$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149697.roa File: AS149697.roa (raw, json) Hash identifier: FwsftWTkyz2yiUbI1GBPod/9BuGrPaRrJ7CXoYSmSlk= Subject key identifier: 38:96:F2:1E:9E:74:8E:A1:3C:BB:47:51:03:0C:51:51:2B:BE:54:8D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7D04AB501FCD9467D5BD9F2420803E430BE23B1B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149697.roa Signing time: Fri 14 Jun 2024 04:01:15 +0000 ROA not before: Fri 14 Jun 2024 03:56:15 +0000 ROA not after: Fri 13 Jun 2025 04:01:15 +0000 asID: 149697 IP address blocks: 2401:f60::/32 maxlen: 48 2401:f60:1::/48 maxlen: 48 2401:f60:2::/48 maxlen: 48 2401:f60:92::/48 maxlen: 48 2401:f60:93::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:04:ab:50:1f:cd:94:67:d5:bd:9f:24:20:80:3e:43:0b:e2:3b:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 14 03:56:15 2024 GMT Not After : Jun 13 04:01:15 2025 GMT Subject: CN=3896F21E9E748EA13CBB4751030C51512BBE548D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:88:f5:8c:f8:4e:43:3f:49:62:06:44:df:81: 1b:8f:6d:8b:8c:34:2b:db:a7:66:53:e2:ee:be:ce: bc:f1:5f:2c:9e:e2:47:39:ed:c5:78:c9:82:c9:f3: 19:2e:9e:75:ef:27:cc:3f:31:cd:09:9f:62:2e:e3: 77:55:3a:76:33:34:95:b7:86:23:2f:e1:81:29:32: fe:37:85:a5:4c:1b:f1:71:3c:ff:ea:d5:3a:d9:94: 55:e3:8a:eb:7e:43:6f:31:e5:77:7f:99:3b:27:66: ec:a8:96:2a:6d:58:4b:48:0a:b3:f8:a7:15:65:db: 27:fe:8e:ad:30:f6:59:ff:25:9b:95:f0:e4:d4:d0: 51:f2:13:48:c2:25:97:da:99:87:40:16:8b:a2:4c: 46:19:4b:8f:13:c1:ae:77:f8:48:ba:e6:f1:12:70: bd:f6:06:dd:dc:a0:55:de:a6:5e:cc:5e:b2:52:3a: 30:20:ad:0b:f5:b1:ac:12:d6:82:74:9b:09:11:38: 60:ad:34:f6:45:74:2d:19:2d:e1:32:17:39:df:e0: 90:c0:05:e0:3b:58:1e:1e:51:66:03:88:5c:e5:e5: 31:9b:73:1c:e3:54:70:54:dd:55:f0:84:ca:85:d0: 82:a3:e1:ec:96:2c:22:fc:1f:59:1f:cd:10:55:56: b9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:96:F2:1E:9E:74:8E:A1:3C:BB:47:51:03:0C:51:51:2B:BE:54:8D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149697.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f60::/32 Signature Algorithm: sha256WithRSAEncryption 77:12:a7:f0:c4:62:75:09:04:23:ba:d5:7d:fc:4b:20:b5:b8: 9d:84:d5:fe:4d:7c:06:66:2a:ad:63:4b:4f:ac:e4:2a:15:d9: a3:62:d9:de:c7:a2:eb:6b:70:71:2a:99:b8:95:0c:1f:ff:7c: d9:6a:58:90:f5:e8:ce:46:92:28:31:0f:4e:de:e3:ca:a5:b3: b9:77:d0:00:28:84:69:c3:08:36:4f:87:3c:b0:c6:9e:be:4a: 12:b4:70:c8:df:20:f6:38:c6:50:fb:49:06:41:b9:fa:27:73: cc:ba:ff:9d:fa:96:9b:78:cd:8a:57:38:19:45:a3:11:3a:bd: ab:64:93:ac:a7:2a:87:b6:d2:cd:70:05:9d:32:eb:e6:e9:74: ae:e5:84:42:be:f4:79:ce:ca:93:45:66:e8:f8:d0:4b:8e:18: f8:37:2a:f5:20:af:5a:3e:ad:de:c0:4f:7d:54:37:30:23:7f: 1f:b5:e4:37:e8:41:d3:20:f6:d4:09:77:ec:c6:22:8d:b2:4e: 41:82:9f:2e:bd:58:c7:82:55:07:41:34:47:5c:81:26:8a:59: 4c:bf:99:c4:8b:9c:d3:fb:eb:e1:cf:ef:8b:13:af:0e:2b:13: 6f:6e:25:40:ac:24:27:26:0b:08:ea:eb:84:7d:c9:b0:2b:77: 45:13:92:be -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUfQSrUB/NlGfVvZ8kIIA+QwviOxswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYxNDAzNTYxNVoX DTI1MDYxMzA0MDExNVowMzExMC8GA1UEAxMoMzg5NkYyMUU5RTc0OEVBMTNDQkI0 NzUxMDMwQzUxNTEyQkJFNTQ4RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANWI9Yz4TkM/SWIGRN+BG49ti4w0K9unZlPi7r7OvPFfLJ7iRzntxXjJgsnz GS6ede8nzD8xzQmfYi7jd1U6djM0lbeGIy/hgSky/jeFpUwb8XE8/+rVOtmUVeOK 635DbzHld3+ZOydm7KiWKm1YS0gKs/inFWXbJ/6OrTD2Wf8lm5Xw5NTQUfITSMIl l9qZh0AWi6JMRhlLjxPBrnf4SLrm8RJwvfYG3dygVd6mXsxeslI6MCCtC/WxrBLW gnSbCRE4YK009kV0LRkt4TIXOd/gkMAF4DtYHh5RZgOIXOXlMZtzHONUcFTdVfCE yoXQgqPh7JYsIvwfWR/NEFVWuY8CAwEAAaOCAdEwggHNMB0GA1UdDgQWBBQ4lvIe nnSOoTy7R1EDDFFRK75UjTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTY5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBD2AwDQYJKoZIhvcNAQELBQADggEBAHcSp/DEYnUJBCO61X38 SyC1uJ2E1f5NfAZmKq1jS0+s5CoV2aNi2d7HoutrcHEqmbiVDB//fNlqWJD16M5G kigxD07e48qls7l30AAohGnDCDZPhzywxp6+ShK0cMjfIPY4xlD7SQZBufonc8y6 /536lpt4zYpXOBlFoxE6vatkk6ynKoe20s1wBZ0y6+bpdK7lhEK+9HnOypNFZuj4 0EuOGPg3KvUgr1o+rd7AT31UNzAjfx+15DfoQdMg9tQJd+zGIo2yTkGCny69WMeC VQdBNEdcgSaKWUy/mcSLnNP76+HP74sTrw4rE29uJUCsJCcmCwjq64R9ybArd0UT kr4= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:26 2024 by rpki-client on console-fra.rpki-client.org