$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149893.roa File: AS149893.roa (raw, json) Hash identifier: RXNiQ3b0DI6nJSwz3H5Uulj4yU/ogwPLtLd2c3KXrg0= Subject key identifier: 18:55:8F:D5:DA:A9:76:2F:4A:41:8D:AC:CC:A9:42:D6:62:F0:FF:E4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6F8DE2ACC9B750057008F63FDCFE672E4390F63C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149893.roa Signing time: Fri 10 Nov 2023 07:16:38 +0000 ROA not before: Fri 10 Nov 2023 07:11:38 +0000 ROA not after: Fri 08 Nov 2024 07:16:38 +0000 asID: 149893 IP address blocks: 103.190.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:8d:e2:ac:c9:b7:50:05:70:08:f6:3f:dc:fe:67:2e:43:90:f6:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 10 07:11:38 2023 GMT Not After : Nov 8 07:16:38 2024 GMT Subject: CN=18558FD5DAA9762F4A418DACCCA942D662F0FFE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6b:80:c1:9a:09:a4:df:cb:12:c0:d1:b6:3a: 8f:2e:7a:a4:00:a7:77:cd:d9:7f:9d:6d:fc:00:d2: 47:04:6e:e6:bf:75:68:e9:9f:af:6f:e9:ac:1c:77: c1:89:58:97:11:41:be:5c:81:ca:02:9d:12:06:b7: a3:84:83:6c:80:0f:57:af:44:9a:c3:7d:ee:6f:a7: 1f:11:fb:08:33:4d:f5:65:c5:19:3f:22:39:47:f9: 2f:79:ec:50:97:74:cd:eb:7d:e4:e7:4d:4a:f8:9f: 0b:19:80:5f:89:47:b7:d5:a0:20:e3:c8:4c:c4:09: 93:c6:9c:fa:f2:51:ae:2f:9f:1d:21:4f:1e:4a:d1: 71:ed:f8:ba:b7:4b:f6:63:a4:97:2b:29:7d:dd:f5: 50:d9:a4:64:5e:f3:9a:17:82:ba:8d:5c:f1:49:54: b9:7a:0f:85:f2:91:d2:25:8c:f1:e0:99:9c:95:f3: 17:3d:c3:85:7e:ff:1b:dd:2a:f1:5c:9e:19:f9:b8: 3c:da:4e:2f:ae:5e:0e:81:bb:73:71:55:b7:6f:6d: 46:3a:3c:d4:07:99:e4:b8:ce:a1:e7:0c:30:f6:58: c7:70:3f:31:02:17:4b:49:fe:6a:de:72:49:76:ee: e4:6b:22:9f:7e:47:55:16:03:f2:38:d4:32:6e:a9: 8a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:55:8F:D5:DA:A9:76:2F:4A:41:8D:AC:CC:A9:42:D6:62:F0:FF:E4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149893.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.48.0/23 Signature Algorithm: sha256WithRSAEncryption 11:5d:87:71:30:45:5f:fa:63:71:01:67:02:24:b4:b1:7f:b4: 34:00:7e:23:55:61:29:e7:de:9a:b1:3f:a8:4c:2d:e2:ba:82: a9:ba:3f:5a:a9:8e:f2:71:d8:a9:85:77:16:2a:0e:c7:7f:c0: 30:da:a8:6e:d1:33:80:97:3f:fa:f9:7c:df:21:b7:51:ad:2a: 73:45:76:2c:9f:2f:fc:f5:d6:59:a4:e8:6f:4c:75:c3:68:a8: 36:39:99:98:76:47:79:5f:9c:de:1e:5b:68:d4:5f:a6:59:5a: bc:58:a4:96:28:69:1c:43:99:ad:83:d0:da:51:e1:f9:f9:93: 48:ed:da:19:37:8b:b0:51:40:6d:f6:25:61:f4:78:1b:11:2b: 16:d1:a8:5c:2b:bf:42:80:04:87:53:bd:88:05:ca:12:9f:66: f1:8a:92:2d:74:af:16:09:e8:37:f6:a6:b4:6d:f7:e0:e3:84: e8:52:f2:ac:32:18:05:b0:bc:1f:a5:05:17:cd:d7:78:e8:8f: f9:af:eb:fe:ee:29:93:78:33:c0:05:02:90:f7:4b:b3:b6:d1: d6:10:9f:86:56:a5:31:d6:c3:f7:45:dd:ca:77:1d:a1:fa:3b: 14:10:d3:b7:f1:99:2e:2b:6c:d2:ec:35:72:d8:50:c9:71:7a: 72:46:b0:14 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUb43irMm3UAVwCPY/3P5nLkOQ9jwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExMDA3MTEzOFoX DTI0MTEwODA3MTYzOFowMzExMC8GA1UEAxMoMTg1NThGRDVEQUE5NzYyRjRBNDE4 REFDQ0NBOTQyRDY2MkYwRkZFNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNrgMGaCaTfyxLA0bY6jy56pACnd83Zf51t/ADSRwRu5r91aOmfr2/prBx3 wYlYlxFBvlyBygKdEga3o4SDbIAPV69EmsN97m+nHxH7CDNN9WXFGT8iOUf5L3ns UJd0zet95OdNSvifCxmAX4lHt9WgIOPITMQJk8ac+vJRri+fHSFPHkrRce34urdL 9mOklyspfd31UNmkZF7zmheCuo1c8UlUuXoPhfKR0iWM8eCZnJXzFz3DhX7/G90q 8VyeGfm4PNpOL65eDoG7c3FVt29tRjo81AeZ5LjOoecMMPZYx3A/MQIXS0n+at5y SXbu5Gsin35HVRYD8jjUMm6pim8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQYVY/V 2ql2L0pBjazMqULWYvD/5DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTg5My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe+MDANBgkqhkiG9w0BAQsFAAOCAQEAEV2HcTBFX/pjcQFnAiS0 sX+0NAB+I1VhKefemrE/qEwt4rqCqbo/WqmO8nHYqYV3FioOx3/AMNqobtEzgJc/ +vl83yG3Ua0qc0V2LJ8v/PXWWaTob0x1w2ioNjmZmHZHeV+c3h5baNRfpllavFik lihpHEOZrYPQ2lHh+fmTSO3aGTeLsFFAbfYlYfR4GxErFtGoXCu/QoAEh1O9iAXK Ep9m8YqSLXSvFgnoN/amtG334OOE6FLyrDIYBbC8H6UFF83XeOiP+a/r/u4pk3gz wAUCkPdLs7bR1hCfhlalMdbD90Xdyncdofo7FBDTt/GZLits0uw1cthQyXF6ckaw FA== -----END CERTIFICATE-----Generated at Wed May 8 21:02:23 2024 by rpki-client on console-fra.rpki-client.org