$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149736.roa File: AS149736.roa (raw, json) Hash identifier: OaSvtRY3ovoobSEsiC73W3jW0YPd/KKjp7LXZBXI8Gk= Subject key identifier: BE:94:97:5A:C0:A1:16:3B:8C:41:21:74:45:56:2C:62:15:23:9F:66 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 758410BAD88DF5E8E4B298775576B6585DD5D555 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149736.roa Signing time: Thu 14 Sep 2023 04:00:00 +0000 ROA not before: Thu 14 Sep 2023 03:55:00 +0000 ROA not after: Thu 12 Sep 2024 04:00:00 +0000 asID: 149736 IP address blocks: 103.188.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:84:10:ba:d8:8d:f5:e8:e4:b2:98:77:55:76:b6:58:5d:d5:d5:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 14 03:55:00 2023 GMT Not After : Sep 12 04:00:00 2024 GMT Subject: CN=BE94975AC0A1163B8C41217445562C6215239F66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:31:6c:95:00:ef:8c:31:7b:4e:92:62:8f:1f: 1a:87:a1:a5:06:a8:f9:e5:e7:9d:e8:c8:7e:f2:56: a6:84:7d:43:49:85:a4:b0:0f:bb:2a:6d:5d:ac:1c: 3f:69:e6:45:fa:53:d8:aa:38:e4:5d:b5:85:ca:ce: 67:50:21:6f:d9:69:c0:91:9e:87:86:7a:1e:a3:24: f6:7b:d9:1c:03:14:99:58:97:6f:fb:12:c8:f2:13: e6:6b:b2:6f:b4:8d:a3:28:70:8f:10:29:6c:f6:aa: d1:5c:f2:5c:7a:76:c2:4f:14:c5:66:1b:73:72:28: d8:31:07:f2:03:80:08:79:44:09:3c:28:fc:58:d0: b9:78:d5:63:3c:e7:2d:77:59:71:fe:11:ef:c2:10: d6:9a:14:b2:cb:f2:1a:14:83:6d:55:01:02:3d:07: fc:0b:23:55:34:d6:7d:ee:2a:5c:6f:11:3a:74:47: 70:fe:32:cd:43:d7:75:ec:5e:63:d1:dc:59:b9:eb: 4d:1d:58:7f:df:58:ca:a9:8a:c4:d4:05:6a:3a:b5: be:c2:5c:26:ec:5f:e8:10:e2:7d:e4:e9:f4:8c:bf: b7:60:4f:74:52:99:cd:1f:6b:7f:b1:19:28:3a:78: bc:ff:12:40:7e:dd:9f:cb:0e:eb:c8:fd:dc:c2:fd: 7a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:94:97:5A:C0:A1:16:3B:8C:41:21:74:45:56:2C:62:15:23:9F:66 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.172.0/23 Signature Algorithm: sha256WithRSAEncryption 41:96:52:65:c5:8a:47:ef:dd:a3:3c:27:c0:5f:41:96:cd:d4: 6a:4b:f0:82:4d:6b:92:6a:ef:69:37:a4:4b:c3:98:16:18:40: f6:3f:8a:6e:db:bb:92:d8:a6:86:83:7b:29:76:43:a7:5a:45: b4:15:3d:e6:54:ee:60:3f:52:ee:bc:c6:35:38:17:26:c3:ed: a1:eb:c7:b4:68:0f:16:16:59:b8:dc:26:b4:5e:c2:19:22:88: 22:ac:eb:97:3a:f6:24:2c:a3:56:59:3f:3d:72:93:b0:a6:31: 11:89:f2:dc:03:ac:54:89:67:68:db:72:5f:40:7b:0f:88:eb: 5c:56:76:94:49:94:55:28:a2:8d:e4:a3:59:d3:cd:f5:33:ef: 24:cb:16:15:78:ae:ba:1c:ce:76:6c:7d:26:1c:cb:2f:b1:68: cc:64:9f:f7:f7:44:d0:d5:e6:6c:3f:f2:2a:86:69:15:0a:05: c5:03:ac:16:e8:36:f9:73:47:b1:dc:d4:fb:71:29:b8:b2:23: 12:80:a1:85:0a:9a:72:e4:7c:34:3e:b4:e1:b3:b4:3a:64:39: 3b:42:a7:20:51:4c:c0:f1:53:8d:79:52:3e:8b:64:e9:dd:92: 4a:0c:43:fc:27:41:66:8d:b2:97:df:de:5f:4d:b5:7e:e7:37: ca:5c:a6:10 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdYQQutiN9ejksph3VXa2WF3V1VUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkxNDAzNTUwMFoX DTI0MDkxMjA0MDAwMFowMzExMC8GA1UEAxMoQkU5NDk3NUFDMEExMTYzQjhDNDEy MTc0NDU1NjJDNjIxNTIzOUY2NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKMxbJUA74wxe06SYo8fGoehpQao+eXnnejIfvJWpoR9Q0mFpLAPuyptXawc P2nmRfpT2Ko45F21hcrOZ1Ahb9lpwJGeh4Z6HqMk9nvZHAMUmViXb/sSyPIT5muy b7SNoyhwjxApbPaq0VzyXHp2wk8UxWYbc3Io2DEH8gOACHlECTwo/FjQuXjVYzzn LXdZcf4R78IQ1poUssvyGhSDbVUBAj0H/AsjVTTWfe4qXG8ROnRHcP4yzUPXdexe Y9HcWbnrTR1Yf99YyqmKxNQFajq1vsJcJuxf6BDifeTp9Iy/t2BPdFKZzR9rf7EZ KDp4vP8SQH7dn8sO68j93ML9etECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS+lJda wKEWO4xBIXRFVixiFSOfZjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTczNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe8rDANBgkqhkiG9w0BAQsFAAOCAQEAQZZSZcWKR+/dozwnwF9B ls3Uakvwgk1rkmrvaTekS8OYFhhA9j+Kbtu7ktimhoN7KXZDp1pFtBU95lTuYD9S 7rzGNTgXJsPtoevHtGgPFhZZuNwmtF7CGSKIIqzrlzr2JCyjVlk/PXKTsKYxEYny 3AOsVIlnaNtyX0B7D4jrXFZ2lEmUVSiijeSjWdPN9TPvJMsWFXiuuhzOdmx9JhzL L7FozGSf9/dE0NXmbD/yKoZpFQoFxQOsFug2+XNHsdzU+3EpuLIjEoChhQqacuR8 ND604bO0OmQ5O0KnIFFMwPFTjXlSPotk6d2SSgxD/CdBZo2yl9/eX021fuc3ylym EA== -----END CERTIFICATE-----Generated at Wed May 8 18:12:16 2024 by rpki-client on console-fra.rpki-client.org