$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149714.roa File: AS149714.roa (raw, json) Hash identifier: POz7hJqFZSgD4Slhny9Tz0B+s6m+kmh+81EyN4fMOLw= Subject key identifier: 62:10:44:95:FF:EB:AA:EF:A0:7E:64:A3:D8:46:4B:E2:FD:B9:E8:4F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 460B570139197E645B75562F44EAFD2C5B22ECEB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149714.roa Signing time: Mon 18 Sep 2023 03:00:00 +0000 ROA not before: Mon 18 Sep 2023 02:55:00 +0000 ROA not after: Mon 16 Sep 2024 03:00:00 +0000 asID: 149714 IP address blocks: 2001:df1:56c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:0b:57:01:39:19:7e:64:5b:75:56:2f:44:ea:fd:2c:5b:22:ec:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 18 02:55:00 2023 GMT Not After : Sep 16 03:00:00 2024 GMT Subject: CN=62104495FFEBAAEFA07E64A3D8464BE2FDB9E84F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b3:3b:33:b3:9d:04:05:03:42:82:ff:21:5f: 5b:bc:6b:22:43:34:85:3e:76:00:88:e6:8f:cd:5b: 3f:7b:c6:64:cf:04:9a:82:bd:a5:50:18:f5:65:de: fe:7d:8d:ac:2e:b5:47:b6:fb:24:98:89:da:40:35: 8d:3a:be:92:8d:1d:00:b5:f2:d5:e7:bd:3b:cf:7f: d4:09:07:74:42:1a:56:d9:8e:09:e0:dc:1a:10:62: f5:13:6a:27:03:22:cb:37:7a:d5:10:ed:6d:d7:bb: 2a:0c:56:31:af:a1:58:11:49:31:0d:f1:f9:c6:08: 37:94:3b:19:9d:fb:65:6a:68:09:f0:e4:77:47:3d: da:2e:9f:72:f3:a8:5f:f8:8c:a1:6c:12:2e:67:01: de:ac:ad:44:ea:ab:fb:bb:ce:80:39:7d:43:09:b1: b8:8e:44:d4:0a:98:14:85:fd:3e:17:8a:3a:96:22: 22:13:99:fc:d6:2c:ad:34:ea:2b:2e:dc:ce:54:49: 24:cb:24:03:d4:71:cc:15:3b:ca:f4:c2:e1:de:6a: 69:5b:c8:7a:8c:1f:47:7f:19:03:5e:74:be:08:d5: 19:dd:23:47:3f:37:be:2d:72:58:31:a5:92:3f:85: 05:e2:5c:b3:bd:65:8c:02:e3:3a:26:24:ae:96:45: 85:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:10:44:95:FF:EB:AA:EF:A0:7E:64:A3:D8:46:4B:E2:FD:B9:E8:4F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149714.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:56c0::/48 Signature Algorithm: sha256WithRSAEncryption 12:c7:86:d3:e1:6d:fc:50:83:eb:59:d1:92:e8:ea:cd:14:14: 61:0e:21:9c:65:c5:b6:71:5b:c5:04:8e:ec:a4:8c:ae:f3:85: 4a:bd:c3:fd:e0:b3:5e:2a:3d:73:f6:65:3c:6e:58:4f:65:26: 38:34:92:bb:6f:a8:b8:e5:13:c3:0f:b4:da:14:38:5b:05:04: 2b:87:82:77:64:c5:7c:b0:c7:bf:3a:e5:93:d3:d1:e6:67:7f: 73:2e:03:24:df:e9:f6:1a:8e:88:22:d5:bd:a3:c2:d2:6e:3e: ff:59:6b:1f:98:b5:a0:45:f7:54:81:4d:80:4c:7f:81:fa:16: f5:4a:40:81:81:8b:4d:9f:14:02:dd:80:b9:37:da:bd:07:ac: 41:d5:cc:42:b5:e1:f7:d6:29:64:00:55:5d:50:ba:d3:a7:3a: 34:2a:61:6c:1e:00:b2:7a:59:44:8f:cd:38:1b:52:0a:ec:9c: 29:81:ca:07:d9:e1:72:f3:ea:c2:90:54:9a:92:23:94:01:ac: 5f:47:bc:24:0b:76:bf:09:7b:f4:c0:34:ed:8b:25:81:b3:fe: e7:05:bf:ab:29:8c:60:c9:2f:e9:5d:5b:72:3c:ea:8f:c9:f5: 52:20:f4:81:76:c6:7d:73:ae:75:fc:77:f3:26:80:d8:8d:26: 89:86:7c:5a -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIURgtXATkZfmRbdVYvROr9LFsi7OswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkxODAyNTUwMFoX DTI0MDkxNjAzMDAwMFowMzExMC8GA1UEAxMoNjIxMDQ0OTVGRkVCQUFFRkEwN0U2 NEEzRDg0NjRCRTJGREI5RTg0RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO6zOzOznQQFA0KC/yFfW7xrIkM0hT52AIjmj81bP3vGZM8EmoK9pVAY9WXe /n2NrC61R7b7JJiJ2kA1jTq+ko0dALXy1ee9O89/1AkHdEIaVtmOCeDcGhBi9RNq JwMiyzd61RDtbde7KgxWMa+hWBFJMQ3x+cYIN5Q7GZ37ZWpoCfDkd0c92i6fcvOo X/iMoWwSLmcB3qytROqr+7vOgDl9QwmxuI5E1AqYFIX9PheKOpYiIhOZ/NYsrTTq Ky7czlRJJMskA9RxzBU7yvTC4d5qaVvIeowfR38ZA150vgjVGd0jRz83vi1yWDGl kj+FBeJcs71ljALjOiYkrpZFhRkCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRiEESV /+uq76B+ZKPYRkvi/bnoTzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTcxNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfFWwDANBgkqhkiG9w0BAQsFAAOCAQEAEseG0+Ft/FCD61nR kujqzRQUYQ4hnGXFtnFbxQSO7KSMrvOFSr3D/eCzXio9c/ZlPG5YT2UmODSSu2+o uOUTww+02hQ4WwUEK4eCd2TFfLDHvzrlk9PR5md/cy4DJN/p9hqOiCLVvaPC0m4+ /1lrH5i1oEX3VIFNgEx/gfoW9UpAgYGLTZ8UAt2AuTfavQesQdXMQrXh99YpZABV XVC606c6NCphbB4AsnpZRI/NOBtSCuycKYHKB9nhcvPqwpBUmpIjlAGsX0e8JAt2 vwl79MA07YslgbP+5wW/qymMYMkv6V1bcjzqj8n1UiD0gXbGfXOudfx38yaA2I0m iYZ8Wg== -----END CERTIFICATE-----Generated at Thu May 9 00:37:07 2024 by rpki-client on console-fra.rpki-client.org