$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149882.roa File: AS149882.roa (raw, json) Hash identifier: cVqwbcazvvemCRbHdFw8FdIuhqJemysS/tTQws5aRSs= Subject key identifier: A7:33:F8:78:09:BA:3B:11:96:CF:54:FF:D1:F6:0A:F4:F1:4D:E4:0F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4AA44396174924E8B17464487C028D9516A902F1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149882.roa Signing time: Mon 24 Jul 2023 06:09:32 +0000 ROA not before: Mon 24 Jul 2023 06:04:32 +0000 ROA not after: Mon 22 Jul 2024 06:09:32 +0000 asID: 149882 IP address blocks: 2401:1ba0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:a4:43:96:17:49:24:e8:b1:74:64:48:7c:02:8d:95:16:a9:02:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 24 06:04:32 2023 GMT Not After : Jul 22 06:09:32 2024 GMT Subject: CN=A733F87809BA3B1196CF54FFD1F60AF4F14DE40F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:42:7d:f2:1a:74:9f:86:01:f0:65:56:18:82: 19:a8:23:3f:7b:5e:b9:d4:0f:11:6c:5d:f4:17:45: 36:df:19:6f:69:44:52:bc:1e:7c:f7:ca:db:ec:d5: 3d:49:60:a5:8d:0c:8d:40:3a:5a:76:38:e7:b9:6c: af:dc:91:71:01:7d:f9:fb:12:49:6d:b2:61:d9:2c: 35:a8:da:39:12:c2:7e:dd:d0:f4:76:cd:0c:2f:61: 55:6d:c1:33:f7:dc:7c:33:39:98:7b:45:af:1a:aa: ff:33:a4:b0:33:8b:02:e1:18:4c:bd:87:ca:bb:e0: c7:a4:16:04:95:13:a4:a7:b2:59:64:7c:5b:10:e6: fa:20:b3:35:b2:67:5b:64:6f:57:4a:0e:13:ee:b6: 10:14:98:52:73:c6:bf:5f:b6:2d:9a:21:89:49:9c: 01:f6:55:70:4e:6c:23:a4:3a:45:e7:1d:57:85:43: 20:81:40:39:69:d2:a1:4b:17:bb:12:e3:99:84:4f: 3a:b4:5e:0e:89:14:13:05:3f:ea:0d:9e:cb:f1:c9: 5c:3a:f5:fc:6f:f0:f4:ad:b1:c3:9a:59:fd:35:30: aa:35:77:55:6a:3c:12:e5:b3:39:48:82:5c:90:5e: 84:81:a7:ea:ca:c1:8c:11:b2:de:12:ae:4c:0b:ec: 8e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:33:F8:78:09:BA:3B:11:96:CF:54:FF:D1:F6:0A:F4:F1:4D:E4:0F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149882.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1ba0::/32 Signature Algorithm: sha256WithRSAEncryption 91:07:95:58:f3:37:ac:31:1a:d5:2d:ef:5d:fe:14:51:6e:0c: b2:63:7c:b6:50:57:70:e8:66:ce:7d:4c:8b:af:1b:63:b0:0d: 99:25:45:5b:b0:08:ba:9d:6c:5f:8c:05:33:24:64:df:fc:ee: c5:c7:7b:c0:21:c3:5e:98:f5:bf:e3:9e:07:ba:ac:ea:1a:ac: 2c:99:73:be:02:a8:2a:f1:1f:df:76:8c:41:3e:ff:fa:65:71: db:f1:6a:44:72:67:3e:c6:18:be:0c:ef:03:93:71:cc:38:6f: 07:95:28:a3:93:4b:a4:a5:d2:85:5a:14:09:19:68:2f:8b:0d: 40:1b:db:f2:47:50:1a:e3:53:ea:27:c1:3d:b4:e1:a6:66:9a: 2b:6f:4a:e5:1a:39:32:ea:2a:3d:ea:e5:1f:ae:dd:9a:3b:34: d4:e9:7b:7a:96:b3:0c:3f:df:74:5e:81:0f:54:29:b5:e4:eb: ab:55:75:34:ed:65:a7:d1:fb:c8:0d:9a:f1:7e:7b:b2:3d:fb: 93:d8:ef:b0:9f:21:a3:91:ea:aa:99:49:12:bf:a1:be:94:d1: 0e:df:a9:38:5f:19:1a:d6:ff:34:e0:e4:c9:fe:ea:c3:4b:db: 82:9d:98:84:ef:65:63:d8:c3:a0:25:c1:f7:f0:e4:be:47:e7: 76:11:df:5a -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUSqRDlhdJJOixdGRIfAKNlRapAvEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyNDA2MDQzMloX DTI0MDcyMjA2MDkzMlowMzExMC8GA1UEAxMoQTczM0Y4NzgwOUJBM0IxMTk2Q0Y1 NEZGRDFGNjBBRjRGMTRERTQwRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKhCffIadJ+GAfBlVhiCGagjP3teudQPEWxd9BdFNt8Zb2lEUrwefPfK2+zV PUlgpY0MjUA6WnY457lsr9yRcQF9+fsSSW2yYdksNajaORLCft3Q9HbNDC9hVW3B M/fcfDM5mHtFrxqq/zOksDOLAuEYTL2Hyrvgx6QWBJUTpKeyWWR8WxDm+iCzNbJn W2RvV0oOE+62EBSYUnPGv1+2LZohiUmcAfZVcE5sI6Q6RecdV4VDIIFAOWnSoUsX uxLjmYRPOrReDokUEwU/6g2ey/HJXDr1/G/w9K2xw5pZ/TUwqjV3VWo8EuWzOUiC XJBehIGn6srBjBGy3hKuTAvsjlkCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSnM/h4 Cbo7EZbPVP/R9gr08U3kDzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTg4Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBG6AwDQYJKoZIhvcNAQELBQADggEBAJEHlVjzN6wxGtUt713+ FFFuDLJjfLZQV3DoZs59TIuvG2OwDZklRVuwCLqdbF+MBTMkZN/87sXHe8Ahw16Y 9b/jnge6rOoarCyZc74CqCrxH992jEE+//plcdvxakRyZz7GGL4M7wOTccw4bweV KKOTS6Sl0oVaFAkZaC+LDUAb2/JHUBrjU+onwT204aZmmitvSuUaOTLqKj3q5R+u 3Zo7NNTpe3qWsww/33RegQ9UKbXk66tVdTTtZafR+8gNmvF+e7I9+5PY77CfIaOR 6qqZSRK/ob6U0Q7fqThfGRrW/zTg5Mn+6sNL24KdmITvZWPYw6Alwffw5L5H53YR 31o= -----END CERTIFICATE-----Generated at Wed May 8 04:37:57 2024 by rpki-client on console-fra.rpki-client.org