$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149704.roa File: AS149704.roa (raw, json) Hash identifier: A/KRlIi20VSQBLEk+1zO+L6Q8XaceABcnH2Ht84/NUI= Subject key identifier: 32:2C:90:6A:18:9C:E7:31:30:DF:7D:FB:F2:AC:A3:4B:21:27:4D:33 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1A3098FF6992934CFFADB4BFBE2F674AD7D41AEC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149704.roa Signing time: Wed 05 Jul 2023 07:57:27 +0000 ROA not before: Wed 05 Jul 2023 07:52:27 +0000 ROA not after: Wed 03 Jul 2024 07:57:27 +0000 asID: 149704 IP address blocks: 103.175.80.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:30:98:ff:69:92:93:4c:ff:ad:b4:bf:be:2f:67:4a:d7:d4:1a:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 5 07:52:27 2023 GMT Not After : Jul 3 07:57:27 2024 GMT Subject: CN=322C906A189CE73130DF7DFBF2ACA34B21274D33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c7:a7:ff:f5:41:45:f6:72:f9:fd:60:2f:80: 32:92:02:4a:78:52:71:b3:f5:2d:aa:21:3d:8f:b6: 59:bc:b8:5e:b1:4e:4e:b7:6f:e9:7b:f8:fb:cc:06: 31:69:d0:5b:68:bf:14:45:a1:db:7b:8a:9e:81:b0: 6e:7f:65:19:16:f9:22:bc:3f:e7:b9:06:83:f8:55: 44:11:a9:01:43:26:17:70:78:5d:1e:3e:54:55:51: 00:c9:5d:43:34:b2:33:ab:ce:ac:18:19:ae:9d:8e: f8:27:10:ff:91:98:42:53:61:52:80:9a:a9:14:f0: 69:ce:95:1d:e5:9f:ac:52:e8:42:90:42:7e:b0:09: e3:fe:3d:5e:b6:ad:ac:56:6b:05:51:1d:75:91:9e: 93:ce:80:d1:c4:8f:ee:48:1c:ca:5a:98:a8:04:55: 97:0e:3d:fc:53:c5:1e:e9:24:7c:7d:96:2e:d9:1f: e9:fc:bc:f5:23:57:e4:ca:0f:1f:03:fc:01:b8:6b: 80:bf:be:cc:21:fd:86:ec:2d:72:c1:65:b4:d7:8f: 20:51:c0:d8:fd:31:f8:04:14:9e:84:08:b9:31:0b: 77:85:de:9c:a6:75:96:c4:8a:f5:86:e7:ab:1c:f4: c4:de:c8:4b:1f:b9:1b:be:e7:c0:49:c4:b0:3e:92: 18:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:2C:90:6A:18:9C:E7:31:30:DF:7D:FB:F2:AC:A3:4B:21:27:4D:33 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149704.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.80.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:74:72:c6:5e:6f:70:30:1e:97:ee:cb:37:e4:3b:8b:e8:28: ac:e6:fd:05:ef:46:3e:a6:0c:f6:48:dc:68:65:83:bf:d9:df: c0:61:d5:29:05:c5:e1:cb:13:c6:f8:c4:33:38:49:eb:ce:fb: 59:ca:5b:69:8f:e5:9e:b1:28:6a:b1:ec:9b:af:4e:2d:56:70: c6:2a:d3:29:06:dc:de:8e:39:f7:50:46:89:09:95:83:24:89: 90:ea:db:95:e8:52:e9:a4:ed:f9:80:0a:51:78:96:71:35:4f: ca:73:7c:70:e4:83:dd:b9:cc:52:ac:21:0b:ca:75:88:2e:a8: 21:27:c9:bb:b7:f7:91:fe:f0:15:6d:e2:52:c9:c5:d2:9a:b2: ff:fb:e1:3f:0c:c1:68:aa:0d:ce:b9:3c:6a:27:0f:c5:82:e1: 86:e0:41:d7:c2:f2:80:0d:69:27:ba:21:e8:c4:d2:7d:e7:5f: ee:3b:db:24:c3:14:68:81:68:91:19:2f:af:5f:5f:a4:23:39: 53:29:83:db:38:da:ef:a1:37:ea:45:df:04:f0:1e:2c:ba:c9: 11:cd:af:c2:a9:2c:99:44:54:ea:61:77:53:1c:f9:3c:e2:e4: 5f:68:a9:73:d9:0f:f7:42:19:d5:8e:e5:3e:fa:a5:44:da:fd: 00:33:f3:dc -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGjCY/2mSk0z/rbS/vi9nStfUGuwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcwNTA3NTIyN1oX DTI0MDcwMzA3NTcyN1owMzExMC8GA1UEAxMoMzIyQzkwNkExODlDRTczMTMwREY3 REZCRjJBQ0EzNEIyMTI3NEQzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALrHp//1QUX2cvn9YC+AMpICSnhScbP1LaohPY+2Wby4XrFOTrdv6Xv4+8wG MWnQW2i/FEWh23uKnoGwbn9lGRb5Irw/57kGg/hVRBGpAUMmF3B4XR4+VFVRAMld QzSyM6vOrBgZrp2O+CcQ/5GYQlNhUoCaqRTwac6VHeWfrFLoQpBCfrAJ4/49Xrat rFZrBVEddZGek86A0cSP7kgcylqYqARVlw49/FPFHukkfH2WLtkf6fy89SNX5MoP HwP8AbhrgL++zCH9huwtcsFltNePIFHA2P0x+AQUnoQIuTELd4XenKZ1lsSK9Ybn qxz0xN7ISx+5G77nwEnEsD6SGO0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQyLJBq GJznMTDfffvyrKNLISdNMzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTcwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWevUDANBgkqhkiG9w0BAQsFAAOCAQEACnRyxl5vcDAel+7LN+Q7 i+gorOb9Be9GPqYM9kjcaGWDv9nfwGHVKQXF4csTxvjEMzhJ6877WcpbaY/lnrEo arHsm69OLVZwxirTKQbc3o4591BGiQmVgySJkOrblehS6aTt+YAKUXiWcTVPynN8 cOSD3bnMUqwhC8p1iC6oISfJu7f3kf7wFW3iUsnF0pqy//vhPwzBaKoNzrk8aicP xYLhhuBB18LygA1pJ7oh6MTSfedf7jvbJMMUaIFokRkvr19fpCM5UymD2zja76E3 6kXfBPAeLLrJEc2vwqksmURU6mF3Uxz5POLkX2ipc9kP90IZ1Y7lPvqlRNr9ADPz 3A== -----END CERTIFICATE-----Generated at Wed May 8 05:33:21 2024 by rpki-client on console-ams.rpki-client.org