8cIBGx2Sh1AEZBzFatNiF5xABWxB+9cN6a/YsWVbV+5G D0sZlAi1hpJen79vaIt72xkkn4iyPgsJZ7Yt/Ic5YeJKSS9yIqs9i76MEPCw7338 5CtBoHfvkP7fau0JYSBkSnuVDcdjRzcp7tofJsImZ+Ym2L9DsXDMIJI2dLwwxAbG 1oHeJhSdO8ouaWqHNLyDv+f+ZHWgI6CPpzAKY1UCaSgfH9rVUbWicShc2Ysc9mr2 hIdr+EzsLnsqbgpqlS9op+oLtJzKRTry8R0BXMX5K1dfmQN1tMWey9uH1AvvaBl5 Zw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:28 2024 by rpki-client on console-ams.rpki-client.org