$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149754.roa File: AS149754.roa (raw, json) Hash identifier: d5J9IhRTMxz6jOeluUFoT8hgl8p3RC1hOX5uoFdyXdE= Subject key identifier: 7F:7C:7D:0B:AC:00:BD:2C:1F:4D:6E:12:08:AB:D3:78:EA:0D:52:40 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6572C9CC2E51A40015A3A0FB77408F776721479A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149754.roa Signing time: Wed 28 May 2025 09:02:21 +0000 ROA not before: Wed 28 May 2025 08:57:21 +0000 ROA not after: Wed 27 May 2026 09:02:21 +0000 asID: 149754 IP address blocks: 103.246.168.0/24 maxlen: 24 2001:df1:9fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:72:c9:cc:2e:51:a4:00:15:a3:a0:fb:77:40:8f:77:67:21:47:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 28 08:57:21 2025 GMT Not After : May 27 09:02:21 2026 GMT Subject: CN=7F7C7D0BAC00BD2C1F4D6E1208ABD378EA0D5240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0a:da:06:ea:eb:22:61:fb:8e:38:e4:63:61: a4:a8:3f:fe:21:69:0f:f4:af:0a:d1:76:85:cc:6a: 46:60:2e:35:2f:8f:3a:88:f9:7e:18:7f:a4:a2:58: 1e:07:5c:4d:73:45:21:a2:cc:a4:c8:5d:85:67:c1: 04:59:7c:86:f4:9b:ad:80:a4:22:55:ec:06:3d:19: d0:89:af:b6:8e:62:a2:bc:af:c3:7d:86:06:b1:a0: 45:97:7c:84:b3:50:e8:b9:07:52:6c:ff:ef:f3:4e: 2f:74:e8:08:5b:07:76:9c:2b:52:7c:c8:71:4c:18: 22:ea:a8:6e:c6:42:06:1c:e4:be:74:a4:c4:3c:52: 99:b4:cb:ab:9d:a4:1e:96:d2:b7:a6:59:72:98:e8: ad:a1:b4:ac:7a:c1:bf:aa:4b:d4:12:d1:90:cc:2f: 58:88:16:f9:b8:c4:91:ba:1c:79:31:42:f2:58:39: af:22:79:a0:2d:1e:1f:57:b2:79:45:07:37:b6:44: 3d:ee:73:b7:53:01:6a:97:01:ba:59:7b:45:1e:73: e6:b0:c6:2f:bc:d9:45:5a:c7:1f:a6:29:bd:34:a2: 0c:d1:63:c0:cd:aa:80:2f:6a:fb:d6:24:08:43:b3: 93:a7:42:34:bb:12:93:1b:8e:fc:5d:1d:da:4d:8a: 85:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:7C:7D:0B:AC:00:BD:2C:1F:4D:6E:12:08:AB:D3:78:EA:0D:52:40 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149754.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.168.0/24 IPv6: 2001:df1:9fc0::/48 Signature Algorithm: sha256WithRSAEncryption 8a:b3:9e:80:7e:b7:30:50:03:90:7f:5a:4e:69:dc:61:9c:22: 18:c6:4f:02:2d:53:3d:8a:03:00:9b:4b:79:9d:6e:94:ca:3c: 26:cf:f4:4a:b2:b7:52:5d:da:cf:b7:7a:6a:92:06:2b:59:bd: dd:c6:0e:26:40:d6:7c:71:23:ef:84:15:66:0d:8c:db:78:e6: 65:de:50:ff:e1:d9:38:a7:88:4b:96:e5:e0:fb:ac:89:06:cf: ae:5f:c8:0a:97:5e:1d:c7:fe:2e:0a:3e:32:d4:42:f6:17:12: 92:eb:ae:85:9d:d6:d4:b5:53:d8:a7:c6:41:72:2c:35:ab:34: b0:9a:fc:ad:5b:d9:56:2b:a6:5b:d9:72:13:8c:f2:7a:7a:30: ba:47:c5:20:43:bf:a1:8b:4d:56:65:de:ee:e7:0c:46:d9:76: 93:f4:60:7d:f6:3a:9b:12:23:6a:2a:16:1e:fd:37:6a:d3:b2: 9c:35:fd:dd:bd:40:33:f0:79:ab:3c:5f:39:ae:40:aa:65:e1: a2:b3:e1:98:34:6c:ca:73:f0:3b:73:57:bf:9b:98:91:eb:95: 0d:db:59:af:bc:31:9d:3f:fa:ae:19:5b:c5:80:fd:d6:2f:5a: 56:8d:04:57:bf:3e:ba:f6:58:d3:ba:6c:b9:c4:e6:a8:64:2d: 0e:9e:b5:8f -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUZXLJzC5RpAAVo6D7d0CPd2chR5owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUyODA4NTcyMVoX DTI2MDUyNzA5MDIyMVowMzExMC8GA1UEAxMoN0Y3QzdEMEJBQzAwQkQyQzFGNEQ2 RTEyMDhBQkQzNzhFQTBENTI0MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL4K2gbq6yJh+4445GNhpKg//iFpD/SvCtF2hcxqRmAuNS+POoj5fhh/pKJY HgdcTXNFIaLMpMhdhWfBBFl8hvSbrYCkIlXsBj0Z0Imvto5ioryvw32GBrGgRZd8 hLNQ6LkHUmz/7/NOL3ToCFsHdpwrUnzIcUwYIuqobsZCBhzkvnSkxDxSmbTLq52k HpbSt6ZZcpjoraG0rHrBv6pL1BLRkMwvWIgW+bjEkboceTFC8lg5ryJ5oC0eH1ey eUUHN7ZEPe5zt1MBapcBull7RR5z5rDGL7zZRVrHH6YpvTSiDNFjwM2qgC9q+9Yk CEOzk6dCNLsSkxuO/F0d2k2KhSsCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBR/fH0L rAC9LB9NbhIIq9N46g1SQDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTc1NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGf2qDAPBAIAAjAJAwcAIAEN8Z/AMA0GCSqGSIb3DQEBCwUAA4IB AQCKs56AfrcwUAOQf1pOadxhnCIYxk8CLVM9igMAm0t5nW6Uyjwmz/RKsrdSXdrP t3pqkgYrWb3dxg4mQNZ8cSPvhBVmDYzbeOZl3lD/4dk4p4hLluXg+6yJBs+uX8gK l14dx/4uCj4y1EL2FxKS666FndbUtVPYp8ZBciw1qzSwmvytW9lWK6Zb2XITjPJ6 ejC6R8UgQ7+hi01WZd7u5wxG2XaT9GB99jqbEiNqKhYe/Tdq07KcNf3dvUAz8Hmr PF85rkCqZeGis+GYNGzKc/A7c1e/m5iR65UN21mvvDGdP/quGVvFgP3WL1pWjQRX vz669ljTumy5xOaoZC0OnrWP -----END CERTIFICATE-----Generated at Tue Jun 3 23:12:06 2025 by rpki-client