$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149754.roa File: AS149754.roa (raw, json) Hash identifier: AOKWupEfX5Q9sqHL3fNgXUcHEuxE5nEp1IE0TZcc10k= Subject key identifier: 96:DD:1B:CA:F3:F0:23:D6:D0:E7:5B:17:49:87:96:24:E2:92:6B:29 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7F86A1F7FFD93F81F2B5A8AD34304FB0D57B195D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149754.roa Signing time: Wed 26 Jul 2023 08:05:54 +0000 ROA not before: Wed 26 Jul 2023 08:00:54 +0000 ROA not after: Wed 24 Jul 2024 08:05:54 +0000 asID: 149754 IP address blocks: 103.246.168.0/24 maxlen: 24 2001:df1:9fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:86:a1:f7:ff:d9:3f:81:f2:b5:a8:ad:34:30:4f:b0:d5:7b:19:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 26 08:00:54 2023 GMT Not After : Jul 24 08:05:54 2024 GMT Subject: CN=96DD1BCAF3F023D6D0E75B1749879624E2926B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8b:8d:27:d1:d1:fa:a8:ff:76:2b:9e:71:9e: e7:2d:a9:40:db:43:f0:b1:fd:13:13:14:01:99:dc: 00:dc:b3:cf:c9:1b:38:ee:c4:e1:c4:dc:f4:08:ce: b1:5b:04:3c:31:a6:eb:87:28:dd:df:55:f9:b7:2d: af:6c:76:c5:a4:dd:b4:df:89:16:4e:e8:48:9b:f5: 17:13:f4:a8:0e:d5:40:72:2c:d1:0e:dc:f0:30:1e: d3:b8:46:3f:d1:64:65:70:ef:f5:d5:c9:46:06:a9: b3:0c:94:ec:f8:d9:19:d4:31:08:7e:df:18:30:ed: 30:68:b3:ff:b5:d1:db:f5:0f:06:1d:84:4e:94:d0: cb:a0:3f:7c:d3:d1:5a:dd:6a:ce:b4:d0:9b:c0:d5: 62:3b:55:49:f3:af:ee:f3:0d:6b:21:54:8e:fa:c7: 89:8e:b9:3f:54:c2:ca:e7:86:28:2f:b8:e9:52:1f: fd:a3:e8:85:29:65:ba:b3:c8:37:a3:3d:c2:a3:24: ae:92:75:d9:9f:0d:49:f0:f5:5f:af:4f:5b:04:7b: 2e:b9:99:74:e9:50:59:86:7f:7f:09:42:b3:2c:8b: c7:18:2d:b7:64:bf:ce:cd:b6:0b:15:d6:6b:96:18: 04:07:d5:6e:ca:17:2c:24:70:be:2c:f0:7c:aa:ea: b0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:DD:1B:CA:F3:F0:23:D6:D0:E7:5B:17:49:87:96:24:E2:92:6B:29 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149754.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.168.0/24 IPv6: 2001:df1:9fc0::/48 Signature Algorithm: sha256WithRSAEncryption 2c:71:77:54:a1:01:df:21:e1:47:c4:2a:f7:da:91:a8:83:c2: 39:27:78:c0:c9:8b:2d:d8:b8:61:50:25:ca:4f:6b:f0:ac:fe: cd:0a:47:ba:37:44:53:c9:96:bb:e4:0d:c4:87:3d:68:e5:c3: b0:53:16:31:7f:e4:f4:93:39:39:88:d7:8d:3e:0b:26:55:17: 76:24:c6:fa:a1:83:fa:0d:fa:5f:32:27:80:b5:7a:6b:a2:b5: a1:e4:65:0a:50:ce:f6:3b:73:62:67:79:fa:d3:81:fd:57:a9: d6:e5:40:e9:9d:82:70:2a:53:19:a1:fb:ae:54:3c:5e:6d:0c: 3c:02:28:61:19:78:86:1c:d8:44:00:bf:eb:ee:a7:27:88:be: d4:55:a1:27:04:4e:08:48:07:a4:f5:da:c9:16:e5:b7:c7:eb: a0:68:52:8c:59:76:23:e6:06:3c:65:de:64:a6:11:d5:50:ee: 40:5c:ee:2c:c6:6d:f5:41:c2:20:0b:5a:16:fa:ed:f7:a6:f7: 1a:c6:f9:dc:66:1c:66:39:92:cd:0d:99:43:fa:d8:9d:b5:54: 23:12:f1:f3:ee:51:f9:69:69:8b:b3:25:9e:be:e5:3d:9d:74: ad:d5:e4:73:89:bf:0d:55:bd:4d:17:39:d3:35:6f:71:17:61: c6:76:d8:5a -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUf4ah9//ZP4HytaitNDBPsNV7GV0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyNjA4MDA1NFoX DTI0MDcyNDA4MDU1NFowMzExMC8GA1UEAxMoOTZERDFCQ0FGM0YwMjNENkQwRTc1 QjE3NDk4Nzk2MjRFMjkyNkIyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMOLjSfR0fqo/3YrnnGe5y2pQNtD8LH9ExMUAZncANyzz8kbOO7E4cTc9AjO sVsEPDGm64co3d9V+bctr2x2xaTdtN+JFk7oSJv1FxP0qA7VQHIs0Q7c8DAe07hG P9FkZXDv9dXJRgapswyU7PjZGdQxCH7fGDDtMGiz/7XR2/UPBh2ETpTQy6A/fNPR Wt1qzrTQm8DVYjtVSfOv7vMNayFUjvrHiY65P1TCyueGKC+46VIf/aPohSllurPI N6M9wqMkrpJ12Z8NSfD1X69PWwR7LrmZdOlQWYZ/fwlCsyyLxxgtt2S/zs22CxXW a5YYBAfVbsoXLCRwvizwfKrqsP0CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSW3RvK 8/Aj1tDnWxdJh5Yk4pJrKTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTc1NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGf2qDAPBAIAAjAJAwcAIAEN8Z/AMA0GCSqGSIb3DQEBCwUAA4IB AQAscXdUoQHfIeFHxCr32pGog8I5J3jAyYst2LhhUCXKT2vwrP7NCke6N0RTyZa7 5A3Ehz1o5cOwUxYxf+T0kzk5iNeNPgsmVRd2JMb6oYP6DfpfMieAtXprorWh5GUK UM72O3NiZ3n604H9V6nW5UDpnYJwKlMZofuuVDxebQw8AihhGXiGHNhEAL/r7qcn iL7UVaEnBE4ISAek9drJFuW3x+ugaFKMWXYj5gY8Zd5kphHVUO5AXO4sxm31QcIg C1oW+u33pvcaxvncZhxmOZLNDZlD+tidtVQjEvHz7lH5aWmLsyWevuU9nXSt1eRz ib8NVb1NFznTNW9xF2HGdtha -----END CERTIFICATE-----Generated at Wed May 8 14:59:57 2024 by rpki-client on console-ams.rpki-client.org