$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149707.roa File: AS149707.roa (raw, json) Hash identifier: Qg2HpbiQf/cERwJdNdg5/TC4pfZTgSYzLZNWI4eIznM= Subject key identifier: 01:57:EB:AA:12:28:90:31:9A:50:85:9D:46:5D:D7:CE:37:47:2A:47 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 37B6585B6A413AF9B76FB1172B3013040A47A1AC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149707.roa Signing time: Mon 21 Aug 2023 03:41:27 +0000 ROA not before: Mon 21 Aug 2023 03:36:27 +0000 ROA not after: Mon 19 Aug 2024 03:41:27 +0000 asID: 149707 IP address blocks: 2001:df1:ee40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:b6:58:5b:6a:41:3a:f9:b7:6f:b1:17:2b:30:13:04:0a:47:a1:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 21 03:36:27 2023 GMT Not After : Aug 19 03:41:27 2024 GMT Subject: CN=0157EBAA122890319A50859D465DD7CE37472A47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:af:8b:00:07:0b:7f:3e:ad:02:28:e0:09:91: b9:fd:18:2f:29:36:cd:80:5c:88:a6:fd:24:bc:60: b7:d4:66:f0:7a:fa:2f:74:b2:11:0a:4e:68:73:92: 6a:c0:be:07:3c:1e:a9:b1:08:68:1f:40:72:06:f4: 90:92:39:1c:15:de:6f:f5:c0:49:f1:6b:9d:6e:57: 8e:9f:88:df:2a:4a:da:b8:c9:b2:50:d8:56:93:cf: 28:f1:8c:39:2e:ed:ec:a9:bc:13:5c:a2:c2:06:62: f0:e5:95:25:0a:ab:d9:0f:2a:c4:9f:fc:54:6f:d4: 5d:6c:cb:4b:3e:b0:6b:c9:53:bc:a9:ea:1e:4d:17: 4b:c0:23:f1:22:db:4f:a1:c0:fb:7c:d6:b3:63:9a: 13:f8:71:37:19:75:8d:c3:b2:db:10:04:6e:13:c9: 53:f9:ee:9f:86:c4:ad:94:26:8a:a4:79:d2:54:38: 58:ef:10:80:2c:63:67:5c:34:fb:72:37:49:dd:61: 0e:1b:e6:f4:a0:bb:96:9c:83:59:b0:8b:2d:be:30: 42:e3:8f:67:ed:e7:ad:64:eb:07:05:b2:f5:01:cf: 54:6c:f6:52:af:2e:2a:56:5b:cc:fd:07:0b:88:17: 4a:4d:52:1a:d0:35:4e:6f:26:2a:d5:93:5c:24:50: e1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:57:EB:AA:12:28:90:31:9A:50:85:9D:46:5D:D7:CE:37:47:2A:47 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149707.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:ee40::/48 Signature Algorithm: sha256WithRSAEncryption 83:73:78:6c:9b:60:9a:c6:94:27:e8:26:f1:09:45:a6:f1:32: 1d:d6:90:a0:77:35:a5:2a:bd:23:34:5f:be:cc:3c:ea:fc:a4: a1:0e:7b:93:97:ae:bc:6d:73:1f:0f:d5:71:be:70:ef:a7:10: de:d4:8d:21:f9:ac:15:0c:1c:cb:46:7a:98:1a:79:8d:c4:14: 29:45:a5:9d:7b:5b:42:7c:34:fd:c2:54:b6:eb:e6:9f:fa:35: a5:e4:e4:bb:25:59:c1:7a:15:68:db:11:24:fb:d3:0a:3a:51: 5f:7d:b4:00:c4:af:bd:73:24:69:a8:30:eb:14:4e:2f:9e:e0: 6c:4d:c5:b9:2b:e8:28:66:bc:7a:f0:21:a7:3b:4d:be:77:ff: a9:dc:df:a2:81:a1:73:b2:f2:13:1f:cc:33:61:3e:fd:8e:45: cd:84:e0:11:02:9c:cd:84:b5:b9:92:fc:f3:70:61:d4:12:02: 81:07:11:a7:89:06:7b:60:27:4f:c9:e6:d6:88:08:cb:ab:ea: 06:24:c5:c2:03:fc:de:c9:72:5d:5a:b6:2e:68:f9:0f:6f:1d: a8:fb:5e:83:dc:e3:58:93:a3:26:0e:a0:15:1c:48:73:ca:77: df:62:86:37:c6:20:db:e0:75:72:d5:1a:43:69:ec:2d:55:6b: 1b:fb:89:a8 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUN7ZYW2pBOvm3b7EXKzATBApHoawwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgyMTAzMzYyN1oX DTI0MDgxOTAzNDEyN1owMzExMC8GA1UEAxMoMDE1N0VCQUExMjI4OTAzMTlBNTA4 NTlENDY1REQ3Q0UzNzQ3MkE0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK+viwAHC38+rQIo4AmRuf0YLyk2zYBciKb9JLxgt9Rm8Hr6L3SyEQpOaHOS asC+BzweqbEIaB9Acgb0kJI5HBXeb/XASfFrnW5Xjp+I3ypK2rjJslDYVpPPKPGM OS7t7Km8E1yiwgZi8OWVJQqr2Q8qxJ/8VG/UXWzLSz6wa8lTvKnqHk0XS8Aj8SLb T6HA+3zWs2OaE/hxNxl1jcOy2xAEbhPJU/nun4bErZQmiqR50lQ4WO8QgCxjZ1w0 +3I3Sd1hDhvm9KC7lpyDWbCLLb4wQuOPZ+3nrWTrBwWy9QHPVGz2Uq8uKlZbzP0H C4gXSk1SGtA1Tm8mKtWTXCRQ4eECAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQBV+uq EiiQMZpQhZ1GXdfON0cqRzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTcwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfHuQDANBgkqhkiG9w0BAQsFAAOCAQEAg3N4bJtgmsaUJ+gm 8QlFpvEyHdaQoHc1pSq9IzRfvsw86vykoQ57k5euvG1zHw/Vcb5w76cQ3tSNIfms FQwcy0Z6mBp5jcQUKUWlnXtbQnw0/cJUtuvmn/o1peTkuyVZwXoVaNsRJPvTCjpR X320AMSvvXMkaagw6xROL57gbE3FuSvoKGa8evAhpztNvnf/qdzfooGhc7LyEx/M M2E+/Y5FzYTgEQKczYS1uZL883Bh1BICgQcRp4kGe2AnT8nm1ogIy6vqBiTFwgP8 3slyXVq2Lmj5D28dqPteg9zjWJOjJg6gFRxIc8p332KGN8Yg2+B1ctUaQ2nsLVVr G/uJqA== -----END CERTIFICATE-----Generated at Wed May 8 22:46:43 2024 by rpki-client on console-ams.rpki-client.org