$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149748.roa File: AS149748.roa (raw, json) Hash identifier: ZHQVFX9gSmm+625DHGRiF3WLx5eqSSOf6F/uggk9o1c= Subject key identifier: 2F:BA:29:BC:FF:B0:75:00:F8:14:5F:73:DC:CB:26:E5:FA:C2:A7:43 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 77467D9C35DF3D32DE60C93B69AA6C004AEFD431 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149748.roa Signing time: Mon 28 Oct 2024 01:00:00 +0000 ROA not before: Mon 28 Oct 2024 00:55:00 +0000 ROA not after: Mon 27 Oct 2025 01:00:00 +0000 asID: 149748 IP address blocks: 103.189.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:46:7d:9c:35:df:3d:32:de:60:c9:3b:69:aa:6c:00:4a:ef:d4:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 28 00:55:00 2024 GMT Not After : Oct 27 01:00:00 2025 GMT Subject: CN=2FBA29BCFFB07500F8145F73DCCB26E5FAC2A743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:3b:03:6a:7f:ae:68:c1:fc:ec:5b:b2:bc:bd: 4f:9f:e2:ce:4a:ad:6c:f9:e5:cf:86:f7:15:0b:13: 7e:12:96:e0:bf:44:67:d2:6a:5d:d5:3d:9b:02:97: 35:2d:6f:cd:68:7e:44:87:b1:f7:3c:3f:9b:df:f3: 6c:9e:9d:b6:52:d4:fa:69:d6:89:02:27:f6:b2:23: 22:20:d6:ab:9c:b7:ca:3e:b9:0c:a6:41:b1:e1:94: 15:ab:a2:0c:62:68:7c:89:8e:c8:de:0b:e2:ad:fa: 15:ed:f4:26:ff:6e:96:be:2b:fb:54:fa:b7:52:5d: 2d:12:94:30:94:a4:a9:b3:1a:1a:6a:98:8a:88:26: 18:31:32:ca:46:d6:ab:59:c9:05:1c:55:4d:ff:90: a8:4b:64:70:7e:47:dd:63:a5:e9:72:87:a5:94:33: c4:d3:44:03:f0:dd:3a:11:d6:19:d7:91:58:01:d7: 0f:ab:0b:e9:57:de:ba:4f:fe:d8:5f:e6:73:05:3e: db:49:dd:30:83:27:65:69:60:17:b9:9a:f0:81:d3: dc:a0:57:61:49:2f:7b:3d:e6:14:3e:74:ec:75:fb: 2f:8c:33:e0:1c:30:1c:64:66:12:15:3b:5c:b1:99: 32:79:c9:79:36:50:33:aa:c4:f5:26:63:d7:f3:05: 5f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BA:29:BC:FF:B0:75:00:F8:14:5F:73:DC:CB:26:E5:FA:C2:A7:43 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149748.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.104.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:f7:37:d9:10:8b:c0:8f:80:b1:a4:38:20:7c:9e:67:c3:44: f1:26:63:b1:05:95:d3:a9:be:0e:39:78:4a:23:67:19:4b:bd: b3:54:88:62:8f:ca:c5:7c:3d:b6:4f:00:af:08:1a:32:67:20: a4:e4:b8:9c:93:e8:0b:99:4c:53:fa:33:b1:16:c4:ee:66:fa: cb:48:01:09:93:31:03:16:41:90:49:53:8a:3b:c9:5a:7f:53: 72:9e:ad:0e:c7:64:8f:e1:b8:00:d6:b3:e9:44:7e:96:2a:bf: 89:ee:c4:b8:6f:ca:f3:b0:79:c0:9f:cd:28:5a:87:38:f0:e5: 26:46:be:6b:d6:89:35:32:59:29:d1:1d:e1:bc:d6:09:f2:ed: ba:3e:4f:ba:73:02:21:3d:a8:40:20:f2:d2:50:32:91:f8:5c: 9e:76:2a:3c:78:c7:71:d1:55:fc:74:46:e1:2c:32:9e:79:f9: 27:6a:99:6b:1c:0f:a5:a1:8f:a7:c3:54:f4:42:37:1f:6f:ca: b1:97:8f:ed:26:32:15:07:c3:09:6b:5b:a9:44:dd:cf:03:75: 69:82:c3:0b:f1:71:25:f0:25:39:b3:78:88:19:ff:87:50:4f: d4:33:ba:62:dc:59:64:49:0c:f0:71:da:13:47:81:c4:97:8a: ff:25:ad:2f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUd0Z9nDXfPTLeYMk7aapsAErv1DEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyODAwNTUwMFoX DTI1MTAyNzAxMDAwMFowMzExMC8GA1UEAxMoMkZCQTI5QkNGRkIwNzUwMEY4MTQ1 RjczRENDQjI2RTVGQUMyQTc0MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJY7A2p/rmjB/Oxbsry9T5/izkqtbPnlz4b3FQsTfhKW4L9EZ9JqXdU9mwKX NS1vzWh+RIex9zw/m9/zbJ6dtlLU+mnWiQIn9rIjIiDWq5y3yj65DKZBseGUFaui DGJofImOyN4L4q36Fe30Jv9ulr4r+1T6t1JdLRKUMJSkqbMaGmqYiogmGDEyykbW q1nJBRxVTf+QqEtkcH5H3WOl6XKHpZQzxNNEA/DdOhHWGdeRWAHXD6sL6Vfeuk/+ 2F/mcwU+20ndMIMnZWlgF7ma8IHT3KBXYUkvez3mFD507HX7L4wz4BwwHGRmEhU7 XLGZMnnJeTZQM6rE9SZj1/MFX1kCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQvuim8 /7B1APgUX3Pcyybl+sKnQzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTc0OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe9aDANBgkqhkiG9w0BAQsFAAOCAQEADPc32RCLwI+AsaQ4IHye Z8NE8SZjsQWV06m+Djl4SiNnGUu9s1SIYo/KxXw9tk8ArwgaMmcgpOS4nJPoC5lM U/ozsRbE7mb6y0gBCZMxAxZBkElTijvJWn9Tcp6tDsdkj+G4ANaz6UR+liq/ie7E uG/K87B5wJ/NKFqHOPDlJka+a9aJNTJZKdEd4bzWCfLtuj5PunMCIT2oQCDy0lAy kfhcnnYqPHjHcdFV/HRG4Swynnn5J2qZaxwPpaGPp8NU9EI3H2/KsZeP7SYyFQfD CWtbqUTdzwN1aYLDC/FxJfAlObN4iBn/h1BP1DO6YtxZZEkM8HHaE0eBxJeK/yWt Lw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:56 2024 by rpki-client on console-fra.rpki-client.org