$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149714.roa File: AS149714.roa (raw, json) Hash identifier: uOW7zvc7nV9W6cJu/YMWHWLyMVolQ2a6Ik+7KJKHRi8= Subject key identifier: 70:67:02:54:44:4D:5E:73:5A:80:5E:E1:73:3B:14:D8:88:A1:92:F3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 230390FB098AAAC7295D5D73E9F4A890AD33C2CD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149714.roa Signing time: Mon 19 Aug 2024 03:00:00 +0000 ROA not before: Mon 19 Aug 2024 02:55:00 +0000 ROA not after: Mon 18 Aug 2025 03:00:00 +0000 asID: 149714 IP address blocks: 2001:df1:56c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:03:90:fb:09:8a:aa:c7:29:5d:5d:73:e9:f4:a8:90:ad:33:c2:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Aug 19 02:55:00 2024 GMT Not After : Aug 18 03:00:00 2025 GMT Subject: CN=70670254444D5E735A805EE1733B14D888A192F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:34:7f:89:3d:9d:21:cc:64:00:d4:25:16:44: 2b:35:a6:a4:2d:63:5c:22:06:a6:41:73:93:ba:61: b9:11:b0:3c:27:b5:bb:1a:76:ba:ad:0c:c1:77:5f: 5d:b0:11:b8:49:3a:e5:ef:30:82:24:5c:d4:04:88: 8d:69:8a:bd:1d:92:39:30:99:53:26:c8:80:b5:d4: 2c:e9:45:78:88:9f:b6:0b:82:a2:1a:43:86:74:60: 32:62:51:ba:9c:7e:43:25:77:3b:ce:31:5e:0f:90: 3d:57:b6:1b:33:2a:fb:45:83:bd:43:44:24:03:95: f8:f2:02:51:26:ff:40:15:95:65:71:fa:be:ef:04: 2a:38:35:08:1d:e3:13:68:25:83:c2:55:41:1c:7a: 61:9d:04:ae:f9:8f:87:55:79:5e:99:20:77:5a:c4: 75:a2:fc:bc:2f:2f:28:01:4e:cb:a4:29:92:9d:e3: d0:e2:87:e6:ec:40:e6:3e:6a:d1:09:6d:47:d4:c5: 2d:4e:0b:40:27:34:f0:d2:1c:f3:97:c0:18:6a:a3: c3:cb:0e:d1:80:40:6d:db:b8:1b:2f:06:fd:7b:0e: fd:17:e2:2f:66:2c:7c:03:8c:e1:76:d6:d4:7a:b7: b4:0a:7b:09:03:63:7c:2d:97:1d:7a:ee:a3:b4:a6: 1e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:67:02:54:44:4D:5E:73:5A:80:5E:E1:73:3B:14:D8:88:A1:92:F3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149714.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:56c0::/48 Signature Algorithm: sha256WithRSAEncryption 7a:a2:7d:61:98:8e:ee:0c:ed:52:f9:f8:99:e2:09:60:1d:17: d7:f2:e0:c9:58:c7:62:3f:b7:bd:93:d6:43:43:31:d2:ba:9b: 1d:26:df:23:f9:69:ef:ca:d7:fb:2e:01:9a:7d:19:3b:ca:5b: f4:d4:a8:24:19:ca:06:7e:0a:b2:9b:b2:5c:b3:06:8f:ed:f4: 25:82:af:1c:3f:8e:99:bd:8b:39:c8:33:e0:c6:26:64:e1:ff: d4:b9:ad:41:03:5d:ce:96:6e:4d:6f:f4:1a:13:e4:bb:4f:1a: 7d:d7:a9:36:7b:fe:60:00:98:c2:d4:35:78:02:58:8b:79:7b: d1:5c:c0:d5:6e:98:04:1d:fa:16:6b:08:b4:fb:d6:41:f1:50: dd:9c:08:63:6d:b8:63:49:c3:b4:2f:ff:98:ff:7b:1e:17:0b: 9a:5f:b3:02:b0:af:76:b9:16:e3:66:bd:f6:38:57:92:91:5b: 17:80:ce:ae:db:d9:67:96:03:28:5d:68:27:a3:27:87:b6:c5: 29:ee:8e:b9:92:ef:e9:f1:65:db:94:e1:56:e3:de:d9:07:99: af:7e:1e:25:ad:eb:50:3d:93:9f:82:52:46:3a:17:f5:9a:2a: 08:fe:52:10:d1:3a:76:eb:77:af:3d:8c:34:6c:dd:b9:96:7f: f5:26:78:86 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUIwOQ+wmKqscpXV1z6fSokK0zws0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxOTAyNTUwMFoX DTI1MDgxODAzMDAwMFowMzExMC8GA1UEAxMoNzA2NzAyNTQ0NDRENUU3MzVBODA1 RUUxNzMzQjE0RDg4OEExOTJGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMw0f4k9nSHMZADUJRZEKzWmpC1jXCIGpkFzk7phuRGwPCe1uxp2uq0MwXdf XbARuEk65e8wgiRc1ASIjWmKvR2SOTCZUybIgLXULOlFeIiftguCohpDhnRgMmJR upx+QyV3O84xXg+QPVe2GzMq+0WDvUNEJAOV+PICUSb/QBWVZXH6vu8EKjg1CB3j E2glg8JVQRx6YZ0ErvmPh1V5Xpkgd1rEdaL8vC8vKAFOy6Qpkp3j0OKH5uxA5j5q 0QltR9TFLU4LQCc08NIc85fAGGqjw8sO0YBAbdu4Gy8G/XsO/RfiL2YsfAOM4XbW 1Hq3tAp7CQNjfC2XHXruo7SmHtUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRwZwJU RE1ec1qAXuFzOxTYiKGS8zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTcxNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfFWwDANBgkqhkiG9w0BAQsFAAOCAQEAeqJ9YZiO7gztUvn4 meIJYB0X1/LgyVjHYj+3vZPWQ0Mx0rqbHSbfI/lp78rX+y4Bmn0ZO8pb9NSoJBnK Bn4KspuyXLMGj+30JYKvHD+Omb2LOcgz4MYmZOH/1LmtQQNdzpZuTW/0GhPku08a fdepNnv+YACYwtQ1eAJYi3l70VzA1W6YBB36FmsItPvWQfFQ3ZwIY224Y0nDtC// mP97HhcLml+zArCvdrkW42a99jhXkpFbF4DOrtvZZ5YDKF1oJ6Mnh7bFKe6OuZLv 6fFl25ThVuPe2QeZr34eJa3rUD2Tn4JSRjoX9ZoqCP5SENE6dut3rz2MNGzduZZ/ 9SZ4hg== -----END CERTIFICATE-----Generated at Sun Feb 16 20:59:12 2025 by rpki-client