$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149882.roa File: AS149882.roa (raw, json) Hash identifier: /8thoaLlp5ng3ni+RLrwzcAAwBtXXYlnb01B89fJCu0= Subject key identifier: 8D:1F:59:86:D4:0E:5B:03:85:DD:8E:E1:D9:83:3F:96:39:88:E6:AA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 29EA9F7CFC87A9A89C9EF6F77C9E76687A26CFAD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149882.roa Signing time: Mon 26 May 2025 07:00:00 +0000 ROA not before: Mon 26 May 2025 06:55:00 +0000 ROA not after: Mon 25 May 2026 07:00:00 +0000 asID: 149882 IP address blocks: 2401:1ba0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:ea:9f:7c:fc:87:a9:a8:9c:9e:f6:f7:7c:9e:76:68:7a:26:cf:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 26 06:55:00 2025 GMT Not After : May 25 07:00:00 2026 GMT Subject: CN=8D1F5986D40E5B0385DD8EE1D9833F963988E6AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5b:1f:5b:d0:49:75:05:d9:0d:b2:fe:07:22: b6:47:25:76:8c:58:76:27:20:b7:a4:85:13:b9:88: b3:35:28:7a:a1:d8:87:e8:2c:ce:74:5e:64:53:92: 0d:b2:b5:ee:1c:89:b4:7a:d8:79:33:29:d0:47:c1: 86:d8:bf:03:bf:00:86:08:37:83:58:88:52:d1:85: f8:08:49:3e:5f:1f:1f:90:02:c3:a6:a7:d9:db:16: b9:03:5e:ab:00:87:6e:bd:c6:ff:89:5e:12:09:cc: eb:19:c2:53:b2:24:0b:4a:75:34:83:08:d1:11:bb: ad:b3:0d:f0:7f:96:99:3a:b7:77:2f:5a:0d:48:f5: 84:33:ca:5c:82:eb:7d:50:b7:57:0a:d4:0b:5b:dc: 6a:2d:2d:e0:29:53:f8:d7:36:68:44:ab:db:92:16: c8:34:de:37:ef:a9:5b:04:02:12:d8:01:a1:2d:44: fe:3e:59:f0:39:49:eb:08:ea:c4:6b:2c:ec:a3:cc: 22:a3:11:4f:24:4e:14:7f:41:89:f3:84:cb:bd:80: 66:3a:ba:f5:47:79:d9:07:80:4a:0b:d5:d7:ca:57: 80:58:75:96:f0:20:cf:76:b4:64:67:ba:33:9e:70: 93:68:22:cf:db:18:f8:d1:9f:32:54:81:e8:d9:fa: 29:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:1F:59:86:D4:0E:5B:03:85:DD:8E:E1:D9:83:3F:96:39:88:E6:AA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149882.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1ba0::/32 Signature Algorithm: sha256WithRSAEncryption 2a:4a:0a:79:62:fe:bc:df:11:b2:98:3d:56:b5:47:96:ad:fe: 63:0f:f3:7f:7b:9f:a1:19:4e:d1:3d:80:73:90:11:89:74:3c: 5d:1e:e5:37:2b:db:7f:10:3d:81:8d:d8:d1:b9:85:62:fc:23: 70:3b:44:33:c5:74:5c:98:db:7b:73:48:a8:4d:46:3e:2b:c9: 21:93:2c:6a:93:bd:c3:26:91:1a:2a:f2:be:b3:4f:01:4a:24: 6d:8d:31:9c:0c:ef:6e:0f:2e:86:75:c9:e5:74:80:c4:b5:73: 92:73:39:84:1c:39:b8:f5:5e:60:70:66:9d:f1:e0:65:b1:f2: 64:f1:ce:09:fa:de:0b:8f:3a:60:4d:53:5f:97:12:bf:47:19: e9:c2:35:98:b2:fd:9b:f0:ae:b9:fb:ef:49:a0:ce:b9:c6:93: 13:7d:95:48:80:a8:43:fe:94:b4:e0:11:d6:83:93:4b:e7:c2: 13:bf:e1:ce:fa:c5:70:9d:31:af:f2:79:34:1c:72:47:08:75: ad:b1:2f:87:d0:0c:7d:a9:41:81:72:2c:1d:ee:49:65:c3:20: e0:96:2e:24:2b:dc:cd:14:62:7c:1c:a2:a5:fe:18:95:3a:3e: 26:0a:77:3c:9a:22:69:a0:a9:65:a5:a5:47:b3:f2:97:10:14: 45:70:99:63 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUKeqffPyHqaicnvb3fJ52aHomz60wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUyNjA2NTUwMFoX DTI2MDUyNTA3MDAwMFowMzExMC8GA1UEAxMoOEQxRjU5ODZENDBFNUIwMzg1REQ4 RUUxRDk4MzNGOTYzOTg4RTZBQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALFbH1vQSXUF2Q2y/gcitkcldoxYdicgt6SFE7mIszUoeqHYh+gsznReZFOS DbK17hyJtHrYeTMp0EfBhti/A78Ahgg3g1iIUtGF+AhJPl8fH5ACw6an2dsWuQNe qwCHbr3G/4leEgnM6xnCU7IkC0p1NIMI0RG7rbMN8H+WmTq3dy9aDUj1hDPKXILr fVC3VwrUC1vcai0t4ClT+Nc2aESr25IWyDTeN++pWwQCEtgBoS1E/j5Z8DlJ6wjq xGss7KPMIqMRTyROFH9BifOEy72AZjq69Ud52QeASgvV18pXgFh1lvAgz3a0ZGe6 M55wk2giz9sY+NGfMlSB6Nn6KQkCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSNH1mG 1A5bA4XdjuHZgz+WOYjmqjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTg4Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBG6AwDQYJKoZIhvcNAQELBQADggEBACpKCnli/rzfEbKYPVa1 R5at/mMP8397n6EZTtE9gHOQEYl0PF0e5Tcr238QPYGN2NG5hWL8I3A7RDPFdFyY 23tzSKhNRj4rySGTLGqTvcMmkRoq8r6zTwFKJG2NMZwM724PLoZ1yeV0gMS1c5Jz OYQcObj1XmBwZp3x4GWx8mTxzgn63guPOmBNU1+XEr9HGenCNZiy/Zvwrrn770mg zrnGkxN9lUiAqEP+lLTgEdaDk0vnwhO/4c76xXCdMa/yeTQcckcIda2xL4fQDH2p QYFyLB3uSWXDIOCWLiQr3M0UYnwcoqX+GJU6PiYKdzyaImmgqWWlpUez8pcQFEVw mWM= -----END CERTIFICATE-----Generated at Tue Jun 3 23:11:23 2025 by rpki-client