$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149704.roa File: AS149704.roa (raw, json) Hash identifier: 8D55XmsRdhhhSvfRZR+JY6jMkMYo8FnKEWzWnqil6ww= Subject key identifier: 40:EE:EB:73:BE:A5:16:D3:4C:7A:52:23:13:3F:05:7E:22:64:95:46 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1B55537AF66CD7A2C55C8F9475784ED5E45FD844 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149704.roa Signing time: Wed 05 Jun 2024 08:00:00 +0000 ROA not before: Wed 05 Jun 2024 07:55:00 +0000 ROA not after: Wed 04 Jun 2025 08:00:00 +0000 asID: 149704 IP address blocks: 103.175.80.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:55:53:7a:f6:6c:d7:a2:c5:5c:8f:94:75:78:4e:d5:e4:5f:d8:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 5 07:55:00 2024 GMT Not After : Jun 4 08:00:00 2025 GMT Subject: CN=40EEEB73BEA516D34C7A5223133F057E22649546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:82:26:9c:a9:b8:c7:1d:85:37:e2:b7:9c:d6: a5:62:d1:1d:d1:d2:65:91:3d:a7:fa:58:bc:74:6f: 5b:c1:58:2c:61:0c:d7:5c:0e:13:17:4a:64:b1:a5: d0:0a:69:fd:2c:b3:3f:6c:c9:5f:e3:ae:b7:7c:79: d6:c5:d4:6d:32:44:5d:59:59:b9:97:bb:71:ae:41: ed:b4:46:48:ad:ed:42:58:35:92:1e:6a:77:2b:da: 80:a4:ba:6e:5c:30:28:59:7b:47:a8:8a:49:cf:9a: 5c:70:f4:cc:75:a9:be:80:00:fa:03:eb:d8:06:ea: e9:43:76:5c:fd:5d:ff:6d:8b:a9:b4:24:2d:37:0e: 71:6b:8a:ef:ed:30:33:8d:38:8c:fd:a2:2a:cd:fe: 46:e2:cf:fc:cf:1f:d6:2e:fb:2f:0f:8d:ed:d3:e5: 51:09:08:8f:60:d0:6e:e0:f6:c3:3b:35:36:4c:99: 49:20:23:50:98:9c:9a:71:b8:db:81:1e:aa:1a:5a: eb:b5:90:05:81:9a:95:76:f2:3e:ee:4e:a1:54:58: ed:0e:96:cf:e1:ae:00:34:cb:87:f8:47:b6:43:9c: a6:86:d1:e2:18:ce:4f:80:d9:08:d7:ac:0c:d9:5c: 0a:f1:33:d2:c9:63:de:cc:a6:30:78:b2:79:cf:93: 6f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:EE:EB:73:BE:A5:16:D3:4C:7A:52:23:13:3F:05:7E:22:64:95:46 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149704.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.80.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:f1:ac:8c:1c:18:fd:fb:43:a5:32:ff:b4:16:19:9c:eb:e0: 8a:82:13:01:c4:08:1a:89:ea:fc:79:05:24:fe:77:24:62:fc: be:77:08:3a:60:d1:61:e4:7d:73:98:27:0a:8c:2d:f9:aa:3f: 51:8a:86:32:b0:e0:b5:1c:ee:69:dc:3b:31:95:90:41:10:1b: d8:f8:b8:0a:cf:13:2f:1f:61:c0:17:37:aa:2f:02:f3:14:6f: 6c:09:ea:c2:b9:7e:9b:7c:58:27:40:2d:b8:73:38:1f:24:9d: cf:da:dc:71:94:69:db:49:05:fd:e1:67:38:3d:d4:95:63:fa: f6:01:2b:87:e6:54:3f:e0:2e:c6:c3:78:34:61:b8:a5:59:61: f1:3e:78:68:6d:78:9f:92:4b:66:4f:00:24:d6:e0:00:13:04: 39:00:a1:07:f8:e5:b0:0a:23:d9:82:ac:59:1d:87:0f:c8:b7: cc:0c:78:1a:17:a7:10:5d:cf:19:7e:62:be:9a:99:5a:88:d1: 2c:aa:05:05:83:07:55:e3:c7:32:7d:5a:e9:e6:6f:f1:9f:7e: b4:c4:67:55:4a:4c:b1:05:3c:b7:8a:04:6e:83:a1:5e:0f:c4: cf:67:b9:8d:b5:5f:13:d0:64:c4:26:8b:13:67:55:f9:30:68: 5e:fe:08:93 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUG1VTevZs16LFXI+UdXhO1eRf2EQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYwNTA3NTUwMFoX DTI1MDYwNDA4MDAwMFowMzExMC8GA1UEAxMoNDBFRUVCNzNCRUE1MTZEMzRDN0E1 MjIzMTMzRjA1N0UyMjY0OTU0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK2CJpypuMcdhTfit5zWpWLRHdHSZZE9p/pYvHRvW8FYLGEM11wOExdKZLGl 0App/SyzP2zJX+Out3x51sXUbTJEXVlZuZe7ca5B7bRGSK3tQlg1kh5qdyvagKS6 blwwKFl7R6iKSc+aXHD0zHWpvoAA+gPr2Abq6UN2XP1d/22LqbQkLTcOcWuK7+0w M404jP2iKs3+RuLP/M8f1i77Lw+N7dPlUQkIj2DQbuD2wzs1NkyZSSAjUJicmnG4 24Eeqhpa67WQBYGalXbyPu5OoVRY7Q6Wz+GuADTLh/hHtkOcpobR4hjOT4DZCNes DNlcCvEz0slj3symMHiyec+Tb4MCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRA7utz vqUW00x6UiMTPwV+ImSVRjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTcwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWevUDANBgkqhkiG9w0BAQsFAAOCAQEAbvGsjBwY/ftDpTL/tBYZ nOvgioITAcQIGonq/HkFJP53JGL8vncIOmDRYeR9c5gnCowt+ao/UYqGMrDgtRzu adw7MZWQQRAb2Pi4Cs8TLx9hwBc3qi8C8xRvbAnqwrl+m3xYJ0AtuHM4HySdz9rc cZRp20kF/eFnOD3UlWP69gErh+ZUP+AuxsN4NGG4pVlh8T54aG14n5JLZk8AJNbg ABMEOQChB/jlsAoj2YKsWR2HD8i3zAx4GhenEF3PGX5ivpqZWojRLKoFBYMHVePH Mn1a6eZv8Z9+tMRnVUpMsQU8t4oEboOhXg/Ez2e5jbVfE9BkxCaLE2dV+TBoXv4I kw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:26 2024 by rpki-client on console-fra.rpki-client.org