$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149748.roa File: AS149748.roa (raw, json) Hash identifier: auNUGN1r06z39PMEFUeGFbU2ek7XTmLnhLVpw/IqFog= Subject key identifier: 4A:33:2E:74:52:FC:B5:01:6E:99:18:14:61:2E:DE:29:B4:58:65:AD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0109EC680A0DB24B2DFD9B085C8C62B97ED841F1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149748.roa Signing time: Mon 27 Nov 2023 01:00:00 +0000 ROA not before: Mon 27 Nov 2023 00:55:00 +0000 ROA not after: Mon 25 Nov 2024 01:00:00 +0000 asID: 149748 IP address blocks: 103.189.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:09:ec:68:0a:0d:b2:4b:2d:fd:9b:08:5c:8c:62:b9:7e:d8:41:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 27 00:55:00 2023 GMT Not After : Nov 25 01:00:00 2024 GMT Subject: CN=4A332E7452FCB5016E991814612EDE29B45865AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d9:20:5f:10:fa:12:ce:58:ce:7a:36:11:ed: 3e:d3:56:e3:c8:37:6b:4f:54:c8:2c:98:c1:6d:69: 1a:18:d9:fa:89:3b:37:a9:41:92:22:19:9a:8e:b4: 24:c6:18:93:88:82:47:47:21:fb:1c:7c:59:bd:2b: a4:46:45:56:a5:4f:2e:46:53:61:d3:71:a7:f6:fe: 6a:2c:9b:a8:2b:cb:d1:4c:9f:c9:06:cc:e3:57:63: bd:00:94:ef:d1:8f:b0:2a:7d:b0:f1:d4:d8:f4:52: c5:2e:a7:20:37:9b:75:4c:28:7c:eb:ee:0b:10:d0: 56:e8:16:2f:27:ac:53:d5:11:bb:18:cd:b1:fc:9a: f1:62:60:41:93:99:8a:c3:ff:fc:8a:d1:44:f2:d1: 25:b4:83:76:0e:6a:4f:7c:ba:fd:5f:c8:41:18:95: b0:36:e1:3b:7c:5b:13:70:0b:7a:00:9d:76:a8:0f: 7f:6d:94:0e:8f:f0:5b:17:12:5e:53:a2:5b:55:ea: 3b:37:dc:b5:b9:20:e6:6f:fc:ee:31:e3:aa:d1:59: be:f6:57:82:cc:b6:33:64:b8:72:60:21:71:1a:3c: c9:2b:41:d6:d7:fc:b9:3d:d7:7f:a5:af:19:ae:56: 54:55:19:5b:2d:f2:70:94:67:85:c7:37:6a:0a:a0: cc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:33:2E:74:52:FC:B5:01:6E:99:18:14:61:2E:DE:29:B4:58:65:AD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149748.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.104.0/23 Signature Algorithm: sha256WithRSAEncryption 29:8f:4d:be:88:2f:06:15:9e:34:9a:ad:a7:00:e3:34:da:db: 2d:fe:b0:3a:88:e8:10:dd:11:26:b6:6a:00:a7:35:72:ab:04: dc:b9:2d:54:13:50:84:89:39:3d:8f:1c:7b:50:57:b0:2b:72: 7c:79:3f:76:15:94:e1:68:6a:5e:7f:b7:6a:31:7c:78:95:ab: 5d:48:fa:77:29:ea:d0:c0:9a:0e:cb:b5:e1:04:29:0e:ac:de: 87:9c:16:8a:67:e4:32:9b:1c:52:ed:e0:fb:bd:d9:4e:af:fe: dd:b2:c8:8e:39:ba:e2:14:9e:de:95:5c:ee:fc:8c:7f:2f:37: 31:56:a0:99:74:a5:ef:a9:10:d8:df:a4:ff:0c:8f:f0:88:75: 15:3a:7c:74:7b:57:d9:34:70:a5:d8:4c:d8:61:a4:78:7e:cb: 80:d9:34:27:40:50:de:f3:3d:46:00:03:f9:58:5a:7a:f6:55: ae:8c:21:b4:50:dc:94:98:c7:50:4c:74:0d:b0:32:eb:cd:89: e6:5d:22:63:36:76:b4:f0:6a:c4:22:33:ce:6d:75:fa:5d:98: 32:74:ae:58:0c:00:8b:af:ce:78:43:be:09:cb:f7:09:2a:a7: c8:ab:f3:21:c9:5f:1b:24:d8:0d:64:98:9e:a6:85:b6:88:e1: c6:2f:4b:58 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAQnsaAoNskst/ZsIXIxiuX7YQfEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyNzAwNTUwMFoX DTI0MTEyNTAxMDAwMFowMzExMC8GA1UEAxMoNEEzMzJFNzQ1MkZDQjUwMTZFOTkx ODE0NjEyRURFMjlCNDU4NjVBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3ZIF8Q+hLOWM56NhHtPtNW48g3a09UyCyYwW1pGhjZ+ok7N6lBkiIZmo60 JMYYk4iCR0ch+xx8Wb0rpEZFVqVPLkZTYdNxp/b+aiybqCvL0UyfyQbM41djvQCU 79GPsCp9sPHU2PRSxS6nIDebdUwofOvuCxDQVugWLyesU9URuxjNsfya8WJgQZOZ isP//IrRRPLRJbSDdg5qT3y6/V/IQRiVsDbhO3xbE3ALegCddqgPf22UDo/wWxcS XlOiW1XqOzfctbkg5m/87jHjqtFZvvZXgsy2M2S4cmAhcRo8yStB1tf8uT3Xf6Wv Ga5WVFUZWy3ycJRnhcc3agqgzK0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRKMy50 Uvy1AW6ZGBRhLt4ptFhlrTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTc0OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe9aDANBgkqhkiG9w0BAQsFAAOCAQEAKY9NvogvBhWeNJqtpwDj NNrbLf6wOojoEN0RJrZqAKc1cqsE3LktVBNQhIk5PY8ce1BXsCtyfHk/dhWU4Whq Xn+3ajF8eJWrXUj6dynq0MCaDsu14QQpDqzeh5wWimfkMpscUu3g+73ZTq/+3bLI jjm64hSe3pVc7vyMfy83MVagmXSl76kQ2N+k/wyP8Ih1FTp8dHtX2TRwpdhM2GGk eH7LgNk0J0BQ3vM9RgAD+VhaevZVrowhtFDclJjHUEx0DbAy682J5l0iYzZ2tPBq xCIzzm11+l2YMnSuWAwAi6/OeEO+Ccv3CSqnyKvzIclfGyTYDWSYnqaFtojhxi9L WA== -----END CERTIFICATE-----Generated at Wed May 8 05:33:21 2024 by rpki-client on console-ams.rpki-client.org