$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149690.roa File: AS149690.roa (raw, json) Hash identifier: COrY0nkhtrksZ5MTkt206GepfGp/NxT6AaID7CyQ97Y= Subject key identifier: 17:0B:6E:40:27:96:B2:AA:EF:80:7E:E8:56:A0:2F:F0:6A:CA:25:12 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6C01C6767135B2AA13B3C4C973A17611DB75A27F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149690.roa Signing time: Tue 04 Jun 2024 04:00:00 +0000 ROA not before: Tue 04 Jun 2024 03:55:00 +0000 ROA not after: Tue 03 Jun 2025 04:00:00 +0000 asID: 149690 IP address blocks: 2001:df1:1340::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:01:c6:76:71:35:b2:aa:13:b3:c4:c9:73:a1:76:11:db:75:a2:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 4 03:55:00 2024 GMT Not After : Jun 3 04:00:00 2025 GMT Subject: CN=170B6E402796B2AAEF807EE856A02FF06ACA2512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:61:d3:d2:3b:54:1a:50:60:04:38:18:29:96: c2:72:ce:6b:9c:c3:fe:13:a2:f9:56:67:b7:e7:57: 7b:5c:5c:41:77:36:f9:50:26:ad:1e:b7:bd:e0:ae: 18:fd:dc:b6:4d:c3:77:9c:da:2e:43:5c:63:2b:f4: 12:21:47:0f:a2:9b:ab:5b:e8:1d:7f:68:5b:75:3b: 0a:0b:e6:07:ab:b7:5d:9c:d2:b7:7e:e4:ef:1f:77: 20:ab:19:94:2c:52:30:5d:2b:83:a0:ae:07:d8:8e: 6d:f1:00:4f:73:cf:89:c1:29:8d:d5:c5:38:94:cf: 13:dc:a4:2e:0e:75:6f:96:c1:9d:5f:0c:d4:54:21: 05:ab:c1:bc:1b:38:32:9b:21:af:25:a0:5d:37:c4: d3:6d:20:e3:1e:05:38:d3:4a:31:4f:4e:ed:94:ec: af:77:3d:3b:27:a7:e4:f8:d3:79:6b:43:4c:6e:ec: 5c:0d:e9:f4:1c:ea:36:43:83:94:1c:ed:55:50:ab: 34:85:16:f0:8b:a9:96:55:79:2e:c3:68:48:c3:ff: fe:09:35:6c:17:60:80:d1:da:ba:22:f0:42:45:76: a0:c6:a4:9e:2a:62:d3:f4:ba:ee:7f:18:2c:59:a2: df:e8:a5:b7:9d:42:2a:af:8f:e9:8a:ed:5b:c0:28: 1c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:0B:6E:40:27:96:B2:AA:EF:80:7E:E8:56:A0:2F:F0:6A:CA:25:12 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149690.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1340::/48 Signature Algorithm: sha256WithRSAEncryption 1e:ac:42:c3:f1:1f:1e:19:34:3c:45:f2:4e:5a:97:f3:ec:da: fc:96:28:21:1e:c7:1b:7e:25:d4:5e:d6:60:2f:1a:81:80:bf: ac:66:33:e3:1e:8b:0e:7b:c0:30:0d:a6:19:a4:ae:87:6d:41: 69:bc:3b:06:d8:89:cf:c5:c6:51:37:a4:43:73:4e:1c:a1:60: e6:c0:80:14:37:fa:68:01:15:d5:49:ac:0c:f6:98:8d:dd:60: 7f:d1:85:ed:54:6d:98:03:0d:ed:37:b7:4b:99:f6:a3:60:57: a0:6d:3e:2c:a5:6f:54:75:c6:28:9f:56:6b:19:f1:03:b9:7a: ab:41:95:16:7a:a7:d6:86:4d:aa:7d:12:2e:21:d3:30:2d:5a: ad:7a:26:f9:6b:4c:cd:94:ba:aa:0f:f9:78:91:1f:9e:85:52: d0:55:08:3c:e5:4c:37:7d:00:fd:5e:eb:d4:52:07:ca:02:10: ea:a4:f3:67:4c:be:eb:00:36:69:0d:2f:cf:5c:36:b2:58:b8: 61:7e:e0:45:e7:f6:2d:c5:3b:b5:67:80:ce:8c:a3:c6:f1:0f: 1f:9e:11:f3:ea:bc:52:fd:a4:bc:d9:68:52:9c:5e:7c:09:a4: e8:8a:01:13:02:69:c1:d4:14:8b:cf:97:bf:39:11:74:a0:1a: b7:ef:9d:4b -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUbAHGdnE1sqoTs8TJc6F2Edt1on8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYwNDAzNTUwMFoX DTI1MDYwMzA0MDAwMFowMzExMC8GA1UEAxMoMTcwQjZFNDAyNzk2QjJBQUVGODA3 RUU4NTZBMDJGRjA2QUNBMjUxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMRh09I7VBpQYAQ4GCmWwnLOa5zD/hOi+VZnt+dXe1xcQXc2+VAmrR63veCu GP3ctk3Dd5zaLkNcYyv0EiFHD6Kbq1voHX9oW3U7CgvmB6u3XZzSt37k7x93IKsZ lCxSMF0rg6CuB9iObfEAT3PPicEpjdXFOJTPE9ykLg51b5bBnV8M1FQhBavBvBs4 MpshryWgXTfE020g4x4FONNKMU9O7ZTsr3c9Oyen5PjTeWtDTG7sXA3p9BzqNkOD lBztVVCrNIUW8IupllV5LsNoSMP//gk1bBdggNHauiLwQkV2oMaknipi0/S67n8Y LFmi3+ilt51CKq+P6YrtW8AoHDsCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQXC25A J5ayqu+AfuhWoC/wasolEjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTY5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfETQDANBgkqhkiG9w0BAQsFAAOCAQEAHqxCw/EfHhk0PEXy TlqX8+za/JYoIR7HG34l1F7WYC8agYC/rGYz4x6LDnvAMA2mGaSuh21Babw7BtiJ z8XGUTekQ3NOHKFg5sCAFDf6aAEV1UmsDPaYjd1gf9GF7VRtmAMN7Te3S5n2o2BX oG0+LKVvVHXGKJ9WaxnxA7l6q0GVFnqn1oZNqn0SLiHTMC1arXom+WtMzZS6qg/5 eJEfnoVS0FUIPOVMN30A/V7r1FIHygIQ6qTzZ0y+6wA2aQ0vz1w2sli4YX7gRef2 LcU7tWeAzoyjxvEPH54R8+q8Uv2kvNloUpxefAmk6IoBEwJpwdQUi8+XvzkRdKAa t++dSw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:26 2024 by rpki-client on console-fra.rpki-client.org