$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149704.roa File: AS149704.roa (raw, json) Hash identifier: cy7CQxtsTJPd48TUndJcyD+nibqiE6n3GGi1yDZ9JDY= Subject key identifier: 8C:08:85:BF:79:D8:25:4E:73:ED:EB:A8:2B:AC:15:0F:FB:28:1E:86 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 26E8AF51CEDED68D6AB9E66170E6C912B09113C7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149704.roa Signing time: Wed 07 May 2025 08:00:00 +0000 ROA not before: Wed 07 May 2025 07:55:00 +0000 ROA not after: Wed 06 May 2026 08:00:00 +0000 asID: 149704 IP address blocks: 103.175.80.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:e8:af:51:ce:de:d6:8d:6a:b9:e6:61:70:e6:c9:12:b0:91:13:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 7 07:55:00 2025 GMT Not After : May 6 08:00:00 2026 GMT Subject: CN=8C0885BF79D8254E73EDEBA82BAC150FFB281E86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9d:b5:e7:73:36:5c:d9:f3:9d:51:cc:24:f6: eb:cd:07:9b:69:7b:1b:97:d4:f9:01:7e:0e:fc:4c: 29:03:4c:89:36:1f:6e:43:f3:32:27:cb:f4:1f:9f: 64:2d:5c:11:46:fd:5d:9c:7b:f8:6c:7d:41:bc:70: fc:47:3d:42:6e:cc:47:56:1d:1e:f8:43:45:ab:2d: 13:d0:13:c8:4c:c2:0a:e3:e8:90:1d:03:ab:24:cd: 7d:1c:70:40:74:1a:91:ad:8b:1b:16:e6:64:94:78: 28:da:58:24:d3:24:fe:1a:34:7b:59:c0:15:c3:4f: c2:b6:35:07:34:04:b1:40:c0:ec:b8:53:e5:c5:c8: 74:32:88:94:11:34:06:6f:fd:27:30:16:69:4b:07: 50:76:ea:70:da:b6:24:35:da:67:1b:0f:75:62:a3: 7b:2a:32:a0:c2:c9:00:0f:d3:d3:f6:51:98:7e:ce: fc:e8:38:74:01:04:c9:3c:df:cc:ee:39:d2:53:fb: 14:51:53:67:24:2b:30:7a:9a:f8:71:bf:f7:a0:98: d6:01:8d:95:6b:a2:35:d0:78:e7:4e:17:db:5a:fe: 35:2f:d7:7d:75:64:e7:2d:71:93:a7:98:a2:13:28: 01:97:44:29:83:4d:b9:8d:fe:5c:ad:0e:76:63:2a: 30:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:08:85:BF:79:D8:25:4E:73:ED:EB:A8:2B:AC:15:0F:FB:28:1E:86 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149704.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.80.0/23 Signature Algorithm: sha256WithRSAEncryption 55:ea:4c:c2:c1:41:ef:9a:be:c1:c4:99:61:b7:78:0c:dd:be: 05:f1:18:32:e5:e1:4c:75:97:e9:90:43:44:7e:0d:5c:e1:25: 68:f6:7d:4d:85:35:dd:09:8e:23:b6:7e:e5:90:d3:a4:38:40: e0:98:b6:32:df:e8:45:b8:20:d9:5d:19:ef:a8:2b:c6:04:94: db:e0:05:56:25:be:f2:58:df:55:98:33:86:5c:86:2d:b7:0e: fa:90:43:f6:bf:b9:40:c0:ff:85:94:71:55:e7:56:7c:03:39: 2b:af:bd:db:c3:d8:6f:85:0e:89:86:28:e4:2f:29:5f:4f:20: f7:bd:85:85:61:99:bd:cb:d7:75:fa:32:fb:65:9c:73:62:11: 67:a8:a2:b1:3c:3b:90:28:dd:a9:52:41:4e:37:41:70:16:2d: 34:35:71:86:50:a3:c8:22:0c:c2:83:5a:4d:4a:fb:29:2c:4e: f5:06:c7:ad:ff:67:83:37:f6:9d:d5:0e:d9:da:51:4c:ae:cd: 98:2e:ed:20:ad:64:bc:7d:4a:50:85:1d:a7:56:2d:53:d0:53: b2:ad:c2:4c:de:ef:48:db:c7:74:b4:8b:87:e0:46:fe:d2:bd: 0e:7b:32:07:f1:bc:0f:14:e7:72:ce:f3:95:c4:c4:5e:d0:24: 6c:c7:5a:86 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJuivUc7e1o1queZhcObJErCRE8cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUwNzA3NTUwMFoX DTI2MDUwNjA4MDAwMFowMzExMC8GA1UEAxMoOEMwODg1QkY3OUQ4MjU0RTczRURF QkE4MkJBQzE1MEZGQjI4MUU4NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCdtedzNlzZ851RzCT2680Hm2l7G5fU+QF+DvxMKQNMiTYfbkPzMifL9B+f ZC1cEUb9XZx7+Gx9Qbxw/Ec9Qm7MR1YdHvhDRastE9ATyEzCCuPokB0DqyTNfRxw QHQaka2LGxbmZJR4KNpYJNMk/ho0e1nAFcNPwrY1BzQEsUDA7LhT5cXIdDKIlBE0 Bm/9JzAWaUsHUHbqcNq2JDXaZxsPdWKjeyoyoMLJAA/T0/ZRmH7O/Og4dAEEyTzf zO450lP7FFFTZyQrMHqa+HG/96CY1gGNlWuiNdB4504X21r+NS/XfXVk5y1xk6eY ohMoAZdEKYNNuY3+XK0OdmMqMIUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSMCIW/ edglTnPt66grrBUP+ygehjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTcwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWevUDANBgkqhkiG9w0BAQsFAAOCAQEAVepMwsFB75q+wcSZYbd4 DN2+BfEYMuXhTHWX6ZBDRH4NXOElaPZ9TYU13QmOI7Z+5ZDTpDhA4Ji2Mt/oRbgg 2V0Z76grxgSU2+AFViW+8ljfVZgzhlyGLbcO+pBD9r+5QMD/hZRxVedWfAM5K6+9 28PYb4UOiYYo5C8pX08g972FhWGZvcvXdfoy+2Wcc2IRZ6iisTw7kCjdqVJBTjdB cBYtNDVxhlCjyCIMwoNaTUr7KSxO9QbHrf9ngzf2ndUO2dpRTK7NmC7tIK1kvH1K UIUdp1YtU9BTsq3CTN7vSNvHdLSLh+BG/tK9DnsyB/G8DxTncs7zlcTEXtAkbMda hg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:10:25 2025 by rpki-client