$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149893.roa File: AS149893.roa (raw, json) Hash identifier: RHF2LIPoRSlQwsewTSeNePAmNx5W/ZfA1VGpZYL3/H0= Subject key identifier: E1:08:C5:86:2F:43:FC:D3:64:A7:39:20:18:6F:E1:D8:6B:2F:90:4B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7A9456582487D866ECC97A00971900567B224FE9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149893.roa Signing time: Fri 11 Oct 2024 08:01:33 +0000 ROA not before: Fri 11 Oct 2024 07:56:33 +0000 ROA not after: Fri 10 Oct 2025 08:01:33 +0000 asID: 149893 IP address blocks: 103.190.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:94:56:58:24:87:d8:66:ec:c9:7a:00:97:19:00:56:7b:22:4f:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 11 07:56:33 2024 GMT Not After : Oct 10 08:01:33 2025 GMT Subject: CN=E108C5862F43FCD364A73920186FE1D86B2F904B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a8:d4:9c:ef:83:29:2c:3c:90:a9:cf:7a:1f: e2:b8:b0:ad:8f:08:08:d1:34:bc:8d:88:e3:51:f1: d4:b2:d6:76:d4:42:6c:cc:8c:b3:70:5b:1a:bc:4e: 62:b2:44:60:c2:b5:ce:18:bb:44:59:18:fa:51:68: b7:4c:b4:a8:1b:55:63:94:b4:09:eb:76:84:4b:82: 48:34:16:8b:3b:4c:73:a8:c5:83:a3:45:7a:dc:47: 78:d0:c4:2b:8d:26:bc:c9:6a:8d:dc:0a:0b:f9:25: c4:d1:4e:31:ef:b1:90:b3:75:04:8d:40:e3:80:02: f4:79:08:d4:86:ef:05:a1:fc:b7:31:2b:8c:1a:0e: da:3a:3e:3c:b8:d7:95:79:64:0a:96:2b:36:ce:34: 43:08:95:92:d5:a2:77:ed:74:dd:09:b0:db:87:f5: 6d:62:e6:0d:3d:43:40:59:ec:aa:2a:73:67:9c:05: 52:82:e1:ec:f8:68:3e:b4:5b:a5:53:46:f4:6b:66: 70:e8:e9:4a:db:18:9a:6f:a8:51:09:4b:3f:f1:21: 6e:ea:0c:78:da:a7:48:74:54:eb:df:d2:22:e4:3c: db:9c:0c:6c:73:1c:8e:5b:2a:f6:f1:46:40:48:6d: 35:d9:4f:23:d8:aa:83:43:29:98:79:e9:5e:33:29: a1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:08:C5:86:2F:43:FC:D3:64:A7:39:20:18:6F:E1:D8:6B:2F:90:4B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149893.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.48.0/23 Signature Algorithm: sha256WithRSAEncryption 61:aa:df:92:6f:99:74:64:27:65:fd:fc:72:76:d5:a1:38:70: 84:67:36:51:7e:c6:74:03:b4:55:b6:0e:77:56:c7:b6:d0:f7: 32:9a:69:93:04:bb:65:73:73:6f:73:0f:ad:af:f8:26:e6:f0: e7:f4:2f:fa:45:32:b0:03:29:e0:5a:0c:c8:72:32:c5:86:fb: 4d:06:39:90:96:7f:f4:2e:3f:32:29:fd:48:89:9c:08:96:c8: b5:0d:96:7c:4b:d7:72:42:55:54:b6:01:bf:4e:51:1e:ce:52: f3:85:42:29:42:d4:67:56:23:89:d8:be:37:28:72:db:ce:68: 01:fe:19:0e:23:a6:c6:2d:e9:dc:e4:cd:a6:60:94:55:49:48: d8:cb:94:66:88:53:5f:5f:90:16:b9:e7:7b:37:07:a3:ff:e2: 1a:dd:95:76:00:59:7c:10:f6:33:7e:48:7c:5b:32:43:80:4a: 9d:37:7c:8c:ba:c1:5f:4c:be:dd:b9:23:46:4f:06:56:64:40: af:9a:bd:90:c0:67:d9:16:6d:20:4c:c8:e8:3a:45:2d:e2:1a: 6b:39:fa:1f:e8:8d:da:ce:3f:d0:db:5b:a0:36:00:44:6f:cc: 95:ad:36:c2:f3:25:37:d9:a8:1d:d1:3f:81:c4:4f:35:37:5a: 80:d1:da:42 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUepRWWCSH2GbsyXoAlxkAVnsiT+kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxMTA3NTYzM1oX DTI1MTAxMDA4MDEzM1owMzExMC8GA1UEAxMoRTEwOEM1ODYyRjQzRkNEMzY0QTcz OTIwMTg2RkUxRDg2QjJGOTA0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKyo1JzvgyksPJCpz3of4riwrY8ICNE0vI2I41Hx1LLWdtRCbMyMs3BbGrxO YrJEYMK1zhi7RFkY+lFot0y0qBtVY5S0Cet2hEuCSDQWiztMc6jFg6NFetxHeNDE K40mvMlqjdwKC/klxNFOMe+xkLN1BI1A44AC9HkI1IbvBaH8tzErjBoO2jo+PLjX lXlkCpYrNs40QwiVktWid+103Qmw24f1bWLmDT1DQFnsqipzZ5wFUoLh7PhoPrRb pVNG9GtmcOjpStsYmm+oUQlLP/EhbuoMeNqnSHRU69/SIuQ825wMbHMcjlsq9vFG QEhtNdlPI9iqg0MpmHnpXjMpoY0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBThCMWG L0P802SnOSAYb+HYay+QSzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTg5My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe+MDANBgkqhkiG9w0BAQsFAAOCAQEAYarfkm+ZdGQnZf38cnbV oThwhGc2UX7GdAO0VbYOd1bHttD3MpppkwS7ZXNzb3MPra/4Jubw5/Qv+kUysAMp 4FoMyHIyxYb7TQY5kJZ/9C4/Min9SImcCJbItQ2WfEvXckJVVLYBv05RHs5S84VC KULUZ1Yjidi+Nyhy285oAf4ZDiOmxi3p3OTNpmCUVUlI2MuUZohTX1+QFrnnezcH o//iGt2VdgBZfBD2M35IfFsyQ4BKnTd8jLrBX0y+3bkjRk8GVmRAr5q9kMBn2RZt IEzI6DpFLeIaazn6H+iN2s4/0NtboDYARG/Mla02wvMlN9moHdE/gcRPNTdagNHa Qg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:56 2024 by rpki-client on console-fra.rpki-client.org