$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149699.roa File: AS149699.roa (raw, json) Hash identifier: OUQGoKrZiUDQBDlT7MqKR9dme5Sx0x785E1QERnHLMc= Subject key identifier: BA:56:09:B3:79:61:7F:FB:A8:3C:01:23:2F:94:CA:DB:F5:B8:52:A1 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5676C449F8FE4C6CF5414292C0489A8DBD6ADB5F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149699.roa Signing time: Mon 12 Jun 2023 07:04:30 +0000 ROA not before: Mon 12 Jun 2023 06:59:30 +0000 ROA not after: Mon 10 Jun 2024 07:04:30 +0000 asID: 149699 IP address blocks: 103.186.166.0/24 maxlen: 24 103.242.86.0/24 maxlen: 24 2400:f5a0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:76:c4:49:f8:fe:4c:6c:f5:41:42:92:c0:48:9a:8d:bd:6a:db:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 12 06:59:30 2023 GMT Not After : Jun 10 07:04:30 2024 GMT Subject: CN=BA5609B379617FFBA83C01232F94CADBF5B852A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8f:ca:8f:2c:67:15:28:59:44:fc:ae:80:26: 89:4c:4e:87:ba:4b:42:61:c1:37:1f:f8:bd:04:db: 6d:77:c1:17:5d:5a:cc:db:73:68:36:6e:d0:32:fa: e7:fa:e9:b4:d4:20:86:eb:00:ee:b8:a3:4d:9f:ba: 84:f8:5d:40:37:3e:14:5f:7c:30:88:c6:62:be:a8: bc:3c:29:b6:57:3b:2c:23:a7:4a:cc:d4:db:ea:c7: 95:0a:3e:31:f3:42:b5:8e:41:fa:bf:6e:24:0a:f3: a9:74:d3:76:26:7a:fd:e5:a6:1f:a8:03:c2:08:5b: 78:07:2c:cf:12:c5:84:9d:97:f4:af:c5:36:b2:00: d5:74:90:06:02:55:6b:95:30:86:d3:07:73:68:21: 3d:84:20:a3:b9:59:87:8f:e1:be:0a:dd:a0:b5:4e: c0:94:25:c0:44:5b:61:2f:ba:79:2a:3c:ac:1d:ef: 45:63:d7:cc:cf:28:1f:51:60:16:1b:72:9b:78:31: 71:95:0a:a9:a2:1b:9c:45:a3:15:8e:25:05:43:8c: 23:64:e3:10:e7:4b:e3:5c:8e:c8:47:40:17:d8:26: 87:61:fc:0b:8d:0a:b2:a1:a7:b9:4f:bc:eb:19:a9: 6c:05:42:a3:1f:e0:1f:b3:8a:82:cc:76:35:a9:30: 16:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:56:09:B3:79:61:7F:FB:A8:3C:01:23:2F:94:CA:DB:F5:B8:52:A1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149699.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.166.0/24 103.242.86.0/24 IPv6: 2400:f5a0::/32 Signature Algorithm: sha256WithRSAEncryption 24:29:aa:8c:db:9f:d1:df:2a:41:93:db:0e:1c:a2:59:5c:c5: 77:e4:bf:4f:1f:3b:ab:c1:db:35:7c:3a:c8:54:0a:38:41:6c: 3c:2f:10:03:9d:65:82:55:19:e5:71:62:20:90:de:62:97:3a: b4:92:6a:0b:88:8c:f1:09:1c:43:10:44:d6:4a:e0:29:e5:03: 7b:8d:b3:50:8b:2a:dd:de:8f:e7:cd:ca:36:48:ee:23:6b:42: 8c:f4:0f:b1:11:84:12:74:b4:ec:06:53:24:22:71:3a:fc:03: 95:6b:b8:a4:64:03:7a:c2:bc:6d:76:51:5c:38:bb:26:b5:ed: 23:b6:41:4b:25:e3:da:d0:dd:6f:91:b8:e7:a3:bb:ac:6b:97: 35:0b:2c:5b:c1:3a:bf:6f:1a:a9:cb:53:30:a9:26:4d:27:d6: b2:e5:04:2e:7f:76:db:97:93:4e:af:9b:e4:8d:09:96:1b:a1: f0:57:60:c0:4f:96:57:55:08:d6:54:89:16:85:9a:4c:d8:9f: 97:6b:fa:ee:97:ac:34:b7:6f:10:d4:48:aa:41:24:50:a6:e3: b4:00:02:7a:b1:a9:9d:8c:07:4e:c7:e5:11:ce:03:04:93:6e: 29:a8:ee:0e:64:e1:4f:15:af:ef:39:0c:5b:48:8c:0e:b2:32: bd:9f:02:57 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUVnbESfj+TGz1QUKSwEiajb1q218wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYxMjA2NTkzMFoX DTI0MDYxMDA3MDQzMFowMzExMC8GA1UEAxMoQkE1NjA5QjM3OTYxN0ZGQkE4M0Mw MTIzMkY5NENBREJGNUI4NTJBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK6Pyo8sZxUoWUT8roAmiUxOh7pLQmHBNx/4vQTbbXfBF11azNtzaDZu0DL6 5/rptNQghusA7rijTZ+6hPhdQDc+FF98MIjGYr6ovDwptlc7LCOnSszU2+rHlQo+ MfNCtY5B+r9uJArzqXTTdiZ6/eWmH6gDwghbeAcszxLFhJ2X9K/FNrIA1XSQBgJV a5UwhtMHc2ghPYQgo7lZh4/hvgrdoLVOwJQlwERbYS+6eSo8rB3vRWPXzM8oH1Fg Fhtym3gxcZUKqaIbnEWjFY4lBUOMI2TjEOdL41yOyEdAF9gmh2H8C40KsqGnuU+8 6xmpbAVCox/gH7OKgsx2NakwFncCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBS6Vgmz eWF/+6g8ASMvlMrb9bhSoTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTY5OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAGe6pgMEAGfyVjANBAIAAjAHAwUAJAD1oDANBgkqhkiG9w0BAQsF AAOCAQEAJCmqjNuf0d8qQZPbDhyiWVzFd+S/Tx87q8HbNXw6yFQKOEFsPC8QA51l glUZ5XFiIJDeYpc6tJJqC4iM8QkcQxBE1krgKeUDe42zUIsq3d6P583KNkjuI2tC jPQPsRGEEnS07AZTJCJxOvwDlWu4pGQDesK8bXZRXDi7JrXtI7ZBSyXj2tDdb5G4 56O7rGuXNQssW8E6v28aqctTMKkmTSfWsuUELn9225eTTq+b5I0Jlhuh8FdgwE+W V1UI1lSJFoWaTNifl2v67pesNLdvENRIqkEkUKbjtAACerGpnYwHTsflEc4DBJNu KajuDmThTxWv7zkMW0iMDrIyvZ8CVw== -----END CERTIFICATE-----Generated at Wed May 8 17:45:23 2024 by rpki-client on console-ams.rpki-client.org