$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149715.roa File: AS149715.roa (raw, json) Hash identifier: 9P8Q/pD5smMmHxoApRafbtB7ANAj0/o5vV8SFLo9tnY= Subject key identifier: 6D:BC:23:B6:9F:CD:AC:FF:44:F2:C0:35:B6:34:AC:86:B7:B9:10:A3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5DD569158282EE2F2D93CD558F9D8BBB45CE5199 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149715.roa Signing time: Thu 18 Jul 2024 05:00:00 +0000 ROA not before: Thu 18 Jul 2024 04:55:00 +0000 ROA not after: Thu 17 Jul 2025 05:00:00 +0000 asID: 149715 IP address blocks: 2001:df1:1140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:d5:69:15:82:82:ee:2f:2d:93:cd:55:8f:9d:8b:bb:45:ce:51:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 18 04:55:00 2024 GMT Not After : Jul 17 05:00:00 2025 GMT Subject: CN=6DBC23B69FCDACFF44F2C035B634AC86B7B910A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0f:ce:94:1d:c1:b2:0a:54:d5:17:bb:7d:91: ff:cd:62:15:3e:60:94:47:a2:40:5f:f6:11:30:c0: 7d:2e:ce:83:57:5d:1e:1b:60:ec:1c:31:97:0a:b5: fc:5b:43:85:d3:9d:c6:1b:80:d3:ba:e0:20:2b:61: 8e:94:68:4e:64:c9:1a:f0:a0:37:dc:1a:ae:50:07: c8:12:46:55:a7:d8:65:93:b7:31:5e:55:0f:87:05: 53:a9:88:ae:3e:d5:48:06:8a:c0:c7:a5:b5:60:04: 55:b1:aa:71:33:d1:84:d3:2b:d9:2d:0c:d5:a7:44: 4e:b2:1c:a4:2b:f7:0b:5d:11:3e:18:24:a9:8b:80: 72:ba:18:16:b0:87:e7:b6:c8:c7:0c:da:fe:7e:4d: 2b:5b:86:23:8d:93:01:5e:11:55:b1:8c:cc:77:ba: ef:95:e3:f2:f6:aa:31:70:7b:b3:db:a6:02:d1:45: 02:96:52:a9:d1:5d:5d:d5:37:11:c6:44:20:7c:c4: c2:86:4b:5b:c3:b0:62:66:9e:83:78:6f:4f:f6:f0: 64:c9:3a:f0:02:bd:e9:ad:1f:0c:29:02:6a:c1:c1: 86:d7:26:db:fa:60:d1:73:22:83:da:ef:b7:fb:3d: a8:91:e7:2c:7d:ea:fe:e7:a1:82:f3:cc:ed:9a:f2: a7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BC:23:B6:9F:CD:AC:FF:44:F2:C0:35:B6:34:AC:86:B7:B9:10:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149715.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1140::/48 Signature Algorithm: sha256WithRSAEncryption 5f:52:c6:cf:af:f2:9e:4f:82:4a:88:9e:8b:f2:3c:ca:87:eb: 16:6f:bd:a3:4d:9c:ee:2a:12:d5:2e:c5:c8:55:a6:0c:da:34: 85:4d:0a:c4:7a:54:0a:4b:25:aa:4c:85:07:74:3d:7c:52:6c: 22:1d:9d:f5:36:f3:a7:9b:42:96:ff:05:87:57:af:5b:8d:60: 44:49:2d:78:3f:d4:6d:16:04:bf:c3:d4:51:86:70:fa:d5:f6: 8a:a8:73:43:8f:48:02:31:86:10:b8:e2:ae:42:78:7e:7d:c5: 08:41:4d:e2:b5:c2:95:d9:b5:4d:1a:58:8c:63:ae:d9:44:b0: 4c:95:a0:9d:47:5d:e3:41:a8:dc:09:c0:5c:3f:a2:b7:07:28: 8f:7f:71:d3:47:cb:b3:8e:6c:22:e2:72:94:ef:2c:b7:63:93: 39:c3:e1:71:84:4a:42:bd:62:da:88:e3:ec:84:7d:f4:a6:dd: 7f:e8:81:c9:11:00:bd:e7:3d:6b:80:db:87:00:72:e8:f0:94: 6c:20:10:0c:1b:0e:1b:49:a6:ed:e9:32:68:ba:b1:29:a5:e3: ad:b0:b4:05:c8:8e:4a:db:9f:7e:7c:e5:49:19:83:b4:d4:72: 0e:8e:7d:b9:22:08:b7:c8:a6:5b:ce:19:68:78:4f:7a:32:98: c6:17:df:cf -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUXdVpFYKC7i8tk81Vj52Lu0XOUZkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcxODA0NTUwMFoX DTI1MDcxNzA1MDAwMFowMzExMC8GA1UEAxMoNkRCQzIzQjY5RkNEQUNGRjQ0RjJD MDM1QjYzNEFDODZCN0I5MTBBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8PzpQdwbIKVNUXu32R/81iFT5glEeiQF/2ETDAfS7Og1ddHhtg7Bwxlwq1 /FtDhdOdxhuA07rgICthjpRoTmTJGvCgN9warlAHyBJGVafYZZO3MV5VD4cFU6mI rj7VSAaKwMeltWAEVbGqcTPRhNMr2S0M1adETrIcpCv3C10RPhgkqYuAcroYFrCH 57bIxwza/n5NK1uGI42TAV4RVbGMzHe675Xj8vaqMXB7s9umAtFFApZSqdFdXdU3 EcZEIHzEwoZLW8OwYmaeg3hvT/bwZMk68AK96a0fDCkCasHBhtcm2/pg0XMig9rv t/s9qJHnLH3q/uehgvPM7Zrypx8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRtvCO2 n82s/0TywDW2NKyGt7kQozAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTcxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfERQDANBgkqhkiG9w0BAQsFAAOCAQEAX1LGz6/ynk+CSoie i/I8yofrFm+9o02c7ioS1S7FyFWmDNo0hU0KxHpUCkslqkyFB3Q9fFJsIh2d9Tbz p5tClv8Fh1evW41gREkteD/UbRYEv8PUUYZw+tX2iqhzQ49IAjGGELjirkJ4fn3F CEFN4rXCldm1TRpYjGOu2USwTJWgnUdd40Go3AnAXD+itwcoj39x00fLs45sIuJy lO8st2OTOcPhcYRKQr1i2ojj7IR99Kbdf+iByREAvec9a4DbhwBy6PCUbCAQDBsO G0mm7ekyaLqxKaXjrbC0BciOStuffnzlSRmDtNRyDo59uSIIt8imW84ZaHhPejKY xhffzw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:48 2024 by rpki-client on console-ams.rpki-client.org