$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149736.roa File: AS149736.roa (raw, json) Hash identifier: qicFSMgFz0utXyKlpX4MuiNR0vyP+tIa7qpZTUdDzIo= Subject key identifier: A6:58:80:11:3A:73:4A:16:4E:0F:78:07:04:59:EF:EE:A1:C8:78:33 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 611AC572248B13A4C44CAE519DAC3B7FFB4DBBC6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149736.roa Signing time: Thu 15 Aug 2024 04:00:00 +0000 ROA not before: Thu 15 Aug 2024 03:55:00 +0000 ROA not after: Thu 14 Aug 2025 04:00:00 +0000 asID: 149736 IP address blocks: 103.188.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:1a:c5:72:24:8b:13:a4:c4:4c:ae:51:9d:ac:3b:7f:fb:4d:bb:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 15 03:55:00 2024 GMT Not After : Aug 14 04:00:00 2025 GMT Subject: CN=A65880113A734A164E0F78070459EFEEA1C87833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0e:8c:44:75:6f:64:12:3b:64:9c:47:e7:94: 99:4f:34:8e:65:31:e2:d7:26:ec:50:f2:a7:e2:10: a9:4d:a1:67:c9:59:46:4c:18:2c:79:a8:0e:39:1f: 3d:17:89:32:60:1f:95:a9:0c:32:3d:b0:a3:85:72: 78:f1:3f:4c:67:4b:a0:b7:74:0f:32:21:7a:d6:ce: 9c:22:59:6e:0b:fc:65:eb:b6:42:77:ce:b2:2f:83: 8c:27:4c:66:9d:c3:ff:6e:75:d7:5b:ee:ec:76:bb: aa:2f:90:28:26:80:b3:9c:fd:c9:b1:ff:f2:56:44: 12:f2:9c:d3:4a:b3:a6:1b:d4:dc:98:19:08:83:39: 76:8e:05:b7:98:0d:69:c6:eb:29:de:a5:95:cb:8e: 3a:78:64:04:74:c2:83:0b:da:dc:24:88:cd:7f:7a: f9:72:a5:c0:a5:58:93:09:b0:fc:57:f3:36:b7:be: b2:92:c3:05:8b:23:bc:8d:98:23:90:42:fc:dd:6c: 11:9f:1f:85:20:ab:0a:5c:4e:8e:a6:6b:7d:88:64: a3:43:58:0e:c1:28:cd:88:b9:92:c9:7d:da:7e:fb: 6a:d8:ab:2d:79:23:e6:55:ff:21:66:df:9d:f4:ee: 4a:7a:57:3c:8f:89:0d:f0:8a:04:68:72:88:b2:3f: ca:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:58:80:11:3A:73:4A:16:4E:0F:78:07:04:59:EF:EE:A1:C8:78:33 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.172.0/23 Signature Algorithm: sha256WithRSAEncryption 99:ee:d2:5d:30:08:9e:78:84:fb:3b:cf:1e:d8:a6:e9:42:c1: e4:b3:81:09:53:3b:09:1e:7e:7d:87:10:6d:fd:66:cc:6f:c6: 3b:4f:4e:fc:60:5b:8f:a4:ea:37:56:30:21:4c:43:0b:bc:08: 45:f9:ef:50:fb:cb:2c:97:8f:7b:01:3f:4b:41:27:65:63:1d: be:72:4f:cc:3c:c0:47:31:92:88:ec:cd:cb:15:dc:12:c6:3c: 37:ba:f3:ff:19:97:ad:57:af:80:ed:ef:39:34:f9:80:a4:0f: f8:66:bd:c8:c8:db:2a:db:31:bf:69:3f:18:58:e9:72:6a:e1: 9e:e1:c3:f0:06:f1:a5:13:91:b8:63:e4:78:cd:52:3b:15:9c: d5:1c:00:7d:d0:2e:c4:7e:c8:36:0c:a7:72:b5:50:99:04:ee: 7f:90:ad:c2:1c:2c:a7:d9:aa:e7:b9:72:37:10:6a:cd:dc:16: 43:42:de:dc:66:b3:6d:bc:84:bf:e7:9d:9b:a9:45:1c:90:f8: cb:22:fb:cc:52:70:51:c8:3a:e7:86:31:06:d5:4a:9a:64:a5: 0d:0d:8d:84:3c:fa:66:4b:5a:f4:d1:bc:12:75:0a:d6:2f:88: 3b:7b:3c:c0:b9:b1:32:96:3b:52:7b:54:cf:cc:90:74:ae:e1: cd:c9:58:8d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYRrFciSLE6TETK5Rnaw7f/tNu8YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxNTAzNTUwMFoX DTI1MDgxNDA0MDAwMFowMzExMC8GA1UEAxMoQTY1ODgwMTEzQTczNEExNjRFMEY3 ODA3MDQ1OUVGRUVBMUM4NzgzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANYOjER1b2QSO2ScR+eUmU80jmUx4tcm7FDyp+IQqU2hZ8lZRkwYLHmoDjkf PReJMmAflakMMj2wo4VyePE/TGdLoLd0DzIhetbOnCJZbgv8Zeu2QnfOsi+DjCdM Zp3D/25111vu7Ha7qi+QKCaAs5z9ybH/8lZEEvKc00qzphvU3JgZCIM5do4Ft5gN acbrKd6llcuOOnhkBHTCgwva3CSIzX96+XKlwKVYkwmw/FfzNre+spLDBYsjvI2Y I5BC/N1sEZ8fhSCrClxOjqZrfYhko0NYDsEozYi5ksl92n77atirLXkj5lX/IWbf nfTuSnpXPI+JDfCKBGhyiLI/yvUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSmWIAR OnNKFk4PeAcEWe/uoch4MzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTczNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe8rDANBgkqhkiG9w0BAQsFAAOCAQEAme7SXTAInniE+zvPHtim 6ULB5LOBCVM7CR5+fYcQbf1mzG/GO09O/GBbj6TqN1YwIUxDC7wIRfnvUPvLLJeP ewE/S0EnZWMdvnJPzDzARzGSiOzNyxXcEsY8N7rz/xmXrVevgO3vOTT5gKQP+Ga9 yMjbKtsxv2k/GFjpcmrhnuHD8AbxpRORuGPkeM1SOxWc1RwAfdAuxH7INgyncrVQ mQTuf5Ctwhwsp9mq57lyNxBqzdwWQ0Le3GazbbyEv+edm6lFHJD4yyL7zFJwUcg6 54YxBtVKmmSlDQ2NhDz6Zkta9NG8EnUK1i+IO3s8wLmxMpY7UntUz8yQdK7hzclY jQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:48 2024 by rpki-client on console-ams.rpki-client.org