$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149744.roa File: AS149744.roa (raw, json) Hash identifier: QDBesuzKu14Lt+2BcV3mq/WjiPxVCPHf+/6CaIOpQ3o= Subject key identifier: B0:E2:8B:72:87:10:94:B3:52:64:EA:52:29:CB:85:88:8D:1F:1D:92 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 73A69D835B6DBCE2285F3A0ABDDBACD176F3CCC9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149744.roa Signing time: Tue 09 Jan 2024 04:00:20 +0000 ROA not before: Tue 09 Jan 2024 03:55:20 +0000 ROA not after: Tue 07 Jan 2025 04:00:20 +0000 asID: 149744 IP address blocks: 2001:df0:d140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:a6:9d:83:5b:6d:bc:e2:28:5f:3a:0a:bd:db:ac:d1:76:f3:cc:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:20 2024 GMT Not After : Jan 7 04:00:20 2025 GMT Subject: CN=B0E28B72871094B35264EA5229CB85888D1F1D92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6b:65:2e:fa:1d:aa:e8:c2:f5:4e:8f:71:c3: c0:19:86:a9:87:d8:cd:e1:67:22:c6:8e:19:62:e2: 26:d2:30:32:0f:91:b3:a9:60:90:0f:49:24:19:f2: 51:6b:a8:1b:90:95:de:33:77:1f:d5:74:df:67:3c: 19:e0:d7:31:2e:a0:6f:87:82:cf:e6:17:c1:d7:65: e4:d5:cb:4e:ef:11:2e:92:1e:5a:b6:81:8c:84:45: d2:2d:4d:83:bc:8f:98:23:0b:2d:34:33:89:dd:58: 45:40:62:ba:da:20:16:18:38:7d:84:5a:79:b5:54: 63:f2:f2:57:2e:d0:0f:eb:a9:7b:9b:a6:ae:3b:ca: cd:d0:44:e2:ac:db:f8:44:58:fc:d7:31:ba:f0:7f: 35:9e:40:54:ab:fc:00:dd:21:8e:9a:95:90:9f:de: 2c:36:05:f9:ed:07:5f:85:60:41:02:ee:d8:2f:3d: d0:af:e9:4d:e1:8e:8e:32:97:d3:26:8a:19:8f:3a: ae:06:c8:fa:64:d3:2f:5d:ee:6f:e9:d0:4b:8a:a2: e8:92:5c:da:80:50:73:ce:57:5a:09:61:aa:47:64: 79:80:98:30:7f:3d:c8:36:08:f1:ba:55:e5:b2:dd: 0a:55:c2:1a:8e:39:6e:c1:95:e7:74:ad:a7:29:f6: 6d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E2:8B:72:87:10:94:B3:52:64:EA:52:29:CB:85:88:8D:1F:1D:92 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149744.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:d140::/48 Signature Algorithm: sha256WithRSAEncryption 53:07:3a:a7:2f:53:8e:bd:ad:e6:ad:8a:30:e2:9d:13:73:5c: fc:09:d4:d8:49:d5:97:00:e4:35:2b:c2:33:09:d1:3b:77:5f: b7:58:47:25:d6:fa:bc:a0:76:d2:6e:85:aa:81:2f:50:b9:5c: 7c:5d:86:57:04:9c:4e:72:2a:97:b1:c3:4d:88:cf:11:23:79: a8:d1:55:ff:eb:a1:5a:b8:b6:32:be:d6:7f:f0:c4:09:32:25: dc:f3:a3:ec:2c:86:ee:88:7a:96:59:46:1d:4a:77:86:a0:51: 89:01:16:17:1f:bc:a2:92:d8:c7:c2:78:22:72:38:ce:68:dd: 94:f0:ab:a8:b0:aa:70:66:71:70:58:e9:b8:c6:4b:c4:dc:f3: cc:46:dd:f6:73:76:37:ec:b7:a1:bb:bb:6a:24:91:88:bc:f3: 3f:19:de:bc:1e:dd:e8:c9:43:da:3d:13:26:31:e0:f1:d5:71: f7:b0:5d:96:a9:dc:57:5d:52:da:ee:9b:ae:fe:ec:4b:5b:46: 7d:cb:4c:77:93:ca:31:2d:86:28:6c:f5:2a:92:39:eb:1b:60: 6c:a6:67:27:1a:07:fc:41:a5:53:85:3d:8b:ba:0f:f7:55:59: e4:a5:31:c7:c6:93:8b:a9:03:04:bf:0d:ae:76:0a:90:9c:67: f2:d1:94:02 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUc6adg1ttvOIoXzoKvdus0XbzzMkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyMFoX DTI1MDEwNzA0MDAyMFowMzExMC8GA1UEAxMoQjBFMjhCNzI4NzEwOTRCMzUyNjRF QTUyMjlDQjg1ODg4RDFGMUQ5MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMlrZS76HarowvVOj3HDwBmGqYfYzeFnIsaOGWLiJtIwMg+Rs6lgkA9JJBny UWuoG5CV3jN3H9V032c8GeDXMS6gb4eCz+YXwddl5NXLTu8RLpIeWraBjIRF0i1N g7yPmCMLLTQzid1YRUBiutogFhg4fYRaebVUY/LyVy7QD+upe5umrjvKzdBE4qzb +ERY/NcxuvB/NZ5AVKv8AN0hjpqVkJ/eLDYF+e0HX4VgQQLu2C890K/pTeGOjjKX 0yaKGY86rgbI+mTTL13ub+nQS4qi6JJc2oBQc85XWglhqkdkeYCYMH89yDYI8bpV 5bLdClXCGo45bsGV53Stpyn2bW8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSw4oty hxCUs1Jk6lIpy4WIjR8dkjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTc0NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfDRQDANBgkqhkiG9w0BAQsFAAOCAQEAUwc6py9Tjr2t5q2K MOKdE3Nc/AnU2EnVlwDkNSvCMwnRO3dft1hHJdb6vKB20m6FqoEvULlcfF2GVwSc TnIql7HDTYjPESN5qNFV/+uhWri2Mr7Wf/DECTIl3POj7CyG7oh6lllGHUp3hqBR iQEWFx+8opLYx8J4InI4zmjdlPCrqLCqcGZxcFjpuMZLxNzzzEbd9nN2N+y3obu7 aiSRiLzzPxnevB7d6MlD2j0TJjHg8dVx97BdlqncV11S2u6brv7sS1tGfctMd5PK MS2GKGz1KpI56xtgbKZnJxoH/EGlU4U9i7oP91VZ5KUxx8aTi6kDBL8NrnYKkJxn 8tGUAg== -----END CERTIFICATE-----Generated at Tue May 7 18:07:18 2024 by rpki-client on console-fra.rpki-client.org